1. Who we are
MOVO-X Canada is a product of MOVO-X Inc. ("we", "us", "our"). We operate AI-powered self check-in kiosks, queue management software, and clinical operations platforms for healthcare providers across Canada. Our website is canada.movo-x.com.
2. What personal information we collect
We collect personal information in two distinct contexts:
2a. Clinic administrator information
When a clinic signs up for MOVO-X, we collect the name, email address, phone number, and job title of the clinic administrator(s) who manage the account. This information is used solely to deliver and support the service.
2b. Patient queue and check-in data
When a patient uses a MOVO-X kiosk at a participating clinic, basic intake data — name, date of birth, provincial health card number, reason for visit, and triage responses — is collected by the clinic (which is the "controller" or "custodian" of that data). MOVO-X processes this data as a service provider acting under the clinic's instructions. We do not store patient Personal Health Information (PHI) on our servers beyond what is operationally required for the active queue session. Completed session data is retained for the period specified in the clinic's signed Data Processing Agreement (DPA), after which it is securely deleted.
2c. Website visitors
When you browse canada.movo-x.com, our hosting provider (Vercel, region yul1 Montréal) may collect standard server logs (IP address, browser type, referring URL, timestamp). We use PostHog for privacy-conscious analytics. No cookies are set without your consent.
3. How we use personal information
- — To provision and operate your clinic account on our platform.
- — To process patient check-ins and queue management on behalf of the clinic.
- — To send transactional emails (account confirmation, password reset, billing receipts).
- — To respond to support requests and compliance enquiries.
- — To fulfil legal obligations under PIPEDA, Law 25, PHIPA, and other applicable law.
We do not sell personal information. We do not use patient data for advertising, AI model training, or any purpose other than delivering the contracted service.
4. Legal basis and consent
Under PIPEDA, we rely on implied consent for the collection of clinic administrator information necessary to deliver the contracted service. Where applicable Quebec Law 25 requires express consent for certain uses, we obtain it explicitly before processing. Patients provide consent to data collection through the kiosk intake flow, which is configured and managed by the clinic as the controller.
5. Data residency and transfers
All personal information — clinic administrator data and patient session data — is stored exclusively in Canada, in the AWS ca-central-1 region (Montréal, Québec). Our Supabase database project is in ca-central-1 and our Vercel deployment region is yul1 (Montréal). No personal data is replicated to servers outside Canada.
For Quebec clinics: any incidental access by a support engineer located outside Canada requires a Privacy Impact Assessment (PIA) under Law 25 / ARPPIPS s. 17, conducted before access is granted.
6. Retention periods
- — Clinic administrator accounts: retained for the duration of the contract plus 90 days, then deleted on written request.
- — Active patient session data: retained as agreed in the clinic's DPA (typically 12–24 months for operational purposes).
- — Audit logs: retained for 7 years per PIPEDA safeguard requirements.
- — Billing records: retained for 7 years per Canadian tax law.
7. Your rights
Under PIPEDA and applicable provincial laws, you have the right to:
- — Know what personal information we hold about you.
- — Request correction of inaccurate information.
- — Withdraw consent (subject to legal and contractual limitations).
- — Request deletion, subject to retention obligations.
- — Lodge a complaint with the Office of the Privacy Commissioner of Canada or, for Quebec residents, the Commission d'accès à l'information (CAI).
To exercise any of these rights, contact our Privacy Officer at privacy@movo-x.com.
8. Security
We use AES-256 encryption at rest, TLS 1.3 in transit, JWT authentication stored in httpOnly cookies, database-level row security (deny-all on anonymous roles), and immutable audit logs. Full details are on our Security page.
9. Breach notification
In the event of a data breach that creates a real risk of significant harm, we will notify affected individuals and the Office of the Privacy Commissioner as required by PIPEDA. For Quebec customers, we will also notify the Commission d'accès à l'information (CAI) within 72 hours of a confirmed incident that meets the Law 25 threshold.
10. Contact — Privacy Officer
Questions, access requests, or complaints about this policy should be directed to our designated Privacy Officer:
11. Changes to this policy
We will post any material changes to this policy on this page with a revised effective date. For Quebec clinic customers, material changes will also be communicated by email at least 30 days in advance, as required by Law 25.