Prahsys Privacy Policy

Last Updated: March 24, 2025

Welcome to Prahsys—an all-in-one issuing, acquiring, processing, and settlement platform built just for you. This Privacy Notice explains how Prahsys, Inc. (“Prahsys”) collects, uses, discloses, and otherwise processes personal data in connection with our website, services, and any related applications (collectively, the “Services”).

This Privacy Notice does not address our privacy practices relating to Prahsys job applicants, employees, and other employment-related individuals. This Privacy Notice also does not address data that is exempt from applicable data protection laws (such as deidentified or publicly available information). This Privacy Notice is not a contract and does not create any legal rights or obligations not otherwise provided by law.

Our Collection and Use of Personal Data

Categories of Personal Data Collected

The categories of personal data we collect depend on how you interact with us and our Services. This includes:

  • Account Information: First and last name, email address, phone number, and account credentials.
  • Feedback and Support Information: Information provided through customer support forms, emails, chat, or recorded calls.
  • Device and Network Information: Device type, manufacturer, IP address, browser type, operating system, and network details.
  • Usage Data: Interaction details such as pages visited, browsing behavior, and engagement with our content.

Medical Data Collection and Usage

  • Medical Data Governance: Prahsys follows strict data governance protocols when collecting and processing medical data. All medical data used for analysis, research, and artificial intelligence (AI) training is anonymized before processing to comply with applicable laws and ethical guidelines.
  • Use of Medical Data in AI Training: Anonymized patient data may be used to improve the performance of PrognosiX and other AI-driven tools. No personally identifiable medical records or raw HIPAA-protected data are used for AI training.
  • Practitioner Agreements on Data Use: All practitioners associated with Prahsys must enter into a legal agreement ensuring that any patient data provided for AI training is fully anonymized. Prahsys will not accept or process raw patient data that could violate HIPAA or other privacy regulations.

Data Governance and Security

  • Data Handling Standards: All data collected, including medical information and AI training data, is governed by strict access controls to prevent misuse or unauthorized access.
  • Token Handling in MSAs: Our Master Service Agreements (MSAs) include provisions for token management, ensuring secure storage and deletion protocols. Customers must adhere to these token management guidelines to prevent unauthorized access.
  • Unauthorized Access Prevention: Prahsys enforces strict token usage policies, including encryption, access controls, and expiration mechanisms to protect sensitive data.

Sharing Your Information

We do not sell personal data. However, we may share information in the following circumstances:

  • Service Providers: We work with third-party service providers to facilitate payment processing, analytics, and customer support.
  • Legal Obligations: We may disclose information in response to legal requests, law enforcement inquiries, or regulatory requirements.
  • Business Transactions: In the event of a merger, acquisition, or business restructuring, data may be transferred as part of the transaction.
  • With Your Consent: We will share data with third parties only if you provide explicit consent.

Data Retention

We retain personal data only for as long as necessary to fulfill its original purpose, comply with legal requirements, resolve disputes, and enforce agreements. Once data is no longer required, it is securely deleted or anonymized.

Your Privacy Rights

Depending on your location, you may have certain rights regarding your personal data, including:

  • Access: You may request access to the data we hold about you.
  • Correction: You may request corrections to inaccurate or incomplete information.
  • Deletion: You may request the deletion of personal data, subject to legal exceptions.
  • Opt-Out: You may opt out of promotional communications.

To exercise your privacy rights, contact us at support@prahsys.com.

International Data Transfers

If you access our Services outside the United States, your data may be transferred to and processed in the U.S. or other jurisdictions where our service providers are located. We take appropriate measures to ensure that your data is handled securely and in compliance with applicable regulations.

Children’s Privacy

Our Services are not intended for children under the age of 13. We do not knowingly collect or process data from children under 13. If we learn that such data has been collected, it will be deleted promptly.

Updates to This Privacy Notice

We may update this Privacy Notice periodically. Any changes will be communicated via email, website notifications, or other appropriate channels. Continued use of our Services after an update constitutes acceptance of the revised terms.

Contact Us

If you have any questions regarding this Privacy Notice, please contact us at:

Prahsys Inc. Email: support@prahsys.com