Privacy Policy

MedVersify LLC ("MedVersify," "we," "us," or "our") is committed to protecting the privacy and security of information entrusted to us. This Privacy Policy explains how we collect, use, disclose, and safeguard information in connection with our website and administrative services.

As a Business Associate under HIPAA, MedVersify handles Protected Health Information (PHI) on behalf of healthcare provider clients (Covered Entities). The handling of PHI is governed separately by our Business Associate Agreements (BAA) and applicable HIPAA regulations — not solely by this Privacy Policy.

This Privacy Policy applies to information we collect through our website (medversify.com), through contact forms, and through general business communications.

We may collect the following categories of information:

Contact & Business Information: Name, practice name, email address, phone number, and mailing address — collected when you complete a contact form, request a consultation, or enter into a service agreement with us.

Website Usage Data: IP address, browser type, pages visited, time on page, and referring URLs — collected automatically through standard web server logs and analytics tools.

Communications: Emails, messages, and other communications you send to us, including their content and metadata.

Service-Related Data: Information necessary to perform contracted services, such as provider credentials, payer information, and billing data. The handling of this data is governed by your Service Agreement and our BAA.

We do not collect sensitive personal information such as Social Security numbers, financial account numbers, or PHI through our public website.

We use the information we collect to:

(a) Respond to inquiries and communicate with prospective and active clients.

(b) Deliver contracted administrative services, including billing, credentialing, MIPS reporting, and scheduling support.

(c) Send service-related updates, invoices, and notifications required for the operation of your account.

(d) Improve our website, services, and internal processes.

(e) Comply with legal obligations, including HIPAA reporting requirements and applicable state and federal laws.

(f) Protect the rights, property, and safety of MedVersify, our clients, and the public.

We do not sell, rent, or trade your personal information to third parties for their own marketing purposes.

MedVersify acts as a Business Associate to healthcare provider clients. In that capacity, we access and process PHI solely to perform the services specified in each client's Service Agreement and BAA.

We implement and maintain HIPAA-required administrative, physical, and technical safeguards to protect the confidentiality, integrity, and availability of all PHI we handle.

We do not use or disclose PHI for any purpose other than those permitted by HIPAA and your BAA. We do not sell PHI. We do not use PHI for advertising or marketing purposes.

MedVersify employs industry-standard technical, administrative, and physical safeguards to protect information from unauthorized access, disclosure, alteration, or destruction. These include:

• Encrypted data transmission (TLS/SSL) for all web communications.

• Access controls limiting PHI and client data to authorized personnel only.

• Regular security assessments and employee training on data handling.

• Secure, redundant data storage with backup and recovery procedures.

No method of electronic transmission or storage is 100% secure. While we strive to use commercially reasonable safeguards, we cannot guarantee absolute security.

We retain personal and business information for as long as necessary to fulfill the purposes described in this Policy, comply with legal obligations, resolve disputes, and enforce agreements.

PHI and service-related data are retained in accordance with applicable HIPAA requirements and the retention schedules specified in your Service Agreement. Upon termination of services, data will be returned or securely destroyed as outlined in your BAA.

Our website uses cookies and similar tracking technologies to improve functionality and understand how visitors use our site. For detailed information on the cookies we use and how to manage them, please review our Cookie Policy.

You can control cookie settings through your browser preferences. Disabling cookies may affect certain features of our website.

Depending on your jurisdiction, you may have rights regarding your personal information, including the right to access, correct, or delete information we hold about you.

To exercise any of these rights, please contact us using the information below. We will respond within a reasonable timeframe. Note that some data may be exempt from deletion or access requests where retention is required by law.

For rights related to PHI (as a patient of a practice we serve), requests must be directed to the relevant healthcare provider (Covered Entity), not to MedVersify directly.

We may update this Privacy Policy periodically to reflect changes in our practices or applicable law. When we make material changes, we will update the "Last updated" date at the top of this page and notify active clients by email where required.

We encourage you to review this Policy regularly. Your continued use of our services after any update constitutes your acceptance of the revised Policy.