Privacy Policy

Last updated: March 15, 2025

1. Introduction

Medavse Ltd ("Medavse", "we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website medavse.com and use our AI-powered practice management platform.

We are registered in Scotland, United Kingdom, and comply with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and other applicable data protection laws.

2. Information We Collect

2.1 Personal Information

We may collect the following categories of personal information:

  • Contact information (name, email address, phone number, postal address)
  • Professional information (practice name, job title, specialty)
  • Account credentials (username, password)
  • Payment information (processed securely through our payment providers)
  • Communication records (emails, support tickets, chat logs)

2.2 Usage Information

We automatically collect certain information when you use our services:

  • Device information (IP address, browser type, operating system)
  • Usage data (pages visited, features used, time spent)
  • Cookies and similar tracking technologies

3. How We Use Your Information

We use the information we collect for the following purposes:

  • To provide, maintain, and improve our services
  • To process transactions and send related information
  • To send you technical notices, updates, security alerts, and support messages
  • To respond to your comments, questions, and requests
  • To communicate with you about products, services, offers, and events
  • To monitor and analyze trends, usage, and activities
  • To detect, investigate, and prevent fraudulent transactions and other illegal activities
  • To personalize and improve your experience

4. Legal Basis for Processing

Under the UK GDPR, we process your personal data based on the following legal grounds:

  • Contract Performance: Processing necessary for the performance of our contract with you
  • Legitimate Interests: Processing necessary for our legitimate business interests
  • Consent: Where you have given explicit consent for specific processing activities
  • Legal Obligation: Processing necessary to comply with legal requirements

5. Data Sharing and Disclosure

We may share your information in the following circumstances:

  • With service providers who assist in our operations
  • With business partners for joint offerings
  • In response to legal requests or to protect our rights
  • In connection with a merger, acquisition, or sale of assets
  • With your consent or at your direction

We do not sell your personal information to third parties.

6. Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include encryption, access controls, secure data centers, and regular security assessments. Our platform is designed to meet healthcare industry security standards.

7. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes for which it was collected, including to satisfy legal, accounting, or reporting requirements. When determining retention periods, we consider the amount, nature, and sensitivity of the data, the potential risk of harm from unauthorized use or disclosure, and applicable legal requirements.

8. Your Rights

Under the UK GDPR, you have the following rights:

  • Right of Access: Request a copy of your personal data
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure: Request deletion of your personal data
  • Right to Restrict Processing: Request limitation of processing
  • Right to Data Portability: Request transfer of your data
  • Right to Object: Object to processing based on legitimate interests
  • Rights Related to Automated Decision-Making: Right not to be subject to solely automated decisions

To exercise these rights, please contact us at privacy@medavse.com.

9. International Transfers

Your information may be transferred to and processed in countries other than your country of residence. When we transfer data outside the UK, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the UK Information Commissioner's Office.

10. Cookies

We use cookies and similar tracking technologies to collect and track information about your use of our services. For more information about our use of cookies, please see our Cookie Policy.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. We encourage you to review this Privacy Policy periodically for any changes.

12. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

Medavse Ltd

Data Protection Officer

Email: privacy@medavse.com

Ayr, Scotland, United Kingdom

You also have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) if you believe your data protection rights have been violated.