Privacy Policy

Introduction

Pharmacy Audit Pro (“we,” “our,” or “us”) is committed to safeguarding the privacy and security of Protected Health Information (“PHI”) in compliance with the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”). This Privacy Policy explains how we collect, use, protect, and disclose information, including PHI, when you use our website, services, and software.

Information We Collect
How We Use Information
HIPAA Compliance
Data Sharing
Data Security & Retention
Your Rights
International Users
Updates
Contact Us

1. Information We Collect

We may collect:

• Personal Information: Name, email, phone number, and professional details when you sign up or contact us.
• Pharmacy & Audit Data: Files you upload (e.g., claims, billing data) that may include PHI.
• Technical Data: IP addresses, device/browser type, and activity logs for security and performance.

2. How We Use Information

We use data to:

• Provide audit and compliance analysis services
• Generate reports and actionable insights
• Maintain system security and performance
• Comply with legal obligations (including HIPAA)
• Communicate updates or support responses

We do not use PHI for marketing purposes.

3. HIPAA Compliance

• We act as a Business Associate under HIPAA when handling PHI.
• We enter into Business Associate Agreements (BAAs) with Covered Entities (pharmacies, healthcare providers) as required.
• We limit the use and disclosure of PHI to the minimum necessary for service delivery.
• PHI is encrypted both in transit (TLS/SSL) and at rest.
• Access to PHI is restricted to authorized personnel with a need-to-know basis.

4. Data Sharing

We do not sell PHI or personal data. We may share information only with:

• Authorized Service Providers (e.g., hosting, secure storage) bound by HIPAA compliance obligations.
• Legal Authorities when required by law.

5. Data Security & Retention

• We employ administrative, technical, and physical safeguards consistent with HIPAA.
• Uploaded audit files are retained only as long as necessary for analysis or as required by law.
• Upon termination of services, PHI is securely deleted or returned at your request.

6. Your Rights

As a Covered Entity or authorized user, you have the right to:

• Request access to, amendments of, or restrictions on PHI we process.
• Obtain an accounting of disclosures of PHI.
• Terminate services and request deletion/return of PHI.

7. International Users

Our services are primarily designed for U.S. healthcare entities. If you access our services outside the U.S., you are responsible for compliance with local laws in addition to HIPAA.

8. Updates

We may revise this Privacy Policy. The “Effective Date” will reflect the latest version.

Contact Us

For privacy or HIPAA compliance inquiries:
Contact us By Email: [email protected]