Privacy Policy
Demo (mock) — powered by AIDA from PrecipiceCare
Effective date: May 17, 2026 · Governing law: Canada (PIPEDA + applicable provincial privacy legislation)
1. Who We Are (Accountability)
PrecipiceCare Inc. ("PrecipiceCare", "we", "us") operates the AIDA AI scheduling assistant on behalf of Demo (mock) (the "Clinic"). PrecipiceCare acts as a data processor; the Clinic is the data controller responsible for your health information under applicable law.
We are subject to Canada's Personal Information Protection and Electronic Documents Act (PIPEDA). Where Demo (mock) operates in Ontario, Ontario's Personal Health Information Protection Act (PHIPA) also applies — and takes precedence over PIPEDA for personal health information.
We have designated a Privacy Officer accountable for our compliance with PIPEDA and PHIPA. For any privacy inquiry, contact:
2. What Information We Collect and Why (Identifying Purposes)
AIDA collects only the minimum information required to help you book or manage appointments at Demo (mock):
| Full name | To search for your patient record in the Clinic's Electronic Medical Record (EMR) |
| Date of birth | To confirm identity and retrieve the correct patient record |
| Appointment preferences | To find and book suitable time slots (doctor, date, time) |
| Voice/text input | Real-time speech recognition via OpenAI (United States). Audio is processed but not retained after your session ends. See Section 2a. |
We do not collect clinical data, diagnoses, medications, insurance numbers, payment information, or any information beyond what is needed to complete a scheduling task.
2a. Voice Processing & AI Sub-Processors
AIDA uses real-time voice AI to understand your spoken requests. Your voice is transmitted to OpenAI, LLC (United States) for speech processing via the OpenAI Realtime API. Phone-based voice calls are routed through Twilio Inc. (United States). By using AIDA's voice interface, you consent to these cross-border transfers under PIPEDA Principle 3.
OpenAI, LLC — Speech AI
| Sub-processor | OpenAI, LLC — San Francisco, California, USA |
| Data transferred | Short audio segments and transcribed text of your spoken request (no health records) |
| Retention by OpenAI | Zero-day retention — OpenAI's API does not store audio or transcripts after processing (per OpenAI API Data Usage Policy) |
| Purpose | Speech-to-text and natural language understanding for scheduling requests only |
| Safeguard | Data in transit encrypted via TLS 1.3; OpenAI API terms prohibit use of API inputs for model training; OpenAI Data Processing Addendum executed |
Twilio Inc. — Voice Call Routing
| Sub-processor | Twilio Inc. — San Francisco, California, USA |
| Data transferred | Phone call audio stream (inbound call routing only; no health record content) |
| Retention by Twilio | Call recording is disabled. Twilio retains call metadata (duration, timestamp) per their standard data retention policy |
| Purpose | Inbound phone call routing to AIDA voice assistant only |
| Safeguard | Data in transit encrypted via TLS; Twilio HIPAA Business Associate Agreement (BAA) executed; call recording explicitly disabled |
If you prefer not to use the voice interface, you may type your request instead — no audio is transmitted in text mode.
3. Consent
Before any session begins, you are presented with a clear consent notice explaining that AIDA will access your appointment records at Demo (mock) and that voice input is processed by OpenAI in the United States. Clicking "I Agree — Continue" constitutes your express consent under PIPEDA Principle 3, including consent to the cross-border transfer described in Section 2a.
You may withdraw consent at any time by ending the session. If you click "No thanks", no information is collected and no EMR lookup is performed.
4. Limiting Collection
We collect only what is necessary for the scheduling purpose you have initiated. AIDA does not ask for, record, or store any health information beyond your name, date of birth, and appointment details.
5. Use, Disclosure & Retention
Your information is used solely to:
- Search for your existing patient record in the Clinic's EMR
- Display available appointment slots and confirm bookings
- Confirm, reschedule, or cancel an existing appointment
We do not:
- Store your name, date of birth, or appointment details in our systems after your session ends
- Share your information with third parties for marketing or analytics
- Use your information to train AI models
- Transfer your data outside Canada without your explicit consent
Your health records remain exclusively within the Clinic's EMR system (OscarPro, operated by Well Health Technologies). PrecipiceCare accesses them transiently during your session and does not retain a copy.
Retention: Session audit logs (containing only resource identifiers — not your name or clinical data) are retained for 24 months for PIPEDA/PHIPA compliance purposes, then automatically and securely deleted via a scheduled maintenance job on the first of each month.
6. Accuracy
AIDA retrieves your information directly from Demo (mock)'s EMR in real time. If you believe your records are inaccurate, please contact the Clinic directly — they are the authoritative data custodian.
7. Safeguards
PrecipiceCare implements the following technical and organizational safeguards:
| Transport encryption | All data in transit is encrypted via TLS 1.2+ (HTTPS) |
| No client-side PHI | Health data is processed server-side only and never sent to your browser |
| API key authentication | All connections between AIDA and the Clinic's gateway are authenticated |
| Per-tenant isolation | Each clinic's data is logically isolated; no cross-clinic data access is possible |
| Audit logging | Every PHI access is logged with timestamp, resource type, and session ID (no PHI content in logs) |
| Access controls | The admin API is protected by a secret key; no public access to tenant configuration |
8. Openness
This Privacy Policy is publicly accessible at /privacy on every AIDA-powered clinic subdomain. We will notify affected users of any material changes by updating the effective date and, where required, through direct communication.
9. Individual Access
You have the right to request access to personal information PrecipiceCare holds about you. Since we do not retain copies of your health records, requests relating to your health information should be directed to Demo (mock) directly.
For requests relating to session audit logs (which contain only non-identifying resource IDs), contact us at privacy@precipicecare.com. We will respond within 30 days.
10. Challenging Compliance
If you have a concern about our privacy practices, please contact our Privacy Officer at privacy@precipicecare.com. We will investigate and respond within 30 days.
If you are not satisfied with our response, you may file a complaint with the Office of the Privacy Commissioner of Canada (OPC) at priv.gc.ca or with your provincial privacy commissioner if applicable.
Provincial Privacy Laws
In addition to PIPEDA, the following provincial legislation may apply depending on the province in which Demo (mock) operates:
| Ontario | Personal Health Information Protection Act (PHIPA) |
| British Columbia | Personal Information Protection Act (PIPA BC) |
| Alberta | Health Information Act (HIA) + Personal Information Protection Act (PIPA AB) |
| Quebec | Law 25 (Act respecting the protection of personal information in the private sector) |