← Back to home

Privacy Policy

Last updated: January 17, 2026

1. Introduction

Onalyst Inc. ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered clinical documentation platform.

2. Information We Collect

We collect information that you provide directly:

  • Account information (name, email, credentials)
  • Clinical data and recordings you submit
  • Patient information you input into the system
  • Usage data and interaction with the Service

3. How We Use Your Information

Your information is used to:

  • Provide and maintain the Service
  • Generate AI-powered clinical documentation
  • Improve our AI models and service quality
  • Send important service notifications
  • Comply with legal obligations

4. Protected Health Information (PHI)

We handle all Protected Health Information in accordance with HIPAA regulations. PHI is encrypted at rest and in transit, access is strictly controlled and logged, and we maintain a comprehensive Business Associate Agreement with all covered entities.

5. Data Retention

We retain your data for as long as your account is active or as needed to provide services. Clinical data may be retained longer to comply with healthcare regulations and record-keeping requirements.

6. Data Security

We implement robust security measures including:

  • AES-256 encryption for data at rest
  • TLS 1.3 for data in transit
  • Multi-factor authentication
  • Regular security audits and penetration testing
  • SOC 2 Type II compliance

7. Data Location

All data is stored in AWS data centers located in Canada (ca-central-1 region) to ensure compliance with Canadian data residency requirements. Data is never transferred outside of Canada without explicit consent.

8. Your Rights

You have the right to:

  • Access your personal information
  • Correct inaccurate data
  • Request deletion of your data (subject to legal requirements)
  • Export your data in a portable format
  • Opt out of non-essential communications

9. Contact Us

For privacy-related inquiries, please contact our Privacy Officer at privacy@onalyst.org

Return to registration