Terms & Conditions

4.1 Account Security Requirements

• Strong Password: Minimum 8 characters with at least one uppercase letter, one number, and one special character
• Multi-Factor Authentication (MFA): Email verification codes required for sensitive actions (password reset, email change)
• Biometric Authentication: Optional Face ID/Touch ID for app unlock (highly recommended)
• Session Timeout: Automatic logout after 15 minutes of inactivity for security

4.2 Account Responsibility

You are solely responsible for:

• Maintaining the confidentiality of your Account credentials
• All activity that occurs under your Account
• Notifying us immediately of any unauthorised access or security breach
• Ensuring your device is secured with a PIN, password, or biometric lock

Lost or Stolen Device: If your device is lost or stolen, change your password immediately from another device and review your Activity Log (Settings → Privacy & Security → Activity Log) to ensure no unauthorised access.

5.1 Core Features

• Medical image and video capture using mobile device cameras
• Secure cloud storage with end-to-end encryption
• Patient organisation with metadata and treatment notes
• Timeline view showing patient progress over treatment periods
• Before/after comparison tools with interactive slider (Pro plans)
• Annotation tools for images (text, arrows, rulers, markers)
• Secure sharing and collaboration with other healthcare professionals (Pro plans)
• Activity logging for compliance and audit trails

5.2 Offline Capability

You may capture images and videos offline for up to 3 days. Media is stored locally (encrypted) and automatically uploads when internet connection is restored. After 3 days offline, you must connect to the internet to continue capturing new media. Shared patients cannot be accessed while offline.

5.3 Service Availability

We strive for high availability but cannot guarantee uninterrupted service. Scheduled maintenance will be announced at least 24 hours in advance via email and in-app notification. Emergency maintenance may occur without notice.

5.4 System Requirements

• iOS 14+ or Android 9+
• Active internet connection for most features
• Camera permissions for image/video capture
• Storage space for temporary offline media

7.1 Encryption at Rest (Data Storage)

• Standard: AES-256 (Advanced Encryption Standard with 256-bit keys)
• Implementation: Automatic encryption via Supabase infrastructure
• Coverage: All patient records, medical images, videos, treatment notes, and activity logs
• Same encryption used by: Banks, government agencies, and military

7.2 Encryption in Transit (Data Transmission)

• Protocol: TLS 1.3 (Transport Layer Security, latest version)
• Certificate Pinning: Additional security layer preventing man-in-the-middle attacks by verifying server authenticity
• Perfect Forward Secrecy: Each session uses unique encryption keys
• Coverage: Every API call between your device and our servers

7.3 Access Control

• Row Level Security (RLS): Database-level policies ensure you can ONLY access your own patients
• Enforcement: Database-level (not just app-level), impossible to bypass
• Authentication: Required for all data access
• Session Management: 15-minute automatic timeout after inactivity

7.4 Audit Logging (HIPAA Compliance)

Every action involving patient data is automatically logged:

• Who accessed what data, when, and what they did
• 27 activity types tracked (patient created, viewed, updated, photos uploaded, etc.)
• Logs retained for 1 year (365 days) to comply with HIPAA requirements
• Immutable audit trail (cannot be edited or deleted by users)
• Accessible in Settings → Privacy & Security → Activity Log

7.5 Data Storage Location

• Primary Region: European Union (Frankfurt, Germany)
• Backup Location: European Union (automatically replicated within EU)
• Data Transfer: Your data NEVER leaves the EU/EEA region
• Subject to strict EU privacy laws and GDPR protections

7.6 Data Breach Notification

In the unlikely event of a data breach affecting your Protected Health Information (PHI), we will:

• Notify You: Within 72 hours of discovery (GDPR requirement)
• Method: Email to your registered address and in-app notification
• Information Provided: Nature of breach, data affected, remediation steps, and contact information
• Support: Credit monitoring or identity theft protection if applicable

8.1 Subscription Plans

PixioDoc offers the following Subscription plans:

8.2 Payment Terms

• Billing: Fees are billed in advance (monthly or annually depending on plan)
• Auto-Renewal: Subscriptions automatically renew unless cancelled before renewal date
• Non-Refundable: Fees are non-refundable except where required by law
• Payment Processor: RevenueCat handles all payment processing
• No Credit Card Storage: We do not store credit card information
• Currency: All prices in Euros (€)

8.3 Cancellation

You may cancel your subscription at any time through your Account settings or the app store (iOS/Android). Upon cancellation:

• Your subscription remains active until the end of your current billing period
• No refunds for partial months/years
• Your account will be downgraded to Free Plan at the end of the billing period
• You will not be charged again unless you resubscribe

8.4 Free Tier Limitations & Enforcement

Free Plan users are limited to 10 patients maximum. When this limit is reached:

• You cannot create new patients until you delete existing patients or upgrade to Pro
• Existing patients remain accessible (read-only)
• You cannot accept new shared patient invitations
• Banner notification displayed: "You've reached the patient limit. Upgrade to Pro or delete patients to access profiles."

