Privacy Policy

Last Updated and Effective: 22 August 2025

You are visiting a website or are using an application (owned and operated by Medical iSight Corporation).

Medical iSight and its subsidiaries and affiliates (collectively, “Medical iSight”, “us”, “we”, or “our”) are committed to maintaining your confidence and trust as it relates to the privacy and usage of your information. Please read below and learn how we collect, protect, share, and use your information as part of our technology platforms, and all of our products and services.

This privacy policy applies to www.medicalisight.com and all websites and applications owned and operated by Medical iSight on which this privacy policy is provided or displayed (such websites and applications referred to hereafter as the “Digital Platform(s)” or “Site(s)”, whether individually or collectively, or collectively as “Services”), as well as Medical iSight affiliates.

Medical iSight’s commercial Digital Platforms are designed for healthcare organizations or businesses and are not intended for individual personal, family or household use. Accordingly, we treat all personal information collected, including information about any visitors to our commercial Digital Platforms, as pertaining to individuals acting as healthcare organization or business representatives, rather than in their personal capacity.

Applications

Registration is not required to use our application XRAI-View. Our applications are hosted by Apple’s App Store (the “App Store”), which has its own Privacy Policy which the user is directed to review independently: https://www.apple.com/uk/legal/privacy/data/en/app-store

When you download an application, some data will automatically be transferred to the App Store, e.g. your username, account number, payment information if applicable, the time of the download, and your device ID. The processing of this data is carried out by the App Store. Medical iSight has no influence on this data processing.

Information We Collect

You can visit and enjoy our Digital Platforms without disclosing any Personal Information about yourself. However, for some of the Services to work properly we may need you to share with us certain Personal Information.

For the purposes of this Privacy Policy, “Personal Information” means information that identifies, relates to, describes, is reasonably capable of being associated with, or could be reasonably linked, directly or indirectly, with a particular consumer, device or household. It does not include de-identified or aggregate information, or public information lawfully available from governmental records.

Personal Information provided by you: We collect Personal Information from you when you enter it or otherwise provide it in connection with an inquiry into our Services. The Personal Information we collect directly from you may include, but is not limited to: name, company name, business email address, telephone numbers, profile information used to access the Service (such as username and password) and, with your consent, information required to connect with and collect information related to the Service from your business’ accounting software, recurring revenue subscription software, and business bank account information.
Automatic Data Collection: We may also collect Personal Information automatically regarding how the Service is accessed and used ("Usage Data"). This Usage Data may include information such as your computer's Internet Protocol address (i.e. IP address), browser type, browser version, the pages of our Service that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data.
Medical Information: With appropriate agreements in place, we may collect medical information, such as DICOM medical images, you upload to our Digital Platforms.
Other Information: We may also collect information such as demographic data, data about your online activity, and other information that is not used to identify you.

How We Collect Information

Information provided by you: We collect information from you when you enter it or otherwise provide it in connection with an inquiry into our Services. This information could be provided via an online form, over the phone, or via other means in which you interact with our Services.
Information from third parties: Information may be collected from credit bureaus, lead generators, and other partners who may have data on your financial profile, home, or other demographic information.
Information from cookies and other tracking technologies: We use cookies, web beacons, and similar technologies to record your preferences, track the use of our Site and collect information. This information may include internet protocol (IP) addresses, browser type, internet service provider (ISP), referring/exit pages, operating system, date/time stamp, and/or clickstream data. We may combine this automatically collected log information with other information we collect about you. You may choose to set your web browser to refuse cookies, or to alert you when cookies are being sent. If you do so, please note that some parts of our Sites may not function properly.

How We Use Information

General. We may use collected information to:

(a) Deliver the products and services you requested.

(b) Improve customer service.

(d) Personalize your user experience.

(e) Communicate with you about products or services that may be of interest to you.

(f) Manage our business.

2. DICOM Imaging Data:

(a) With regards to the XRAI-View application, users will be able to utilize their own DICOM imaging data for visualization purposes (through local file access or via DICOM Web protocols).

(b) Such information is solely processed for visualization on-device and is NOT processed for any other purpose.

(c) The user is considered to be the data controller of any DICOM imaging data and other medical images they utilize for visualization within the Digital Platforms.

