Privacy Policy

Personal Information

We may collect the following types of personal information:

• Contact information (name, email address, phone number, mailing address)
• Professional information (practice name, specialty, NPI number, tax ID)
• Account credentials and login information
• Payment and billing information
• Communication preferences and history

Protected Health Information (PHI)

In the course of providing our services, we may have access to Protected Health Information as defined by HIPAA, including:

• Patient demographic information
• Medical record numbers and identifiers
• Insurance information and coverage details
• Medical billing and claims data
• Treatment and diagnosis codes

Technical Information

We automatically collect certain technical information when you visit our website:

• IP address and location data
• Browser type and version
• Device information and operating system
• Website usage patterns and analytics
• Cookies and similar tracking technologies

Service Delivery

• Provide medical billing and revenue cycle management services
• Process insurance claims and handle denials
• Manage patient accounts and payment processing
• Provide customer support and technical assistance
• Maintain and improve our service quality

Communication

• Send service-related notifications and updates
• Respond to inquiries and provide customer support
• Share important policy or service changes
• Provide educational content and industry insights

Legal and Compliance

• Comply with HIPAA and other healthcare regulations
• Meet legal and regulatory reporting requirements
• Protect against fraud and unauthorized access
• Enforce our terms of service and agreements

Authorized Disclosures

• To insurance companies and payers for claims processing
• To healthcare clearinghouses for electronic transactions
• To business associates who assist in providing our services
• To legal and regulatory authorities when required by law
• With your explicit written authorization

Service Providers

We may share information with trusted service providers who assist us in operating our business, such as cloud hosting providers, payment processors, and technology vendors. All service providers are required to maintain appropriate safeguards and use information only for the purposes we specify.

Technical Safeguards

• 256-bit SSL encryption for data transmission
• Advanced firewall and intrusion detection systems
• Multi-factor authentication for system access
• Regular security audits and vulnerability assessments
• Secure data centers with Expert monitoring

Administrative Safeguards

• Comprehensive HIPAA compliance program
• Regular staff training on privacy and security
• Role-based access controls and user permissions
• Incident response and breach notification procedures
• Business associate agreements with all vendors

Physical Safeguards

• Secure facilities with controlled access
• Locked workstations and secure storage
• Proper disposal of physical and electronic media
• Video surveillance and security systems

Right to Access

You have the right to request access to your personal information and PHI that we maintain.

Right to Amendment

You may request corrections to inaccurate or incomplete personal information.

Right to Restriction

You may request restrictions on how we use or disclose your information.

Right to Accounting

You may request an accounting of disclosures of your PHI that we have made.

Right to Notification

You have the right to be notified of any breaches of your unsecured PHI.