Information Practices

Effective date: January 27, 2026

1. Purpose

This statement describes how SynqRx handles personal health information (PHI) on behalf of pharmacy customers. Each pharmacy is the health information custodian for its own patient records. SynqRx acts as a service provider and processes PHI only to deliver the service.

2. What we collect

We collect the minimum data required to operate blister pack workflows, including patient names, dispensing dates, delivery preferences, and clinical workflow notes entered by authorized staff. We also collect account and security data needed to authenticate users and protect the system.

3. How we use information

Information is used to run the application, support dispensing workflows, provide audit trails, maintain security, and offer customer support. We do not sell PHI or use it for advertising.

4. Safeguards

SynqRx uses role-based access controls, encryption in transit, audit logging, and monitoring to protect PHI. Access is limited to authorized users designated by each pharmacy.

5. Retention

Patient records are retained for at least 10 years from the last date of service. Records may be archived and are only purged after the retention period has elapsed and upon authorized request.

6. Access and corrections

Patients can request access or corrections through their pharmacy. SynqRx supports customers in fulfilling these requests by providing audit logs and export tools.

7. Breach notification

If we become aware of a privacy or security incident, we will notify the impacted pharmacy without undue delay and support required regulatory notifications.

8. More details

For additional information, review the Privacy Policy and Terms of Service.

9. Contact

SynqRx Privacy Officer: info@m1labs.io