1. Introduction
Dime Health AI ("we," "us," or "our") provides healthcare automation solutions that enable providers, clinics, and healthcare organizations to streamline workflows, integrate with Electronic Medical Record (EMR) systems, and communicate securely with patients.We are committed to protecting the privacy and security of Protected Health Information ("PHI") and other personal data in accordance with the Health Insurance Portability and Accountability Act of 1996 ("HIPAA") and other applicable laws.
2. Scope
This Privacy Policy explains how we collect, use, disclose, and protect information when healthcare providers and their patients use our platform and related services. It applies to all data handled by us as part of our services, including PHI processed under a Business Associate Agreement (BAA).
3. Compliance and Business Associate Agreements (BAA)
As a Business Associate under HIPAA, we enter into Business Associate Agreements with our healthcare clients ("Covered Entities") to ensure all handling of PHI is fully compliant.Under the BAA, we:Use PHI only as permitted or required to perform our contracted services.Implement safeguards to protect PHI against unauthorized use or disclosure.Report any breaches of unsecured PHI as required by law.Ensure our subcontractors agree to similar restrictions and protections.
4. Information
We collect and process the following categories of information:a. Patient Data (PHI)Patient names, contact details, and demographic data.Medical record identifiers and visit information.Health-related documents and data transmitted from EMR or EHR systems.Communication records related to scheduling, reminders, or follow-ups.b. Client and User DataAccount registration information (name, email, organization).Platform usage logs, device information, and system activity for security and support.c. Automatically Collected InformationWe may collect limited metadata (e.g., access times, IP addresses, browser type) for security, analytics, and service improvement — never for advertising or resale.
5. How We Use Information
We use PHI and related data solely for operational and service delivery purposes, including:Automating document delivery and matching with EMR systems.Conducting authorized patient communications (e.g., appointment reminders, phone calls).Providing technical support and ensuring platform performance.Maintaining security, auditing, and compliance records.We do not use or disclose PHI for marketing, profiling, or unrelated purposes.
6. Information Sharing and Disclosure
We may share information only as follows:With Covered Entities: To perform contracted services under the BAA.With Subcontractors (if any): Only under written agreements requiring HIPAA compliance.As Required by Law: When responding to lawful requests from authorities or regulatory agencies.We never sell, rent, or trade PHI or personal data to third parties.
7. Data Security
We use administrative, physical, and technical safeguards consistent with HIPAA Security Rule standards, including:Encryption of PHI in transit and at rest.Access controls and audit logging.Regular security assessments and vulnerability management.Role-based access and employee training on data protection.
8. Data Retention and Deletion
We retain PHI only for as long as necessary to fulfill our service obligations or as required by law or contract. Upon termination of a client agreement or upon request, PHI is securely deleted or returned in accordance with the BAA.
9. Patient Rights
All patient rights regarding access, correction, or restriction of their PHI are governed by their healthcare provider (the Covered Entity). Patients seeking to exercise such rights should contact their provider directly.
10. Changes to This Privacy Policy
We may update this Privacy Policy periodically. Any changes will be posted on our website with an updated effective date. Continued use of our platform after changes indicates acceptance of the revised policy.
11. Contact Us
If you have any questions about this Privacy Policy or our privacy practices, please contact:
Dime Health AI
Email: akash@dimehealth.ai
Address: 494 8th Ave 20th floor,
New York, NY 10001
Attention: Privacy Officer