Nesoi, LLC (“Company” “we,” or “us”) respects your privacy and is committed to protecting your privacy. This Privacy Policy (the “Privacy Policy” or “Policy) describes how we collect, use, and protect information when you download, access, or use the NoteMasterMD application (the “Application” or “Platform”). This Policy applies only to information collected through the Application and related communications initiated through the App. This Policy does not apply to information collected by other Company Platforms or applications, or by any third parties, including any third-party content or services that may be linked to or accessible from the App.
This Privacy Policy applies solely to personal information collected in connection with your account registration and subscription to the Application, including information you provide when creating an account, managing your subscription, or communicating with us about your account.This Privacy Policy does not govern the collection, use, or disclosure of Protected Health Information (“PHI”) as defined by the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”). For customers that sign up and operate under our Terms and Conditions, note the data and PHI that we process in delivering our service is handled under our standard Business Associate Agreement, which is consistent with applicable HIPAA requirements. If you have questions regarding the handling of PHI, please refer to the BAA or contact us directly.
By using the Platform, you agree to the terms of this Privacy Policy and our Terms and Conditions. If you do not agree, you should not access or use the Platform. The Platform is available only to users located in the United States and is not marketed to or intended for individuals outside the U.S. We may modify this Policy at any time. The date of change will be shown next to “Last Updated” at the bottom of this page. We encourage you to read this Policy periodically to ensure you have up-to-date knowledge of our privacy practices. By continuing to access or use the Platform after changes to this Policy become effective, you accept the revised Policy.
We collect Personal Information when you provide Personal Information to us through the Platform or through related direct communications via email or other methods. “Personal Information” means any information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked with a particular individual.
The categories of Personal Information that we may collect about you are:
We collect information you give us when you register with us or when you otherwise choose to provide your information to us. For example, we may collect:
- Name, email address, and account credentials provided during registration;
- Subscription and billing information, including payment method details;
- Technical support inquiries or user-initiated contact with usInformation you provide in connection with demos, surveys, events, or similar interactions with us.
When you use our Platform, complete electronic forms, or contact us via the Platform, we may automatically collect and store certain information about you and the activity you engaged in, for example: your name and contact information; information that you voluntarily provide to us; the nature of your communication; the purpose of the interaction, and the action we took in response to your inquiry or request.
We may automatically collect information about your use of the Platform (“Usage Data”), including information sent by your device. For example, we may collect:
- Device information, such as your hardware model, your device’s Internet Protocol (IP) address, unique device identifiers, and other information such as your browser type and operating system.
- Platform usage information regarding customer traffic patterns and Platform usage. This may include the web page that you were visiting before accessing our Platform or mobile application, the pages or features of our Platform or mobile application you browsed to inform us which part of our Platform, app and services you visit and how much time you spend there.
- Information about your preferences to make your use of the Platform more productive through the use of cookies or similar tracking technologies.
We do not collect any sensitive data that includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, or information about your health and genetic and biometric data, except to the extent you voluntarily input such information within the Application.
We will only use your Personal Information as described in this Policy or otherwise through your informed consent.
We will use your Personal Information to provide information or perform services that you request. Your information may be available or provided to third-party service providers in order to provide you with the information or to support the services you request. These third-party service providers are contractually obligated to protect your information as disclosed in this Policy.
We will use your Personal Information for the purposes of furthering our business and the business of our affiliated companies, including creating, operating, delivering, maintaining, and improving our content, products, and services. We may monitor how our users use our services including without limitation time spent using our services, pages visited, and content viewed. Aggregated forms of this data may also be used for research and development purposes in order to offer new features, functionalities, content, products and services.
We analyze, and may engage third parties to analyze, your Personal Information and Usage Data to determine the usefulness of our Platform and other elements of the services. Analytics help us determine how effective our navigational structure is in helping users reach the information they seek, completing the task they wish to complete, etc., and to tailor features and functionalities to our users’ needs and preferences.
Marketing lets us grow our community and update you about new products and services. We process your contact information or information about your interactions on our services to: send you marketing communications and keep you updated about our products and services; provide you with informational content; and deliver targeted marketing to you. We may need to send you certain administrative and transactional communications regarding the services and you will not be able to opt out of those communications, such as communications regarding updates to our Terms and Conditions, updates to our Subscription Terms, or updates to this Policy.
