Privacy Statement

Effective Date: September 25, 2025
Last Updated: September 29, 2025

Introduction

At itonic.health (“we,” “our,” or “us”), we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Statement explains how we collect, use, disclose, and safeguard your information when you visit our website at itonic.health (the “Website”) and use our AI platform SAVi (the “Platform”).

Information We Collect

Website Usage Information

When you visit our Website, we may collect:

  • Device Information: IP address, browser type, operating system, device identifiers
  • Usage Data: Pages visited, time spent on pages, click-through rates, referral sources
  • Cookies and Tracking Technologies: Session cookies, persistent cookies, web beacons, and similar technologies
  • Contact Information: Name, email address, phone number when voluntarily provided through forms

SAVi AI Platform Information

When you use our SAVi AI platform, we may collect:

  • Account Information: Username, email address, profile information
  • Health-Related Data: Medical queries, symptoms described, health information you choose to share
  • Interaction Data: Conversations with SAVi, response preferences, usage patterns
  • Technical Data: Log files, API calls, system performance metrics

Information from Third Parties

We may receive information about you from:

  • Healthcare providers (with your consent)
  • Integration partners and APIs
  • Public databases and research institutions
  • Analytics service providers

How We Use Your Information

Website Operations

  • Provide and maintain website functionality
  • Improve user experience and website performance
  • Respond to inquiries and provide customer support
  • Send administrative communications
  • Analyze website traffic and usage patterns

SAVi AI Platform Services

  • Provide AI-powered health information and insights
  • Personalize your experience and recommendations
  • Improve SAVi’s accuracy and capabilities through machine learning
  • Conduct research to advance healthcare AI (in aggregated, de-identified form)
  • Ensure platform security and prevent misuse

Legal and Safety Purposes

  • Comply with applicable laws and regulations
  • Protect against fraud, abuse, and security threats
  • Enforce our terms of service
  • Respond to legal requests and court orders

Information Sharing and Disclosure

We do not sell, rent, or trade your personal information. We may share your information in the following circumstances:

Service Providers

We may share information with trusted third-party service providers who assist us in:

  • Website hosting and maintenance
  • Data analytics and performance monitoring
  • Customer support services
  • Payment processing (if applicable)
  • Cloud storage and computing services

Healthcare Integration Partners

With your explicit consent, we may share relevant health information with:

  • Your healthcare providers
  • Electronic health record systems
  • Healthcare analytics platforms
  • Research institutions for approved studies

Legal Requirements

We may disclose information when required by law or to:

  • Comply with legal process, regulations, or government requests
  • Protect the rights, property, or safety of itonic.health, our users, or others
  • Investigate potential violations of our terms of service
  • Respond to emergency situations involving potential harm

Business Transfers

In the event of a merger, acquisition, or sale of assets, user information may be transferred to the acquiring entity, subject to the same privacy protections.

Data Security

We implement comprehensive security measures to protect your information:

  • Encryption: Data is encrypted in transit and at rest using industry-standard protocols
  • Access Controls: Strict authentication and authorization procedures
  • Regular Audits: Ongoing security assessments and vulnerability testing
  • Employee Training: Staff education on privacy and security best practices
  • Incident Response: Procedures for detecting and responding to security breaches

Data Retention

We retain your information for as long as necessary to:

  • Provide our services to you
  • Comply with legal obligations
  • Resolve disputes and enforce agreements
  • Improve our services and AI capabilities

Website Data: Typically retained for 2-3 years unless deletion is requested SAVi Platform Data: Retained while your account is active plus 7 years for health-related information, or as required by applicable healthcare regulations

Your Privacy Rights

Depending on your location, you may have the following rights:

  • Access: Request copies of your personal information
  • Correction: Request correction of inaccurate information
  • Deletion: Request deletion of your personal information
  • Portability: Request transfer of your data to another service
  • Opt-out: Decline certain uses of your information
  • Consent Withdrawal: Withdraw previously given consent

To exercise these rights, contact us at [privacy@itonic.health].

Cookies and Tracking Technologies

We use cookies and similar technologies to:

  • Remember your preferences and settings
  • Analyze website performance and user behavior
  • Provide personalized content and recommendations
  • Enable certain website features and functionality

You can control cookie settings through your browser preferences. Note that disabling cookies may limit website functionality.

Children’s Privacy

Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected information from a child, we will take steps to delete it promptly.

International Data Transfers

Your information may be processed and stored in countries other than your own. We ensure appropriate safeguards are in place for international transfers, including:

  • Adequacy decisions by relevant authorities
  • Standard contractual clauses
  • Binding corporate rules
  • Your explicit consent when required

Changes to This Privacy Statement

We may update this Privacy Statement periodically to reflect changes in our practices or applicable laws. We will notify you of material changes by:

  • Posting the updated statement on our Website
  • Sending email notifications to registered users
  • Displaying prominent notices on the SAVi platform

Healthcare-Specific Considerations

HIPAA Compliance

While we are not a covered entity under HIPAA, we implement HIPAA-compatible privacy practices where applicable and work with healthcare partners to ensure compliance.

Medical Disclaimer

SAVi is designed to provide health information and insights but does not replace professional medical advice, diagnosis, or treatment. Always consult with qualified healthcare providers for medical decisions.

Research and Development

We may use de-identified, aggregated data to:

  • Improve AI algorithms and healthcare insights
  • Contribute to medical research and public health initiatives
  • Develop new features and services
  • Publish research findings in academic or professional contexts

Contact Information

For questions about this Privacy Statement or our privacy practices, contact us at:

Email: privacy@itonic.health
Address: 387 Shuman Blvd, Suite 210E, Naperville, IL 60563

Data Protection Officer:
Fahim Hashim
Fahim@itonic.health

For SAVi platform-specific privacy questions: savi-privacy@itonic.health

This Privacy Statement was last updated on September 29, 2025, and is effective immediately. Please review it regularly for any updates or changes.