No. It does not diagnose coronary artery disease, heart attack, stroke, or any medical condition. It provides risk estimation only.
Is HeartIQ Score a substitute for a doctor?
No. Users must consult a qualified registered medical practitioner before making any medical decisions.
What kind of data does HeartIQ Score collect?
HeartIQ Score may collect identity details, demographic data, health and lifestyle information, lab reports, imaging reports, and system usage logs.
Why is my personal and health data processed?
Data is processed strictly for cardiac risk assessment, care coordination, compliance, platform security, and anonymized research/algorithm improvement.
Is my data encrypted?
Yes. All data is encrypted at rest (AES-256) and in transit (TLS 1.2+). Unencrypted transmission is strictly prohibited.
Where is my data stored?
Data is stored in secure Azure-managed environments with encryption and access controls enforced.
Does HeartIQ Score sell my personal data?
No. Personal and health data are not sold to advertisers or commercial entities.
Who can access my data?
Access is restricted via Role-Based Access Control (RBAC) and least-privilege principles. Access is logged and monitored.
What happens if there is a data breach?
Incidents are assessed, contained, investigated, and reported as required by law, including regulatory notifications where applicable.
How quickly are security incidents handled?
Critical incidents (P1) must be acknowledged within 2 hours and contained within 12 hours.
Are backups maintained?
Yes. Automated daily backups of Azure databases are retained for a minimum of 30 days.
What is the Recovery Time Objective (RTO)?
The target recovery time for system restoration is within 24 hours.
What is the Recovery Point Objective (RPO)?
Maximum acceptable data loss is 24 hours.
Can I request deletion of my data?
Yes. Users may request erasure where legally permissible under the Digital Personal Data Protection Act (DPDP Act).
Is HeartIQ Score intended for children?
No. It is not intended for individuals under 18 unless parental/guardian consent is obtained.
Does HeartIQ Score provide emergency medical services?
No. In case of emergency symptoms such as chest pain or breathlessness, users must seek immediate medical attention
How does data flow through the system?
Data flows from user onboarding to scoring, lab integration, doctor consultation, and anonymized analytics, with security controls embedded at each stage.
How often are security and encryption policies reviewed?
Policies are reviewed annually or upon major regulatory or architectural changes
Under which law is HeartIQ Score governed?
HeartIQ Score aligns with the Digital Personal Data Protection Act, 2023, and disputes fall under jurisdiction of courts in Malappuram, India.
