Our Security Policy
This one's easy - we do absolutely everything in our power to keep your information safe and secure. We take the responsibility of caring for your medical information very seriously. This means we follow industry best practices - like HIPAA compliance - and then we take it a step further. Your information is always encrypted, sometimes multiple times over. We never store plain text usernames or passwords. We monitor every ping to our database and network. And in the unlikely event that any of your information is compromised, we promise to tell you quickly and in plain language.
We Follow Applicable Regulations
As regulations change, we promise to abide by all relevant security and privacy needs. This includes but is not limiting to not allowing users under the age of 13, providing notice of policy changes, and abiding by CA GDPR.
How We Use Your Data
We use your information to monitor and improve our product. This can be as simple as knowing if you logged on from a computer or your phone. That information helps us know what to work on next. Like whether or not we should build a mobile app, or support new types of web browsers. We can also use your information to develop features over time. One of the feature we're most excited about is price prediction - so you can know exactly how much you will pay out of pocket to have an MRI done at one place vs another. If we work with partners to achieve these goals, your information will be anonymized and our partners will meet our security standards.
You Select Your Connections
We're here to help you, so we only get information from providers that you tell us to. This is part of why we have you authenticate with each doctor or healthcare organization.
We Maintain Data Records
Healthcare data is messy. Like, really messy. We do a lot of hard work behind the scenes to make sure that your information from Doctor A is structured in a similar way as your information from Doctor B. Because this is hard, messy work - we always keep a copy of your raw information so that we can trace the history and logic behind that data processing. This also means that if we change that logic, you'll see it reflected in Vessel, no matter how old that data is.
If You Want To Delete Your Data
If for any reason you wish to discontinue your use of Vessel, you can request that we securely delete your data. And we'll do it, no questions asked. Just email email@example.com to initiate a request.
What We Don't Do
We don't have functionality to support any of these use cases. However, we reserve the right to. We promise that any changes to features in this category will be announced, and we'll work with you to decide the best way to roll them out. We do not share or sell your anonymized health data with anyone without your explicit consent. In the future, we hope anonymous medical information can improve the quality of care for all patients. We know that we may not always be the best people to do that research, so we're reserving the right to support other researchers in service of the greater good.
What We Will Never Do
We will never share or sell your anonymous or identified data with marketers, foreign countries, police, or federal authorities unless compelled by law.