Privacy Policy

1. Introduction

NiuxAI (“we,” “our,” or “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard information when you use our healthcare data interoperability platform and API services.

By using our services, you agree to the collection and use of information in accordance with this policy.

2. Healthcare Data Processing

2.1 No Data Storage

Our API processes healthcare data (HL7, FHIR, CDA, etc.) in real-time for conversion purposes only. We:

• Do NOT store any patient data or PHI on our servers
• Do NOT log the content of API requests containing healthcare data
• Do NOT retain any converted data after the API response is sent
• Do NOT share any healthcare data with third parties

2.2 Data in Transit

All data transmitted to and from our API is encrypted using TLS 1.3. Healthcare data exists in our system only for the duration of the API request processing (typically milliseconds) and is immediately discarded after the response is returned.

3. Information We Collect

3.1 Account Information

When you create an account, we collect:

• Email address
• Name and company name
• Billing information (processed by our payment provider)

3.2 Usage Analytics

We collect anonymized usage data to improve our services:

• API call counts and response times
• Error rates (without PHI content)
• Feature usage patterns
• General geographic region (country level)

Important: Usage analytics never include the content of healthcare messages.

4. How We Use Information

We use collected information to:

• Provide and maintain our services
• Process payments and manage subscriptions
• Send service-related communications
• Improve our API and develop new features
• Ensure security and prevent abuse
• Comply with legal obligations

5. Data Sharing

We do not sell, trade, or share your data with third parties except:

• Service Providers: Payment processors and infrastructure providers who are bound by confidentiality agreements
• Legal Requirements: When required by law, court order, or governmental authority
• Business Transfers: In connection with a merger, acquisition, or sale of assets (with notice to users)

6. Data Retention

Healthcare Data: Not retained. Processed in real-time and immediately discarded.

Account Data: Retained for the duration of your account plus 30 days after deletion request.

Usage Analytics: Anonymized analytics may be retained for up to 2 years for trend analysis.

7. Your Rights

You have the right to:

• Access your personal data
• Correct inaccurate data
• Delete your account and associated data
• Export your data in a portable format
• Opt out of marketing communications

To exercise these rights, contact us at [email protected].

8. Cookies and Tracking

Our website uses minimal cookies for essential functionality:

• Essential Cookies: Required for authentication and security
• Analytics: Anonymized usage tracking (no personal identifiers)

We do not use advertising cookies or third-party tracking.

9. Children's Privacy

Our services are not directed to individuals under 18. We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal information, please contact us.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the “Last updated” date. Continued use of our services after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us: