Privacy Policy

Introduction

SocialOptrix.AI, Inc. ("we," "our," or "us") is committed to protecting the privacy and security of your information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our autonomous AI-powered healthcare social media management platform.

Information We Collect

Personal Information

• Account information (name, email, phone number)
• Professional credentials and license numbers
• Organization and practice information
• Payment and billing information

Healthcare Data

• Social media content created or reviewed
• Brand guidelines and messaging preferences
• Compliance policies and settings
• Analytics and performance data

Technical Information

• IP addresses and device information
• Browser type and version
• Usage patterns and feature interactions
• Error logs and performance metrics

How We Use Your Information

We use the collected information to:

• Provide and maintain our AI-powered social media services
• Train and improve our AI agents for healthcare compliance
• Generate compliance reports and audit trails
• Provide customer support and technical assistance
• Send important service updates and security notifications
• Improve our platform and develop new features

HIPAA Compliance

As a Business Associate under HIPAA, we maintain strict safeguards for any Protected Health Information (PHI) that may be inadvertently included in social media content. Our AI agents are specifically designed to:

• Detect and prevent PHI exposure in social media posts
• Maintain comprehensive audit trails of all content decisions
• Encrypt all data in transit and at rest
• Provide secure access controls and user authentication

Data Sharing and Disclosure

We do not sell, rent, or share your personal information with third parties except:

• With your explicit consent
• To service providers who assist in platform operations (under strict confidentiality agreements)
• When required by law or to protect our legal rights
• In connection with a business transfer (with advance notice to users)

Data Security

We implement industry-leading security measures including:

• SOC 2 Type II certified infrastructure
• End-to-end encryption for all data transmission
• Multi-factor authentication and role-based access controls
• Regular security audits and penetration testing
• 24/7 security monitoring and incident response

Data Retention

We retain your information for as long as necessary to provide our services and comply with legal obligations. Specifically:

• Account information: Until account deletion + 90 days
• Content and compliance data: 7 years (healthcare record requirements)
• Analytics data: 3 years
• Technical logs: 1 year

Your Rights

You have the right to:

• Access and review your personal information
• Request corrections to inaccurate data
• Delete your account and associated data
• Export your data in machine-readable format
• Opt out of non-essential communications
• Request detailed privacy impact assessments

International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place through:

• Standard Contractual Clauses for EU data transfers
• Adequacy decisions where applicable
• Certification schemes for enhanced protection

Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of any material changes via email and through our platform. Continued use of our services after changes constitutes acceptance of the updated policy.

Contact Information

For privacy-related questions, concerns, or requests, please contact our Data Protection Officer: