RRS Logo

Privacy Policy

Effective Date: 7th January 2024

Last Updated: 7th January 2024

1. Information We Collect

 We collect and process information to provide, improve, and secure the RRS platform. 

A. Personal Information

  • User Information: Names, email addresses, phone numbers, and roles (e.g., nurse, physician) of authorized users. 
  • Account Details: Login credentials, such as usernames and encrypted passwords for authorized users. 

B. Patient Information

As a clinical tool, RRS may process patient-related data, including: 

  • Patient Identifiers: Names, patient IDs, or other identifiers provided by the hospital. 
  • Clinical Data: Clinical Data: Vital signs, diagnostic data, care plans, and other clinical parameters entered the system as part of hospital operations.
*Note: Patient data is collected only as necessary for hospital operations and remains the property of the hospital using the platform. 

C. System Usage Data

We may also collect technical and usage information such as: 

  • Login timestamps, activity logs, and session duration.
  • Device types, IP addresses, and locations of access. 
  • Error logs, performance data, and system diagnostics to ensure platform stability and security.   

2. How We Use the Information 

We process the collected information solely for the following purposes: 

  • Service Provision: To provide RRS services, including real-time clinical insights and notifications. 
  • Operational Support: To enhance hospital workflows and management systems. 
  • Platform Enhancement: For system updates, bug fixes, and performance monitoring. 
  • Security and Compliance: To ensure security and compliance with legal obligations and industry standards. 

3. Application Access and Account Restrictions 

  • No Sign-Up Feature: RRS does not offer a sign-up option for normal users. Only authorized personnel, explicitly granted access by the hospital's administrative dashboard, can sign in.
  • Authorized Access Only: Access to the application is granted exclusively to individuals who are approved by the healthcare institution using RRS. Unauthorized users cannot create accounts or access the platform. 
  • Account Deletion: Since normal users cannot create accounts, RRS does not offer a remove/delete account feature. Access is fully managed by the hospital's administrators. If an account needs to be removed or modified, it must be done through the hospital’s administrative settings or by contacting our support team. 

4. Data Security 

We prioritize the security of your data and implement several measures to protect it:

  • Encryption: All data, including personal and patient information, is encrypted at rest and in transit using industry-standard protocols (e.g., AES-256, TLS). 
  • Access Control: Data access is restricted to authorized users and administrators based on role-specific permissions. 
  • Regular Audits: Periodic security audits are conducted to detect vulnerabilities and ensure compliance with security standards. 
  • Secure Hosting: Data is stored on secure servers compliant with healthcare regulations, including HIPAA, GDPR, and other applicable standards. 

5. Data Sharing  

We do not sell or share data with third parties for marketing or any other purposes. We may share data only under the following circumstances: 

  • With the Hospital: Data is accessible only by authorized personnel at the hospital that is using the RRS platform. 
  • Legal Requirements: We may disclose information when required to do so by law, to comply with legal obligations, or to respond to valid requests from authorities. 

6. Data Retention 

  • User Data: Retained for the duration of the hospital's contract with RRS and deleted within [X] days of contract termination, unless otherwise required by law or contractual obligations. 
  • Patient Data: Patient data retention is determined by the hospital's policies. RRS does not retain patient data beyond what is necessary for hospital operations. 

7. User Rights 

As an authorized user or hospital representative, you have the following rights regarding your personal information: 

  • Access: You can request to view the personal data we have collected about you. 
  • Correction: You can request corrections to any inaccurate or incomplete information. 
  • Deletion: If applicable, you may request deletion of your personal data, subject to contractual or legal obligations. 
  • Data Portability: You may request a copy of your data in a commonly used format, if applicable. 

For patient data, any requests should be directed to the hospital that manages the RRS platform. 

8. Application Scope and Restrictions 

  • Restricted Access: RRS is strictly for use by authorized healthcare professionals within hospitals or healthcare institutions under contract. It is not available for personal use. 
  • Data Use: All data collected through RRS is used solely to support hospital operations and improve patient care and safety. Data is not used for marketing or other non-medical purposes. 

9. Updated to This Policy 

We may update this Privacy Policy from time to time to reflect changes in our services, legal requirements, or business practices. Updates will be communicated to the hospital's administrators and posted within the platform. We encourage users to review the policy periodically. 

10. Contact Us

If you have any questions or concerns about this Privacy Policy or the way we handle your data, please contact us: 

Email: info@innohealth.com

Phone: +1 519 836 8063

11. Contact Us

RRS complies with applicable privacy laws and healthcare data protection regulations, including: 

  • Health Insurance Portability and Accountability Act (HIPAA) (if applicable). 
  • General Data Protection Regulation (GDPR) (if applicable). 
  • Any other regional or local healthcare data protection laws that govern the hospital's jurisdiction. 
By using RRS, you agree to the terms of this Privacy Policy and authorize the collection, use, and processing of your data as outlined in this policy.