Accessibility

Display
Dark Mode
High Contrast
Text Size
Font Size

Privacy Policy

Your privacy is important to us. This policy explains how we handle your information.

Last Updated: January 14, 2025

1. Introduction

NorCemic Inc. ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our SmartCemic devices, mobile applications, website, and related services (collectively, the "Services").

We are fully compliant with the Health Insurance Portability and Accountability Act (HIPAA) and maintain SOC 2 Type II certification. Your health information is protected with the highest standards of security.

2. Information We Collect

2.1 Personal Information

We may collect the following types of personal information:

  • Account Information: Name, email address, phone number, and password when you create an account.
  • Payment Information: Credit card or payment details for subscription services (processed securely through our payment processors).
  • Profile Information: Age, gender, height, weight, and other demographic data you choose to provide.

2.2 Health Information

When you use our SmartCemic devices, we collect:

  • Biomarker readings (glucose, cholesterol, hormones, etc.)
  • Measurement timestamps and frequency
  • Device calibration data
  • Skin tone calibration settings

2.3 Device and Usage Information

  • Device identifiers and serial numbers
  • App usage patterns and feature interactions
  • Log data, IP addresses, and browser information
  • Location data (only if you enable location services)

3. How We Use Your Information

We use your information to:

  • Provide and improve our health monitoring services
  • Process biomarker readings and deliver results
  • Personalize your experience based on your health profile
  • Send important updates, alerts, and notifications
  • Conduct research to improve accuracy and develop new features (using de-identified data)
  • Comply with legal obligations and regulatory requirements
  • Prevent fraud and ensure security

4. Data Security

We implement industry-leading security measures:

  • Encryption: All data is encrypted using AES-256 both in transit and at rest
  • Access Controls: Role-based access with multi-factor authentication
  • Compliance: HIPAA, SOC 2 Type II, and ISO 27001 certified
  • Regular Audits: Annual third-party security assessments
  • Data Centers: AWS infrastructure with enterprise-grade physical security

5. Data Sharing and Disclosure

We do not sell your personal or health information. We may share data with:

  • Healthcare Providers: Only with your explicit consent
  • Service Providers: Third parties who help operate our services (under strict confidentiality agreements)
  • Research Partners: De-identified, aggregated data for scientific research
  • Legal Requirements: When required by law or to protect our rights

6. Your Rights and Choices

You have the right to:

  • Access: Request a copy of your personal and health data
  • Correction: Update or correct inaccurate information
  • Deletion: Request deletion of your data (subject to legal retention requirements)
  • Portability: Export your data in a standard format
  • Opt-Out: Unsubscribe from marketing communications
  • Restrict Processing: Limit how we use your data

7. Cookies and Tracking

We use cookies and similar technologies to:

  • Remember your preferences and settings
  • Analyze website traffic and usage patterns
  • Personalize content and advertisements
  • Improve our services

You can manage cookie preferences through our cookie consent banner or your browser settings.

8. Children's Privacy

Our Services are not intended for children under 13. We do not knowingly collect information from children under 13. If you believe we have collected such information, please contact us immediately.

9. International Data Transfers

Your data may be transferred to and processed in the United States. We ensure appropriate safeguards are in place for international transfers in compliance with applicable laws.

10. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes via email or through our Services. Your continued use after changes constitutes acceptance.

11. Contact Us

For privacy-related questions or to exercise your rights:

Email: privacy@norcemic.com
Phone: (520) 510-3964
Address: NorCemic Inc., Phoenix, Arizona, USA