Kardiax
HomeAboutServicesPricingBlogContact
Get Started

Privacy Policy

How we handle your data.

This policy explains how Kardiax collects, uses, and protects personal data.

Last updated · April 15, 2026

1

Introduction

Kardiax is committed to protecting the privacy of hospitals and patients who use our teleradiology platform. This Privacy Policy describes the types of data we collect, how it is used, and your rights under the Saudi Personal Data Protection Law (PDPL).

2

Information We Collect

We collect (a) hospital account details (company name, contact information, billing details); (b) medical imaging data and clinical information uploaded by the hospital for interpretation; (c) platform usage logs for security and service delivery; and (d) cookies and device information for website analytics.

3

How We Use Information

Patient data is used solely to provide the contracted teleradiology service. Account data is used to manage the commercial relationship, issue invoices, and provide customer support. Usage logs are retained for audit, compliance, and security monitoring. We do not sell, rent, or share patient data with third parties.

4

Data Residency

All patient data and account records are stored exclusively on infrastructure located in the Kingdom of Saudi Arabia (GCP Dammam region). Data does not leave Saudi Arabia at any point in the service lifecycle.

5

Security Measures

Data is encrypted at rest using AES-256 and in transit using TLS 1.2 or higher. Access is restricted by role-based controls, and all actions are recorded in an immutable audit log. Security reviews are conducted quarterly.

6

Retention

Patient case data is retained for the period defined in the hospital contract, typically 7 years in line with Saudi healthcare retention standards. Account data is retained while the agreement is active, and up to 3 years after termination for legal and audit purposes.

7

Your Rights

Under PDPL, data subjects have the right to access, correct, or request deletion of their personal data. Requests concerning patient data should be directed through the patient's hospital. Requests concerning Kardiax account data can be sent to privacy@kardiax.care.

8

Cookies

Our website uses first-party analytics cookies to understand usage patterns. No third-party advertising or tracking cookies are set. You can disable cookies via your browser settings.

9

Changes to this Policy

We may update this Privacy Policy from time to time. Material changes will be communicated to active hospital partners in writing. The most recent version is always available on this page.

10

Contact

For privacy questions, contact privacy@kardiax.care.

Get In Touch

We are available for questions, feedback, or partnership. Let us know how we can help.

Contact Details

  • Phone: +966 XX XXX XXXX
  • Email: contact@kardiax.care
  • Web: kardiax.care
Kardiax

Cloud-native teleradiology for Saudi Arabia.

Services

  • Teleradiology Reporting
  • ECG & Holter Interpretation
  • Teleconsultation
  • Cardiology Imaging
  • Non-DICOM Review

Company

  • About
  • Blog
  • Pricing
  • Frequently Asked Questions
  • Contact

Legal

  • Terms and Conditions
  • Privacy Policy
  • PDPL Compliance

© 2026 Kardiax. All rights reserved.

Powered by SPEEDFORCE DIGITAL