We collect information that you provide to us when you contact us, such as with questions, concerns, feedback, disputes or issues, so we can address your needs and support your use and enjoyment of the services.
We care about keeping you secure and safe while using our Platform. Keeping you safe requires us to process your Personal Information, such as your device information, log-in information, activity information and other relevant information to proactively manage privacy and security risks. We use such information to combat spam, malware, malicious activities or security risks; improve and enforce our security measures; and to monitor and verify your identity to prevent unauthorized users from gaining access to your information.
Our services may be subject to certain laws and regulations which may require us to process your Personal Information. For example, we process your Personal Information to comply with privacy laws, or as necessary to manage risk as required under applicable law.
When you access or use our services, you are bound to our Terms and Conditions and this Policy. To ensure you comply with them, we process your Personal Information to actively monitor, investigate, prevent and mitigate any alleged or actual prohibited, illicit or illegal activities on our services. We also process your Personal Information to investigate, prevent or mitigate violations of our terms or policies.
Your Personal Information is not shared with third parties without your permission, except as described in this Policy.
We engage employees and third-party services providers to work with us to administer and provide the services or to promote our services. These employees and third-party services providers have access to your Personal Information only for the purpose of performing services on our behalf and are expressly obligated not to disclose or use your Personal Information for any other purpose.
If we are acquired by a third party as a result of a transaction such as a merger, acquisition or asset sale, or if our assets are acquired by a third party in the event we go out of business or enter bankruptcy, some or all of our assets, including your Personal Information, may be disclosed or transferred to a third-party acquirer in connection with the transaction. Other than to the extent ordered by a bankruptcy or other court, the use and disclosure of all transferred user information will be subject to this Policy. Any information you submit or that is collected after a transfer, however, will be subject to a new privacy policy adopted by the successor entity.
We work with our subsidiaries and affiliates (“Affiliates”) to make certain services available to consumers. We may share your Personal Information with our Affiliates in order for us and our Affiliates to provide services to you or to respond to your requests and inquiries.
We cooperate with government and law enforcement officials to enforce and comply with the law. We may disclose information about you to government or law enforcement officials as we, in our sole discretion, believe necessary or appropriate: (i) to enforce our Terms and Conditions, (ii) to respond to claims and legal process (including subpoenas); (iii) to protect the property, rights and safety of a third party, our users, or the public in general; (iv) to protect our property, rights and safety; (v) to stop any activity that we consider fraudulent, illegal, unethical or legally actionable; and (vi) as required by applicable local, state or federal laws.
We use certain third-party service providers to support the functionality and security of the Application. These providers are carefully selected and contractually bound to protect user data in accordance with applicable privacy laws, including HIPAA.
The Application is hosted on servers located in the United States. All stored data is encrypted at rest and in transit. Hosting providers have no access to user data beyond what is required to operate and secure the Application.
We may contract with third parties for technical services and user interface enhancements related to the Application. These services are limited to application maintenance and feature development and do not include access to user data beyond what is necessary for troubleshooting and improvements.
We retain data only as long as necessary to fulfill the operational purposes for which it was collected, including to provide the Platform, comply with legal obligations, and resolve disputes.
We safeguard the security of the information you provide to us with reasonable physical, electronic, and administrative procedures. For certain features of our Platform we use industry-standard encryption to enhance the security of data transmissions. Your account information is password-protected for your privacy and security. While we strive to protect your information, we cannot guarantee the security of the Internet and cannot ensure the security of the information that is transmitted through the Internet.
We do not provide services to children under the age of 18. Children under the age of 18 are not eligible to register for an account.
If you have questions or concerns about our collection, use, or disclosure of your Personal Information, please email us at support@notemastermd.com
Last Updated: 4/8/2026
This California Privacy Supplement supplements the NoteMasterMD Privacy Policy and applies solely to California residents with respect to Personal Information governed by that Privacy Policy.This supplement applies only to non-PHI Personal Information that Nesoi, LLC collects as a business, as described in the main Privacy Policy.