(d) DICOM imaging data is NOT stored or sent to remote servers. In connection with the use of the Digital Platforms, we will not obtain, collect, analyze, or otherwise process this information. Permissions and compliance with relevant privacy laws (such as GDPR and HIPAA) when utilizing imaging data on the application for visualization are the sole responsibility of the user.

Who Do We Share Your Information With?

Medical Data: Except with Medical iSight affiliates, with which we may share such data to the extent permitted by relevant privacy laws (such as GDPR and HIPAA), we will NOT share medical data.
Other Data:

(a) Medical iSight Affiliates: We may share information about you or information provided by you with the Medical iSight affiliates.

(b) Network Partners: When you submit an inquiry or use another Service provided through the Digital Platforms, you direct Medical iSight to share information about you or provided by you with other third parties in our network to deliver the products and services you request (collectively, “Network Partners”). PLEASE NOTE: The Network Partners that interact with you may retain or use your information whether or not you use their services, and their privacy and information sharing practices are set forth in their respective privacy policies. Pursuant to the contracts between Medical iSight and its Network Partners, if you select a Network Partner through our Services, Medical iSight may also receive information about you from that Network Partner. Medical iSight and its Network Partners may exchange information about you for the purpose of providing you with information about financial services and products. Medical iSight may maintain this information to assist with litigation, regulatory request(s), law enforcement requests, internal analytics, marketing purposes, and any other legally permissible purpose.

(c) Medical Provider: We may also share information about you with other medical service providers with whom we engage in joint marketing efforts, or who offer medical services or products or services that you may be interested in. These companies’ privacy and information sharing practices are set forth in their respective privacy policies.

(d) Other Business Partners: We also may share information about you with other business partners who offer products and services that we believe you may be interested in. Their privacy and information sharing practices are set forth in their respective privacy policies.

(e) Other Service Providers: We may share information with other service providers that perform certain services on our behalf including, but not limited to, credit bureaus, marketing partners, or entities providing business analysis and/or Digital Platform or product support.

(f) Other Situations: We may also disclose information about you or provided by you at our sole discretion:

(i) In response to a subpoena or similar investigative demand, a court order, a request for cooperation from a law enforcement agency, self-regulatory body, or other governmental agency; to establish or exercise our legal rights; to defend against legal claims; or as we reasonably believe is required by law. In such cases, we may raise or waive any legal objection or right available to us.

(ii) When we believe disclosure is appropriate in order to investigate, prevent, or take action regarding actual or suspected illegal activity or other wrongdoing; to protect and defend the rights, property, or safety of the Medical iSight business, our users, our employees, or others; or to enforce our Site’s terms and conditions or other agreements or policies.

(iii) In connection with a substantial corporate transaction involving the Medical iSight business, such as a sale of Medical iSight or any entity, brand or division thereof, a divestiture, merger, consolidation, asset sale, or bankruptcy.

(iv) In connection with state and/or federal requirements regarding the reporting of information contained in the inquiries we receive from you. You authorize Medical iSight to obtain any and all required information from the entities with whom you have interacted with in connection with Medical iSight in order for Medical iSight to comply with current laws and regulations as well as with any requests from state or federal regulators.

(v) We may share information with third parties that is not personally identifying, such as aggregated or anonymized data, in our discretion, where not prohibited by law.

Retention of Personal Information

In accordance with our routine record keeping, we delete certain records that contain Personal Information you have submitted through the Digital Platforms where they are no longer necessary for the purposes identified under this Privacy Policy. We are under no obligation to store such Personal Information indefinitely and disclaim any liability arising out of, or related to, the destruction of such Personal Information. As to the processing carried out in order to comply with a legal obligation, we will keep your Personal Information for the duration of such obligation.

Security Of Personal Information

The security of your data is important to us, but no method of transmission over the Internet, or method of electronic storage is 100% secure. We seek to protect information you provide to us from unauthorized access, use, and disclosure using appropriate physical, technical, organizational, and administrative security measures based on the type of Personal Information and how we are processing that information. While we strive to use commercially acceptable means to protect your information, we cannot guarantee its absolute security.

To the maximum extent allowed by applicable law, you agree and acknowledge that we will not be liable or responsible if any information about you is intercepted, accessed, and/or used by an unintended recipient. If you have reason to believe that the security of your communications or Personal Information has been compromised, please notify us immediately using the contact information below.

