Swiftscope Privacy Policy

Last updated: 2 December 2025

Swiftscope is a clinical diary app for professionals who use the Emblation Swift device. It stores notes, photos and treatment details for the clinician’s own reference. It is not for diagnosis or public use.

1. Who we are

Emblation Limited
Emblation House, Castle Business Park, Stirling FK9 4TS, UK
Swiftcare@emblation.com

For GDPR we are:
  • Controller for clinician account data
  • Processor for patient information entered by clinicians
For clinics in the United States, all patient information is processed under a HIPAA Business Associate Agreement with Google Cloud Firebase.

Our Data Protection Officer: Eamon.McErlean@emblation.com

2. What the app does

Clinicians can use Swiftscope to:
  • Record treatment notes
  • Add optional lesion photos or videos
  • Log Swift device usage data from encrypted QR codes
  • View past entries
It does not analyse or recommend treatments.

3. Data we collect

Clinician account data

  • Name
  • Email address
  • Phone number
  • Speciality (optional)
  • Clinic ID (optional)
Used to create and manage your account and provide support.

Patient log data (entered by clinicians)

  • Consultation notes
  • Lesion photos or videos (optional)
  • Treatment details
  • Health information relevant to the consultation (optional)
  • Patient email address (used to send a QR code that identifies the patient on return visits) (optional)
  • Case label chosen by the clinician (name or another identifier) 
Used to maintain a clinical log for the treating clinician. Clinics act as data controllers for this information.

Device usage data

  • Encrypted counters and flags from the Swift device

Technical data

  • App version
  • Device type
  • Crash data
Used to keep the app secure and reliable.
SwiftScope does not collect data for advertising or third party tracking.

4. How we use the data

We use data to:
  • Provide clinician accounts
  • Store clinical notes for reference
  • Display device usage information
  • Improve security and fix technical issues
  • Meet legal and safety obligations
We use the minimum necessary data.

5. Sharing

We do not sell data. Information is shared only with:
  • Google Cloud/Firebase (hosting under GDPR and HIPAA agreements)
  • The clinic that uses SwiftScope for its own patient records
  • Service providers needed to run the app
No data is shared with advertisers.

6. Storage and security

  • Hosted in Google Cloud Firebase
  • Encrypted in transit and at rest
  • No patient data is stored locally on the device
  • Access controls and regular security reviews

7. International transfers

Data may be processed in the UK, EU or US. Transfers use Standard Contractual Clauses or the UK Addendum.

8. Retention

  • Clinician accounts: kept while active
  • Patient logs: kept according to the clinic’s requirements
  • Technical logs: kept for a limited period

9. Your rights

Clinicians can request access, correction or deletion of their account data by contacting swiftcare@emblation.com.
Patients should contact their clinic, which acts as the controller.

10. Children

The app is for verified clinicians only.

11. Changes