This Privacy Policy describes how Medrara collects, uses, and protects information when you use the cloud Laboratory Information System (LIS) and related portals. Laboratory operational data — including patient, specimen, test, and result records — is processed on behalf of the customer laboratory, which remains the controller of that data.
Account information (such as contact email and role assignments) is used to administer access and deliver support. Patient health information entered by laboratory staff is handled according to the access controls, encryption in transit, and operational monitoring described in the Service.
Medrara does not sell personal or patient data. Where subprocessors or infrastructure providers are used for hosting and support, they are bound by confidentiality and data-processing terms. Data residency, retention, and deletion are governed by your signed agreement and applicable law.
Customers remain responsible for lawful processing, patient consent, and regulatory compliance in their jurisdiction. For data subject requests, breach notifications, or specific processing terms, contact your account team or refer to your agreement, which takes precedence over this summary.