Privacy Policy

MedScriptAI's Privacy Policy

Last Updated: July 4, 2025

We at MedScriptAI, Inc. ("MedScriptAI," "we," "us," or "our") value your privacy and have created this Privacy Policy to explain how we collect, use, and share information through our website at https://www.medscriptai.com/ (the "Website"), our HIPAA-compliant software as a service (SaaS) platform for real-time transcription and medical documentation (the "Platform"), available as a web and/or mobile application, and when you interact with us in other ways.

1. Description of Users and Acceptance of Terms

This Privacy Policy applies to:

• Visitors: Individuals who view publicly available content on the Website.
• Customers: Those who sign up to access and use the Platform.
• Authorized Users: Customers’ employees or contractors authorized to use the Platform.

By visiting the Website, Visitors agree to this Privacy Policy and the Website Terms of Use. By accessing or using the Platform, Customers and Authorized Users agree to this Privacy Policy and the Platform Terms of Use. Capitalized terms not defined herein have the meanings in the respective Terms of Use.

2. Information We Collect and/or Receive

We collect and/or receive the following information, and you authorize us to do so:

2.1 Contact Information

When you contact us via the Website, email, mail, phone, or subscribe for information about our services, you may provide your name, email address, phone number, company name, job title, or other details ("Contact Information"). We use this to provide requested services, respond to inquiries, and for direct marketing of our current and future services.

2.2 Account Information

To use the Platform, you must create an account with an email address and password ("Account Information"). We use this to verify your identity, create, and manage your account.

2.3 Billing Information

If you pay by credit card, you provide information like credit card number, expiration date, and billing details ("Billing Information") to our third-party payment processor, subject to their privacy policies and terms. MedScriptAI does not directly collect, store, or process Billing Information.

2.4 Your Data

When using the Platform, you provide Your Data (e.g., Medical Records, Patient Recordings, Authorized User information), used per the Platform Terms of Use. Any personal information in Your Data is handled per this Privacy Policy.

2.5 Live Chat Information

Our third-party vendor provides a "Live Chat" feature on the Website. Information you provide via Live Chat is used to assist you and may be recorded for recordkeeping, training, and quality assurance. Please provide only necessary information.

2.6 Information from Online Activity

We use Tracking Technologies (cookies, pixels, web beacons, etc.) to collect:

• Traffic and usage data (e.g., pages visited, features used, frequency, duration).
• Location data.
• Device information (e.g., device type, operating system, browser, IP address).
• Logs and communication data.
• Online activity across third-party sites, apps, and devices.

We may also detect malicious software affecting Platform availability. Third parties (e.g., advertising or analytics providers) may use Tracking Technologies to collect data about your online activities across sites and devices. This data may include personal or statistical information, used to:

• Enhance Website and Platform performance.
• Personalize your experience.
• Serve targeted ads and measure ad performance.

Tracking Technologies include:

• Cookies: Store data to remember your visit, authenticate users, and optimize ads. We use session cookies (expire when you close your browser) and persistent cookies (stay until deleted).
• Local Storage: Technologies like HTML5 store larger data amounts on your device.
• Web Beacons: Track webpage/email access or content interaction.
• Session-Replay Technologies: Record interactions (e.g., clicks, scrolls) to diagnose issues and improve the Website/Platform (see https://sentry.io/for/session-replay/).
• Third-Party Sites: Sites providing Platform access have their own Tracking Technology policies, which you should review.

2.7 Third-Party Analytics Services

We use services like Google Analytics, Hotjar, and Meta Pixel to analyze Website/Platform usage (e.g., IP addresses, browser type, time spent, pages visited). You consent to processing by these providers. Opt-out details:

• Google Analytics: https://www.google.com/analytics
• Hotjar: https://www.hotjar.com
• Meta Pixel: https://www.facebook.com/business/tools/meta-pixel

Opting out may limit Website/Platform functionality.

