Last updated: June 2026
Scrutexity collects only the information necessary to provide our revenue infrastructure services to medical aesthetics clinics. We do not collect, store, or process Protected Health Information (PHI) as defined by HIPAA.
Information we may collect includes: clinic name, business address, email address, phone number, website URL, and practice management software provider.
We use collected information solely to: provision and maintain our infrastructure services, communicate with clients about their accounts, send pilot onboarding information, and improve our platform.
All data transmitted between client systems and Scrutexity is encrypted using AES-256 at rest and TLS 1.2+ in transit. Phone numbers are SHA-256 hashed with per-clinic salt before any storage. No raw PHI is persisted in our systems.
We do not sell, rent, or share personal information with third parties for their marketing purposes. We may share data with subcontractors who perform services on our behalf (e.g., cloud infrastructure providers), all of whom are bound by data processing agreements consistent with this policy.
A Business Associate Agreement (BAA) is executed with each client prior to activation of any module that may process PHI. The BAA governs all data handling practices and is available for review upon request.
For privacy-related inquiries, contact: nick@scrutexity.com