Privacy Policy

Last updated: May 4, 2026

1. Introduction

Care Circle Global ("we," "us," or "our") is committed to protecting the privacy and security of your personal information, including Protected Health Information (PHI) as defined by the Health Insurance Portability and Accountability Act of 1996 (HIPAA). This Privacy Policy explains how we collect, use, disclose, and safeguard your information.

2. HIPAA Compliance

Care Circle Global operates as a platform that handles Protected Health Information (PHI). We are committed to complying with the HIPAA Privacy Rule, the HIPAA Security Rule, and the HITECH Act. Our practices include:

  • Implementing administrative, physical, and technical safeguards to protect PHI
  • Restricting access to PHI to authorized individuals only
  • Encrypting PHI both in transit and at rest using industry-standard encryption
  • Maintaining audit logs of all access to PHI
  • Providing breach notification in accordance with HIPAA requirements
  • Entering into Business Associate Agreements (BAAs) with all third-party service providers who handle PHI

3. Information We Collect

We may collect the following types of information:

  • Personal Information: Name, email address, phone number, and account credentials
  • Protected Health Information (PHI): Medical records, prescriptions, lab results, diagnoses, treatment plans, and care coordination notes
  • Usage Data: Information about how you interact with our platform, including log data and device information

4. How We Use Your Information

We use your information for the following purposes, consistent with HIPAA's permitted uses and disclosures:

  • Treatment: Facilitating care coordination among your designated care team members
  • Operations: Improving our platform, providing customer support, and ensuring quality of service
  • As authorized by you: Sharing information with individuals or entities you explicitly authorize
  • As required by law: Complying with legal obligations, including public health reporting

5. Your Rights Under HIPAA

As a user of Care Circle Global, you have the following rights regarding your PHI:

  • Right to Access: You may request access to your PHI that we maintain
  • Right to Amend: You may request corrections to your PHI
  • Right to an Accounting of Disclosures: You may request a list of certain disclosures we have made of your PHI
  • Right to Request Restrictions: You may request limitations on how we use or disclose your PHI
  • Right to Confidential Communications: You may request that we communicate with you through specific channels
  • Right to a Copy of this Notice: You may request a paper copy of this Privacy Policy at any time

6. Data Security

We implement comprehensive security measures consistent with HIPAA's Security Rule, including:

  • AES-256 encryption for data at rest
  • TLS 1.2+ encryption for data in transit
  • Multi-factor authentication for account access
  • Regular security assessments and penetration testing
  • Role-based access controls
  • Automatic session timeouts

7. Breach Notification

In the event of a breach of unsecured PHI, we will notify affected individuals, the Department of Health and Human Services (HHS), and, where required, the media, in accordance with HIPAA's Breach Notification Rule. Notification will be provided without unreasonable delay and no later than 60 days following discovery of the breach.

8. Third-Party Services

We may use third-party service providers to support our platform. All third parties who have access to PHI are required to sign Business Associate Agreements (BAAs) and comply with HIPAA requirements. We do not sell your personal information or PHI to third parties.

9. Data Retention

We retain your information for as long as your account is active or as needed to provide services. PHI is retained in accordance with applicable state and federal retention requirements. Upon account deletion, we will securely destroy your PHI within 30 days, unless retention is required by law.

10. Contact Us

If you have questions about this Privacy Policy, wish to exercise your HIPAA rights, or need to report a privacy concern, please contact our Privacy Officer:

Care Circle Global - Privacy Officer