Privacy Policy
Last updated: 2026-02-02
Cardio2Doc (C2D) is a hospital iPad application intended for use by authorized healthcare staff within a healthcare organization.
This policy explains how Accurate Meditech Inc., located at 8F-10, No. 12, Ln. 609, Sec. 5, Chongxin Rd., Sanchong Dist., New Taipei City, 241406, Taiwan (“Cardio2Doc”, “we”, “us”) handles information processed through the C2D app and related services.
1) Who is this app for?
C2D is designed for healthcare organizations (e.g., hospitals/clinics). User accounts are typically provisioned by a system administrator (e.g., clinic-issued credentials).
2) Data we process
C2D may process the following categories of data depending on configuration and enabled modules:
| Category | Examples | Purpose |
|---|---|---|
| Staff account data | Username, email, role, tenant/hospital ID, MFA status | Authentication, authorization, access control, security |
| Patient identifiers | Patient name, MRN/ID, bed/room, status (active/discharged) | Patient registry, assignment, clinical workflow |
| Vital signs (health data) | Blood pressure (SBP/DBP), heart rate, SpO2, temperature, respiratory rate, timestamps | Monitoring, trends, alerting, reporting |
| Clinical notes | Clinical/medication/allergy/observation/admin/discharge notes | Care documentation and workflow support |
| Alerts & actions | Alert severity, acknowledgements, assignments, resolution notes | Clinical safety workflow, escalation, accountability |
| Audit & compliance logs | Login/logout, create/update/delete events, access events, timestamps, IP/device info | Security monitoring, investigation, compliance, integrity controls |
| Exports & reports | Generated PDF/CSV/Excel reports, export metadata, file integrity hashes | Operational reporting, clinical summaries, compliance exports |
| Diagnostics | Crash logs, performance metrics, system health events | Reliability, debugging, service improvement |
3) How data is collected
- Entered by authorized staff (patient registration, notes, acknowledgements).
- Received from connected medical devices and monitoring workflows (vital signs and telemetry).
- Generated automatically by the system (audit logs, reports, security events).
4) How data is used
- Provide core hospital monitoring features (patient dashboards, vitals history, alerts).
- Security controls (authentication, session management, MFA, rate limiting).
- Compliance and integrity functions (audit trail, evidence logs, retention policies).
- Operational reporting and exports as initiated by authorized users.
5) Sharing and disclosure
We do not sell personal data. Data may be shared only as needed to operate the service, such as:
- Infrastructure and hosting providers (compute, database, storage) under contract.
- Notification providers (email/SMS/push) if enabled by the healthcare organization.
- As required by law or to protect security and safety.
6) Tracking and advertising
C2D is not intended for advertising, and we do not use patient data for ad targeting. We do not enable cross-app tracking for advertising purposes.
7) Data retention
Retention is configured by the healthcare organization and/or required by applicable regulations and internal policies. Audit and security logs may be retained longer for compliance and security purposes.
8) Data deletion & requests
Staff account deletion and patient record deletion/anonymization are handled through the healthcare organization’s administrative workflow and/or support. See Privacy Choices for details.
9) Security
We implement technical and organizational safeguards designed to protect information (e.g., access controls, authentication, encrypted transport, audit logging). No system is 100% secure.
10) Contact
Accurate Meditech Inc.
Address: 8F-10, No. 12, Ln. 609, Sec. 5, Chongxin Rd., Sanchong Dist., New Taipei City, 241406, Taiwan
Email: info@accurate-meditech.com
Phone: +886.2.2999.1596
If you are a patient and have questions about your data in C2D, please contact your healthcare provider/hospital administrator.