Privacy Policy

Last updated: January 2025

1. Introduction

Spectro AI ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our device-free biometric assessment platform and related services.

Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the platform.

2. Information We Collect

2.1 Biometric Data

We process biometric data captured through your device's camera to derive health measurements including heart rate, blood pressure estimates, oxygen saturation, and heart rate variability. This processing occurs on your device, and we do not store raw video or facial images.

2.2 Personal Information

We may collect the following personal information:

  • Name and contact information
  • Email address and phone number
  • Company or organization details
  • Account credentials

2.3 Usage Data

We automatically collect certain information when you access our platform:

  • Device information (type, operating system, browser)
  • IP address and location data
  • Usage patterns and interaction data
  • Performance metrics and error logs

3. How We Use Your Information

We use the information we collect to:

  • Provide and maintain our biometric assessment services
  • Process and deliver health measurements
  • Improve our algorithms and measurement accuracy
  • Communicate with you about our services
  • Ensure platform security and prevent fraud
  • Comply with legal obligations and regulatory requirements
  • Conduct research and development (with anonymized data)

4. Data Processing and Storage

4.1 On-Device Processing

Our biometric capture technology processes video data directly on your device. Raw video streams and facial images are never transmitted to our servers or stored anywhere.

4.2 Derived Data

We store derived health measurements and related metadata in encrypted form. Data is retained according to your organization's retention policies and applicable regulatory requirements.

4.3 Data Security

We implement industry-standard security measures including encryption at rest and in transit, access controls, and regular security audits to protect your information.

5. Data Sharing and Disclosure

We may share your information with:

  • Your Organization: If you are using our services through an insurance carrier or employer, we share measurement results with them as directed
  • Service Providers: Third-party vendors who assist in providing our services (under strict confidentiality agreements)
  • Legal Authorities: When required by law or to protect our rights and safety
  • Business Transfers: In connection with mergers, acquisitions, or asset sales (with continued protection of your data)

We do not sell your personal information or biometric data to third parties.

6. Your Rights and Choices

Depending on your location, you may have the following rights:

  • Access: Request access to your personal information
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your information (subject to legal retention requirements)
  • Portability: Request a copy of your data in a structured format
  • Objection: Object to certain processing activities
  • Withdrawal of Consent: Withdraw consent where processing is based on consent

To exercise these rights, please contact us at privacy@spectro.health.

7. HIPAA Compliance

For customers in the healthcare and insurance sectors, we provide HIPAA-compliant services through Business Associate Agreements (BAAs). We maintain appropriate safeguards to protect Protected Health Information (PHI) and ensure compliance with HIPAA Privacy and Security Rules.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers, including standard contractual clauses and data processing agreements.

9. Children's Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal information, please contact us.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

11. Contact Us

If you have questions or concerns about this Privacy Policy, please contact us at:

Spectro AI

Email: privacy@spectro.health

General Inquiries: hello@spectro.health