Last updated: August 3, 2025
This Privacy Policy ("Policy") outlines how Locata AI, Inc. ("Locata," "we," "our," or "us") collects, uses, shares, and protects personal information, and what rights you have regarding your data.
This Policy applies to information collected through our website and our platform (together, the "Services") and explains our data practices in connection with individuals who interact with us, including our customers, their patients, and visitors to our site.
Please read this Policy carefully. By accessing or using the Services, you agree to the terms outlined here. If you do not agree with this Policy, please do not use our Services or provide personal information to us.
We may collect personal information directly from you when you:
This information may include your name, contact details, company name, job title, and other details you choose to share. If you are a patient of a health center that uses our platform, we may also collect your communication details if you interact with us (e.g., via notification texts), strictly on behalf of your provider.
When you use our Services, we automatically collect certain information, including:
Locata processes protected health information (PHI) exclusively on behalf of our healthcare provider customers in accordance with our contractual obligations and applicable laws, including HIPAA. This includes intake forms, referral documentation, insurance records, and other administrative data used to support clinical workflows.
We do not use PHI for our own purposes, and access to PHI is strictly controlled. All such data is encrypted at rest and in transit using industry-standard protocols.
We may use aggregated or de-identified data—stripped of personal identifiers—for purposes such as:
This data does not identify individuals and may be shared externally, such as in research, publications, or provider reports.
We use your personal information to:
We do not sell your personal information. We only share it in limited circumstances to provide the Services, comply with legal obligations, or with your consent. Below are the categories of third parties with whom we may share personal information, and the purposes for doing so:
We engage third-party vendors and service providers who perform services on our behalf and under our instructions. These include providers of:
These third parties are only given access to the personal information necessary to perform their designated functions and are contractually obligated to protect the information and use it only for the purposes for which it was shared.
We may share your personal information with our professional service providers, such as lawyers, accountants, auditors, or insurance providers, where necessary in the course of the services they provide to us. These parties are subject to confidentiality obligations.
Although Locata currently operates as an independent entity, we may in the future be part of a group of affiliated companies. If so, we may share personal information with our future affiliates for purposes consistent with this Privacy Policy and applicable law.
If Locata is involved in a potential or actual merger, acquisition, financing, reorganization, bankruptcy, dissolution, or other transaction involving the sale or transfer of some or all of our business or assets, your personal information may be disclosed as part of due diligence or transferred as part of that transaction, subject to appropriate confidentiality protections.
We may disclose personal information if we believe it is necessary to:
We may share aggregated or de-identified data that does not reasonably identify you with third parties for research, analytics, product development, or benchmarking purposes.
In some cases, we may share your personal information with third parties when you explicitly direct us to do so or provide us with your informed consent.
We take the security of your information seriously. Locata uses encryption, access controls, and other safeguards to protect your data both in transit and at rest. All health data is managed using HIPAA-compliant infrastructure.
While we strive to protect your information, no digital system is 100% secure. You use the Services at your own risk, and we encourage responsible data practices on your end.
We retain personal information only as long as needed for the purposes described in this Policy, including legal, regulatory, or operational needs. Health data is retained in accordance with our provider contracts. Usage data may be retained longer for analytics and system improvement.
Depending on your jurisdiction, you may have rights to:
To exercise these rights, please contact us at privacy@locatahealth.com. We may require verification of your identity before fulfilling requests.
When you apply for a job at Locata, we collect and process your application data to evaluate qualifications and fulfill our hiring obligations. This may include resumes, contact info, employment history, and optional demographic data.
Locata does not knowingly collect personal information directly from children under the age of 16 without appropriate consent. We do not offer Services directly to minors for personal, household, or consumer use.
However, we may process personal and health information about children as part of the Services we provide to healthcare provider customers, who are responsible for collecting that information in compliance with applicable laws (including HIPAA and, where relevant, COPPA). Any such information is processed strictly on behalf of the healthcare provider and pursuant to our contractual agreements, including applicable Business Associate Agreements.
If you are a parent or guardian and believe that your child's personal information has been provided to Locata in error or without proper authorization, please contact us at privacy@locatahealth.com, and we will work with the relevant provider to address the issue.
Our Services may contain links to third-party websites or platforms. We do not control their privacy practices and encourage you to review their privacy policies before sharing data with them.
We may update this Policy from time to time. The latest version will always be posted on our site with the date of last revision. If changes are significant, we will notify you by email or via the Services. Continued use of the Services after updates means you accept the revised terms.
If you have any questions or concerns about this Privacy Policy or our practices, please contact us at privacy@locatahealth.com.