Privacy Policy

Overview

At Activbyte Technologies Inc. ("ActivEMS", "we", "us", "our"), we take the privacy and security of patient data and agency information extremely seriously. This policy outlines how we collect, use, and protect data.

Data Collection

• Agency Data: Information about your EMS agency, vehicles, and staff credentials.
• Patient Data (PHI): Protected Health Information entered into the ePCR system, including vitals, demographics, and medical history. This data is processed strictly in accordance with HIPAA regulations.
• Telemetry Data: Real-time GPS location of fleet vehicles and equipment status.
• Usage Data: Analytics on how users interact with our software to improve performance (fully anonymized).

How We Use Your Data

We use the data we collect solely for the purpose of providing and improving the ActivEMS platform.

• To facilitate emergency dispatch and routing.
• To generate clinical care reports (ePCR).
• To provide analytics and operational insights to your agency.
• We never sell patient data or agency operational data to third parties.

Data Security

We employ enterprise-grade security measures to protect your data:

• Encryption: AES-256 encryption for data at rest and TLS 1.3 for data in transit.
• Access Control: Role-Based Access Control (RBAC) ensures only authorized personnel can access sensitive data.
• Auditing: Comprehensive audit logs track all access and modifications to PHI.
• Compliance: Regular third-party penetration testing and HIPAA compliance audits.

Data Retention

We retain patient care records for the duration required by local EMS regulations (typically 7-10 years) or as specified in your agency's contract. Upon contract termination, data can be exported in standard formats (NEMSIS, XML, PDF) before secure deletion.

Contact Us

For privacy-related inquiries or to report a security potential, please contact our Data Protection Officer at privacy@activems.com.