Privacy Policy for SoftMediks.com
Last Updated: 01-01-2025

Thank you for visiting SoftMediks.com. Your privacy is important to us, and we are committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our Website. By using our Website, you agree to the terms of this Privacy Policy.

This policy is designed to comply with the General Data Protection Regulation (GDPR) for users in the European Union (EU) and the Health Insurance Portability and Accountability Act (HIPAA) for protected health information (PHI) in the United States.

1. Information We Collect

We may collect the following types of information:

a. Personal Information

When you interact with our Website, you may voluntarily provide personal information, such as:

  • Name
  • Email address
  • Phone number
  • Mailing address
  • Payment information (if applicable)
  • Protected Health Information (PHI) as defined under HIPAA (e.g., medical records, health conditions, treatment information) if applicable.
  • Any other information you provide when contacting us or using our services.

b. Automatically Collected Information

When you visit our Website, we may automatically collect certain information, including:

  • IP address
  • Browser type and version
  • Operating system
  • Pages visited
  • Time and date of visits
  • Referring website
  • Cookies and similar tracking technologies (see Section 5 below).

c. Third-Party Information

We may receive information about you from third parties, such as analytics providers, payment processors, or business partners.

2. How We Use Your Information

We may use the information we collect for the following purposes:

  • To provide, operate, and maintain our Website and services.
  • To improve, personalize, and expand our Website and services.
  • To communicate with you, including responding to inquiries and providing customer support.
  • To process transactions and send you related information (e.g., order confirmations).
  • To send you promotional materials, newsletters, and other updates (with your consent).
  • To monitor and analyze usage and trends to improve your experience.
  • To comply with legal obligations and protect our rights.
  • For healthcare-related purposes, such as providing medical services, processing insurance claims, or managing patient records (if applicable and in compliance with HIPAA).

3. Legal Basis for Processing (GDPR Compliance)

Under the GDPR, we rely on the following legal bases for processing your personal information:

  • Consent: When you provide explicit consent for specific purposes (e.g., marketing communications).
  • Contractual Necessity: To fulfill our obligations under a contract with you (e.g., providing services).
  • Legal Obligations: To comply with applicable laws and regulations.
  • Legitimate Interests: To operate and improve our Website and services, provided your rights and interests do not override ours.

4. How We Share Your Information

We may share your information in the following circumstances:

  • With Service Providers: We may share your information with third-party vendors, contractors, or service providers who perform services on our behalf (e.g., payment processing, data analysis, email delivery). These providers are contractually obligated to protect your information and comply with applicable laws, including GDPR and HIPAA.
  • For Legal Reasons: We may disclose your information if required by law or in response to valid legal requests (e.g., court orders, subpoenas).
  • With Your Consent: We may share your information with your consent or at your direction.
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new owner.
  • HIPAA-Compliant Disclosures: If we handle PHI, we will only disclose it to authorized parties as permitted by HIPAA, such as healthcare providers, insurers, or business associates with whom we have a Business Associate Agreement (BAA).

We do not sell, trade, or rent your personal information to third parties for their marketing purposes.

5. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to:

  • Enhance your experience on our Website.
  • Analyze trends and user behavior.
  • Deliver targeted advertisements (if applicable).

You can control the use of cookies through your browser settings. However, disabling cookies may limit your ability to use certain features of our Website.

6. Data Security

We implement reasonable security measures to protect your information from unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of sensitive data (e.g., PHI, payment information).
  • Regular security audits and risk assessments.
  • Access controls to limit who can view or process your information.
  • HIPAA-compliant safeguards for PHI, such as administrative, physical, and technical protections.

However, no method of transmission over the internet or electronic storage is 100% secure, and we cannot guarantee absolute security.

7. Your Privacy Rights

a. GDPR Rights

If you are located in the EU, you have the following rights under the GDPR:

  • The right to access, update, or delete your information.
  • The right to restrict or object to the processing of your information.
  • The right to data portability.
  • The right to withdraw consent at any time (if processing is based on consent).
  • The right to lodge a complaint with a supervisory authority.

b. HIPAA Rights

If we handle your PHI, you have the following rights under HIPAA:

  • The right to access and obtain a copy of your PHI.
  • The right to request corrections to your PHI.
  • The right to request restrictions on the use or disclosure of your PHI.
  • The right to receive an accounting of disclosures of your PHI.
  • The right to request confidential communications.

To exercise these rights, please contact us using the information provided below. We may require verification of your identity before processing your request.

8. Third-Party Links

Our Website may contain links to third-party websites. We are not responsible for the privacy practices or content of these websites. We encourage you to review the privacy policies of any third-party sites you visit.

9. Data Retention

We will retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law (e.g., for legal, tax, or accounting requirements). PHI will be retained in accordance with HIPAA’s record-keeping requirements.

10. International Data Transfers

If we transfer your personal information outside the EU, we will ensure that appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or adherence to the EU-U.S. Data Privacy Framework (if applicable).

11. Children’s Privacy

Our Website is not intended for individuals under the age of 13. We do not knowingly collect personal information from children. If we become aware that we have collected information from a child, we will take steps to delete it.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated “Last Updated” date. We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.

13. Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:
Email: info@softmediks.com

14. HIPAA Notice of Privacy Practices

If we handle PHI, we will provide a separate Notice of Privacy Practices as required by HIPAA. This notice will detail how we use, disclose, and protect your PHI and explain your rights under HIPAA.