Privacy Policy

Last updated: March 26, 2026

1. Introduction

ParaHealth, Inc. ("ParaHealth," "we," "us," or "our") is committed to protecting the privacy and security of your information. This Privacy Policy describes how we collect, use, disclose, and safeguard information when you use our prior authorization platform, website, and related services (collectively, the "Services"). By accessing or using our Services, you agree to this Privacy Policy. If you do not agree, please do not use our Services.

2. Information We Collect

Information You Provide

  • Account information (name, email address, phone number, job title, organization)
  • Contact form submissions and correspondence
  • Protected Health Information (PHI) processed through our platform on behalf of covered entities
  • Payment and billing information

Information Collected Automatically

  • Device and browser information (IP address, browser type, operating system)
  • Usage data (pages visited, features used, session duration)
  • Cookies and similar tracking technologies
  • Log data (access times, error logs, referring URLs)

3. How We Use Your Information

  • Provide, maintain, and improve our Services
  • Process prior authorization requests on behalf of healthcare providers
  • Communicate with you about your account, updates, and support requests
  • Ensure the security and integrity of our platform
  • Comply with legal obligations, including HIPAA requirements
  • Analyze usage patterns to improve our Services (using de-identified data only)
  • Send marketing communications (with your consent, where required)

4. Protected Health Information (PHI)

When we process PHI on behalf of healthcare providers and other covered entities, we do so as a Business Associate under HIPAA. Our handling of PHI is governed by the terms of our Business Associate Agreement (BAA) with each covered entity. We do not use PHI for marketing purposes. We do not sell PHI. PHI is encrypted at rest and in transit, and access is strictly limited to authorized personnel on a need-to-know basis. For more information about our security practices, please visit our Security page.

5. How We Share Your Information

We do not sell your personal information. We may share information in the following circumstances:
  • With service providers who assist in operating our platform (subject to confidentiality obligations)
  • With healthcare entities as necessary to process prior authorization requests
  • To comply with legal obligations, court orders, or government requests
  • To protect the rights, safety, or property of ParaHealth, our users, or the public
  • In connection with a merger, acquisition, or sale of assets (with notice to you)

6. Data Retention

We retain personal information for as long as necessary to provide our Services and fulfill the purposes described in this Privacy Policy. PHI is retained in accordance with HIPAA requirements and the terms of our Business Associate Agreements, which generally require a minimum 6-year retention period for audit records. When information is no longer needed, we securely delete or de-identify it in accordance with industry standards.

7. Data Security

We implement administrative, technical, and physical safeguards designed to protect your information. These include AES-256 encryption at rest, TLS encryption in transit, role-based access controls, multi-factor authentication, and comprehensive audit logging. No method of transmission or storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security. For details on our security measures, please visit our Security & Compliance page.

8. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal information:
  • Access the personal information we hold about you
  • Request correction of inaccurate information
  • Request deletion of your personal information (subject to legal retention requirements)
  • Object to or restrict certain processing of your information
  • Data portability (receive your information in a structured, machine-readable format)
  • Withdraw consent where processing is based on consent

To exercise any of these rights, please contact us at privacy@parahealth.ai. We will respond to your request within 30 days.

9. Cookies and Tracking

We use cookies and similar technologies to improve your experience, analyze usage, and personalize content. You can manage cookie preferences through your browser settings. Disabling cookies may affect the functionality of our Services. We do not use cookies to track PHI. Analytics data is aggregated and de-identified before processing.

10. Third-Party Links

Our Services may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any information.

11. Children's Privacy

Our Services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on our website and updating the "Last Updated" date. Your continued use of our Services after changes are posted constitutes acceptance of the updated policy.

13. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us: ParaHealth, Inc. Email: privacy@parahealth.ai Website: parahealth.ai/contact

See also: Terms of Service · Security & Compliance