Privacy Policy

Effective Date: January 1, 2025

Neoptio Health Incorporated (“Neoptio,” “we,” “us,” or “our”) is committed to respecting your privacy and safeguarding your personal data. This Privacy Policy explains how we collect, use, disclose, and protect the information gathered via our website (www.neoptio.com), mobile applications, and related services (collectively, the “Services”).

We are headquartered in Vancouver, British Columbia, Canada, and aim to comply with all applicable Canadian privacy laws, including the Personal Information Protection and Electronic Documents Act (PIPEDA) and BC’s Personal Information Protection Act (PIPA). We may process data internationally (e.g., in the U.S. or other regions), and will adhere to relevant local regulations where we operate.

1. Who We Are

Neoptio is an AI-driven mental health platform offering assessments, clinical decision support, and digital therapeutics. Our mission is to enhance global mental well-being by providing both free and paid mental health tools, covering everything from early screening to advanced therapeutic modules.

Contact Information:

Neoptio Health Incorporated
1200 Waterfront Centre, 200 Burrard St., P.O. Box 48600
Vancouver, BC, 
Canada V7X 1T2

Email: privacy@neoptio.com

Attn: Privacy Officer

If you have any privacy-related questions or requests, you may also direct them to our Privacy Officer using the contact details above.

2. Scope & Consent

By accessing or using our Services, you indicate that you have read, understood, and agree to our collection, use, and disclosure of your personal information as described here. Where required by law, we will obtain your express consent (e.g., for sensitive health data).

If you do not agree with this Policy, please discontinue use of our Services.

3. What Data We Collect

3.1 Personal Information

We collect minimal personal information necessary to provide our Services effectively:

  • Contact Details: Name, email address, phone number, or mailing address if you create an account, request info, or contact us.
  • Account Credentials: Username, password, authentication tokens for secure login.
  • Payment Information: For paid features or subscriptions, we partner with secure third-party processors; typically, only transaction IDs are stored, not full credit card details.
  • Health-Related Data: If you use our mental health modules, you may provide sensitive health info. We only collect and process it with your explicit consent as required by PIPEDA and BC’s PIPA.

3.2 Usage & Technical Data

We automatically collect non-identifiable or aggregated data:

  • IP Address
  • Device Information (e.g., OS, browser type, device identifiers)
  • Usage Logs (pages visited, timestamps, features used)

These help us analyze security, performance, and user engagement for continuous improvement.

3.3 Cookies & Similar Technologies

We use cookies, web beacons, and similar tech to:

  • Remember user preferences
  • Analyze traffic and usage
  • Enhance security and user experience

You can disable cookies via your browser settings, though some features may be limited.

4. How We Use Your Information

We use personal data for:

  1. Providing & Improving Services
    • Deliver AI-based assessments and digital therapeutics
    • Debug and enhance functionality, reliability, and security
  2. Personalization & User Support
    • Tailor recommendations (e.g., relevant modules or follow-ups)
    • Respond to inquiries and customer support needs
  3. Data Analytics & AI Research
    • Refine our conversational AI and screening logic
    • Use anonymized/aggregated data for product development or scientific research
  4. Legal & Regulatory Compliance
    • Fulfill obligations under PIPEDA, BC PIPA, or other applicable laws
    • Protect rights, property, or safety of Neoptio, our users, or the public

Health Data Handling

Given our mental health focus, we collect sensitive data to generate personalized insights. We handle such data confidentially under PIPEDA and BC’s PIPA, obtaining explicit consent where necessary, and only retain it as long as needed for the intended purpose.

5. Sharing & Disclosure of Data

We do not sell personal data. However, we may share information:

  1. Service Providers
    • With vendors assisting in hosting (e.g., Microsoft Azure, AWS), analytics, or payment processing under confidentiality agreements.
  2. Health System Collaborations
    • With pilot partners or enterprise clients, only with user consent or via de-identified data protocols.
  3. Legal Requirements
    • In response to lawful requests (court orders, subpoenas) or government regulations.
  4. Business Transfers
    • If Neoptio is involved in a merger, acquisition, or asset sale, data may be transferred with similar privacy safeguards.
  5. Anonymized & Aggregated Data
    • For research, public health analysis, or product improvement, ensuring no individual user is identifiable.

6. International Data Transfers

While based in Canada, we may use secure servers in other countries (e.g., the U.S.) for data storage and processing. When transferring personal data outside Canada, we implement measures (like contractual clauses) to ensure comparable privacy protection as required by PIPEDA. If we expand to other jurisdictions (e.g., the EU, UAE, or others), we commit to complying with their applicable data protection laws.

7. Data Retention & Security

7.1 Retention

We retain personal data for only as long as necessary to:

  • Fulfill the purpose of collection
  • Comply with legal, accounting, or reporting obligations

Afterward, we securely delete or anonymize the data.

7.2 Security Measures

We maintain technical, administrative, and physical safeguards:

  • Encryption (e.g., HTTPS)
  • Access Controls limiting who can view sensitive health data
  • Periodic Audits & Testing for a robust security posture

No method of data transmission or storage is 100% secure, but we strive to use industry best practices to protect your information.

8. Your Rights & Choices

Under Canadian law (PIPEDA, BC PIPA), you may:

  1. Access or Correct your personal data
  2. Withdraw Consent for certain data uses
  3. Request Deletion (subject to legal limitations)
  4. File a Complaint with the Office of the Privacy Commissioner of Canada or the BC Office of the Information and Privacy Commissioner if you believe we’re not handling your data properly

To exercise these rights or for questions about our data practices, please email privacy@neoptio.com. We may need to verify your identity before processing such requests.

9. Children’s Privacy

We do not knowingly collect personal data from children under 13 (or other local age thresholds) without verifiable parental consent, as required by Canadian law. If you believe we’ve inadvertently collected data from a child, please contact us at privacy@neoptio.com to request its deletion.

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we’ll revise the Effective Date and, if significant changes occur, we’ll provide a prominent notice on our website or via email. Continued use of the Services after any changes indicates acceptance of the updated policy.

11. Contact Us

For privacy-related inquiries, requests, or concerns, please reach out to:

Neoptio Health Incorporated
1200 Waterfront Centre, 200 Burrard St., P.O. Box 48600
Vancouver, BC, 
Canada V7X 1T2Attn: Privacy Officer