Privacy Policy for DocPro
Effective Date: 01/01/2025

DocPro is committed to protecting the privacy and security of our users. This Privacy Policy explains how we collect, use, and safeguard personal information in compliance with HIPAA and TCR requirements.

1. Information We Collect

1.1 Personally Identifiable Information (PII)
- Full Name
- Email Address, Phone Number
- Address (if provided)
- Login Credentials (registered users only)

1.2 Health Information (PHI)
- Patient Demographics (Name, DOB, Gender, Insurance)
- Diagnosis and Treatment Details
- Prescriptions and Medications
- Lab Results and Imaging Reports
- Clinical Notes and Medical History
- Referral and Consult Notes

1.3 Communication and SMS Information
- SMS Opt-in and Opt-out Records
- Logs of SMS messages (appointments, reminders, billing, labs)
- Consent details for SMS communications

1.4 Automatically Collected Information
- Device Info (IP Address, Browser Type, Device Type)
- Usage Logs (Access Time, Pages Visited, Activity)
- Cookies (authentication and security purposes only)

1. How We Use Your Information

2.1 Healthcare Services
- Secure patient data management under HIPAA
- AI-powered charting and documentation support
- Referrals, insurance verification, and claims processing
- EHR integration

2.2 Communication and Notifications
- SMS and Email reminders, lab updates, billing notices
- Provider-to-patient follow-ups
- Service-related updates

2.3 Legal and Regulatory Compliance
- HIPAA and state privacy law compliance
- Maintaining audit records
- Fraud prevention and unauthorized access protection

1. Information Sharing Policy

3.1 Strict Non-Disclosure
We do NOT sell, rent, or share personal information (including phone numbers) with any third party for marketing, analytics, or other purposes.

3.2 Legal Requirements
Information may only be disclosed if required by valid law enforcement or government requests (court order, regulatory agency).

3.3 Business Continuity
In case of merger, acquisition, or asset transfer, your information remains protected and you will be notified in advance if needed.

1. SMS Consent and TCR Compliance

4.1 SMS Messaging
By opting into SMS services, you may receive:
- Appointment reminders and scheduling messages
- Post-visit instructions and lab notifications
- Insurance and billing updates
No marketing or promotional SMS will be sent.

4.2 Opt-In / Opt-Out
- Opt-in through web forms, patient portals, or verbal consent
- Opt-out anytime by replying STOP
- For help, reply HELP or email info@doc.pro

4.3 Consent Rules
- SMS consent is never shared with third parties
- Messages are sent via compliant systems
- We follow TCPA regulations

1. Data Security and HIPAA Protection

5.1 Security Measures
- Encryption (data in transit and at rest)
- Role-based access controls
- Full audit logging of record access
- Two-Factor Authentication (2FA)

5.2 Breach Notification
If a breach involves PHI, affected individuals and authorities will be notified as required under HIPAA rules.

1. Policy Updates
   This Privacy Policy may be updated. Changes will be posted with an updated effective date.

1. Contact Information
   Email: info@doc.pro
   Website: https://doc.pro/contact.html