1. Data controller
The controller of personal data is Soft[in]Health, based in the Argentine Republic. For any request regarding the processing of your data, you can write to privacidad@softinhealth.com.
2. Data we process
Through the website and contact forms we process: name, email, phone, healthcare institution and the content of the message you send us.
Through our products (e.g. NextRIS) we may process health data, patient identifiers, DICOM studies and radiology reports. This processing is carried out under the responsibility of the client institution, under a data processor agreement.
3. Legal basis and purposes
We process your personal data based on your consent (contact forms, demo requests) and on the performance of contracts (provision of services to institutions).
Health data is processed for clinical management and care purposes under the responsibility of the healthcare professional and the institution, in accordance with applicable regulations.
4. Data retention
We retain personal contact data for the duration of the commercial relationship and, subsequently, for the legally required retention periods. Clinical data is retained according to the periods defined by healthcare regulations and the contractual agreement with each institution.
5. Recipients and transfers
We do not sell your data. We may share it with infrastructure providers (hosting, cloud, databases) that act as data processors under confidentiality and security agreements.
For clinical data managed through our products, sharing between clinical systems occurs solely under instruction from the responsible institution.
6. Security
We apply appropriate technical and organizational measures: encryption in transit and at rest, role-based access control, audit of clinical decisions and study traceability. Our infrastructure is oriented toward regulated healthcare environments.
7. Your rights
You may exercise your rights of access, rectification, erasure, objection, portability and restriction of processing by writing to privacidad@softinhealth.com. You also have the right to withdraw any consent given and to lodge a complaint with the competent supervisory authority.
8. AI and data
The artificial intelligence models we train are tailored to institutional clinical criteria and specialized datasets. Sensitive data is used under governance, traceability and validation agreements, respecting the rights of data subjects and the authorized purposes.
9. Changes to this policy
We may update this policy to reflect legal or operational changes. The date of the last revision is indicated at the top of this document.