Subscription Expiration (Paid → Free):

• If you had more than 10 patients on a paid plan and it expires:
  • All patient profiles remain visible but locked
  • You must upgrade or delete patients (down to 10) to regain access
  • No data is deleted automatically
• If you had 10 or fewer patients:
  • Full access to your patients continues
  • Pro features disabled (sharing, collaboration, before/after slider)

8.5 Payment Failures & Grace Period

If a subscription renewal payment fails:

• You will receive an email and in-app notification
• Grace Period: 7 days to update payment method
• Subscription remains active during grace period
• After 7 days without payment update, subscription expires (follow expiration flow above)

9.1 User Consent (Account Creation)

Before using PixioDoc, you must accept four legal agreements:

• Terms of Service
• Privacy Policy
• HIPAA Authorization (if US-based)
• Data Processing Agreement (DPA)

We track which version you accepted and when. If policies change materially, you must re-accept the updated versions before continuing to use the Service.

9.2 Patient Consent (Your Responsibility)

You are responsible for obtaining valid patient consent before uploading any identifiable medical information to PixioDoc. Required consents include:

• Consent to photograph/record (medical photography)
• Consent to digital storage (cloud-based storage)
• Consent to share (if sharing with other healthcare professionals)

9.3 Patient Sharing Consent Confirmation

When sharing a patient with another healthcare professional, you must check a box confirming: "I confirm I have patient consent to share this information." This confirmation is logged in your activity log for audit purposes.

12.1 Scheduled Maintenance

• Announced at least 24 hours in advance via email and in-app notification
• Typically performed during low-usage periods (nights/weekends)
• Duration: Usually less than 2 hours

12.2 Emergency Maintenance

May occur without notice for critical security patches or infrastructure issues. We will notify you as soon as possible.

12.3 Service Modifications

We may add, modify, or remove features at our discretion. Material changes that affect your use will be announced with at least 30 days' notice. Continued use after changes constitutes acceptance.

17.1 Termination by You

You may delete your Account at any time: Settings → Account & Security → Delete Account

17.2 Termination by Us

We may suspend or terminate your Account immediately if you:

• Violate these Terms
• Engage in prohibited conduct
• Fail to pay subscription fees
• Pose a security or legal risk to PixioDoc or other users

17.3 Effect of Termination

Upon termination:

• Your right to use the Service ceases immediately
• Data Retention Schedule:
  • Immediate (Day 0): Account marked for deletion, logged out, inaccessible
  • Grace Period (Days 1-30): Data hidden but recoverable - contact support@pixiodoc.com to restore
  • Permanent Deletion (After Day 30): All Content permanently deleted (patient records, images, videos, treatment logs, annotations)
  • Activity Logs: Retained for 1 year from creation date (HIPAA requirement), then automatically deleted
• Important: Export your data BEFORE deleting account (Settings → Export Data)

17.4 Impact on Shared Patients

• Patients you shared with others: Access revoked immediately, they receive notification, their access to your patients is permanently removed
• Patients shared with you: You lose access immediately, but the owner retains their data

19.1 Notification

Material changes will be announced at least 30 days before taking effect via:

• Email notification to your registered email address
• Prominent in-app notice upon next login
• Updated "Last Updated" date on this page

19.2 Acceptance

Your continued use after the effective date constitutes acceptance of the revised Terms. If you do not agree to the changes, you must stop using the Service and may delete your Account.

19.3 Version Tracking

We track which version of the Terms you accepted and when. You can view your consent history in Settings → Privacy & Security → Legal Agreements.

20.1 Entire Agreement

These Terms, together with the Privacy Policy, Data Processing Agreement, and HIPAA Authorization (if applicable), constitute the entire agreement between you and LM TECH LABS, LDA (trading as PixioDoc).

20.2 Severability

If any provision of these Terms is found to be invalid or unenforceable, the remaining provisions will remain in full force and effect.

20.3 Waiver

Our failure to enforce any right or provision of these Terms will not be considered a waiver of those rights.

20.4 Assignment

You may not assign or transfer these Terms without our prior written consent. We may assign these Terms to any affiliate or in connection with a merger, acquisition, or sale of assets.

20.5 Language

These Terms are provided in English. Any translated versions are for convenience only. In the event of a conflict, the English version prevails.