Privacy Policy draft

This draft explains how EMDRSuite is designed to handle account, session, and product information. It should be reviewed by qualified legal and privacy counsel before production use.

Information we collect

Account details, practice information, patient metadata, session configuration, and support communications may be processed to provide the service.

How information is used

Data is used to create accounts, manage access, provide secure sessions, improve the product, and support customers.

Clinical privacy

Clinical notes and session data should be handled with strict access control, transport encryption, audit-ready policies, and jurisdiction-specific legal review.

Data minimization

The product should avoid storing sensitive clinical content unless it is necessary for the therapist workflow.