S
SEVIABack to Home
Your Data Protection

Privacy Policy

Last updated: February 2025

SEVIA (“we,” “our,” or “us”) is committed to protecting the privacy and security of your health information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered cervical cancer screening platform.

HIPAA Compliant

We adhere to strict HIPAA standards for protecting sensitive patient health information.

Transparent

Clear information about what data we collect and how we use it to improve healthcare outcomes.

1. Information We Collect

1.1 Patient Health Information

As a healthcare platform, we collect and process Protected Health Information (PHI) necessary for cervical cancer screening:

  • Cervical images captured during VIA (Visual Inspection with Acetic Acid) examinations
  • Patient demographics (age, location)
  • Screening results and AI assessments
  • HPV test results where applicable
  • Clinical notes and healthcare provider assessments

1.2 User Account Information

For healthcare providers and administrators using our platform:

  • Name, email address, and professional credentials
  • Healthcare facility affiliation
  • Role and permissions within the platform
  • Login and authentication data

1.3 Usage and Technical Data

We collect information about how you interact with our platform:

  • Device information (type, operating system)
  • IP address and browser type
  • Feature usage and interaction patterns
  • Error logs and performance data

2. How We Use Your Information

We use the collected information for the following purposes:

  • Provide screening services: Process and analyze cervical images using our AI technology
  • Support clinical decisions: Assist healthcare providers with VIA classification and quality assessment
  • Manage patient care: Track screening history and coordinate follow-up care
  • Improve our AI: Enhance our algorithms while maintaining data anonymization
  • Platform maintenance: Ensure security, troubleshoot issues, and optimize performance
  • Compliance: Meet legal and regulatory requirements for healthcare data

3. Data Security and Protection

We implement comprehensive security measures to protect your data:

Security Measures

  • End-to-end encryption for data in transit and at rest
  • Role-based access controls with multi-factor authentication
  • Regular security audits and vulnerability assessments
  • Secure, HIPAA-compliant cloud infrastructure
  • Audit logs for all data access and modifications

4. Data Sharing and Disclosure

We do not sell your personal information. We may share data only in the following circumstances:

  • With your consent: When you explicitly authorize sharing with specific healthcare providers
  • Healthcare providers: Within your organization to coordinate patient care
  • Service providers: Trusted third parties who assist in platform operations under strict confidentiality agreements
  • Legal requirements: When required by law, court order, or to protect rights and safety
  • Research: Anonymized, aggregated data for public health research and AI improvement

5. Your Rights and Choices

Depending on your location and role, you may have the following rights:

  • Access and review your personal information
  • Request corrections to inaccurate data
  • Request deletion of your data (subject to legal retention requirements)
  • Export your data in a portable format
  • Opt-out of non-essential communications
  • Withdraw consent for specific data processing activities

To exercise these rights, please contact us at [email protected].

6. Data Retention

We retain health information for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law. Patient screening data is typically retained for the duration specified by applicable healthcare regulations in your jurisdiction.

7. International Data Transfers

SEVIA operates in multiple countries, primarily across Sub-Saharan Africa. We ensure that any international data transfers comply with applicable data protection laws and maintain the same level of protection as required by HIPAA and local regulations.

8. Children's Privacy

Our platform is intended for use by healthcare professionals. We do not knowingly collect personal information directly from individuals under 18. Patient data is collected and managed by authorized healthcare providers in accordance with local regulations.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the “Last updated” date. We encourage you to review this policy periodically.

10. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

Email: [email protected]

Address: Dar es Salaam, Tanzania