Privacy and Compliance Policy

Voice transcription, note structuring, ICD-11/ICD-10 legacy assisted coding and local epidemiological reports are designed to happen locally on the node. The platform is not intended to send identifiable patient audio, transcripts or nominal notifiable-disease forms to third parties through the anonymous channel.

Cloud synchronization is limited to operational and epidemiological outputs that fit the hybrid model, including versioned coding-system and jurisdictional-profile metadata when applicable, and the governance rules defined by the client organization.

The client organization is responsible for obtaining any consent required under its jurisdiction and for operating the platform under an appropriate internal governance model.

KYNODE implements controls, traceability and bounded retention mechanisms to reduce unnecessary exposure.

Synchronization flows are designed to protect confidentiality and integrity through cryptographic safeguards and transport validation.

Courier devices and intermediate components should operate as opaque carriers without access to protected clinical content.

The cloud layer is intended to consolidate operational and epidemiological visibility aligned with anonymization and data minimization goals.

Identifiable clinical records, full clinician notes, audio and nominal notifiable-disease forms are not part of the target public synchronization design. Nominal exports or printouts are local, authorized and audited workflows.

The client organization remains the data controller and is responsible for legal basis, internal governance and data subject response obligations.

KYNODE operates as a platform and processing provider within the contracted scope.