It does not apply to Protected Health Information ("PHI"), medical information, clinical trial data, or other information exempt from the California Consumer Privacy Act ("CCPA"), as amended by the California Privacy Rights Act ("CPRA"), including information governed by HIPAA, the Confidentiality of Medical Information Act, or other applicable healthcare laws.
If this California Privacy Supplement conflicts with the main Privacy Policy, this supplement will control as to California residents and to the extent applicable.
In the preceding 12 months, we may have collected the following categories of Personal Information, to the extent applicable to your interaction with us:
- Identifiers and contact information, such as name, email address, phone number, username, Internet Protocol (IP) address, and online identifiers.
- Professional or business information, such as employer or practice name, title, specialty, and business contact details.Account and authentication information, such as username, password, and account preferences.
-Commercial information, such as subscription status, billing contact details, transaction history, and related customer records.
- Internet or other electronic network activity information, such as log data, usage data, device information, cookie data, and interactions with our websites and Services.
- Approximate geolocation data derived from IP address or similar network information.
- Communications, such as emails, support requests, feedback, and similar correspondence.
- Inferences or analytics derived from the information above, such as information used to improve functionality, security, and user experience.
We collect this information directly from you, automatically from your device or browser, from your employer, practice, or authorized account administrator, from service providers that support our operations, and from publicly available or professional sources where permitted by law.
We retain each category of Personal Information only for as long as reasonably necessary and proportionate to achieve the purposes described in this Privacy Policy, taking into account the nature and sensitivity of the information, the purposes for which it was collected, our legal obligations, and our need to protect the Services, users, and our business.
We may collect, use, retain, and disclose the categories above to:Provide, operate, secure, support, and improve the Services.
- Create and manage accounts, authenticate users, administer subscriptions, process billing, and maintain business relationships.
- Communicate with you regarding demos, onboarding, support, updates, security notices, and other administrative matters.
- Conduct internal analytics, troubleshooting, quality assurance, and product improvement.
- Protect against fraud, misuse, security incidents, and other harmful or unlawful activity.
- Comply with legal, regulatory, contractual, and enforcement obligations.
- Send marketing or promotional communications where permitted by law and subject to your opt-out rights.
In the preceding 12 months, we may have disclosed the categories of Personal Information listed above for business purposes to the categories of recipients described in the main Privacy Policy, including:
- Service providers and contractors that support hosting, infrastructure, authentication, analytics, billing, communications, customer support, security, and similar business operations.
- Affiliates or related entities, where reasonably necessary for internal administration and support.
- Your employer, practice group, healthcare organization, or authorized account administrator, where your access is provided or managed through that organization.
- Parties involved in an actual or contemplated corporate transaction.
- Regulators, law enforcement, courts, or other third parties where required or permitted by law, or with your consent or at your direction.
We do not sell Personal Information for monetary consideration. Based on the data practices described in this Privacy Policy for non-PHI information, we do not knowingly share Personal Information for cross-context behavioral advertising.
To the extent we collect Sensitive Personal Information governed by the CCPA, such as account log-in credentials or information that falls within a statutory sensitive category, we use and disclose that information only for permitted purposes, including providing the Services, authenticating access, maintaining account security, detecting fraud or misuse, and complying with legal obligations. We do not use Sensitive Personal Information to infer characteristics about California residents.
Subject to verification and applicable exemptions and exceptions, California residents may have the right to:
- Know and access the categories and specific pieces of Personal Information we have collected, the sources of that information, the purposes for which we use it, and the categories of recipients to whom we disclose it.
- Request deletion of Personal Information we collected from them.
- Request correction of inaccurate Personal Information we maintain about them.
- Receive a portable copy of certain Personal Information, where applicable.
- Opt out of the sale or sharing of Personal Information, if and to the extent those activities are covered by the CCPA and applicable to our practices.
- Limit the use or disclosure of Sensitive Personal Information, subject to statutory exceptions; however, as described above, we use Sensitive Personal Information only for purposes that generally do not require a separate limitation right.
- Not receive discriminatory treatment for exercising applicable privacy rights.
These rights do not apply in all circumstances. For example, we may deny or limit a request where permitted by law, including where the information is exempt from the CCPA or where retention is reasonably necessary to complete a transaction, provide a requested service, maintain security, comply with law, or establish, exercise, or defend legal claims.
