Your security comes first
All your data on Medlio is securely protected. Medlio stores your data in a data center in the US and uses state-of-the-art, multi-layered security methods. These methods comply with best practices, and include both physical and logical protection, such as access control, encryption, and segregation.
Encryption keeps your data private in transit and at rest
We protect your data with multiple layers of security, including leading encryption technology like HTTP over Transport Layer Security (TLS with NIST recommended 2048-bit keys for RSA), often referred to as HTTPS. We employ managed data services with storage encryption for data at-rest, in-motion and including backups using AES-256.
Threat detection helps protect you
We continuously monitor our infrastructure and services to protect your data from threats. Our API Gateway meters, throttles, and analyzes all incoming connections to detect and prevent DDoS and other malicious attacks.
24/7 protected cloud infrastructure
Medlio operates on Microsoft Azure, one of the world’s most secure and reliable cloud infrastructures. Azure distributes data across multiple data centers, so that in the event of a fire or disaster, it can be automatically and seamlessly shifted to other stable and secure locations.
“Security and privacy are built right into the Azure platform.“
“Azure is continually updated to make it even more secure.”
“Azure Security Center makes Azure the only public cloud platform to offer continuous security-health monitoring.”
Medlio complies with data protection and privacy laws. As a user, you decide what you want to share. Medlio is not in the business of selling your personal data, or using your data for targeted advertising. Medlio is also committed to comply with the EU General Data Protection Regulation (GDPR).
We only store data that you share with us, either through the Medlio App or by connecting your Medlio account with your provider portals, tracking devices, or apps from third parties. We do not collect data about you from other sources. All your data is securely encrypted during transport and at rest.
You have the right to receive a full copy of all the data that we store about you. Should you find any incorrect data, you have the right to have that data corrected. You may ask for a copy of all the data that you have shared with Medlio. Should you decide to remove your Medlio account, we will delete your account and personal data after a deactivation period of 30 days.
Our App/Website provides you with access to your clinical records, health information, wellbeing and similar information (collectively the “Information“) compiled based on the details specified by you, such as clinical health data, family history and your lifestyle (the “Data“). The Information generated by Medlio is for information purposes only. The Information is not intended to substitute the expertise and judgment of any doctor, pharmacist or other healthcare professional. Making a reliable medical diagnosis, treating any medical condition and administering any drug therapy require the involvement of independent informed healthcare professionals. In case of any specific questions regarding the treatment and care of a medical condition, you need to contact your professional healthcare provider.
The form and nature of the App/Website may change from time to time without prior notice to you. In addition, we may stop permanently or temporarily at any time operating the App/Website or any features within the App/Website towards you or towards users generally and may not be able to provide you with prior notice. We also retain the right to create limits on the use storage at our sole discretion at any time without prior notice to you.
We reserve the right at all times (but we will not have an obligation) to remove or refuse to distribute any Information or Data and to terminate users. We also reserve the right to access, read, preserve and disclose any Information or Data to the extent we reasonably believe it is necessary to (i) satisfy any applicable law, regulation, legal process or governmental request, (ii) enforce these Terms, including investigations of a potential violation thereof, (iii) detect, prevent or otherwise address fraud, security or technical issues, (iv) respond to user support requests, or to (v) protect the rights, property or safety of Medlio, its users and the public. Accounts that are inactive for more than one year may be removed without prior notice.
You are responsible for safeguarding the password that you use to access your account and for any actions taken by using your password. For data security purposes, Medlio requires you to use “strong” passwords (i.e., passwords combining upper and lower case letters, numbers and symbols). Any liability for any damage arising from your failure to comply with these requirements is excluded. In case you change your email address or forget your password, please notify us at firstname.lastname@example.org in order to recover your account.
There are limitations on the use of the App/Website. These limitations comply with legal requirements and aim to protect our users from abuse and to make the use of the App/Website the best possible experience for all users. We may need to change these rules from time to time and reserve the right to do so. No abuse of our App/Website will be tolerated. Any violation of these rules may lead to a temporary or the permanent suspension of all related accounts. Accounts created to replace suspended accounts will be permanently suspended
Unlawful Use: You shall not use the App/Website or any Information provided for any unlawful purposes or in furtherance of any illegal activities. International users are required to comply with all applicable local laws regarding online conduct and acceptable content.
Unauthorized Access: You shall not do any of the following while accessing or using the App/Website: (i) access, tamper with or use non-public areas of the App/Website (except for your own account), Medlio computer systems or the technical delivery systems of our providers; (ii) probe, scan or test the vulnerability of any system or network or breach or circumvent any security or authentication measures; (iii) attempt to access or search the App/Website or any Data by any means (automated or otherwise) other than through our currently available, published interfaces; or (iv) interfere with or disrupt, or attempt to do so, the access of any user, host or network.
