Privacy Policy
WoundFocus Enterprise is a clinician-only mobile application used by authorized healthcare organizations for wound care documentation and secure clinical media capture.
At a glance
- Clinician-only application used by authorized healthcare organizations.
- We apply safeguards aligned with HIPAA requirements for protected health information.
- We do not sell personal data and do not use data for advertising.
- Data is used to support wound image capture, documentation, and care operations.
- Access is limited to authorized users within the organization and approved service providers.
Scope
This policy applies to the WoundFocus Enterprise mobile application and related services. It covers information processed for wound imaging and related documentation operated on behalf of healthcare customers.
If you are a patient seeking access to your medical records, please contact your care provider directly. WoundFocus Enterprise is not a direct-to-consumer app.
Information we collect
Images and media
Wound photos, associated metadata (timestamps, capture details), and image variants generated for clinical review.
Limited clinical context
Basic wound documentation and notes entered by authorized users to accompany wound images and support clinical review.
Patient and facility context
Patient identifiers, demographics, and facility information provided by the healthcare organization to support clinical workflows.
Location data
GPS coordinates captured with wound photos and, when enabled, on-duty location tracking to support facility assignment.
Account and access data
User account identifiers, roles, practice affiliations, authentication tokens, and audit logs of access.
Device and usage data
Device identifiers, app version, network status, and error logs required to secure the service, diagnose issues, and improve reliability.
How we use information
- Capture, upload, and store wound images and related metadata.
- Support wound documentation and clinical review within authorized organizations.
- Authenticate users, enforce permissions, and maintain audit trails.
- Secure, monitor, and improve service availability and performance.
How we share information
- With authorized clinicians and staff within the customer organization.
- With service providers that host, secure, and operate the platform (such as cloud storage and identity services).
- When required by law, regulation, or to protect the rights, safety, and integrity of the service.
We do not sell or rent personal information. We do not share data for advertising purposes.
Security and retention
We use administrative, technical, and physical safeguards to protect information, including encryption in transit, access controls, and short-lived document links. We are committed to HIPAA compliance and apply safeguards consistent with HIPAA requirements and healthcare customer agreements.
Data retention is governed by the healthcare organization and applicable law. Photos and documentation may be stored on-device temporarily until uploads complete.
Permissions and on-device storage
The app requests certain permissions to support clinical workflows. You can deny permissions, but some features may not function as intended.
Wound and tube images can be cached securely on the device while uploads are pending, then removed once the upload succeeds.
Your choices and rights
- Clinicians can update or correct wound documentation within authorized workflows.
- Patients should contact their care provider to request access or corrections to records.
- You can disable location access in device settings; some features may be limited.
Children
The app is intended for clinical professionals and is not directed to children.
Changes
We may update this policy from time to time. Updates will be posted on this page with a revised "Last updated" date.
Contact
For privacy questions or requests, contact pjs@aaaemr.com.