You may submit a privacy request by contacting us at:
Email: support@notemastermd.com
Phone: 917-209-1074
We may need to verify your identity before processing your request. Authorized agents may submit requests on your behalf where permitted by law, subject to verification of both the request and the agent's authority.
We retain Personal Information for the periods described in Section VI of the main Privacy Policy and for any longer period reasonably necessary to comply with legal obligations, resolve disputes, enforce agreements, protect the Services and our users, and maintain appropriate business and security records. We do not use a fixed retention period for every category of Personal Information; instead, we apply retention criteria based on the context and purpose of the processing.
If you have questions about this California Privacy Supplement or your California privacy rights, please contact us at:
support@notemastermd.com
1209 MOUNTAIN ROAD PL NE; ALBUQUERQUE, NM 87110
This Other U.S. States Privacy Supplement supplements the NoteMasterMD Privacy Policy and applies solely to residents of U.S. states other than California that have enacted comprehensive consumer privacy laws applicable to the Personal Information governed by the main Privacy Policy.
This supplement does not apply to Protected Health Information ("PHI"), medical records, patient-identifying information, or other information exempt under applicable law, including HIPAA and comparable healthcare-specific laws.In addition, some state privacy laws apply only to residents acting in an individual or household context and may not apply to information collected in a commercial, employment, or business-to-business context. Because many of our relationships are with healthcare professionals, practices, and other business users, some rights described below may not apply in all cases.If this supplement conflicts with the main Privacy Policy, this supplement will control to the extent applicable.
The categories of Personal Information we collect, the sources from which we collect it, the purposes for which we use it, and the categories of third parties to whom we disclose it are described in Sections II, III, and IV of the main Privacy Policy. In general, and depending on your interaction with us, this may include:
- Identifiers and contact information.
- Professional or business information.
- Account and authentication information.
- Subscription, billing, and transaction information.
- Communications and support records.
- Device, network, usage, log, and cookie data.Inferences or analytics derived from the above.
We may disclose such information to service providers and processors, affiliates, authorized organizational account administrators, parties to corporate transactions, legal authorities, and others as described in the main Privacy Policy.
Based on the data practices described in this Privacy Policy for non-PHI information:
- We do not sell Personal Information for monetary consideration.
- We do not use Personal Information for targeted advertising in the manner typically contemplated by comprehensive state privacy laws.
- We do not profile individuals in furtherance of decisions that produce legal or similarly significant effects.
To the extent we process sensitive data governed by an applicable state privacy law, we will do so in accordance with applicable legal requirements, including obtaining consent where required. Nothing in this supplement expands the scope of data covered by this Privacy Policy or overrides applicable healthcare-related exemptions.
Depending on your state of residence, the nature of your relationship with us, and applicable law, you may have the right to:
- Confirm whether we are processing your Personal Information and access that information.
- Correct inaccuracies in your Personal Information.
- Delete Personal Information provided by or obtained about you.
- Obtain a copy of certain Personal Information in a portable and, where feasible, readily usable format.
- Opt out of the sale of Personal Information, targeted advertising, or profiling in furtherance of decisions that produce legal or similarly significant effects, if and to the extent those rights apply to our practices.
- Appeal a decision we make regarding your privacy request.
We will not discriminate against you for exercising applicable privacy rights. These rights are subject to limitations and exceptions under applicable law.
You may submit a privacy request by contacting us at:
Email: support@notemastermd.com
Phone: 917-209-1074
We may need to verify your identity before processing your request. If we deny your request in whole or in part, you may appeal that decision by replying to our response or contacting us at support@notemastermd.com with the subject line "Privacy Rights Appeal." If we deny your appeal, we will provide additional information about any further recourse available to you under applicable law, which may include contacting your state attorney general.
We retain Personal Information as described in Section VI of the main Privacy Policy. Retention periods vary depending on the type of information, the purpose for which it was collected, legal and contractual requirements, and our need to maintain appropriate business, audit, and security records.
We may update this supplement from time to time. The "Last Updated" date above reflects the effective date of the current version. If you have questions about this supplement or your rights under applicable U.S. state privacy laws, please contact us at:
support@notemastermd.com
1209 MOUNTAIN ROAD PL NE; ALBUQUERQUE, NM 87110