logo

Privacy Policy

Protecting Your Privacy

Last updated: February 21, 2025

1. Introduction

EEG Insights ("we", "us", or "our") is committed to protecting your privacy and handling your data with the utmost care. This Privacy Policy explains our practices regarding the collection, use, and protection of your personal and neurological data when you use our services.

Given the sensitive nature of neurological data, we maintain stringent privacy and security measures that meet or exceed industry standards and regulatory requirements.

2. Information We Collect

2.1. Personal Information

  • Contact information (name, email, phone number, address)
  • Demographic information (age, gender, occupation)
  • Payment information (processed through secure third-party providers)
  • Emergency contact information
  • Communications with us

2.2. Health Information

  • Medical history relevant to EEG scanning
  • Current medications and treatments
  • Known neurological conditions
  • Healthcare provider information (if applicable)

2.3. Neurological Data

  • Raw EEG recordings
  • Processed EEG data and analysis
  • Cognitive performance metrics
  • Session notes and observations
  • Historical EEG data and trending information

3. How We Use Your Information

3.1. Service Provision

  • Conducting EEG sessions and analysis
  • Generating insights and recommendations
  • Managing appointments and communications
  • Processing payments and maintaining records

3.2. Service Improvement

  • Enhancing our analysis methodologies
  • Improving our service quality
  • Training our systems and staff
  • Developing new features and services

3.3. Research and Development

With explicit consent, we may use anonymized data for:

  • Scientific research and publication
  • Population-level analysis
  • Technology development
  • Collaborative research projects

4. Data Protection and Security

4.1. Technical Measures

  • End-to-end encryption of all neurological data
  • Secure, redundant data storage systems
  • Regular security audits and penetration testing
  • Multi-factor authentication for data access
  • Automated threat detection and prevention

4.2. Organizational Measures

  • Strict access controls and permissions
  • Regular staff security training
  • Written security policies and procedures
  • Data handling protocols and documentation
  • Incident response plans

5. Data Sharing and Disclosure

We may share your information with:

  • Service providers who assist in our operations (subject to strict data protection agreements)
  • Research partners (with explicit consent and data anonymization)
  • Legal authorities when required by law
  • Emergency contacts in case of medical necessity

We do not sell, rent, or trade personal or neurological data to third parties.

6. Data Retention and Deletion

  • Personal data retained for 7 years after last service
  • Raw EEG data retained for 3 years unless otherwise requested
  • Analyzed results retained for 7 years
  • Secure data destruction protocols for deleted data
  • Option to request earlier deletion (subject to legal requirements)

7. Your Rights and Controls

You have the right to:

  • Access your personal and neurological data
  • Request corrections to your information
  • Withdraw research consent
  • Request data deletion (subject to legal requirements)
  • Receive your data in a portable format
  • Object to certain data processing
  • Restrict data sharing

8. International Data Transfers

If we transfer your data across national borders, we ensure:

  • Compliance with applicable data protection laws
  • Appropriate data transfer agreements
  • Adequate security measures
  • Protection of your privacy rights

9. Children's Privacy

For clients under 18 years of age:

  • Parental/guardian consent required
  • Enhanced data protection measures
  • Restricted data sharing and research use
  • Special handling of neurological data

10. Changes to Privacy Policy

We may update this policy to reflect:

  • Changes in our practices
  • New regulations and laws
  • Technology advancements
  • Service improvements

We will notify you of material changes via email and website notice.

11. Breach Notification

In the event of a data breach, we will:

  • Notify affected individuals promptly
  • Inform relevant authorities as required
  • Provide details about the breach and our response
  • Take measures to mitigate potential harm

12. Contact Information

For privacy concerns or to exercise your rights:

EEG Insights
Email: [email protected]
Address: 16 Middleneck Road PMB570, Great Neck, New York 11021