Privacy and data handling
Privacy is not an isolated legal page. It is part of how every case enters and moves.
This policy summarizes what information may pass through Alistus, how it is used inside the pre-consultation workflow and which controls exist to protect it. It is written for clinics evaluating the platform and for patients sending information before the visit.
What data may be received
Photos, forms, documents, audio, contact details and clinical context sent before the consultation.
Why it is used
To organize, review and improve upstream decisions inside the workflow defined by the clinic.
Who may see it
Only the team authorized by the clinic according to role and operational need inside the case.
How long it stays
Retention is not indefinite by default; it depends on the workflow, the case and applicable policies.
1. Information that may be collected
Alistus may process personal and clinical data that the patient or clinic submits as part of pre-consultation: name, contact details, relevant history, forms, images, documents and any file requested before a visit or evaluation.
2. Purpose of processing
The platform is used to organize case intake, detect missing items, facilitate prior review and help reception, assistants and specialists make better decisions before opening calendar time or moving to the next step.
3. Access and confidentiality
Access to information is limited to users authorized by the clinic. The goal is for each person to see what they need for their part of the process, not to leave the record broadly exposed.
4. Retention and deletion
Data lifetime depends on the clinical workflow, the case status and the operating policy. The clinic may require cleanup, limited retention or additional review depending on its regulatory framework and internal process.
5. Privacy-related requests
When a clinic or patient needs to review a request related to treatment or retention of data, the next step should be handled through the official contact channel of the responsible team.