Lysomic
Request a Demo
Back to Home

Privacy Policy

Last Updated: March 15, 2025

Introduction

At Lysomic, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our personal AI health assistant service. As a healthcare technology company, we are fully committed to compliance with the Health Insurance Portability and Accountability Act (HIPAA) and other applicable data privacy regulations.

HIPAA Compliance

Lysomic is designed to be fully HIPAA-compliant. We implement all required administrative, physical, and technical safeguards to protect your Protected Health Information (PHI) as defined by HIPAA.

  • We maintain Business Associate Agreements (BAAs) with all service providers who may access PHI
  • We conduct regular risk assessments and compliance audits
  • We provide comprehensive HIPAA training to all staff members
  • We maintain detailed access logs and audit trails for all PHI access

International Data Protection

In addition to HIPAA compliance, Lysomic adheres to:

  • General Data Protection Regulation (GDPR) for users in the European Economic Area
  • Personal Information Protection and Electronic Documents Act (PIPEDA) for Canadian users
  • California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA)
  • Health Records and Information Privacy Act (HRIPA) in Australia
  • Other applicable regional and national healthcare data protection regulations

Information We Collect

We collect information that you voluntarily provide to us when you use our service:

  • Personal health data you choose to share
  • Medical records you upload or connect
  • Conversations with your personal AI assistant
  • Account information and preferences

How We Use Your Information

Your information is used exclusively to:

  • Train your personal small language model (SLM)
  • Provide personalized health insights
  • Enable secure sharing with healthcare providers (with your explicit consent)
  • Improve our service

Data Security

We implement strict security measures that meet or exceed HIPAA requirements to protect your personal health information:

  • End-to-end encryption for all health data in transit and at rest
  • Secure, isolated training environments for each user's SLM with strict access controls
  • Regular security audits, penetration testing, and compliance reviews
  • Multi-factor authentication and role-based access controls
  • Automatic logging of all data access and processing activities
  • Secure data backup and disaster recovery procedures

Your Rights

You maintain complete control over your data:

  • Access and download your complete data profile
  • Request deletion of your data and model
  • Control sharing permissions with granular consent options
  • Opt out of service improvements

Contact Us

If you have questions about this Privacy Policy, please contact us at:

Email: privacy@lysomic.com
Address: 123 Health Data Lane, San Francisco, CA 94105