Axion Galaxy 360
Your Privacy Matters

Privacy Policy

Effective Date: November 18, 2025 | Last Updated: November 18, 2025

At Axion Galaxy 360, we understand that your privacy and the security of your health information is paramount. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our healthcare platform. We are committed to maintaining the highest standards of privacy and security in compliance with HIPAA, GDPR, and other applicable regulations.

1. Information We Collect

Personal Information

  • Name, email address, phone number, and contact details
  • Date of birth, gender, and demographic information
  • Professional credentials for healthcare providers
  • Insurance information and payment details

Health Information (PHI)

  • Medical history, diagnoses, and treatment records
  • Prescription information and medication history
  • Lab results and diagnostic imaging
  • Care plans and clinical notes
  • Communication between patients and healthcare providers

Technical Information

  • IP address, browser type, and device information
  • Usage data, access times, and pages viewed
  • Location data (with your permission)
  • Cookies and similar tracking technologies

2. How We Use Your Information

We use the information we collect for the following purposes:

Healthcare Services

  • Facilitate healthcare delivery and care coordination
  • Enable communication between patients and providers
  • Manage appointments and healthcare workflows
  • Process insurance claims and billing

Platform Operations

  • Create and manage user accounts
  • Provide customer support and respond to inquiries
  • Improve our services and develop new features
  • Ensure platform security and prevent fraud

Legal & Compliance

  • Comply with legal obligations and regulatory requirements
  • Respond to legal process and government requests
  • Protect rights, property, and safety
  • Conduct analytics for healthcare quality improvement

3. How We Share Your Information

We share your information only as described below and in compliance with HIPAA and other regulations:

With Your Consent

We share your health information with healthcare providers, insurance companies, and other parties you explicitly authorize.

For Treatment Purposes

We share information among healthcare providers involved in your care to ensure coordinated and effective treatment.

Business Associates

We work with third-party service providers who sign Business Associate Agreements (BAAs) and are bound by HIPAA requirements.

Legal Requirements

We may disclose information when required by law, court order, or to protect public health and safety.

4. Data Security

We implement comprehensive security measures to protect your information:

Technical Safeguards

  • 256-bit AES encryption at rest
  • TLS 1.3 encryption in transit
  • Multi-factor authentication
  • Regular security audits

Administrative Safeguards

  • Role-based access controls
  • Employee training programs
  • Incident response procedures
  • Regular risk assessments

Physical Safeguards

  • Secure data centers
  • 24/7 monitoring
  • Restricted facility access
  • Environmental controls

Compliance Standards

  • HIPAA compliant
  • SOC 2 Type II certified
  • GDPR compliant
  • ISO 27001 standards

5. Your Rights & Choices

You have specific rights regarding your personal and health information:

Access:Request copies of your personal and health information
Correction:Request amendments to incorrect or incomplete information
Deletion:Request deletion of your information (subject to legal requirements)
Portability:Receive your data in a structured, machine-readable format
Restriction:Request limitations on how we use your information
Opt-Out:Opt out of marketing communications and certain data uses

To exercise any of these rights, please contact our Privacy Officer at privacy@axiongalaxy360.com or call 1-888-AXION-360.

6. Data Retention

We retain your information for as long as necessary to provide services, comply with legal obligations, resolve disputes, and enforce agreements. Specific retention periods include:

  • Medical records: Minimum 7 years as required by federal law (longer if state law requires)
  • Account information: Duration of account plus 7 years
  • Transaction records: 7 years for tax and audit purposes
  • Marketing data: Until opt-out or account closure
  • Technical logs: 90 days for security and troubleshooting

7. Cookies & Tracking Technologies

We use cookies and similar technologies to enhance your experience:

Essential Cookies

Required for platform functionality and security

Analytics Cookies

Help us understand platform usage and improve services

Preference Cookies

Remember your settings and personalization choices

You can manage cookie preferences through your browser settings. Note that disabling certain cookies may limit platform functionality.

8. Children's Privacy

We comply with the Children's Online Privacy Protection Act (COPPA). For users under 18, we require parental or guardian consent. Parents/guardians have the right to:

  • Review their child's information
  • Request deletion of their child's information
  • Refuse further collection or use of their child's information
  • Manage consent and privacy settings

9. International Data Transfers

If you access our services from outside the United States, please note that your information may be transferred to, stored, and processed in the United States. We ensure appropriate safeguards are in place for international transfers, including:

  • Standard contractual clauses approved by regulatory authorities
  • Compliance with GDPR requirements for EU residents
  • Adherence to Privacy Shield principles where applicable

10. California Privacy Rights

California residents have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), including:

  • Right to know what personal information is collected
  • Right to delete personal information
  • Right to opt-out of the sale of personal information (we do not sell personal information)
  • Right to non-discrimination for exercising privacy rights
  • Right to correct inaccurate personal information
  • Right to limit use of sensitive personal information

11. Updates to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technologies, legal requirements, and other factors. We will notify you of material changes by:

  • Posting the updated policy with a new effective date
  • Sending notification to your registered email address
  • Displaying a prominent notice on our platform

Your continued use of our services after changes indicates acceptance of the updated policy.

12. Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us:

Privacy Officer:privacy@axiongalaxy360.com
Data Protection Officer:dpo@axiongalaxy360.com
Mailing Address:
Axion Galaxy 360, Inc.
Attn: Privacy Officer
123 Healthcare Way, Suite 100
San Francisco, CA 94105
Phone:1-888-AXION-360
HIPAA Complaints:hipaa@axiongalaxy360.com

You also have the right to file a complaint with the U.S. Department of Health and Human Services Office for Civil Rights or your local data protection authority.