Privacy Policy

Your privacy is important to us. This policy explains how we collect, use, and protect your information.

Last updated: November 29, 2025

Introduction

FrontDeskClinic ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our healthcare communication platform. As a HIPAA-compliant service provider, we take the protection of your personal health information (PHI) seriously.

Information We Collect

Account Information

When you create an account, we collect your name, email address, phone number, clinic name, and billing information.

Communication Data

We process phone calls, faxes, and text messages sent through our platform. This may include protected health information (PHI) as defined by HIPAA.

Usage Information

We collect information about how you use our services, including log data, device information, and analytics data.

How We Use Your Information

  • To provide and maintain our communication services
  • To process and route your calls, faxes, and messages
  • To send appointment reminders and notifications
  • To improve our AI-powered features and automation
  • To provide customer support and respond to inquiries
  • To comply with legal obligations and HIPAA requirements

HIPAA Compliance

FrontDeskClinic is fully HIPAA compliant. We implement appropriate administrative, physical, and technical safeguards to protect the confidentiality, integrity, and availability of protected health information (PHI).

Our HIPAA Safeguards Include:

  • • End-to-end encryption for all communications
  • • Secure data storage with access controls
  • • Regular security audits and assessments
  • • Employee training on HIPAA requirements
  • • Business Associate Agreements (BAAs) with all clients
  • • Incident response and breach notification procedures

Data Security

We implement industry-standard security measures to protect your information:

  • 256-bit AES encryption for data at rest
  • TLS 1.3 encryption for data in transit
  • Multi-factor authentication options
  • Regular penetration testing and vulnerability assessments
  • Hosted on Azure's SOC 2-certified infrastructure

Data Retention

We retain your information for as long as your account is active or as needed to provide services. Communication records containing PHI are retained in accordance with HIPAA requirements and your state's medical record retention laws (typically 6-10 years). You may request deletion of your account and personal data at any time, subject to legal retention requirements.

Your Rights

Under HIPAA and applicable privacy laws, you have the right to:

  • Access your personal information and PHI
  • Request correction of inaccurate information
  • Request deletion of your personal data
  • Receive a copy of your data in a portable format
  • Opt out of marketing communications
  • File a complaint with the HHS Office for Civil Rights

Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

Email: [email protected]

Website: frontdeskclinic.com

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date. For significant changes affecting your rights, we will provide additional notice via email or through our platform.