Privacy Policy

Last Updated: May 1, 2025

1. Introduction

Auditable.cloud ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform and services. This policy applies to all users of Auditable.cloud and its related services including calls.guru, ptc.guru, soa.guru, and intakeIQ.app.

As a HIPAA-compliant platform, we take additional measures to protect Protected Health Information (PHI) as required by law. Please read this Privacy Policy carefully. By accessing or using our platform, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.

2. Information We Collect

We collect several types of information from and about users of our platform, including:

  • Personal Information: Name, email address, telephone number, postal address, and other identifiers that you voluntarily provide when using our services.
  • Protected Health Information (PHI): As a HIPAA-compliant service provider, we may collect and process PHI on behalf of covered entities. This information is subject to additional protections as outlined in our Business Associate Agreements.
  • Usage Data: Information about how you use our platform, including IP address, browser type, device information, pages visited, and time spent on the platform.
  • Call Recordings: Audio recordings of calls stored through our calls.guru service.
  • Form Submissions: Information submitted through our digital forms via intakeIQ.app.
  • Compliance Documentation: Records related to permission-to-contact and scope-of-appointment compliance.

3. How We Use Your Information

We use the information we collect for various purposes, including:

  • Providing, maintaining, and improving our platform and services
  • Processing and completing transactions
  • Sending administrative information, such as updates and security alerts
  • Responding to your comments, questions, and requests
  • Enabling compliance with healthcare regulations, including HIPAA and CMS requirements
  • Creating and maintaining audit trails for compliance purposes
  • Analyzing usage patterns to improve user experience
  • Protecting against fraudulent, unauthorized, or illegal activity

4. HIPAA Compliance

As a provider of services to healthcare organizations and insurance agents, we are committed to maintaining HIPAA compliance. We implement physical, technical, and administrative safeguards to protect PHI in accordance with the HIPAA Security Rule. Our practices include:

  • Encryption of PHI both in transit and at rest
  • Access controls and authentication measures
  • Regular security assessments and audits
  • Employee training on HIPAA requirements
  • Breach notification procedures
  • Business Associate Agreements with covered entities

For more information about our HIPAA compliance practices, please refer to our HIPAA Statement.

5. Information Sharing and Disclosure

We may share your information in the following circumstances:

  • With Your Consent: We may share your information when you direct us to do so.
  • Service Providers: We may share information with third-party vendors who provide services on our behalf, such as hosting, data analysis, and customer service. These providers are contractually obligated to protect your information.
  • Compliance with Laws: We may disclose information as required by law, such as to comply with a subpoena or similar legal process.
  • Business Transfers: If we are involved in a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction.

We do not sell, rent, or trade your personal information or PHI to third parties for their marketing purposes.

6. Data Retention

We retain your information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. For healthcare compliance records, we adhere to retention periods required by applicable regulations, which may be up to 10 years or longer.

7. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information:

  • Access to your personal information
  • Correction of inaccurate or incomplete information
  • Deletion of your personal information (subject to legal retention requirements)
  • Restriction or objection to processing
  • Data portability

To exercise these rights, please contact us at privacy@auditable.cloud. Please note that these rights may be limited in some circumstances, such as when we are legally required to retain certain information.

8. Security

We implement appropriate technical and organizational measures to protect your information. However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee its absolute security.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. The updated version will be indicated by an updated "Last Updated" date. We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.

10. Contact Us

If you have questions or concerns about this Privacy Policy or our privacy practices, please contact us at:

Email: privacy@auditable.cloud
Address: 123 Compliance Way, Suite 200, Healthcare City, HC 12345
Phone: (555) 123-4567