Welcome to Fhiro. This Privacy Policy explains how we handle your data during our Early Access / Waitlist phase. As a provider of compliance infrastructure for the European Health Data Space (EHDS), we hold ourselves to the highest standards of data sovereignty and security.

1. Who We Are

For the purposes of the GDPR, this project is currently managed by:
Project Lead: Jinish Rajan (Trading as Fhiro)
Location: Dublin, Ireland
Contact: privacy@fhiro.com

Note: Fhiro is in a pre-incorporation phase. This policy will be formally updated upon legal entity registration in Ireland.

2. The Data We Collect

Currently, we only collect data necessary to manage our "Opening Q2 2026" rollout:

Contact Information: Your email address (via the Waitlist Form).
Professional Verification: We may request your Medical Council Number (MCN) or practice details to verify your eligibility, as Fhiro is exclusive to registered practitioners.
Usage Data: Minimal, anonymized telemetry to ensure site performance and security.

3. Purpose & Legal Basis

We process your data based on Consent (joining the waitlist) and Legitimate Interest (preventing fraud and ensuring only qualified professionals access the platform).

We use your data to:

Secure your spot in the Q2 2026 rollout queue.
Verify your status as a registered healthcare professional in Ireland.
Notify you of critical compliance updates related to the Health Information Bill 2024.

4. Data Sovereignty (The "eu-west-1" Promise)

We do not rely on US-based cloud storage for sensitive data. All waitlist and verification data is stored and processed exclusively within the European Union (Ireland), utilizing AWS eu-west-1 infrastructure to ensure alignment with EHDS requirements.

5. Your Rights

Under the GDPR, you have the right to access, rectify, or erase your data at any time. If you wish to leave the waitlist, simply email privacy@fhiro.com and we will delete your record immediately.