Privacy Policy
Last updated on 1 Dec 2025
TalkToMedi Inc. (“TalkToMedi”, “we”, “us”, or “our”) is committed to protecting the privacy, confidentiality, and security of personal information entrusted to us. This Privacy Policy describes how we collect, use, store, disclose, and protect personal information when you access our website or use our clinical-grade AI voice agent and related services
1. Introduction & Scope
TalkToMedi provides a clinical-grade AI voice agent designed specifically for healthcare environments, including primary care clinics, specialty clinics, and allied health practices. Our Services support tasks such as:
Answering inbound phone calls
Appointment booking and rescheduling
Message capture and call-back requests
Basic triage and routing (as configured by clinics)
Administrative follow-ups
TalkToMedi acts as a service provider / data processor to healthcare practitioners, who remain the data custodians of patient records under applicable healthcare privacy laws.
2. Information We Collect
2.1 Website Information
Information You Provide Voluntarily
When you interact with our website (e.g., contact forms, demo requests), we may collect:
Name
Email address
Phone number
Clinic or organization name
Any information you include in your message
Information Collected Automatically
We may automatically collect:
IP address
Browser type and operating system
Pages visited and interaction patterns
Date and time of visits
This data is collected using cookies and similar technologies to improve website performance and user experience.
2.2 Healthcare Practitioner & Clinic Information
When a clinic subscribes to TalkToMedi, we collect:
Practitioner or clinic administrator name
Clinic contact details
Billing and payment information (processed via third-party payment processors)
EMR integration identifiers (where applicable)
Configuration settings for workflows and call handling
This information is referred to as “Account Information.”
2.3 Patient Information
TalkToMedi only processes patient information provided or authorized by the healthcare practitioner.
This may include:
Caller name (if provided during the call)
Phone number
Appointment-related information
Messages or requests left by patients
Audio recordings and transcripts of calls handled by the AI voice agent
Limited triage-related context as configured by the clinic
Important:
TalkToMedi does not independently access patient medical records and does not retrieve data from EMRs unless explicitly instructed through an authorized integration.
3. Use of Information
We use information to:
Deliver and operate the Services
Route calls and manage appointments
Capture messages and call-back requests
Provide call summaries to clinic staff
Maintain security, reliability, and compliance
Personal information is never sold and never used to train foundation AI models.
4. Legal Basis for Processing
Depending on jurisdiction, TalkToMedi processes personal information under the following legal bases:
Consent – obtained by healthcare practitioners from patients
Contractual necessity – to deliver Services to clinics
Legitimate interests – improving reliability, safety, and usability
Legal obligations – compliance with healthcare, tax, and security laws
Healthcare practitioners are responsible for ensuring appropriate patient consent.
5. Audio Recordings & Voice Data
5.1 AI Voice Agent Calls
Calls may be recorded to generate transcripts and structured summaries
Audio is retained only for a limited time to support quality assurance and issue resolution
Patient voice recordings are not retained long-term and not used for AI model training
5.2 Retention Periods
Call audio: retained for up to 48 hours (or shorter where feasible)
Transcripts & call summaries: retained for up to 30 days, unless deleted earlier
De-identified metadata: may be retained for service improvement
5. Disclosure of Information
We disclose personal information only to trusted service providers (e.g., hosting, telephony, analytics, payment processing) who are contractually obligated to protect it.
We may disclose information where required by law or in connection with a corporate transaction.
7. Data Storage & International Transfers
Canadian clinic data is stored in Canada where possible
Some account or billing information may be processed in the United States by third-party providers
Where data crosses borders, we implement safeguards consistent with PHIPA, PIPEDA, HIPAA, and contractual standards
8. Data Security
We implement administrative, technical, and physical safeguards including:
Encryption at rest and in transit
Role-based access controls
Audit logging
Secure infrastructure environments
Regular security reviews
Despite best efforts, no system is 100% secure.
9. Contact Us
If you have questions or concerns about privacy or data handling, contact us at:
mediumaihealthcare@gmail.com