PRIVACY & SECURITY


 

Will VRAI track or store patient location?

VRAI Medical does not track or store patient location. Location Permissions are only activated because of a specific system requirements (such as android). 

If I’m connected to my physician, who’s responsible for protecting my data?

 VRAI Medical protects the information collected through its devices and your healthcare provider is responsible for protecting your information as a policy of their practice.

Do any third party vendors have access to user information?

External contractors and companies that provide necessary services may have access to some of your information needed for processing, but do not have access to any of your VRAI Medical Device Recordings or health history. The vendor which handles payment processing is a good example of this. Such vendors are required by law to protect the information we share with them. 

What information do you collect?

When you create a new account, VRAI Medical collects the following required information: name, email, date of birth, sex, smoking status, height, weight. We use this information to ensure that only you have access to this account. Other information we collect when you create a new account are: activity level, medications and medical conditions. This information is good to have as a baseline to understand your current condition. This information is not required to access your account. If you are a Premium subscriber, we may collect other information you may input into VRAI Medical Device, such as EKG recordings, blood pressure, resting heart rate and activity levels. If you are a connected patient to your physician, all of this information will be seen in your doctor’s VRAI Pro account for identification and to help your doctor manage your treatment. 

Will VRAI sell patient data?

VRAI Medical does not resell any data we receive. VRAI Medical may use de-identified  recordings for future clinical research and feature improvements. All personal information is removed from a user’s profile and stored on our secure and encrypted servers.

Is VRAI Medical HIPAA compliant? What does that mean?

Yes, VRAI Medical is HIPAA compliant. HIPPAA is the Health Insurance Portability and Accountability Act, with which we are compliant. We take the privacy and security of your medical information seriously. This means we follow HIPAA and HITECH regulations as set forth by U.S. Health and Human Services that require Administrative, Physical, and Technical controls to be in place. We comply with HIPAA requirements to use industry best standards to protect and secure your Protected Health Information collected through our VRAI Medical apps.

 

What type of security do you use?

Our adherence to HIPAA means that all data on our servers is encrypted when it is at rest or in transit. VRAI Medical uses industry best practices such as AES 256-bit server side encryption for customer data recordings, and transport layer security (TLS 1.2) to establish a secure link with cloud servers and to encrypt data in transit.

 

Does VRAI Medical collect info of users who may be Children?

VRAI Medical Devices are not FDA indicated for pediatric use. We do not knowingly collect personal info from children under 13. If we find out that a child under 13 has given us personal info, we will take steps to delete that info. If you believe that a child under the age of 13 has given us personal information, please contact us at admin@vraimedical.com