Effective Date: 01/01/2025

Last Updated: 09/25/2025

MedEZ (“we,” “our,” or “us”) respects your privacy and is committed to protecting your personal information in accordance with applicable laws, including the Health Insurance Portability and Accountability Act of 1996 (HIPAA). This Privacy Policy explains how we collect, use, disclose, and safeguard information when you visit our website, https://medez.com, or use our services.

By accessing our site or services, you consent to the practices described in this Privacy Policy.

1. Information We Collect

  • Personal Information: Name, email address, phone number, job title, company name, or any details you provide when submitting a contact form, requesting a demo, or subscribing to communications.
  • Protected Health Information (PHI): If you are a patient, provider, or other authorized user of our software solutions, PHI such as medical history, treatment information, or insurance details may be collected and processed within our platform. PHI is handled in strict compliance with HIPAA.
  • Usage Data: Information about how you interact with our website, including IP address, browser type, operating system, referring URLs, and pages visited.
  • Cookies & Tracking Technologies: We may use cookies and similar tools to enhance website functionality, measure performance, and improve user experience.

2. How We Use Your Information

  • Provide, operate, and improve our website and EHR services.
  • Support healthcare providers in delivering care while maintaining HIPAA compliance.
  • Communicate with you regarding inquiries, product updates, or marketing information (you may opt out at any time).
  • Analyze system usage to enhance functionality, security, and performance.
  • Comply with applicable laws, regulations, and contractual obligations.

3. HIPAA Compliance and PHI Handling

  • Privacy Rule Compliance: We safeguard PHI from unauthorized access, disclosure, or misuse.
  • Security Rule Compliance: We employ technical, administrative, and physical safeguards (such as encryption, role-based access controls, and secure hosting) to protect PHI.
  • Business Associate Agreements (BAAs): When required, we enter into BAAs with covered entities and partners to ensure PHI is handled in accordance with HIPAA regulations.
  • Minimum Necessary Standard: PHI is accessed or disclosed only to the extent necessary to fulfill the intended purpose.

4. How We Share Information

  • With Service Providers: Only with vendors and partners who require access to perform services on our behalf and who are contractually bound to protect PHI.
  • For Legal Compliance: If required by law, regulation, or valid legal process.
  • In Business Transfers: In connection with a merger, acquisition, or sale of assets, provided that PHI remains protected under HIPAA.

5. Data Security

  • We maintain safeguards to protect personal information and PHI, including:
  • – Encryption of data in transit and at rest.
  • – Secure user authentication and access controls.
  • – Regular monitoring, auditing, and risk assessments.
  • Despite these efforts, no system can be guaranteed 100% secure. Users are encouraged to take precautions when sharing sensitive data online.

6. Your Rights

  • Depending on your relationship with MedEZ and applicable laws, you may have the right to:
  • – Access, update, or correct your personal information.
  • – Request restrictions on how PHI is used or disclosed.
  • – Request an accounting of PHI disclosures, as permitted under HIPAA.
  • – Opt out of non-essential marketing communications.
  • Requests regarding PHI should be directed to the healthcare provider using MedEZ, as we act as a Business Associate under HIPAA.

7. Children’s Privacy

  • Our services are not directed to individuals under the age of 13, and we do not knowingly collect personal information or PHI from children without appropriate consent.

8. Third-Party Links

  • Our website may contain links to third-party websites. We are not responsible for the privacy practices, policies, or content of those external sites.

9. Changes to This Privacy Policy

  • We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal obligations. Updates will be posted with a new effective date. We encourage you to review this page regularly.

10. Contact Us

  • If you have questions about this Privacy Policy, our HIPAA compliance, or how your data is handled, please contact us:
  • MedEZ
  • Email: issadmin@medez.com
  • Phone: (954) 332-4700
  • Website: https://medez.com