Privacy Policy

1. Purpose

The purpose of this Privacy Policy is to outline how Medvuno LIMS collects, uses, maintains, and discloses information collected from users, patients, and healthcare providers in compliance with applicable data protection regulations (e.g., GDPR, HIPAA, ISO 15189).

2. Scope

This policy applies to all systems, processes, and personnel interacting with the Medvuno LIMS platform and related services.

3. Information Collection

We collect personal and Protected Health Information (PHI) necessary for laboratory diagnostic processes, including:

• Patient demographics (name, DOB, gender, contact information)
• Clinical data, diagnostic requests, and test results
• Healthcare provider details
• System usage logs (IP addresses, access times)

4. Data Usage

Information is collected solely for the purposes of:

• Facilitating laboratory diagnostics and generating medical reports.
• Billing and financial processing.
• Complying with legal, regulatory, and accreditation requirements (e.g., ISO 15189).
• Improving system functionality and auditing usage.

5. Data Protection

Medvuno implements robust physical, technical, and administrative safeguards to protect data from unauthorized access, alteration, disclosure, or destruction. This includes encryption at rest and in transit, strict access controls, and regular security audits.

6. Information Sharing

Patient data is only shared with:

• Authorized healthcare providers involved in the patient's care.
• Regulatory bodies when required by law.
• Verified third-party vendors under strict Business Associate Agreements (BAAs).

7. User Rights

Users and patients have the right to:

• Access their personal data.
• Request corrections to inaccurate records.
• Request data deletion (subject to legal data retention requirements).
• Withdraw consent for specific data uses.