Privacy Policy

Last updated: January 2024

1. Introduction

ShifaCom ("we," "us," "our," or "Company") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and otherwise process personal information in connection with our HIPAA-compliant healthcare management platform.

2. HIPAA Compliance

ShifaCom is a covered entity under the Health Insurance Portability and Accountability Act (HIPAA). We comply with all HIPAA privacy, security, and breach notification rules. Protected Health Information (PHI) is handled with the utmost care and security protocols.

  • End-to-end encryption for all patient data
  • Comprehensive audit trails and access logs
  • Regular security assessments and penetration testing
  • Employee training on privacy and security
  • Incident response procedures

3. Information We Collect

We collect information you provide directly and information collected automatically:

Direct Collection:

  • Patient health information and medical records
  • Account credentials and user information
  • Contact information and communication preferences

Automatic Collection:

  • Usage data and analytics
  • Device information
  • Access logs and timestamps

4. How We Use Your Information

We use collected information to:

  • Provide and maintain healthcare management services
  • Process medical records and treatment information
  • Improve our services and user experience
  • Ensure compliance with legal obligations
  • Maintain security and prevent fraud
  • Communicate with you about services

5. Data Security

We implement comprehensive security measures including encryption, access controls, and regular security audits. All data is stored in secure, HIPAA-compliant servers with automated backups and disaster recovery protocols.

6. Your Rights

Under HIPAA and privacy regulations, you have the right to:

  • Access your health information
  • Request amendments to your records
  • Receive an accounting of disclosures
  • Request restrictions on use and disclosure
  • Request confidential communications
  • File a complaint with our Privacy Officer

7. Data Retention

We retain personal and health information for as long as necessary to provide services and comply with legal obligations. Patient records are maintained according to applicable state and federal regulations.

8. Third-Party Services

When we share information with third-party service providers, we require them to maintain HIPAA compliance and sign Business Associate Agreements (BAAs). We do not sell patient data to marketing companies or third parties.

9. Cookies and Tracking

We use cookies and similar tracking technologies to enhance functionality and analyze usage. You can control cookie settings through your browser. However, disabling cookies may affect platform functionality.

10. Contact Us

For privacy concerns or to exercise your rights, contact our Privacy Officer:

Privacy Officer

Email: privacy@shifacom.com

Phone: +1 (234) 567-890

Address: Healthcare Hub, Medical City

11. Changes to This Policy

We may update this Privacy Policy periodically. Significant changes will be communicated to users. Continued use of the platform constitutes acceptance of updated terms.