Respect for Privacy of Third Parties: You shall not disclose other people’s health, wellbeing and similar data without their express authorization and permission.
No Reproduction: You shall not reproduce, duplicate, copy, sell, trade or resell the App/Website content and its design and look or any Information derived from the App/Website. You are not entitled to modify or redistribute the App/Website content and its design and look or any Information or to reproduce, store, link, frame or deep-link it on any other App/Website or in any other medium or format without our prior written consent. Further, you shall not use the App/Website for commercial exploitation in any circumstances.
No Malware: You shall not provide any malicious content intended to damage or disrupt another user’s browser or computer or to compromise a user’s privacy.
All copyright, database right, patent, other intellectual property right, title and interest in and to the App/Website and any Information (excluding the Data provided by the users of the App/Website) are and will remain the exclusive property of Medlio and its licensors. The elements of the App/Website, including but not limited to the general design and the imagery, and any Information are protected by copyright, trademark, patent and other laws relating to intellectual property rights of both the US and foreign countries. Nothing in these Terms gives you a right to use the Medlio name or any of Medlio’s trademarks, logos, domain names and other distinctive brand features. You are permitted to download and print any Information from the App/Website solely for your own personal use and/or internal business purposes. You are not entitled to use the content of the App/Website for commercial exploitation in any circumstances. In case you breach the terms of this provision, Medlio will have the right to claim damages against you which shall include the right to claim special, incidental, consequential or indirect damages and loss of profits.
While we endeavor to ensure the accuracy of the Information, neither Medlio nor any of its directors, officers, employees, agents, partners, affiliates and licensors may be held responsible for any omissions or errors of the Information or for any loss or damages which may subsequently arise.
Any Information transmitted via the App/Website will pass over public telecommunications networks. Although Medlio uses industry standard encryption technology, Medlio does not give any warranty or undertaking and does not make any representation that the operation of the App/Website will be secure, uninterrupted or error free.
The App/Website may contain links to third-party App/Websites or materials supplied by or contained on any third-party App/Website which is linked from or to the App/Website. Medlio does not accept any responsibility or liability for: (i) the availability or accuracy of such App/Websites or material or (ii) the content, products or services on or available from such App/Websites or materials. Links to such App/Websites or materials do not imply any endorsement by Medlio of such App/Websites or materials or the content, products or services available from such App/Websites or materials. You acknowledge sole responsibility for and assume all risks arising from your use of any such App/Websites or materials.
Medlio provides the content of the App/Website and any Information in good faith, but your access to and use of the App/Website is at your own risk. Medlio operates the App/Website on an “as is” and “as available” basis without warranty of any kind, whether express or implied, including but not limited to, the implied warranties of merchantability, fitness for a particular purpose or non-infringement of any copyrights, database rights, patents, trademarks or any other intellectual property rights in the jurisdiction in which you access and/or use the App/Website. Medlio gives no warranty or undertaking or representation for the completeness, accuracy, availability, timeliness, security or reliability of the App/Website or that the Information is of satisfactory quality, up to date or free from viruses, trojans or other harmful or malicious programs. Medlio will not be responsible or liable for any harm to your computer system, loss of data or other harm resulting from your access to or use of the App/Website or for the deletion of, or the failure to store or to transmit, any Data or Information and other communications. Medlio makes no warranty that the App/Website will meet your requirements or be available on an uninterrupted, secure or error-free basis. No advice or information, whether oral or written, obtained from Medlio or the App/Website, shall create any implied warranty.
Medlio and its directors, officers, employees, agents, partners, affiliates and licensors shall in no way be responsible for any decisions you may make based on the use of App/Website and/or the Information including but not limited to whether or not you choose to seek professional medical care or treatment. You hereby waive any claim you may have or acquire against Medlio or any of its directors, officers, employees, agents, partners, affiliates and licensors and indemnify and hold Medlio or any of its directors, officers, employees, agents, partners, affiliates and licensors harmless from any claims, proceedings, costs, special, incidental, consequential or indirect damages and loss of profits relating to your use of the Information.
To the maximum extent permitted by applicable laws, Medlio and its directors, officers, employees, agents, partners, affiliates and licensors shall not be liable for any losses or direct, indirect, incidental, special, consequential or punitive damages, including without limitation loss of profits, data, use, good-will or other intangible losses, resulting from (i) your access to or use of or inability to access or use the App/Website, (ii) the use of any Information; and (iii) any unauthorized access, use or alteration of your transmissions of Data, in each case however they may arise and whether based on contract, tort or any other legal basis, whether or not foreseeable and irrespective of whether Medlio has been informed in advance about the possibility of such damage.
