Privacy Policy

Learn how we plan to protect your data as we develop our AI-powered medical diagnostic platform.

Last Updated: June 11, 2025

Development Phase Notice

BioAnalytiX is currently under development. This privacy policy outlines our commitment to data protection and our intended practices. As we progress toward launch and obtain necessary certifications, this policy will be updated accordingly.

Overview

BioAnalytiX ("we," "our," or "us") is developing an AI-powered medical diagnostic platform. While we are still in the development phase, we are committed to establishing the highest standards of data protection and privacy from the outset.

This Privacy Policy explains our intended practices for collecting, using, and protecting information once our platform is operational. As a company in development, we are working toward compliance with:

  • General Data Protection Regulation (GDPR) - In progress
  • Health Insurance Portability and Accountability Act (HIPAA) - Planned
  • Other applicable healthcare and privacy regulations - Under review

Current Status

We are currently in the beta testing phase. All data collection is limited to volunteer beta testers who have provided explicit consent. We do not yet process actual patient data or operate as a commercial service.

Information We Currently Collect

1. Beta Testing Phase Data

During our development and beta testing phase, we collect:

  • Beta Tester Information: Name, email, professional credentials (if applicable)
  • Test Data: Sample medical images (anonymized or synthetic only)
  • Feedback: Bug reports, feature suggestions, user experience feedback
  • Usage Analytics: How testers interact with our prototype

2. Website Visitor Information

  • Contact Forms: Information you provide when contacting us
  • Newsletter Signups: Email addresses for updates
  • Basic Analytics: Page views, browser type (anonymized)

3. Future Data Collection (Planned)

When Fully Operational

Once certified and operational, we intend to process medical images and health data as described below. This will only occur after obtaining necessary regulatory approvals and implementing all required security measures.

  • Medical Images: CT scans, MRI images, X-rays (with proper authorization)
  • Account Information: Healthcare professional credentials and contact details
  • Diagnostic Data: AI-generated analysis and reports

4. Cookies and Tracking

Cookie Type Current Use Purpose
Essential Yes Basic site functionality
Analytics Limited Understanding visitor behavior
Marketing No Not currently used

How We Use Your Information

Current Use (Development Phase)

  1. Platform Development: Improving our AI algorithms and user interface
  2. Beta Testing: Evaluating functionality and gathering feedback
  3. Communication: Sending updates about our progress to interested parties
  4. Research: Understanding user needs and market requirements

Future Use (When Operational)

Once fully launched, we plan to use data for:

  • Processing medical images and generating diagnostic reports
  • Improving AI accuracy through anonymized, aggregated data
  • Providing customer support and platform maintenance
  • Complying with legal and regulatory requirements

What We Will Never Do

  • Sell personal or health information to third parties
  • Use health data for advertising purposes
  • Share identifiable information without explicit consent
  • Process real patient data before obtaining proper certifications

Data Protection & Security

Current Security Measures

Even in our development phase, we implement security best practices:

  • Encryption: SSL/TLS for all data transmission
  • Access Control: Limited access to development team only
  • Secure Development: Following secure coding practices
  • Regular Updates: Keeping all systems and dependencies current

Planned Security Enhancements

Before processing any real medical data, we will implement:

  • End-to-end encryption for all medical images
  • HIPAA-compliant infrastructure (pending certification)
  • Multi-factor authentication for all users
  • Regular third-party security audits
  • 24/7 security monitoring
  • Incident response procedures

Security Commitment

We are committed to achieving the highest security standards before handling any real patient data. Our platform will not be available for clinical use until all necessary security measures and certifications are in place.

Planned Compliance & Certifications

Current Status

As a company under development, we are actively working toward:

  • GDPR Compliance: Implementing privacy by design principles
  • HIPAA Readiness: Preparing infrastructure and policies
  • Medical Device Regulations: Researching requirements in target markets
  • ISO Standards: Planning for relevant certifications

Future Compliance Goals

Compliance Area Target Timeline Status
GDPR Full Compliance Before EU Launch In Progress
HIPAA Certification Before US Launch Planning
CE Marking (MDR) 2025-2026 Research Phase
FDA Clearance TBD Under Evaluation

Important Notice

BioAnalytiX is not yet certified as a medical device. Our platform is currently for research and development purposes only and should not be used for clinical decision-making.

Your Rights

Current Rights (Beta Testers)

As a beta tester or website visitor, you have the right to:

  • Access any personal information we hold about you
  • Request correction of inaccurate information
  • Withdraw from beta testing at any time
  • Request deletion of your data
  • Opt-out of communications

Future Rights (When Operational)

Once fully operational, we will ensure all users have rights under applicable laws including:

GDPR Rights (EU Users)

  • Right to access your personal data
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing

HIPAA Rights (US Healthcare)

When HIPAA-compliant, patients will have rights to:

  • Access their health information
  • Request amendments to records
  • Receive an accounting of disclosures
  • Request restrictions on uses

Beta Testing Data

For our beta testing program:

  • Voluntary Participation: All beta testing is voluntary
  • Test Data Only: We only use anonymized or synthetic medical images
  • No Real Patients: Beta testing does not involve real patient data
  • Feedback Usage: Your feedback helps improve our platform
  • Confidentiality: Beta features are confidential

Beta Tester Consent

All beta testers must provide explicit consent and sign our Beta Testing Agreement. You may withdraw from beta testing at any time by contacting us.

Data Retention

Current Practice

Data Type Retention Period Purpose
Beta Tester Info Until end of beta + 6 months Program management
Test Images Until end of development Algorithm training
Feedback Indefinite (anonymized) Product improvement
Website Inquiries 2 years Business development

International Data

As we develop our platform:

  • Our development team is based in Greece (EU)
  • We use cloud services that may process data internationally
  • We will implement appropriate safeguards before any commercial launch
  • Beta testers will be informed of any international transfers

Updates to This Policy

This Privacy Policy will be updated as we:

  • Progress through development phases
  • Obtain necessary certifications
  • Expand our services
  • Respond to legal requirements

We will notify all registered users and beta testers of significant changes via email.

Contact Us

For privacy questions or to exercise your rights:

Email

info@bioanalytix.info

We aim to respond within 72 hours

Address

BioAnalytiX Development Team
Thessaloniki, Macedonia, Greece