Back to Home

Privacy Policy

Last updated: January 23, 2026

Introduction

HIPAA Hub ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our compliance management platform.

Information We Collect

Personal Information

We collect information that you provide directly to us, including:

  • Name and contact information (email, phone number)
  • Organization details (name, address, EIN)
  • Account credentials
  • Payment information
  • Compliance documentation and evidence

Automatically Collected Information

When you access our platform, we automatically collect:

  • Device and browser information
  • IP address and location data
  • Usage patterns and preferences
  • Cookies and similar tracking technologies

How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our services
  • Process transactions and send related information
  • Send technical notices and support messages
  • Respond to your comments and questions
  • Monitor and analyze trends and usage
  • Detect and prevent fraud and abuse
  • Comply with legal obligations

Data Security

We implement appropriate technical and organizational measures to protect your information, including:

  • AES-256 encryption for data at rest
  • TLS 1.3 encryption for data in transit
  • Regular security audits and assessments
  • Access controls and authentication measures
  • Employee training on data protection

Data Retention

We retain your information for as long as necessary to provide our services and comply with legal obligations. Compliance documentation is retained for a minimum of 7 years in accordance with HIPAA requirements.

Your Rights

You have the right to:

  • Access and update your personal information
  • Request deletion of your data
  • Opt-out of marketing communications
  • Export your compliance data
  • Withdraw consent at any time

Third-Party Services

We use trusted third-party services for payment processing (Stripe), analytics, and infrastructure. These providers are contractually bound to protect your information and use it only for specified purposes.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date.

Contact Us

If you have questions about this Privacy Policy, please contact us at:

Email: hello@hipaahub.com