The failure of Medlio to enforce any right or provision of these Terms shall not be deemed to be a waiver of such right or provision.
Medlio operates the App/Website from the US and the Information is deemed to have been delivered in the US. You are only allowed to access the App/Website if you are entitled to enter into a binding contract with Medlio and are not a person barred from accessing the App/Website according to the applicable law. You undertake to access the App/Website solely in compliance with these Terms and all applicable rules and regulations. The App/Website is not directed to any person to whom (by reason of such person’s nationality, residence or otherwise) the publication or availability of the App/Website is prohibited. Persons to whom such restrictions apply must not access the App/Website. If you choose to access the App/Website from outside the US you are solely responsible for compliance with any applicable local laws.
These Terms and the use of the App/Website shall in all respects be governed by US law. Any dispute arising out of or in connection with these Terms and/or the use of the App/Website shall be subject to the exclusive jurisdiction of the courts of the US and you consent to such jurisdiction of and venue in such courts and waive any objection as to inconvenient forum.
We may revise this Terms from time to time. The most current version will be available on our App/Website (www.medl.io). The revised Terms shall become effective from the date of publication on the App/Website. Should these changes be substantial, we will provide you with notice and, where required by applicable law, obtain your consent. This notice will be provided by email or by publication on the App/Website.
Version: January, 31 2019
Which Data We Collect
In order to create or reconfigure an account, you are expected to provide personal data, such as your name, username, password, personal contact details (address, zip code and location and email address), date of birth, gender, details about any of your previous health concerns or clinical issues, details about your family history, especially relating to health concerns or clinical issues, details about your lifestyle and activities (including underlying GPS data), clinical information and similar data (the “Data“) enabling Medlio to provide you with aggregate access to various information about your health, including a number of potential health risks based on your clinical background and lifestyle (collectively the “Information“).
How Your Data is Collected
We collect Data that you provide to us either directly through the App/Website, or third party devices or apps you connect with your account. We also collect information about your interactions within the App/Website as part of our continuous effort to improve the user experience.
How We Protect and Use Your Data
When using the App/Website you consent to the collection, transfer, modification, storage, disclosure and other uses of the Data. Irrespective of the country in which you reside or from where you access to the App/Website, the Data may be used by Medlio in the US or any other country of operation.
You authorize Medlio to de-identify your Data and subsequently to copy, process, use, publicly disclose and distribute the Data in anonymized form for academic and statistical purposes. Such anonymized Data shall no longer be considered as personal data.
You authorize Medlio to receive, review and store technical data (including crash reports) retrieved from the devices you are using to access the App/Website.
We restrict access to the Data to those Medlio employees or other parties who need access to such Data in order to provide the services. We maintain appropriate physical, electronic and procedural safeguards to protect your Data, including firewalls, individual passwords and encryption and authentication technology, and take all other necessary and adequate administrative, organizational, technical, personnel and physical measures to safeguard the same against unauthorized or unlawful processing and use, accidental loss or destruction or damage, theft, disclosure or modification and to ensure its integrity. Please note, however, that Data transported over an open network, such as the Internet or email, may be accessible to anybody. We cannot guarantee, and are not responsible for, the confidentiality of any communication or information transmitted via such open networks. When disclosing any Data via an open network, you should consider that it is potentially accessible to others, and consequently, may be collected and used by others without your consent. In particular, while individual data packets are often encrypted, the names of the sender and recipient are not. Even if both the sender and recipient are located in the same country, data may be transmitted via such networks to other countries regularly and without controls, including countries that do not afford the same level of data protection as the US. Your Data and Information may be lost during transmission or may be accessed by unauthorized parties. We do not accept any liability for direct or indirect losses as regards the security of the Data and Information during its transfer via Internet.
How Your Data is Shared
The concept of the App/Website includes the disclosure of the Data provided by you and accessible via the App/Website to other users or third parties. For all other data, you control and decide yourself which Data shall be accessible to others. You can change the privacy settings of your account at any time and thereby determine who will be able to see which Data. Sensitive personal data such as medications, labs and tests, conditions, allergies, procedures, vitals, are only accessible to others if you choose to share. The following types of sharing options are available: (i) Providers: If you are part of health system and choose to connect to that system and share your records, providers of that system will have access to your information. (ii) Family and Caretakers: If you shoose the share your information, Your family and caretakers will be able to see the Data. (iii) None: Only you as the user of your account will be able to see the Data. According to our default settings, only you as the user will be able to see all the above-mentioned Data. You can change the privacy settings of your account at any time after your registration.
