Privacy policy
Effective Date: January 15, 2024
1. INTRODUCTION
This Privacy Policy describes how Veer, Inc. ("Veer," "we," "us," or "our") collects, uses, discloses, and protects information obtained through our scheduling and route optimization platform, website (goveer.ai), and related services (collectively, the "Services").
As a provider of services to healthcare organizations, we understand the critical importance of privacy and security. This policy is designed to meet both general privacy requirements and specific healthcare regulations, including HIPAA.
2. DEFINITIONS
For clarity in this Privacy Policy:
"Protected Health Information" or "PHI" has the meaning set forth in HIPAA regulations
"Personal Information" means any information relating to an identified or identifiable individual
"Usage Data" means data collected about your interaction with our Services
"Business Associate" has the meaning set forth in HIPAA regulations
"Covered Entity" has the meaning set forth in HIPAA regulations
3. INFORMATION WE COLLECT
3.1 Information You Provide
We collect information you provide directly to us, including:
a) Account Information:
Name and contact details
Professional credentials
Organization information
Login credentials
Payment information
b) Healthcare Operations Data:
Provider schedules and availability
Patient visit information
Route and location preferences
Team coordination data
c) Integration Data:
Calendar information
Third-party application data
Import/export preferences
3.2 Information We Collect Automatically
When you use our Services, we automatically collect:
a) Usage Information:
Log data
Device information
Location data
IP address
Browser type
Operating system
b) Performance Data:
Feature usage patterns
Navigation paths
Error logs
Performance metrics
3.3 Information From Third Parties
We may receive information from:
a) Integration partners b) Payment processors c) Analytics providers d) Authentication services
4. USE OF INFORMATION
4.1 Primary Uses
We use collected information to:
a) Provide and maintain the Services b) Process and optimize schedules c) Generate route recommendations d) Facilitate team coordination e) Process payments f) Provide customer support g) Send service notifications h) Improve our Services
4.2 HIPAA Compliance
When acting as a Business Associate, we:
a) Use PHI only as permitted by our Business Associate Agreement b) Implement required safeguards c) Report security incidents d) Maintain audit logs e) Support patient rights
5. INFORMATION SHARING AND DISCLOSURE
5.1 General Sharing Principles
We share information only in the following circumstances:
a) With your explicit consent b) To fulfill the Services' intended functions c) As required by law d) To protect rights and safety e) In connection with business transfers
5.2 Service Providers
We may share information with third-party service providers who:
a) Assist with hosting and infrastructure b) Process payments c) Provide analytics d) Support customer service e) Facilitate integrations
All service providers are contractually bound to:
Use information only for specified purposes
Maintain appropriate security measures
Comply with HIPAA when applicable
Return or destroy data upon contract termination
5.3 Healthcare-Specific Sharing
For healthcare organizations:
a) PHI is shared only in accordance with BAA terms b) Minimum necessary standard is applied c) Sharing logs are maintained d) Patient authorization requirements are observed
6. DATA SECURITY
6.1 Security Measures
We implement and maintain appropriate technical and organizational security measures, including:
a) Encryption at rest and in transit b) Access controls and authentication c) Firewalls and intrusion detection d) Regular security assessments e) Employee training f) Incident response procedures
6.2 HIPAA Security Rule Compliance
Our security program includes specific measures required by HIPAA:
a) Administrative safeguards b) Physical safeguards c) Technical safeguards d) Risk analysis and management e) Workforce security
6.3 Breach Notification
In the event of a data breach, we will:
a) Promptly notify affected parties b) Follow HIPAA breach notification requirements c) Cooperate with law enforcement if applicable d) Take steps to prevent future incidents
7. DATA RETENTION
7.1 Retention Periods
We retain information as follows:
a) Account information: Duration of active account plus 6 years b) PHI: As specified in BAA c) Usage data: 24 months d) Payment information: As required by law e) Communication records: 6 years
7.2 Deletion
Upon account termination:
a) PHI is returned or destroyed per BAA b) Personal information is deleted or anonymized c) Backup copies are removed within 90 days d) Audit logs are retained as required by law
8. YOUR RIGHTS AND CHOICES
8.1 Access Rights
You have the right to:
a) Access your personal information b) Correct inaccurate data c) Request deletion d) Export your data e) Restrict processing
8.2 Healthcare-Specific Rights
For healthcare organizations:
a) BAA compliance support b) HIPAA patient rights fulfillment c) Audit log access d) Security report access
8.3 Exercise of Rights
To exercise your rights:
a) Email: privacy@goveer.ai b) Mail: [Address] c) Response within 30 days d) Identity verification required
9. INTERNATIONAL DATA TRANSFERS
9.1 Data Location
Primary data storage and processing occurs in the United States.
9.2 Cross-Border Transfers
For international transfers, we:
a) Use standard contractual clauses b) Ensure adequate protection measures c) Comply with local data protection laws d) Obtain necessary consents
10. CHANGES TO PRIVACY POLICY
10.1 Updates
We may update this Privacy Policy by:
a) Posting revised version on website b) Sending notification email c) Providing in-app notification
10.2 Material Changes
For material changes:
a) 30 days advance notice when possible b) Consent request if required c) Prior versions archived and available
11. CONTACT INFORMATION
For privacy-related matters:
Privacy Officer Veer, Inc. 8810 S 38th St Lincoln, NE 68518 privacy@goveer.ai 531-217-5554
For HIPAA-related matters: legal@goveer.ai
Last Updated: January 15, 2024