Notice to EU Users

Please note that the GDPR provides for certain rights. In particular, you have the right to:

Access to Personal Information processed concerning you.
Rectification of inaccurate Personal Information concerning you and a right to erasure.
Restriction of processing.
Data portability.
Object to the processing on grounds relating to your particular situation.
Lodge a complaint with a competent supervisory authority.

To exercise any of your rights, please contact us by email at: contact@medicalisight.com

Alternatively, follow the removal instructions in the communication that you receive in order to object to further communications. We will respond to your request in a reasonable timeframe, and in any event within one month from receipt thereof.

Legal Bases Upon Which We Rely

For certain purposes, it may be appropriate for us to obtain your prior consent. The legal basis of consent is only used by us in relation to processing that is entirely voluntary – it is not used for processing that is necessary or obligatory in any way.

In the event that we rely on your consent, you may at any time withdraw the specific consent you give to our processing as described above. Please note, even if you withdraw consent for us to use your Personal Information for a particular purpose, we may continue to rely on other lawful bases to process your Personal Information for other purposes.

Where we are relying on a basis other than your consent, the lawful basis for processing your Personal Information will be one of the following:

The processing is necessary in order for us to comply with our legal obligations (such as compliance with anti-money laundering legislation).
The processing is necessary for the performance of a contract you are party to or in order to take steps at your request prior to you entering into a contract.
The processing is necessary for the establishment, exercise or defense of legal claims.
The processing is necessary for the pursuit of our legitimate business interests.

International Transfer Of Personal Information

Your information, including Personal Information, may be transferred to, and maintained on, computers located outside of the European Economic Area (“EEA”). Certain countries outside the EEA have been approved by the European Commission as providing adequate protection, and therefore, no additional safeguards are required to export Personal Information to these countries. In countries that have not been certified as providing adequate protection, these international transfers are carried out in the framework of Standard Contractual Clauses adopted by the European Commission.

California Shine The Light

California Civil Code Section 1798.83, also known as “Shine The Light” law, permits California residents to annually request information regarding the disclosure of your Personal Information (if any) to third parties for the third parties’ direct marketing purposes in the preceding calendar year. Requests may be made one time per calendar year. If applicable, this information would include the categories of customer information and the names and addresses of those businesses with which we shared customer information for the immediately prior calendar year (e.g. requests made in 2019 will receive information regarding 2018 sharing activities). You may submit your request using the contact information at the end of this Privacy Policy.

Please refer to our Cookie Policy by visiting: https://www.medicalisight.com/cookie-policy

Marketing and Communications

Communications: You may adjust your communications preferences through your My Medical iSight profile. You may also modify your preferences by clicking on an unsubscribe link at the bottom of certain emails sent from Medical iSight.
Advertising on third party sites: We may use third-party tracking technology. This technology allows targeted advertisements to you from Medical iSight businesses. Please review the “Online Tracking and Opt-Out Guide” section of our Cookie Policy for a detailed list of choices on how to opt out of advertisement targeting.

Updating and Accessing Your Information

The appropriate method(s) for accessing your information, if any, will depend on which Site or Services you have used. Depending on the respective Site or Service, you may have the ability to view or edit some of your information online using the respective Site or Service’s interface.

How We Protect Your Information

We maintain physical, electronic, and procedural measures designed to safeguard your information from unauthorized access and disclosure. No system can be completely secure. Therefore, although we take steps to secure your information, we cannot guarantee that your information, searches, or other communication will always remain secure.

Changes to this Privacy Policy

Medical iSight has the discretion to update this privacy policy at any time. When we do, we will revise the date at the top of this page. We encourage you to frequently check this page for any changes to stay informed about how we are helping to protect the information we collect. You acknowledge and agree that it is your responsibility to review this privacy policy periodically and become aware of modifications.

Visiting our Digital Platforms From Outside the United States

The Site is designed to provide services in the United States and is governed by the laws of the United States. We make no representation that the Sites are governed by or operated in accordance with the laws of any other nation.

Compliance with Children’s Online Privacy Protection Rule

Our Services are not intended for individuals under 18 years of age, and we do not knowingly collect personal information from individuals under 18. If we learn we have collected or received personal information from a person under 18 without verification of parental consent, we will delete the information.

How to Contact Us

If you have any questions about this privacy policy, the practices of any Medical iSight Business, or your dealings with a Medical iSight Business, please contact us at:

contact@medicalisight.com