Cookies and Similar Technologies
Like many websites, we use “cookie” technology to collect additional website usage data and to improve the website, but we do not require cookies for many parts of our services. A cookie is a small data file created by a web server and transferred to and stored on your computer’s persistent memory. The cookies created by the web servers contain data that uniquely identifies you during your use of the website. We use session cookies to better understand how you interact with our services, to monitor aggregate usage by our users and to improve our services. Most Internet browsers automatically accept cookies. However, you have the option of using your browser software to stop accepting cookies or to warn you before accepting a cookie from the websites you visit. However, if you disable or choose not to accept cookies, some of the functionality of the website may be impaired or you may not have access to areas of the website that require this type of identification. When using mobile applications, Data may be stored and processed temporarily on your mobile device. By accessing mobile applications operated by Medlio you agree to the transfer and temporary storage of Data.
We use Google Analytics on our App/Website to help us understand things like how long a visitor stays on our App/Website, what pages they find most useful and how they navigate through our App/Website. To learn more about Google Analytics and how to opt-out visit this Google webpage: https://support.google.com/analytics/answer/6004245
How Long Your Data is Stored
We store your Data for as long as you have an account with Medlio. You can delete your account at any time. If you follow the instructions available on the App/Website, your account will be deactivated and then deleted. For up to 30 days it is still possible to recover your account if it was deactivated by mistake. After 30 days, we begin the process of deleting your account permanently from our systems and your account may become non-recoverable. You acknowledge that any content posted by you on the App/Website cannot be recovered after the deletion of your account. We reserve the right to keep Data to the extent we reasonably believe it is necessary to satisfy any applicable law or regulation.
You have the right to be informed by us on any processing of your Data and obtain a copy of our Data (right of access). If you are affected by incorrect or incomplete Data, you may request rectification or completion of any relevant data (right to rectification). You may request the deletion of your Data (right to erasure) or a temporary restriction of processing in certain cases (right to restriction of processing). You may object to the processing of your Data (right to object) and you have the right to receive your Data in a structured, commonly used and machine-readable format or have your Data transferred to another data controller if technically feasible (right to data portability).
Your rights are subject to limitations necessary (a) to satisfy any applicable law, regulation, legal process or governmental request; (b) in connection with any legal proceedings (including prospective legal proceedings), obtaining legal advice or otherwise establishing exercising or defending legal rights; and (c) for medical purposes undertaken by a health professional or any person who in the circumstances is subject to an equivalent duty of confidentiality.
Disclosure of Data
We reserve the right to disclose Data to the extent we reasonably believe it is necessary to (i) satisfy any applicable law, regulation, legal process or governmental request, (ii) enforce the Terms, including investigations of a potential violation thereof, (iii) detect, prevent or otherwise address fraud, security or technical issues, (iv) respond to user support requests, or to (v) protect the rights, property or safety of Medlio, its users and the public.
Please note that Medlio uses encryption software that may be subject to export control regulations.
Data Controller and Data Protection Officer
In case you are dissatisfied with any aspect of processing of your Data, we would like to understand how we can solve this issue. Please contact us at:
110 Corcoran Street, 5th Floor
Durham, NC 27701
The data protection officer is located at the same address and can be contacted by mail or sending an email to email@example.com
You also have the right to contact the data protection supervisory authority in your country of residence.
Version: January, 31 2019
Subscription Types and Pricing
Medlio offers different subscription periods enabling you to choose the subscription period which best satisfies your needs. The standard subscription periods are 30 days or 360 days. Payment has to be made in advance for the subscription period through the purchase functions by the respective stores or by any other means of payment accepted by Medlio. Medlio uses qualified payment services to ensure that your payments are secure. Please be advised that subscriptions paid will not be refunded. The subscription fee may be subject to change. Any price changes will be announced on the Medlio App/Website.
The monthly Provider subscription prices are currently as follows:
$19/month for an organization profile
$5/month/profile for additional location and provider profiles
Expiry and Renewal of your Subscription
Medlio will contact you 10 and 5 days prior to the expiry of your subscription to notify you regarding the possibility to renew your subscription. You need to actively renew your subscription following such notification.
Version: January, 31 2019
End User Agreement
Medlio is granting you a non-transferable license for personal and non-commercial use of this software. You shall not sublicense, distribute, lease, loan or otherwise convey the software or any portion thereof to anyone. This license agreement may be terminated at any time. Medlio and its licensors neither warrant the accuracy nor the accessibility of the software and reserve all other rights. This software may be subject to export control regulations.