Dizignate Privacy Policy
Effective Date: 14 Aug 2025
Introduction & Scope
Dizignate (“we,” “our,” “us”) values your privacy and is committed to safeguarding your personal information and the personal information you manage through our services. This Privacy Policy explains how we collect, use, disclose, and protect your data when you visit our website https://dizignate.com, use our software, or engage with our marketing services.
This policy applies to:
Visitors to our website.
Registered customers using our digital marketing, CRM, booking, and automation tools.
Customers who use our HIPAA-compliant solutions for managing patient or client data.
Any communication, data transfer, or integration performed via our platform.
We comply with:
General Data Protection Regulation (GDPR) – for users in the European Economic Area (EEA).
California Consumer Privacy Act (CCPA) – for California residents.
Digital Personal Data Protection Act (DPDP Act, India) – for our Indian operations and customers.
Health Insurance Portability and Accountability Act (HIPAA) – for healthcare providers, clinics, and RN injectors handling Protected Health Information (PHI).
By using our website or services, you agree to the practices described in this Privacy Policy. If you do not agree, please discontinue use of our services.
Data We Collect & How We Use It
We collect two main categories of information:
General Business & Marketing Data – for operating our website, delivering marketing services, and improving user experience.
Protected Health Information (PHI) – only when explicitly required by customers using our HIPAA-compliant services.
A. Information You Provide to Us
When you engage with our website, sign up for a service, or use our tools, you may provide:
Personal Information: Name, email address, phone number, business name, billing address, and payment details.
Account Information: Login credentials, service preferences, and communication settings.
Business Data: Campaign assets, branding materials, and customer lead details you upload to our platform.
Healthcare Data (HIPAA-PHI): If you are a healthcare provider or clinic, PHI you store, transmit, or process through our HIPAA-compliant solutions (e.g., patient names, contact info, appointment details, treatment notes).
B. Information Collected Automatically
When you use our website or platform, we may automatically collect:
Device & Usage Information: IP address, browser type, device identifiers, operating system, and access times.
Analytics Data: Pages visited, time spent on pages, clicks, and referring websites, using cookies and tracking technologies.
Log Data: System logs for troubleshooting and security monitoring.
C. How We Use This Information
We use collected data to:
Provide & Manage Services – Set up accounts, process transactions, deliver campaigns, and provide technical support.
Improve Platform Performance – Enhance features, security, and usability based on analytics.
Marketing & Communication – Send service updates, offers, and relevant content (opt-out available).
Compliance & Legal Requirements – Meet obligations under applicable laws, including GDPR, CCPA, DPDP, and HIPAA.
HIPAA-Specific Use –
PHI is used only for purposes authorized by you, the covered entity.
We do not use PHI for marketing or unrelated purposes without explicit written authorization.
All PHI is stored, transmitted, and accessed using HIPAA-compliant safeguards.
How We Share & Protect Your Information
A. How We Share Information
We do not sell, rent, or trade your personal information or PHI to third parties.
We may share information in the following cases:
Service Providers & Vendors – We may share data with trusted third-party providers who assist us in delivering our services (e.g., hosting providers, payment processors, analytics platforms, communication tools). All such vendors handling PHI must sign a Business Associate Agreement (BAA) and adhere to HIPAA standards.
Legal Requirements – We may disclose information if required to do so by law, court order, or government regulation, including to meet HIPAA, GDPR, CCPA, or DPDP Act obligations.
Business Transfers – In the event of a merger, acquisition, or sale of assets, information may be transferred to the new owner, with safeguards maintained for PHI as required by HIPAA.
With Your Consent – We may share data for any other purpose with your explicit permission.
B. How We Protect Information
We implement administrative, technical, and physical safeguards to secure your information, including:
Encryption: All PHI and sensitive personal data are encrypted during transmission (SSL/TLS) and at rest.
Access Controls: Role-based access, password policies, and multi-factor authentication (MFA) for authorized personnel.
Audit Logs: Tracking and monitoring of access to PHI to ensure compliance and detect unauthorized activity.
Data Minimization: We collect only the minimum necessary information for service delivery.
HIPAA-Specific Measures:
Regular risk assessments and vulnerability testing.
Business Associate Agreements with all subcontractors handling PHI.
Policies to ensure PHI is never used for marketing without written authorization.
Incident response protocols for reporting and mitigating breaches.
Your Rights & How to Contact Us
A. Your Rights Under Privacy Laws
Depending on your location, you may have the following rights under applicable laws (GDPR, CCPA, DPDP Act, HIPAA):
Access Your Data – Request a copy of the personal information or PHI we hold about you.
Correction – Ask us to update or correct inaccurate or incomplete information.
Deletion – Request deletion of your personal information, subject to legal and contractual obligations.
Restriction of Processing – Request limits on how we use your personal data.
Data Portability – Request your data in a structured, machine-readable format.
Opt-Out of Marketing – You can opt out of receiving marketing emails at any time by clicking “unsubscribe” in our emails or contacting us directly.
HIPAA-Specific Patient Rights (if applicable):
Request an accounting of disclosures of your PHI.
Request amendments to your medical records.
Request restrictions on certain uses or disclosures of PHI.
Receive a copy of this Privacy Policy and our HIPAA Notice of Privacy Practices.
B. Exercising Your Rights
To exercise any of these rights, please send your request to [email protected] with the subject line "Privacy Request".
We may need to verify your identity before processing your request, in compliance with legal requirements.
C. Data Retention
We retain personal data and PHI only as long as necessary to provide our services, comply with legal obligations, resolve disputes, and enforce agreements. When data is no longer needed, it is securely deleted or anonymized.
D. Updates to This Policy
We may update this Privacy Policy from time to time. Changes will be posted on our website with a revised “Effective Date.” We encourage you to review the policy periodically.
E. Contact Us
If you have questions, concerns, or complaints about this Privacy Policy or our privacy practices, please contact:
Dizignate
Email: [email protected]
Website: https://dizignate.com