Privacy Policy
Last updated: November 28, 2025
Important Notice: Development Version
KasaMD is currently in active development and is provided as a demonstration and research platform. The platform is not yet a final product and should be used for evaluation and testing purposes only. Features, functionality, and security measures are subject to change as we continue to develop and improve the platform. This platform is not intended for use with live patient data or in clinical settings at this time.
1. We're here to help. Get in touch.
At KasaMD, we take your privacy seriously. If you have any questions about this privacy policy or how we handle your information, please don't hesitate to contact us.
You can reach us at:
- Email: [email protected]
- Address: [Your Company Address]
2. About us
KasaMD, a product of Kasa Labs, is a healthcare technology platform dedicated to improving medical documentation for healthcare providers in underserved regions. We are committed to protecting your privacy and handling your data with care and transparency.
This privacy policy explains how we collect, use, store, and protect your personal information when you use our website and platform.
Platform Status
KasaMD is currently in active development as a demonstration and research platform. The platform is provided "as is" for evaluation, testing, and demonstration purposes only. We are continuously developing and improving our features, security measures, and functionality. Users should not enter live patient data or use this platform for actual clinical documentation at this time. By using this platform, you acknowledge that it is a prototype under active development and that features and policies may change.
3. What information do we collect?
We collect various types of information to provide and improve our services:
Personal Information
- Name and contact details (email address, phone number)
- Professional credentials and medical specialty
- Organization and workplace information
- Account credentials and authentication data
Patient Information (Healthcare Providers Only)
- Patient names and basic demographic information
- Medical notes and clinical documentation
- Transcriptions of medical consultations
Technical Information
- Device information and browser type
- IP address and location data
- Usage data and platform interactions
- Session information and preferences
4. How do we collect your information?
We collect information through various means:
- Directly from you: When you create an account, complete your profile, or use our platform features
- Automatically: Through cookies and similar technologies as you interact with our platform
- From third parties: When you authenticate using third-party services or when authorized by you
5. How do we use your information?
We use your information for the following purposes:
- To provide and maintain our platform and services
- To process and generate medical documentation
- To authenticate and secure your account
- To improve our platform and develop new features
- To communicate with you about your account and our services
- To comply with legal obligations and healthcare regulations
- To prevent fraud and ensure platform security
6. How do we use your personal information for marketing, and how do you opt out?
We may use your contact information to send you updates about our platform, new features, and relevant healthcare technology news. You can opt out of marketing communications at any time by:
- Clicking the "unsubscribe" link in any marketing email
- Updating your communication preferences in your account settings
- Contacting us directly at [email protected]
Please note that even if you opt out of marketing communications, we will still send you important service-related notifications.
7. Do we store or share information outside of your country?
As a platform serving healthcare providers across multiple regions, your information may be stored and processed in different countries. We ensure that:
- All data transfers comply with applicable data protection laws
- Appropriate safeguards are in place to protect your information
- Healthcare data is handled in accordance with HIPAA, GDPR, and other relevant regulations
- Our servers and infrastructure maintain high security standards regardless of location
8. Who do we share your information with?
We only share your information in limited circumstances:
- Service providers: Third-party vendors who help us operate our platform (hosting, analytics, email services)
- Legal obligations: When required by law or to protect rights and safety
- Business transfers: In the event of a merger, acquisition, or sale of assets
- With your consent: When you explicitly authorize us to share your information
We never sell your personal information to third parties.
9. Using our website and Platform
Cookies and Tracking Technologies
We use cookies and similar technologies to:
- Remember your login status and preferences
- Analyze platform usage and performance
- Improve user experience and functionality
You can control cookies through your browser settings, though disabling certain cookies may limit platform functionality.
10. How do we protect your information?
We implement comprehensive security measures to protect your information:
| Security Measure | Details |
|---|---|
| Encryption | All data is encrypted in transit and at rest using industry-standard protocols |
| Authentication | Secure authentication with email verification and session management |
| Access controls | Role-based access ensures users only see authorized information |
| De-identification tools | We use a range of tools designed to de-identify your information before it is used or disclosed for certain purposes, as described in this policy |
| Secure storage and handling | We use a combination of techniques and measures to maintain the security of our website and Platform and to protect your account and your information |
| Destroying or de-identifying your information | We only keep your information for as long as we need it or are lawfully required to keep it |
11. What are your rights in relation to your information?
Here are the things you can ask us to do in relation to your information at any time while you use our website, Platform or other services:
| Category | Details |
|---|---|
| Access | You can request access to your personal information and receive a copy of the data we hold about you |
| Correction | You can request that we correct any inaccurate or incomplete information |
| Deletion | You can request deletion of your personal information, subject to legal retention requirements |
| Data portability | You can request your data in a structured, commonly used format |
| Restriction | You can request that we restrict processing of your information in certain circumstances |
| Object | You can object to processing of your information for certain purposes |
| Withdraw consent | Where we rely on consent, you can withdraw it at any time |
To exercise any of these rights, please contact us at [email protected]. We will respond to your request within 30 days.
Important Note on Medical Records
Due to healthcare regulations including HIPAA and GDPR, medical records must be retained for 5-10 years depending on jurisdiction. Deletion requests for medical documentation will result in de-identification rather than complete deletion to ensure compliance with these requirements.
12. Employees
If you are a Kasa Labs employee or contractor, additional privacy terms may apply to the processing of your employment information. Please refer to your employment contract and internal policies for details on how we handle employee data.
13. Changes to this policy
We may update this privacy policy from time to time to reflect changes in our practices or legal requirements. When we make changes:
- We will update the "Last updated" date at the top of this policy
- For material changes, we will notify you via email or platform notification
- Your continued use of the platform after changes constitutes acceptance of the updated policy
We encourage you to review this policy periodically to stay informed about how we protect your information.
14. Related companies
Kasa Labs may share information with affiliated companies or subsidiaries for the purposes described in this privacy policy. All related companies are required to maintain the same privacy and security standards outlined in this policy.
15. Find out more
For more information about privacy and data protection, you can visit:
- HIPAA compliance information: HHS.gov/HIPAA
- GDPR information: GDPR.eu
- Your local data protection authority
If you have concerns about how we handle your data, you have the right to lodge a complaint with your local data protection authority.