Privacy Policy

1. Information We Collect

Protected Health Information (PHI)

As a healthcare technology platform, we collect and process PHI to facilitate medical referrals, including:

• Patient demographics and contact information
• Medical history and current health conditions
• Insurance information and coverage details
• Clinical documentation and referral notes
• Appointment scheduling and communication records

Account and Usage Information

• Provider credentials and practice information
• User account details and authentication data
• Platform usage analytics and performance metrics
• Communication logs and support interactions

2. How We Use Your Information

Primary Healthcare Operations

• Facilitating medical referrals between PCPs and specialists
• Matching patients with appropriate healthcare providers
• Coordinating appointment scheduling and follow-ups
• Providing real-time updates on referral status

Platform Improvement and Support

• Improving our platform functionality and user experience
• Providing technical support and customer service
• Conducting quality assurance and compliance monitoring
• Developing new features and healthcare solutions

3. Information Sharing and Disclosure

We only share information as necessary for healthcare operations and as permitted by HIPAA:

Authorized Healthcare Providers

• Referring physicians and their authorized staff
• Specialist providers involved in patient care
• Healthcare facilities and their covered entities

Required Legal Disclosures

• When required by law or court order
• For public health activities as permitted by law
• To prevent serious threats to health or safety
• For healthcare oversight activities

Business Associates

We may share PHI with business associates who provide services on our behalf, including cloud hosting providers, IT support services, and payment processors. All business associates sign HIPAA-compliant agreements ensuring the same level of protection for your information.

4. Data Security and Protection

Technical Safeguards

• End-to-end encryption for all data transmission
• Secure data storage with enterprise-grade encryption
• Multi-factor authentication for user accounts
• Regular security audits and penetration testing
• Automated backup and disaster recovery systems

Administrative Safeguards

• Comprehensive privacy training for all employees
• Role-based access controls and authorization procedures
• Regular security risk assessments and updates
• Incident response and breach notification protocols

Physical Safeguards

• Secure data centers with 24/7 monitoring
• Restricted access to servers and equipment
• Environmental controls and backup power systems

5. Your Rights and Choices

Under HIPAA, you have the right to:

• Access: Request copies of your health information
• Amendment: Request corrections to your health information
• Accounting: Receive an accounting of disclosures of your PHI
• Restriction: Request restrictions on how your PHI is used or disclosed
• Confidential Communication: Request communication through alternative means
• Complaint: File a complaint if you believe your privacy rights have been violated

Data Portability and Deletion

You may request to export your data or request deletion of your account and associated information, subject to legal and regulatory requirements for healthcare record retention.

6. Cookies and Tracking Technologies

We use cookies and similar technologies to:

• Maintain secure user sessions
• Remember user preferences and settings
• Analyze platform usage and performance
• Provide personalized user experiences

You can control cookie preferences through your browser settings, though disabling certain cookies may affect platform functionality.

7. Third-Party Integrations

LinkCare integrates with various healthcare systems and EMR platforms. When you connect third-party services:

• We only access data necessary for referral coordination
• All integrations maintain HIPAA compliance standards
• You can revoke access permissions at any time
• We do not store unnecessary data from third-party systems

8. International Data Transfers

Your PHI is processed and stored within the United States. If international transfers are necessary for business operations, we implement appropriate safeguards including:

• Adequacy decisions or appropriate safeguards as required
• Standard contractual clauses for data protection
• Continuous monitoring of international privacy laws

9. Children's Privacy

LinkCare does not knowingly collect personal information from children under 13. When processing pediatric healthcare information:

• We require appropriate parental or guardian consent
• We follow all applicable laws regarding minors' healthcare information
• We implement additional safeguards for pediatric data

10. Policy Updates

We may update this Privacy Policy to reflect changes in our practices, technology, legal requirements, or other factors. We will:

• Notify users of material changes via email or platform notification
• Post the updated policy on our website
• Provide at least 30 days notice before implementing significant changes
• Maintain previous versions for reference