Effective Date: February 12, 2025

Privacy Policy

Knock Health, Inc. ("Knock," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard information when you use the Knock application and related services.

1. Information We Collect

Knock is designed with privacy at its core. We minimize data collection to only what is necessary for delivering our service.

Information You Provide

  • Account Information: Name, email address, role, and practice type when you register or join our waitlist.
  • Message Content: Clinical messages, images, and files you send through Knock. This content is processed solely to deliver the intended message.

Information We Do NOT Collect

  • Contact lists or address books
  • Precise location data
  • Device advertising identifiers
  • Cross-app tracking data
  • Browsing history or analytics profiles

2. How We Use Your Information

We use collected information exclusively for:

  • Delivering and routing secure messages between healthcare professionals
  • Authenticating users and verifying credentials
  • Maintaining audit logs as required for HIPAA compliance
  • Providing customer support and service notifications
  • Improving the reliability and performance of our service

We do not use your information for advertising, profiling, analytics resale, or any purpose unrelated to Knock's core messaging service.

3. Protected Health Information (PHI)

Knock is designed to handle Protected Health Information in compliance with the Health Insurance Portability and Accountability Act (HIPAA).

  • PHI transmitted through Knock is encrypted in transit and at rest
  • Access to PHI is restricted to the intended message recipients
  • We maintain audit trails of PHI access as required by law
  • We will enter into Business Associate Agreements (BAAs) with covered entities as required

4. Data Sharing

We do not sell, rent, or share your personal information or message content with third parties. Messages are delivered only to their intended recipients.

We may disclose information only when:

  • Required by law, regulation, or legal process
  • Necessary to protect the safety of our users or the public
  • Required to enforce our Terms of Service

5. Data Retention

We retain message content and associated data only for as long as necessary to provide our service and comply with legal obligations. Specific retention periods may be governed by applicable healthcare regulations and BAA requirements.

6. Data Security

We implement industry-standard security measures to protect your information, including:

  • End-to-end encryption for message content
  • Authentication and access controls
  • Regular security audits and monitoring
  • Secure infrastructure with appropriate physical and technical safeguards

While we strive to protect your information, no electronic transmission or storage method is 100% secure. We cannot guarantee absolute security.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal information we hold about you
  • Request correction of inaccurate information
  • Request deletion of your account and associated data
  • Opt out of non-essential communications

8. Children's Privacy

Knock is designed for healthcare professionals and is not intended for use by individuals under the age of 18. We do not knowingly collect information from minors.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy within the app or via email. Your continued use of Knock after changes constitutes acceptance of the updated policy.

10. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at:

Knock Health, Inc.

Email: privacy@knockhealth.com