Privacy Policy

At KoncordINC, we are committed to protecting your privacy. This policy outlines how we collect, use, store, and safeguard your personal and practice information when you interact with our website or services. We ensure compliance with applicable privacy laws and uphold the highest standards of data confidentiality and security.

Privacy Policy

Effective Date: 03/10/2023
Last Updated: 03/10/2023

KoncordINC(“we,” “our,” or “us”) values your privacy. This Privacy Policy outlines how we collect, use, disclose, and protect your personal information when you visit our website and use our services.

1. Information We Collect

We may collect the following types of information:

a. Personal Information

  • Full name, email address, phone number
  • Business/practice name, address, NPI number
  • Information provided via contact forms or appointment requests

b. Technical Information

  • IP address, browser type, device type
  • Cookies and usage data
  • Pages visited, time spent, click behavior

c. Protected Health Information (PHI)

When applicable, especially if you are a client of our billing or RCM services, we may receive PHI as defined under HIPAA. This data is used only for the purposes of providing contracted services.

2. How We Use Your Information

We use your information to:

  • Respond to inquiries or service requests
  • Provide and manage revenue cycle and billing services
  • Improve website experience and functionality
  • Ensure compliance with legal and regulatory obligations
  • Communicate service updates, newsletters, or offers (opt-in only)

3. Legal Basis for Processing

We process your personal data under one or more of the following:

  • Your consent
  • Contractual necessity
  • Legal obligations
  • Legitimate interests (e.g., improving our services)

4. Sharing Your Information

We do not sell or rent your information. We may share it with:

  • Authorized staff or contractors under confidentiality agreements
  • Legal authorities when required by law
  • IT service providers for website operation and data hosting

All vendors handling PHI or sensitive data are required to sign Business Associate Agreements (BAAs) per HIPAA regulations.

5. Cookies & Tracking

We use cookies to enhance your browsing experience. Cookies track site usage and help us improve performance. You may disable cookies via browser settings, but some features may be limited.

6. Data Retention

We retain your data only as long as necessary to fulfill the purposes outlined in this policy or as required by law. PHI and financial records are retained per HIPAA and healthcare compliance guidelines.

7. Data Security

KoncordINC uses administrative, technical, and physical safeguards to protect your data, including:

  • Data encryption
  • Secure servers and firewalls
  • Access restrictions based on role
  • Routine audits and risk assessments

8. Your Rights

You may have the following rights depending on your location:

  • Access to your data
  • Request correction or deletion
  • Withdraw consent (where applicable)
  • File a complaint with a regulatory authority

9. Children’s Privacy

Our services are intended for adult healthcare providers and not for use by children under 13. We do not knowingly collect data from children.

10. Third-Party Links

Our website may contain links to external sites. We are not responsible for the content or privacy practices of those websites.

11. Changes to This Privacy Policy

We reserve the right to update this policy at any time. Revisions will be posted here with a new effective date.

12. Contact Us

For questions about this Privacy Policy or to exercise your rights:

KoncordINC
connect[at]koncordinc.com