Dr Chan
/
About us

Privacy Policy

Welcome

You're here because you care about your privacy, especially when it comes to sharing your health information with an AI medical assistant. As the creators and regular users of Dr Chan ourselves, privacy is of the utmost importance to us. Dr Chan ("we," "us," or "our") provides an AI-powered medical assistant to support patients by making health information readily accessible. This Privacy Policy outlines how we collect, use, maintain, protect, and disclose your information. If anything is unclear, please don't hesitate to contact us for clarification.

Our commitment

Our commitment to your privacy is not just an obligation, but a vital part of our mission to provide secure and private healthcare support. When you entrust us with sensitive health information, we believe it is our most important responsibility to keep it as safe, secure, and private as we can, while still delivering you effective medical assistance and services. We believe transparency is one of the most important values in healthcare, and that extends to our relationship with our patients. We will do our best to provide clear and open communication about our data practices, giving you the power to make informed decisions about your health data and its use within Dr Chan.

Why we store data

After thorough consideration of the factors, we concluded that storing data is the only way that we can provide a healthcare experience that emphasises patient convenience, safety, and reliability. Here's why:
  1. Cross-Device Accessibility
  1. Data Protection: User-based encryption, while secure, carries a risk of data loss if the encryption key is forgotten or lost.
Building an innovative healthcare product like Dr Chan is challenging, and we appreciate your trust in us as we do our best to pioneer never-before-seen experiences in healthcare accessibility. Your participation makes this possible and we greatly appreciate it.

1. Information We Collect

In order to provide our healthcare services, we may collect the following types of information:
  1. User-Provided Information: You provide us with personally identifiable information, such as your email address and health-related information, when you register for an account or in your use of our services.
  1. Automatically Collected Information: We automatically collect certain information about the device you use to access our services, including information about the device, IP address, and browser type. We also collect information about your interactions with our services, such as pages viewed and links clicked.

2. Use of Information

We use the information we collect for several purposes aimed at providing and improving our healthcare services. Here's a more detailed breakdown:
  1. Providing Our Services: The information we collect is integral to providing our services. This includes using your account information to allow you access to Dr Chan, personalizing your healthcare experience, and providing relevant medical information.
  1. Maintaining Our Services: We use the information to ensure our services run smoothly. This includes using technical information about your devices and your interactions with our services to resolve issues, ensure compatibility, and keep our services up and running.
  1. Improving Our Services: We use aggregated and anonymised data to identify trends, track user behaviour, and understand how our users interact with Dr Chan. This allows us to improve our healthcare support and optimise the user experience.
  1. Developing New Services: Information collected can inspire new ideas and help us innovate. It gives us insights into what patients need and what new healthcare services we might develop.
  1. Protecting Dr Chan and Our Users: Some information is used in the interest of security to protect our app and our users. For instance, we might use information to verify accounts, prevent fraudulent activity, enforce our terms and conditions, and to comply with healthcare regulations.
  1. Offering Tailored Content: We may use your data to personalize your healthcare experience. This can range from remembering your health preferences to providing relevant medical information.
In all instances, we uphold strict data handling practices to ensure your health information is handled responsibly and in accordance with this Privacy Policy and healthcare regulations.

3. Third-Party Services

We use various third-party services to help us provide, improve, protect, and promote our healthcare services:
  1. Alibaba Cloud (Qwen): We use this service for advanced computational tasks, including but not limited to, artificial intelligence operations and medical information processing. All data processed through this service is anonymized, containing only the necessary information without any user-identifying information.
  1. Stripe Payment Processing: We use Stripe, a leading global payment processor, to handle all financial transactions securely. When you make payments through Dr Chan, your payment information is processed directly by Stripe using industry-standard encryption and security measures. We do not store your payment details on our servers. By using our payment services, you agree to Stripe's Terms of Service and Privacy Policy.
Please note that these third-party service providers have their own privacy policies addressing how they use such information.

4. Non-Disclosure of Sensitive Health Data

Dr Chan stands firmly in its commitment to safeguard your sensitive health data. It is against our values and company ethos to share, sell, or distribute your sensitive medical information to any third parties. We will never do this unless absolutely required by law.

5. Security

Ensuring the security of your health data is our utmost priority, and we employ a variety of measures to safeguard your information:
  1. Data Encryption: All data transmitted between you and our services is secured using strong encryption protocols. This includes the use of Secure Socket Layer (SSL) technology, which ensures that your health data remains private and integral.
  1. Access Control: We implement robust access control measures at the managerial level. Only authorised medical professionals and staff members can request access to sensitive user data solely for the purpose of providing healthcare support or resolving technical issues. Access is protected by a coordinated authentication system with 2FA and full audit logging.
  1. Employee Data Access: Our employees do not have access to production data, minimizing the risk of unauthorized access or exposure to sensitive health information.
  1. Training: Our team is trained and updated on the latest security practices and health data protection measures. This ensures that everyone who works on Dr Chan understands the importance of medical data security and knows how to handle patient information responsibly.
  1. Third-Party Audits: While we haven't conducted professional security risk assessments, we are committed to regular internal reviews of our security practices to ensure compliance with healthcare regulations.

6. Incident Response

While we currently do not have a formal incident response plan, we are committed to promptly addressing any data breaches or security incidents. We are in the process of developing a comprehensive plan to ensure swift and effective responses to potential incidents, in compliance with healthcare regulations.

7. Changes to This Privacy Policy

We reserve the right to modify this privacy policy at any time. If we make material changes to this policy, we may notify you here, by email, or by means of a notice on our home page.

8. Contact Us

If you have any questions regarding this Privacy Policy or the practices of this Site, please contact us at founders@drchan.io
Terms & Conditions
Feedback
Powered by Notaku
Share
Content
Privacy Policy
Welcome
Our commitment
Why we store data
1. Information We Collect
2. Use of Information
3. Third-Party Services
4. Non-Disclosure of Sensitive Health Data
5. Security
6. Incident Response
7. Changes to This Privacy Policy
8. Contact Us