Privacy Policy
Last updated: 8/9/2025
HEALS ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our hospital management system and related services.
This policy applies to all users of our services globally and complies with international privacy regulations including the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), Health Insurance Portability and Accountability Act (HIPAA), and other applicable laws.
Personal Information
- Name, email address, and contact information
- Professional credentials and medical licenses
- Hospital or healthcare facility information
- Account credentials and authentication data
Healthcare Data
- Patient records and medical information (as authorized)
- Clinical data and treatment plans
- Medical device and equipment data
- Administrative and operational data
Technical Information
- IP addresses and device identifiers
- Usage analytics and system performance data
- Browser type and operating system information
- Cookies and similar tracking technologies
Service Provision
- Provide and maintain our healthcare management system
- Process transactions and manage billing
- Deliver customer support and technical assistance
- Send important service updates and notifications
Improvement & Analytics
- Analyze usage patterns to improve our services
- Develop new features and functionality
- Conduct research and development
- Ensure system security and performance
We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:
- With your consent: When you explicitly authorize us to share your information
- Service providers: With trusted partners who assist in operating our services
- Legal requirements: When required by law or to protect our rights and safety
- Business transfers: In connection with a merger, acquisition, or sale of assets
- Healthcare operations: As necessary for patient care and healthcare operations
We implement comprehensive security measures to protect your information:
Technical Safeguards
- End-to-end encryption for data in transit and at rest
- Multi-factor authentication and access controls
- Regular security audits and penetration testing
- HIPAA-compliant infrastructure and protocols
Organizational Measures
- Employee training on data protection
- Strict access controls and background checks
- Incident response and breach notification procedures
- Regular privacy impact assessments
Depending on your location, you may have the following rights regarding your personal information:
Access & Control
- Access and review your personal information
- Correct inaccurate or incomplete data
- Request deletion of your personal information
- Restrict processing of your data
Portability & Objection
- Receive your data in a portable format
- Object to processing of your information
- Withdraw consent at any time
- Lodge complaints with supervisory authorities
To exercise these rights, contact us at privacy@healserp.com. We will respond to your request within 30 days.
Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers:
- Adequacy decisions by relevant authorities
- Standard contractual clauses approved by regulatory bodies
- Binding corporate rules for internal transfers
- Other appropriate safeguards as required by law
If you have questions about this Privacy Policy or our data practices, please contact us:
HEALS Privacy Team
Email: privacy@healserp.com
Phone: +1 (555) 123-4567
Address: 123 Healthcare Ave, Medical District, NY 10001
For EU residents: You may also contact our EU representative at eu-privacy@healserp.com