Privacy Policy
Effective date: TBD (draft)
This application provides Chronic Care Management (CCM) and Remote Patient Monitoring (RPM) care-coordination support for a healthcare practice. It accesses electronic health record data through certified FHIR® APIs solely to assist the practice's authorized workforce in coordinating patient care.
Information we access
With the practice's authorization, the application reads clinical information (such as encounters, documents, and care-coordination items) needed to surface tasks to the care team. Access is read-only and limited to the minimum necessary.
How we use it
Information is used only to support care coordination and time documentation for the patient's own care team. We do not sell personal or health information, and we do not use it for advertising.
Protection & HIPAA
Protected Health Information is handled under HIPAA, governed by Business Associate Agreements with the practice and with subprocessors. Safeguards include access controls, encryption in transit and at rest, and audit logging. See the application's production-readiness documentation for current controls.
Contact
Privacy questions: [practice contact email] — [practice / legal entity name].