2.8 Third-Party Advertising

We may share information with approved third parties for ad distribution/optimization. They use cookies, pixel tags, or other technologies to collect data, recognizing browsers to track ad performance. You can opt out at http://www.aboutads.info/choices or via browser "Do Not Track" or mobile device settings ("Limit Ad Tracking" on iOS, "Opt out of Interest-Based Ads" on Android).

3. How We Use and Share Information

We may use and share your personal information to:

• Provide and improve the Website and Platform.
• Solicit feedback and inform you about our and third-party services.
• Monitor, support, and analyze usage.
• Communicate with you.
• Fulfill information requests.
• Conduct marketing, advertising, and analytics (with consent where required).
• Troubleshoot, research, and detect/prevent fraud or errors.
• Protect Website/Platform safety and security.
• Share with third-party contractors (e.g., IT, payment processing, analytics, marketing) under agreements to protect your information.
• Create and share aggregated, anonymous data with affiliates, partners, or for lawful purposes.
• Share with our parent company, subsidiaries, or affiliates.
• Comply with legal/regulatory requirements (e.g., subpoenas).
• Facilitate corporate transactions (e.g., mergers, asset sales).
• Audit compliance with legal/contractual obligations.
• Train AI models to improve services (with consent).

We require parties receiving your information to use it only for purposes outlined here, not disclose it without consent or legal permission, and protect its privacy.

4. Accessing and Modifying Information

• Update Information: Correct, update, or delete personal information via your Platform account or by contacting us (Section 13). We will process requests promptly, but complete removal may not be possible. We retain information as needed for legal, regulatory, or dispute resolution purposes.
• Marketing Communications: Opt out of marketing emails via the "unsubscribe" link. Transactional emails cannot be opted out of.
• Cookie Management: Remove/reject cookies via browser settings (see www.allaboutcookies.org). Disabling cookies may affect Website/Platform functionality. Apply opt-out settings on each device. We cannot guarantee third-party compliance with opt-out programs.

5. How We Protect Information

We use commercially reasonable measures to protect your information from loss, misuse, or unauthorized access, per HIPAA and applicable laws. However, no internet transmission is 100% secure, and we cannot guarantee security, especially for emails. We are not liable for unintentional disclosures. We are HIPAA-compliant, verified by audits and SOC1 policies, and comply with state/federal consumer information laws.

6. External Sites

The Website/Platform may link to third-party External Sites. We are not responsible for their privacy practices or content. Review their policies before use.

7. Children

We collect personal information from children under 18 via the Platform only with parental/guardian consent, which Customers warrant they have obtained. We do not knowingly collect such information through the Website. If you believe a child under 18 provided information, contact us to request deletion.

8. Non-U.S. Residents

The Website/Platform servers are in the U.S. If you are outside the U.S., your information may be transferred to and processed in the U.S., where privacy laws may differ. By using the Website/Platform, you consent to this transfer and processing per this Privacy Policy, at your own risk.

9. Do Not Track

We do not currently honor "Do Not Track" browser settings or signals, as there is no standard for commercial websites. Third parties may collect data about your online activities as described in Section 2.

10. Notice to California Residents

Under California Civil Code Section 1798.83, California residents may request information about personal information shared with third parties for direct marketing in the prior year. Contact us at support@medscriptai.com.

11. Notice to Nevada Residents

Nevada residents may opt out of certain personal information sales per Nevada Revised Statutes Chapter 603A. Contact us at support@medscriptai.com with “Nevada Do Not Sell Request” in the subject line. We do not currently sell personal information as defined by Nevada law.

12. Changes to This Privacy Policy

This Privacy Policy is effective as of July 4, 2025. We may update it without notice, posting changes on the Website/Platform. Continued use after changes constitutes acceptance. Our use of your information is governed by the Privacy Policy in effect at collection. Check this Policy regularly.

13. Contact Us

For questions or to report privacy issues:

• Email: support@medscriptai.com