Privacy Policy

a. Information You Provide to Us

We may collect personal information you voluntarily provide, including:

• Name
• Email address
• Account credentials
• Billing and payment information
• Communications with us (support requests, emails, forms)

b. Protected Health Information (PHI)

When you use our platform as a healthcare provider, you may upload or enter Protected Health Information (PHI) relating to patients.

We collect and store PHI solely on behalf of our customers and only to provide the Service. We do not use PHI for marketing or advertising.

c. Information Collected Automatically

When you visit our website, we may automatically collect:

• IP address
• Browser type
• Device information
• Usage data (pages visited, actions taken)
• Cookies and similar tracking technologies

We use collected information to:

• Provide, operate, and maintain the Service
• Create and manage user accounts
• Process payments
• Communicate with users regarding accounts, updates, and support
• Improve platform performance and features
• Comply with legal and regulatory obligations

PHI is used only to provide contracted services to healthcare providers.

We use Stripe to process payments. When you submit payment information:

• Your name, email address, and payment details are shared with Stripe
• Practice Uplift does not store full credit card numbers
• Stripe processes payment data according to its own privacy and security practices

Stripe acts as a third-party service provider. You can review Stripe's privacy policy on their website.

Practice Uplift acts as a Business Associate under the Health Insurance Portability and Accountability Act of 1996 (HIPAA) when handling PHI on behalf of covered entities.

We:

• Implement administrative, technical, and physical safeguards to protect PHI
• Limit access to PHI to authorized personnel only
• Do not disclose PHI except as permitted by law or by our agreements with customers

Customers are responsible for ensuring their own HIPAA compliance and for entering into a Business Associate Agreement (BAA) with Practice Uplift where required.

We may share information only as follows:

• With service providers (such as Stripe) who help operate the Service
• To comply with legal obligations or lawful requests
• To protect the rights, safety, and security of Practice Uplift and users
• As instructed or authorized by our customers

We do not sell personal data.

We use reasonable and appropriate security measures to protect information, including:

• Encryption
• Access controls
• Secure infrastructure
• Monitoring and logging

No system is completely secure, and we cannot guarantee absolute security.

We retain personal data and PHI only as long as necessary to:

• Provide the Service
• Meet legal, contractual, or regulatory requirements

Customers may request deletion of their data, subject to applicable laws.

We use cookies and similar technologies to:

• Operate the website
• Analyze usage
• Improve user experience

You can control cookies through your browser settings.

Depending on your location, you may have rights to:

• Access your personal data
• Request correction or deletion
• Opt out of certain communications

Requests can be made by contacting us at the email below.

Our Service is not intended for children under 13. We do not knowingly collect personal information from children.

If you access the Service from outside the United States, your information may be transferred to and processed in the United States.

We may update this Privacy Policy from time to time. Updates will be posted on this page with a revised "Last updated" date.

If you have questions about this Privacy Policy or data practices, contact us at:

• Email: support@practice-uplift.com
• Company: Practice Uplift