Privacy Policy

Last updated: 2026-04-21
For questions: security@rhythmiqi.com

1. What We Collect

  • ECG recordings you upload.
  • Pattern Summaries and related derived processing records.
  • Account information such as your email address.
  • Basic device, session, security, and operational metadata needed to run and protect the service.

2. How We Use Data

  • Analyze ECG recordings and generate Pattern Summaries.
  • Authenticate users, secure accounts, and provide Sinoa features.
  • Operate, monitor, troubleshoot, and improve system performance.
  • Maintain security, respond to abuse, and meet legal obligations.

3. Recording Completeness and Result Scope

Sinoa classifies uploaded recordings based on the amount of usable contiguous signal available.

A complete qualifying recording may produce a full Pattern Summary. Shorter or incomplete recordings may still show waveform previews or limited segment-based evidence. These non-full recordings are excluded from standard trend summaries and full-summary comparisons.

Only recordings that meet the full recording requirements are included in standard trend summaries and comparison features.

4. Data Protection

We use encryption in transit and encryption at rest for verified live production PVC-backed data stores, including uploads, Pattern Summary artifacts, inference uploads, release-store data, PostgreSQL data, and Redis data. This statement does not cover backups, off-cluster replicas, or storage outside those verified live volumes.

5. Data Retention

We retain active data as needed for service functionality, account access, security, legal obligations, and plan-based retention behavior.

When you request account cleanup or delete supported content, we remove that data from live systems in accordance with the product's deletion controls.

Backup or snapshot deletion may not occur immediately and is not guaranteed on the same timeline as live-system deletion.

6. Notifications

Sinoa does not currently send push notifications as part of the product.

7. Data Sharing

We do not sell your personal data.

Data is shared only when you initiate sharing, when needed to operate the service with infrastructure or billing providers, or when required by law.

8. Your Rights and Choices

  • Request deletion of supported live account data.
  • Request access to your account data.
  • Update supported account settings such as display name and timezone.

9. Health Data Notice

Even when HIPAA does not apply to this service model, health-related information remains sensitive.

Sinoa is an educational product and not a clinical diagnosis workflow. Non-HIPAA health app operators may still be subject to FTC health-data obligations, including the Health Breach Notification Rule where applicable.