Legal
Privacy Policy
Last updated: 16 May 2026
1. Who we are
Oregon Health Limited ("Oregon Health", "we", "us") is a company registered in Ireland with its registered office at Suite 14, Blackrock Clinic, Rock Road, A94 E4X7, Dublin, Ireland. We are the data controller of the personal data described in this policy, except in relation to patient records processed by clinics using OAS — in which case Oregon Health acts as a data processor on behalf of that clinic.
2. What we collect
- Account data: name, email, role, clinic name.
- Usage data: pages visited, actions taken, device and browser information.
- Contact submissions: name, email, company, message content.
- Billing data: company name, billing address, VAT number, payment metadata.
3. Lawful basis
We process personal data on the basis of contract (to provide OAS to subscribers), legitimate interest (product analytics and security), and consent (marketing communications).
4. Your rights
Under the GDPR you have the right of access, rectification, erasure, restriction, portability, and objection. Contact info@oregonhealth.ai to exercise any of these rights.
5. Data location & retention
Personal data is stored within the European Union. Account and contact data is retained for as long as your account is active and for up to 12 months thereafter unless a longer retention period is required by law.
6. Sub-processors
We use a small number of vetted sub-processors for hosting, email delivery, and analytics. A current list is available on request.
7. Contact
Questions about this policy or your data: info@oregonhealth.ai.