Privacy Policy
Your privacy is important to us. This policy explains how we collect, use, and protect your information.
Last updated: November 29, 2025
Introduction
FrontDeskClinic ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our healthcare communication platform. As a HIPAA-compliant service provider, we take the protection of your personal health information (PHI) seriously.
Information We Collect
Account Information
When you create an account, we collect your name, email address, phone number, clinic name, and billing information.
Communication Data
We process phone calls, faxes, and text messages sent through our platform. This may include protected health information (PHI) as defined by HIPAA.
Usage Information
We collect information about how you use our services, including log data, device information, and analytics data.
How We Use Your Information
- •To provide and maintain our communication services
- •To process and route your calls, faxes, and messages
- •To send appointment reminders and notifications
- •To improve our AI-powered features and automation
- •To provide customer support and respond to inquiries
- •To comply with legal obligations and HIPAA requirements
HIPAA Compliance
FrontDeskClinic is fully HIPAA compliant. We implement appropriate administrative, physical, and technical safeguards to protect the confidentiality, integrity, and availability of protected health information (PHI).
Our HIPAA Safeguards Include:
- • End-to-end encryption for all communications
- • Secure data storage with access controls
- • Regular security audits and assessments
- • Employee training on HIPAA requirements
- • Business Associate Agreements (BAAs) with all clients
- • Incident response and breach notification procedures
Data Security
We implement industry-standard security measures to protect your information:
- •256-bit AES encryption for data at rest
- •TLS 1.3 encryption for data in transit
- •Multi-factor authentication options
- •Regular penetration testing and vulnerability assessments
- •Hosted on Azure's SOC 2-certified infrastructure
Data Retention
We retain your information for as long as your account is active or as needed to provide services. Communication records containing PHI are retained in accordance with HIPAA requirements and your state's medical record retention laws (typically 6-10 years). You may request deletion of your account and personal data at any time, subject to legal retention requirements.
Your Rights
Under HIPAA and applicable privacy laws, you have the right to:
- •Access your personal information and PHI
- •Request correction of inaccurate information
- •Request deletion of your personal data
- •Receive a copy of your data in a portable format
- •Opt out of marketing communications
- •File a complaint with the HHS Office for Civil Rights
Contact Us
If you have questions about this Privacy Policy or our data practices, please contact us:
Email: [email protected]
Website: frontdeskclinic.com
Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date. For significant changes affecting your rights, we will provide additional notice via email or through our platform.