Privacy Policy - Vsquarish Inc
PRIVACY & SECURITY

Privacy Policy

At Vsquarish Inc, we are committed to protecting your privacy and ensuring the security of your personal and health information. This policy outlines how we collect, use, and safeguard your data.

Last Updated: March 15, 2025

On This Page

Information We Collect

We collect various types of information to provide and improve our services, including:

Personal Information

  • Contact Details: Name, email address, phone number, and physical address
  • Professional Information: Medical license numbers, practice details, and specialty information
  • Account Credentials: Usernames, passwords, and security questions

Health Information (Protected Health Information - PHI)

  • Patient Data: Medical history, treatment records, diagnoses, and prescriptions
  • Clinical Notes: Physician notes, lab results, and imaging reports
  • Billing Information: Insurance details, payment records, and claim information

Technical Information

  • Device Information: IP address, browser type, operating system
  • Usage Data: How you interact with our platform, feature usage, and session duration
  • Location Data: General geographic information for service optimization

How We Use Information

We use the collected information for the following purposes:

Purpose Description
Service Delivery To provide and maintain our healthcare automation platform, including appointment scheduling, billing, and patient management
Communication To send important updates, service notifications, and respond to your inquiries
Improvement To analyze usage patterns and enhance platform functionality, security, and user experience
Compliance To meet legal obligations, including HIPAA requirements and healthcare regulations
Security To monitor and prevent fraudulent activities, unauthorized access, and security threats

Important Note

We never sell your personal or health information to third parties. Data is only shared as necessary to provide our services or as required by law.

Data Security

We implement robust security measures to protect your information:

Technical Safeguards

  • Encryption: All data is encrypted in transit (TLS 1.2+) and at rest (AES-256)
  • Access Controls: Role-based access controls and multi-factor authentication
  • Network Security: Firewalls, intrusion detection systems, and regular security audits
  • Backup Systems: Regular encrypted backups with disaster recovery protocols

Administrative Safeguards

  • Security Training: All employees complete mandatory security and HIPAA training
  • Policies & Procedures: Comprehensive security policies and incident response plans
  • Vendor Management: Rigorous vetting of third-party service providers
  • Regular Audits: Internal and external security assessments

HIPAA Compliance

As a healthcare technology provider, we are fully compliant with the Health Insurance Portability and Accountability Act (HIPAA):

  • Business Associate Agreement (BAA): We sign BAAs with all covered entities
  • Minimum Necessary Standard: We only access the minimum PHI necessary to perform services
  • Audit Controls: Comprehensive logging and monitoring of all PHI access
  • Breach Notification: Prompt notification procedures in case of any data breach
  • Patient Rights: Support for patient rights under HIPAA, including access and amendment

Our Commitment

We undergo annual third-party HIPAA compliance audits and maintain all required documentation, including risk assessments and contingency plans.

Your Rights

You have the following rights regarding your personal information:

Access & Correction

  • Right to Access: Request a copy of your personal information we hold
  • Right to Correction: Request corrections to inaccurate or incomplete information
  • Right to Deletion: Request deletion of your data, subject to legal limitations

Control & Preferences

  • Opt-Out Rights: Opt out of marketing communications at any time
  • Data Portability: Request your data in a structured, commonly used format
  • Restriction Rights: Request restriction of processing in certain circumstances

To exercise any of these rights, please contact our Privacy Officer at [email protected] or through the contact information provided below.

Cookies & Tracking Technologies

We use cookies and similar technologies to enhance your experience:

Types of Cookies We Use

Cookie Type Purpose Duration
Essential Required for platform functionality and security Session
Functional Remember preferences and settings Up to 1 year
Analytical Understand how users interact with our platform Up to 2 years

Managing Cookies

You can control cookie settings through your browser preferences. However, disabling essential cookies may impact platform functionality.

Third-Party Services

We work with trusted third-party service providers to deliver our services:

Service Providers

  • Cloud Infrastructure: AWS for secure data hosting
  • Payment Processing: Stripe for secure payment transactions
  • Communication Services: Twilio for SMS and email notifications
  • Analytics Tools: Google Analytics for anonymized usage data

Our Standards

  • All third-party providers undergo rigorous security assessments
  • We sign Data Processing Agreements with all relevant providers
  • We minimize data sharing to only what's necessary for service delivery
  • We regularly review and audit third-party security practices

Policy Updates

We may update this privacy policy periodically to reflect changes in our practices or legal requirements:

  • Notification: We will notify you of significant changes via email or platform notification
  • Review Period: The "Last Updated" date at the top indicates when changes were made
  • Continued Use: Continued use of our services after changes constitutes acceptance
  • Archive: Previous versions of this policy are available upon request

We encourage you to review this policy periodically to stay informed about how we protect your information.

Privacy Policy FAQ

Common questions about our privacy practices and data handling

Is my health information secure with Vsquarish?

Yes, absolutely. We implement enterprise-grade security measures including end-to-end encryption, multi-factor authentication, and regular security audits. We are fully HIPAA compliant and sign Business Associate Agreements with all healthcare providers.

Do you share or sell my data to third parties?

No, we never sell your personal or health information. We only share data with trusted service providers as necessary to deliver our services, and all such sharing is governed by strict Data Processing Agreements. We may disclose information when required by law or to protect our rights.

How long do you retain my data?

We retain personal information for as long as necessary to provide our services and comply with legal obligations. Healthcare data is retained according to state and federal record retention requirements, typically 6-10 years after the last patient encounter or as specified in our agreements with healthcare providers.

How can I exercise my privacy rights?

You can contact our Privacy Officer at [email protected] to exercise any of your rights, including accessing your data, requesting corrections, or opting out of communications. We will respond to all legitimate requests within 30 days as required by applicable laws.

Have Questions About Privacy?

Our privacy team is here to help. Contact us with any questions about our privacy practices or to exercise your data rights.

Contact Support