Agilis Logo

Privacy Policy

Effective date: October 31, 2025

1. Overview

Agilis Inc. provides an AI-powered compliance management platform for healthcare organizations. Our application helps teams review regulatory requirements, document compliance evidence, and score performance across Environment of Care, Life Safety, Infection Prevention and Control, and related chapters.

2. Information We Collect

We collect the following categories of information when you use the platform:

  • Account information: Email address and authentication data via Supabase Auth.
  • Organization context: Selected hospital identifier stored in local storage to scope content.
  • Assessment data: Compliance scores, comments, and responsible parties for individual Elements of Performance (EPs).
  • Document metadata: Records managed through our document tools (filenames, categories, and related metadata).
  • Usage data: Basic interaction data necessary for application functionality and performance.

3. How We Use Information

  • Authenticate users and manage sessions using Supabase.
  • Store and retrieve chapter scores, comments, and responsible parties for your organization.
  • Display organization-specific content based on your selected hospital.
  • Provide document management features and AI-assisted review workflows.
  • Improve platform reliability, security, and user experience.

4. Legal Bases for Processing

We process personal data based on your consent, legitimate interests in delivering and improving the service, and contractual necessity where applicable.

5. Data Storage and Security

  • Data is stored using Supabase services with role-based access and security policies.
  • Transport security is enforced via HTTPS.
  • We implement application-level access controls limiting visibility to authorized users within each organization.

6. Data Sharing

We do not sell personal information. We may share data with trusted processors (e.g., cloud hosting, authentication) strictly to operate the platform, under appropriate data processing agreements.

7. Data Retention

We retain assessment and account data for as long as your organization uses the service and as required to meet regulatory or contractual obligations. We delete or anonymize data when no longer needed.

8. Your Rights

Depending on your jurisdiction, you may have rights to access, correct, delete, or restrict processing of your personal data. Contact us to exercise these rights.

9. Cookies and Local Storage

We use local storage to remember the selected hospital context and to support user interface preferences. We do not use third-party advertising cookies.

10. International Transfers

Where data is transferred across borders, we rely on appropriate safeguards consistent with applicable law.

11. Children’s Privacy

The service is intended for professional use and not for individuals under 16.

12. Contact

For privacy inquiries, please contact our team at matt.anderson@agilisinc.com.

v1.0