Last updated: 15/11/2025

Privacy Policy

Mood Institute (“Moodi,” “we,” “our,” or “us”) respects your privacy and is committed to protecting the personal and health-related information you share with us through our web and mobile applications (collectively, the “Platform”). This Privacy Policy explains how we collect, use, disclose, and safeguard your data when you use the Moodi Platform, in accordance with HIPAA, DSCSA, and applicable U.S. privacy laws.

1. Information We Collect

We collect only the information necessary to deliver and improve our services, including:

  • Account & Subscription Data: Clinic name, contact information, billing details, and administrative user credentials.
  • Clinical & Operational Data: Information entered into procedure templates, notifications, inventory tracking, and related logs (including PHI where applicable).
  • Technical Data: Device identifiers, IP address, browser type, and site usage analytics.
  • Support Data: Information voluntarily shared when requesting help or reporting issues.

2. How We Use Your Information

We use your information to deliver and improve Moodi’s functionality, manage subscriptions and access control, ensure compliance with healthcare regulations (HIPAA, DSCSA, REMS, and JAHCO), provide support, and enhance platform security.

3. HIPAA & PHI Safeguards

Mood Institute complies with HIPAA and maintains Business Associate Agreements (BAAs) with covered entities. All Protected Health Information (PHI) is encrypted in transit and at rest within the Microsoft Azure HIPAA-compliant Cloud environment.

4. Security & Infrastructure

Hosted on Microsoft Azure Cloud with industry-standard safeguards:

  • AES-256 encryption at rest
  • TLS 1.2+ for data in transit
  • Multi-factor authentication for administrative access
  • SOC 2 and ISO 27001 aligned controls
  • Continuous monitoring and daily encrypted backups
  • DSCSA traceability standards where relevant

5. Data Sharing

Mood Institute does not sell or rent your data. Data may be shared with authorized vendors, EDI distributors, or regulatory authorities under signed BAAs or equivalent data protection agreements.

Mood Institute may also use aggregated, anonymized analytics derived from platform usage to improve services and share summary insights with Moodi Institute customers, partners, or affiliates for educational and promotional purposes. This information contains no identifiable patient or practice data and complies with HIPAA de-identification standards (45 CFR §164.514). All analytics are presented in statistical form, such as procedure trends, completion times, or anonymized benchmarks.

6. Your Rights

You may access, review, or request deletion of your information at any time through our Contact Page. We respond to verified requests consistent with applicable law.

7. Policy Updates

This Privacy Policy may be updated periodically. All changes will be reflected on this page with an updated revision date. Continued use of the Platform constitutes acceptance of the revised policy.

If you have questions about this policy or how we protect your data, please visit our Contact Page or email privacy@moodiinstitute.com.