Logo icon
AccessHealthData

Privacy Policy

How we handle personal information, PHI, usage data, and privacy rights.

Overview

This Privacy Policy explains what information we collect, how we use it, and how we protect it. We follow HIPAA and industry best practices to safeguard data entrusted to us.

Information We Collect

Account Information

Name, email, organization, billing information.

Usage Information

API calls, logs, request metadata.

PHI (only with a BAA + paid tier)

Patient clinical data transmitted via API. We do not collect PHI unless explicitly provided under a BAA.

How We Use Information

  • Provide API services
  • Maintain records and logs
  • Improve performance and stability
  • Ensure security and compliance
  • Bill for usage

We do not sell, rent, or monetize data in any form.

Data Sharing

We only share data with:

  • Subprocessors under strict security and BAA/DPA agreements
  • Your intended clinical data exchange networks (e.g., national exchange)
  • Legal authorities when required

Your Rights

  • Access and export data
  • Request deletion
  • Review subprocessors
  • Receive breach notifications
  • Close your account

Contact Privacy Office

For privacy questions or requests:

privacy@accesshealthdata.com