Security Overview 

Our commitment to you. 

We carefully design MemorySparx for all users - care recipients, care staff, family members and other personal connections, professional connections and administrative personnel. Our services can enrich the life of an individual when the right people come together to share the individual's personal details that matter and to collaborate on that person's care. We recognize the importance of safeguarding your personal information as a MemorySparx user and providing a reliable service that you can trust. We highlight some of our safeguards here and invite you to contact if you have additional questions regarding information security or service availability.

How we protect your data and services. 

  • Your data is encrypted when it is transmitted over a public or private network and when it is stored.

  • We use professionally managed services to transmit and store your data. These services have built-in security controls and features proven to comply with the most demanding data security and privacy standards.

  • Your data is stored redundantly at multiple locations in our hosting provider’s data centers to ensure availability. We have well-tested backup and restoration procedures which allow recovery from a major disaster. 

  • We are committed to making MemorySparx a highly available service that you can count on. Our infrastructure runs on systems that are fault tolerant for failures of individual servers or data centers. These systems are tested and maintained regularly.

For the individuals at the heart of the MemorySparx services, we design our services to enrich your care and wellness. We want you to have visibility and choices into how we share your data.

  • We give you visibility into the names of the people in your care circle who share MemorySparx content about you. We do this through the Members section within your account or the account of any member of your care circle.

  • The MemorySparx content related to you is shared according to permissions which are customizable for each person in your care circle. Permission settings control who can access content in the Health and Chat sections of MemorySparx.

  • We advise your care organization to include you or your substitute decision maker in the setup of your care circle by giving you choice of which personal and professional connections to invite and what permissions each person should have. You can ask an administrator to make changes to the list of members and their permissions at any time.

  • For a connection to join your care circle, they must correctly answer a security question. This security question is intended to be a shared secret that authenticates the person’s identity.

  • Any member of your care circle with suitable permissions can update and delete content pertaining to you at any time. When MemorySparx content is deleted, it is removed from our storage system promptly. The content may stay in our backup system for up to 30 days. 

  • We keep detailed access logs that record when a member of your care circle adds, views, edits, or deletes content pertaining to you or invites a new member to your care circle. The organization which pays for your account can request these records from us at anytime.

For anyone with personal data stored in MemorySparx, we are committed to managing access to your data with care.

  • We provide an auto time-out feature that automatically signs a user out of their MemorySparx account after a period of inactivity to prevent an unauthorized person from accessing your data.

  • When the organization which pays for the care circles you are a part of decides to stop using MemorySparx, we delete your account details and the care circle content from our storage system promptly. The data may stay in our backup system for up to 30 days.

  • We place strict controls over our employees’ access to any data which personally identifies you. A small number of Emmetros employees can access these data to provide you support, for example, in order to diagnose a problem that you may have with MemorySparx. These workers are only authorized to access data which they reasonably must handle in order to provide you the support you need.

  • Of course, we must comply with valid legal requests, such as a court order, but otherwise we won’t access or disclose your data unless the person or organization which pays for your account tells us to. 

Emmetros adheres to the Personal Health Information Protection Act, 2004 (PHIPA). For organizations which operate in Ontario, we may act with you as an agent, electronic service provider, or health information network provider (HINP) as described in PHIPA and its regulation. In the role of HINP, we enable your organization to share you client's personal health information with other health information custodians through electronic means. 

For organizations which operate in the United States under the Health Insurance Portability and Accountability Act of 1996 (HIPAA), Emmetros will safeguard the protected health information it receives or creates on your behalf. We will act as a business associate according to the terms of a business associate agreement between you and us.  

If there’s a problem. 

Despite the care we take to secure your data and our services, we need to be ready in case an unforeseen problem arises. Should that happen, we will: 

  • Respond quickly to minimize the impact of the security vulnerability or breach.

  • Notify any affected customers as soon as we understand the scope of the issue. (Please understand that responding to the problem may temporarily take priority over notification.) 

  • Work to understand and fix the root cause of the problem to ensure that it never happens again. 

Reporting a problem. 

If you feel your account may have been compromised, or you discover abuse or misuse of a MemorySparx account, please report it immediately by sending an email to and we’ll investigate. 

Thank you. 

Thank you for using MemorySparx. We are working very hard to make this the safest place for you.