Your privacy matters.

We collect information that you provide directly, that is provided by your healthcare provider on your behalf, and that is gathered automatically when you use our services.

We use the information we collect for the following purposes:

We process your personal and health information on the following legal bases, in accordance with PIPEDA, PHIPA, and applicable provincial legislation:

• Consent: Where you or your authorized representative have provided express or implied consent for the collection, use, or disclosure of your personal health information for the purposes of receiving our services.
• Healthcare Provision: Under PHIPA, health information custodians may collect, use, and disclose personal health information for purposes related to providing or assisting in providing healthcare, including second opinion consultations.
• Legitimate Interest: For purposes such as service improvement, quality assurance, and fraud prevention, where such processing does not override your fundamental rights.
• Legal Obligation: Where we are required to process information to comply with applicable laws, regulations, court orders, or legal processes.

We implement comprehensive administrative, technical, and physical safeguards to protect your personal and health information against unauthorized access, disclosure, alteration, or destruction.

We do not sell, rent, or trade your personal information or personal health information to any third party. We may share information in the following limited circumstances:

• Healthcare Providers: We share second opinion reports and related clinical information with your referring physician or designated healthcare provider, as necessary to deliver our services and support your ongoing care.
• Service Providers: We may engage trusted third-party service providers (e.g., secure hosting, payment processing) who assist in operating our services. These providers are contractually bound to protect your information and may only use it for the purposes specified by us.
• Legal Requirements: We may disclose information where required by law, court order, subpoena, or regulatory investigation, or where necessary to protect the rights, safety, or property of Radiology Experts, our users, or the public.
• Public Health & Safety: In exceptional circumstances, we may disclose information to public health authorities or law enforcement where permitted or required by PHIPA for the purpose of preventing or reducing a significant risk of serious bodily harm.

Under PIPEDA, PHIPA, and applicable provincial privacy legislation, you have the following rights regarding your personal and health information:

• Right of Access: You may request access to the personal and health information we hold about you. We will respond to access requests within 30 days, as required by law.
• Right of Correction: You may request the correction of inaccurate or incomplete personal information. Where we do not agree that a correction is warranted, we will attach a statement of disagreement to your record.
• Right of Deletion: You may request the deletion of your personal information, subject to our legal and regulatory retention obligations. Certain health records must be retained for minimum periods as prescribed by Ontario law.
• Withdrawal of Consent: You may withdraw your consent to the collection, use, or disclosure of your personal information at any time, subject to legal or contractual restrictions. Withdrawal of consent may affect our ability to provide certain services.
• Right to Complain: You may file a complaint with the Information and Privacy Commissioner of Ontario or the Office of the Privacy Commissioner of Canada if you believe your privacy rights have been violated.

To exercise any of these rights, please contact us using the information provided in the Contact Us section below.

We retain personal and health information only for as long as necessary to fulfil the purposes for which it was collected, or as required by applicable law.

• Medical Records: Radiology reports and related clinical records are retained for a minimum of 10 years from the date of the last entry, or 10 years after the patient reaches the age of 18, whichever is longer, in accordance with Ontario regulation and the College of Physicians and Surgeons of Ontario (CPSO) requirements.
• Medical Imaging: Original imaging studies submitted for review are retained for the duration necessary to complete the consultation and are securely deleted within 90 days of report delivery, unless a longer retention period is requested or required.
• Account & Contact Information: Retained for as long as your account is active or as needed to provide services, and for a reasonable period thereafter for legitimate business or legal purposes.
• Deletion Procedures: When information is no longer needed, it is securely destroyed using methods appropriate to the sensitivity of the data, including cryptographic erasure for electronic records and secure shredding for physical documents.

Our website uses cookies and similar technologies to provide core functionality, analyse usage patterns, and improve your experience. We use essential cookies required for the secure operation of our website, as well as optional analytics cookies that help us understand how visitors interact with our services.

You can manage your cookie preferences through your browser settings at any time. For detailed information about the cookies we use, their purposes, and how to control them, please see our Cookies Policy.

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children without the express consent of a parent or legal guardian.

Where radiology second opinion services are requested for a minor, consent must be provided by the minor's parent, legal guardian, or substitute decision-maker, in accordance with PHIPA and applicable law. All personal health information of minors is afforded the same protections described in this policy.

If we become aware that we have collected personal information from a child without appropriate consent, we will take prompt steps to delete that information.

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make material changes, we will:

• Post the updated policy on this page with a revised "Last updated" date
• Notify registered users by email where changes materially affect the handling of personal health information
• Obtain fresh consent where required by applicable privacy law

We encourage you to review this policy periodically to stay informed about how we protect your information. Your continued use of our services following the posting of changes constitutes your acceptance of those changes, except where further consent is required by law.