Ayvo

Privacy Policy

Last updated: 27/06/2026

1. Privacy-First Commitment

At Ayvo, trust is a core product feature. We collect and process only the clinical and personal data strictly necessary to provide you with secure, accurate second opinions. We do not sell your personal or medical data to third parties.

2. Data We Collect and Process

To deliver our structured second opinions, we process:

  • Medical Records & PHI: Lab reports, diagnostic images, prescriptions, clinical histories, and specific medical questions you explicitly upload.
  • Contact Details: Your email address and WhatsApp number, solely used for authentication and result delivery notifications.

3. HIPAA Compliance (US Patients)

For users in the United States, we protect your Protected Health Information (PHI) in accordance with the Health Insurance Portability and Accountability Act (HIPAA):

  • Access Control: Results are secured via strict Email One-Time Passcode (OTP) verification. Public or unauthenticated links to PHI are blocked on our servers.
  • Encryption: All PHI is encrypted in transit using TLS 1.3 (with TLS 1.2 supporting forward-secret AES-128-GCM) and at rest using AES-256 standard encryption on enterprise-grade secure databases.
  • Audit Logging: Every action involving your PHI (including physician views, administrative access, report downloads, and verification attempts) is recorded in a secure, immutable audit trail.

4. GDPR Compliance & Your Rights (EU Patients)

If you are located in the European Economic Area (EEA), Ayvo acts as the Data Controller. Under the General Data Protection Regulation (GDPR), you have the following rights:

  • Right to be Forgotten (Erasure): You can permanently wipe all your uploaded reports, case descriptions, opinion results, and contact info from our servers and storage buckets instantly via the "Delete Case" button on your status page.
  • Right to Access & Portability: You can view all records associated with your case at any time on your secure status page.
  • Explicit Consent: We only process your medical data (special category data under Art. 9 GDPR) based on your explicit, voluntary opt-in consent given during the submission flow, which you can withdraw at any time.

5. AI Research & Data Processing Boundaries

We use artificial intelligence strictly for non-clinical platform utilities, such as file sorting, administrative formatting, and campaign copywriting optimizations. AI is never used to diagnose conditions, analyze symptoms, or write your clinical second opinion reports. All clinical reviews and medical findings are completed 100% by licensed human physicians.

AI Vendor: OpenRouter (operated by pryv.co) with zero-data-retention configuration. All AI processing occurs via API endpoints that do not persist or train on input data. Standard Contractual Clauses apply for cross-border processing.

Any data processed through AI infrastructure is subject to enterprise zero-data-retention agreements, ensuring your health records are never saved, cached, or used to train public models.

6. Data Retention

We retain your data for the following periods:

  • Case Data & PHI: 7 years (medical record standard)
  • Audit Logs: 90 days
  • Marketing Data: Until consent is withdrawn
  • Backups: 30 days with automatic deletion

You may request immediate deletion of your case data at any time via the "Delete Case" button on your status page.

7. Security & Breach Notification

We maintain industry-standard security measures to protect your data. In the event of a data breach affecting your personal information, we will notify the relevant supervisory authority within 72 hours and affected individuals without undue delay. Our incident response process includes immediate containment, investigation, and remediation.