Privacy policy

Effective Date: January 1, 2026


Care1 (“we,” “us,” or “our”) operates a telemedicine platform that enables healthcare providers and patients to collaborate on clinical care. We are committed to protecting personal information and complying with the Personal Information Protection and Electronic Documents Act (PIPEDA).


This Privacy Policy explains how we collect, use, disclose, store, and safeguard personal information in accordance with PIPEDA’s Fair Information Principles.


1. Accountability


We are responsible for personal information under our control and have designated a Privacy Officer who oversees compliance with PIPEDA and applicable provincial privacy laws.


All employees, contractors, and healthcare professionals with access to personal information are bound by confidentiality obligations and receive privacy training appropriate to their role.


2. Identifying Purposes


We identify and document the purposes for collecting personal information at or before the time of collection.


Personal information is collected for purposes including:


  • Providing telemedicine services and virtual consultations
  • Facilitating communication between healthcare providers
  • Managing user accounts and authentication
  • Generating and storing clinical documentation
  • Ensuring platform security, quality assurance, and auditability
  • Meeting legal, regulatory, and professional obligations


3. Consent


We obtain meaningful consent for the collection, use, and disclosure of personal information, except where otherwise permitted or required by law.

  • Consent may be express (e.g., electronic acknowledgement) or implied depending on context
  • Patients consent through platform use and submission of information
  • Healthcare providers consent when uploading or accessing patient data within their scope of care

Consent may be withdrawn at any time, subject to legal, contractual, and clinical limitations.


4. Limiting Collection


We collect only the personal information necessary for the identified purposes.


Information collected may include:

  • Identifying information (e.g., name, date of birth, contact details)
  • Health and clinical information submitted by healthcare providers or patients
  • Account credentials and authentication data
  • Technical information (e.g., IP address, device type, system logs)

We do not collect personal information indiscriminately.


5. Limiting Use, Disclosure, and Retention


Personal information is used and disclosed only for the purposes for which it was collected or as required by law.


Information may be disclosed:

  • To authorized healthcare professionals involved in care
  • To service providers supporting platform operations (under contractual safeguards)
  • To regulators or authorities where legally required


Personal information is retained only as long as necessary to fulfill its purpose and meet legal or regulatory retention requirements, after which it is securely destroyed or anonymized.


6. Accuracy


We take reasonable steps to ensure that personal information is accurate, complete, and up to date for the purposes for which it is used.


Users are encouraged to review and update their information. Healthcare providers are responsible for the clinical accuracy of information they submit.


7. Safeguards


We protect personal information using safeguards appropriate to its sensitivity, including:

  • Encryption of data in transit and at rest
  • Role-based access controls
  • Secure authentication and logging
  • Network, application, and infrastructure security measures
  • Policies and procedures governing data access and incident response

Safeguards apply regardless of the format in which information is stored.


8. Openness


We make information about our privacy practices readily available through this Privacy Policy and upon request.


This policy describes:


  • What personal information we collect
  • How it is used and disclosed
  • How it is protected
  • How individuals can access or challenge our practices


9. Individual Access

Upon written request, individuals may:

  • Be informed of the existence, use, and disclosure of their personal information
  • Access their personal information
  • Request corrections to inaccurate or incomplete information

Access requests may be subject to legal or clinical limitations. Requests can be submitted to the Privacy Officer using the contact information above.


10. Challenging Compliance


Individuals may raise concerns or complaints regarding our privacy practices.


Complaints will be:

  • Acknowledged promptly
  • Investigated thoroughly
  • Responded to in writing

If concerns are not resolved, individuals may contact the Office of the Privacy Commissioner of Canada.


11. Third-Party Services and Data Location


We may use third-party service providers (e.g., cloud hosting, communications tools) to support our platform. These providers act on our behalf and are contractually required to maintain privacy and security safeguards consistent with PIPEDA.


Personal information may be stored or processed in Canada or other jurisdictions. Where information is transferred outside Canada, it remains subject to appropriate safeguards.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Material changes will be posted on our website or communicated through the platform.

Contact Us

If you have any questions about this Privacy Policy or how we handle personal information, please contact:

Privacy Officer
Name: Andrew Kozman
Email: andrewk@care1.ca

Subscribe to our newsletter
Platform
HomeProductsPricingLogin
Our Story
About UsContact UsTestimonials
Insights
BlogResources
Socials
LinkedInFacebookInstagram
Copyright © 2025 Care1 Inc. All rights reserved.
Privacy Policy