Privacy Policy

Introduction

At ClinosCare, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our clinic management platform. As a healthcare technology provider, we are committed to protecting your personal health information (PHI) in compliance with HIPAA and other applicable regulations.

Information We Collect

Patient Health Information

We collect and process protected health information (PHI) including but not limited to:

• Patient demographics (name, date of birth, address, contact information)
• Medical history and clinical notes
• Appointment and scheduling information
• Prescription and medication records
• Laboratory results and diagnostic reports
• Insurance and billing information

Clinic and Provider Information

For healthcare providers and clinic administrators:

• Professional credentials and licenses
• Contact and business information
• Usage data and system logs
• Payment and subscription information

Technical Information

• IP address and device information
• Browser type and operating system
• Log files and usage analytics
• Cookies and similar tracking technologies

How We Use Your Information

We use the collected information for the following purposes:

• Providing and maintaining our clinic management services
• Processing appointments, prescriptions, and billing
• Facilitating communication between patients and healthcare providers
• Ensuring compliance with healthcare regulations and standards
• Improving our platform and developing new features
• Detecting and preventing fraud or unauthorized access
• Sending important notifications about your account or services

HIPAA Compliance

ClinosCare is fully compliant with the Health Insurance Portability and Accountability Act (HIPAA). We implement comprehensive administrative, physical, and technical safeguards to protect PHI:

• End-to-end encryption for all data transmission
• Encrypted data storage with AES-256 encryption
• Role-based access controls and authentication
• Regular security audits and risk assessments
• Business Associate Agreements (BAAs) with all third-party vendors
• Comprehensive audit logs of all PHI access
• Employee training on HIPAA compliance and data security

Data Sharing and Disclosure

We do not sell your personal or health information. We may share information only in the following circumstances:

• With Your Consent: When you explicitly authorize us to share information
• Healthcare Operations: With other healthcare providers involved in your care
• Legal Requirements: When required by law or valid legal process
• Business Associates: With HIPAA-compliant service providers under BAAs
• Emergency Situations: To prevent serious harm or protect public health

Data Security

We implement industry-leading security measures:

• SSL/TLS encryption for all data in transit
• AES-256 encryption for data at rest
• Multi-factor authentication (MFA) for all users
• Regular penetration testing and vulnerability assessments
• 24/7 security monitoring and incident response
• Regular backups with encrypted storage
• Secure data centers with physical access controls

Your Rights

Under HIPAA and applicable privacy laws, you have the following rights:

• Right to Access: Request copies of your health information
• Right to Amend: Request corrections to your health records
• Right to Accounting: Receive a list of disclosures of your information
• Right to Restrict: Request restrictions on how your information is used
• Right to Confidential Communications: Request communications through specific means
• Right to Opt-Out: Decline certain uses of your information
• Right to Data Portability: Receive your data in a machine-readable format
• Right to Deletion: Request deletion of your data (subject to legal requirements)

Data Retention

We retain health information for as long as required by applicable laws and regulations, typically a minimum of 7 years from the date of last service. After this period, data is securely deleted or anonymized. Account and billing information may be retained for legal and accounting purposes.

Cookies and Tracking

We use cookies and similar technologies to:

• Maintain your login session
• Remember your preferences
• Analyze usage patterns to improve our service
• Ensure security and prevent fraud

You can control cookies through your browser settings, but some features may not function properly if cookies are disabled.

Children's Privacy

ClinosCare is designed for use by healthcare providers. While the platform processes information about patients of all ages, we do not knowingly collect personal information directly from children under 13 without parental consent. Patient information for minors is collected and managed by authorized healthcare providers in accordance with applicable laws.

International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure that such transfers comply with applicable data protection laws and implement appropriate safeguards, including Standard Contractual Clauses and adequacy decisions.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. For significant changes, we will provide prominent notice or obtain consent as required by law.

Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us: