AlfredCare Privacy Policy
AlfredCare (“we,” “our,” or “us”) is committed to protecting the privacy and security of your information. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you use our services. AlfredCare is designed to support clinicians by automating clinical documentation, billing, and administrative workflows, while ensuring compliance with data privacy regulations such as HIPAA.
- What Information We Collect
- We collect the following types of information from users of our services:
- Personal Information
- Clinician names and email addresses
- User profile information
- Account settings and preferences
- Patient Data (Protected Health Information – PHI)
As a HIPAA-compliant platform, AlfredCare may process patient data provided by clinicians. This includes:
- Session audio recordings and transcripts
- Medical notes, billing codes, and treatment details
- Other information shared during clinical documentation
- Usage Data
We collect anonymized data on how our services are used to improve platform performance. This includes:
- Log data (e.g., browser type, time spent, features used)
- Device information
- Access times and IP addresses
- How We Use Your Information
- We use your information to:
- Provide and improve the AlfredCare platform and its features
- Generate clinical documentation, billing summaries, and insights
- Ensure legal and regulatory compliance (e.g., HIPAA, HITECH)
- Communicate with you about updates, security, and support
- Perform internal audits and usage analysis to enhance service quality
- How We Protect Your Information
- AlfredCare applies industry best practices and advanced technical safeguards to ensure your data is safe:
- HIPAA-Compliant Infrastructure: AlfredCare utilizes Google Cloud infrastructures, including their integrated HIPAA-compliant environment, to securely host and process PHI.
- End-to-End Encryption: All data is encrypted in transit and at rest.
- Access Controls: Role-based permissions and multi-factor authentication protect sensitive access.
- Audit Trails: We maintain logs of access and changes to ensure traceability and accountability.
- How We Share Information
- We do not sell your personal or patient information. Data is only shared under the following conditions:
- With service providers and vendors under strict data processing agreements
- When required by law, regulation, or legal process
- With your explicit consent, where applicable
- Data Retention and Deletion
- We retain clinical and usage data only for as long as necessary to provide our services or comply with legal obligations.
If you request deletion of your account, AlfredCare will delete your personal information and associated PHI from our systems in accordance with HIPAA requirements and applicable laws. Certain limited data may be retained as required by law or for legitimate business purposes (e.g., billing records, legal obligations), but PHI will be securely and permanently removed. Upon request, you may also receive written confirmation once deletion is completed.
- Your Rights and Choices
- You have control over your data:
- Access: Request access to personal and patient data stored on AlfredCare
- Correction: Request corrections to any inaccurate or outdated information
- Deletion: Request removal of your data where permissible under HIPAA and applicable law
- Consent Management: Manage communications and data sharing preferences
- Children’s Privacy
- AlfredCare is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children.
- Changes to This Policy
- We may update this Privacy Policy periodically. When we do, we’ll revise the “Effective Date” and notify users via our platform or email as appropriate.
- Contact Us
- If you have questions or concerns about this Privacy Policy or AlfredCare’s data practices, please contact us at:
- AlfredCare Privacy Office
Email: [email protected]