Data Protection and Compliance
This page collects an upper level information covering legal aspects of using Haut.AI services as a client.
Haut.AI Services are GDPR-compliant
We act as a data processor, and our clients remain the data controllers. We process data based solely on the client's instructions and in accordance with GDPR regulations.
If you want to learn more about GDPR, check out this website: GDPR.
Haut.AI Services are HIPAA-compliant
We ensure that all personal health information is handled in accordance with HIPAA regulations, maintaining the privacy and security of sensitive data. We provide all the necessary safeguards to ensure the confidentiality, integrity, and availability of protected health information (PHI) for any data stored in the cloud or downloaded to a mobile device.
If you want to learn more about HIPAA, check out this website: HIPAA.
Client Data
Client is a data owner
The client, as the data controller, retains ownership of all data and photos. Haut.AI acts solely as a data processor, handling the data based on the client's instructions.
Haut.AI does not require consent forms, but we do require that a customer guarantee that all uploaded data was obtained lawfully, is compliant with data protection and electronic communications laws, and has all the necessary consents to process personal data.
Data retention period
Haut.AI stores the uploaded data for as long as the Data Processing Agreement (DPA) between the client and Haut.AI is not terminated. Clients can control data retention and remove data at any time.
Upon DPA termination, Haut.AI can perform one of 2 actions:
release all the data to the client
delete all the data per the client's instructions
To request any of these actions, please reach out directly to your customer success manager.
Last updated