Privacy Policy

1. Introduction

Valiant Lifecare Medical Solutions ("VLMS," "we," "us," or "our") is committed to protecting the privacy and security of personal and protected health information (PHI) that we process while providing revenue cycle management, coding, and analytics services to healthcare providers, payers, and business partners.

This Privacy Policy describes how we collect, use, disclose, and protect information when you interact with our website, request our services, or when we process information on behalf of clients as a Business Associate under the Health Insurance Portability and Accountability Act (HIPAA).

2. Information We Collect

You Provide Directly

Contact details (name, email, phone, employer, job title) via forms, sales inquiries, or email.
Business information shared during sales, onboarding, or support.
Documents or files you upload as part of a secure engagement.

Collected Automatically

IP address, browser type, device identifiers, OS, referring URL.
Pages visited, time on site, and interactions recorded by analytics cookies.

Protected Health Info (PHI)

When engaged as a Business Associate, VLMS processes PHI strictly under a signed Business Associate Agreement (BAA). PHI is never collected, used, or disclosed for purposes outside the scope of that agreement.

3. How We Use Your Information

To respond to inquiries, deliver proposals, and provision our services.
To perform the revenue cycle, coding, analytics, or consulting services agreed with our clients.
To improve our website, service quality, and customer experience.
To comply with legal, regulatory, and contractual obligations — including HIPAA, ISO/IEC 27001, and applicable state privacy laws.
To send operational communications, service updates, and (where permitted) relevant marketing you can opt out of at any time.

4. Data Sharing & Disclosure

VLMS does not sell personal information. We share information only in the circumstances below.

Service providers and subcontractors bound by written confidentiality, security, and HIPAA obligations.
Clients and their authorized representatives, as required to perform the contracted service.
Legal and regulatory authorities, when disclosure is required by law, subpoena, or court order.
Successors in interest, in a merger, acquisition, or sale of assets, subject to equivalent privacy protections.

5. Data Security

We maintain administrative, technical, and physical safeguards aligned with HIPAA Security Rule requirements and the ISO/IEC 27001:2022 standard, including:

Encryption of data in transit (TLS 1.2+) and at rest (AES-256).
Role-based access controls, least-privilege provisioning, and multi-factor authentication.
Continuous monitoring, vulnerability scanning, and annual third-party penetration testing.
Documented incident response, breach notification, and business continuity procedures.
Workforce security awareness and HIPAA training, refreshed annually.

6–7. Data Retention & Your Rights

Data Retention

We retain personal information and PHI only as long as necessary to fulfill the purposes in this policy, meet contractual commitments, or comply with legal retention requirements. After that, data is securely deleted or returned to the client per the governing BAA or service agreement.

Your Rights

Depending on your jurisdiction, you may have rights to access, correct, delete, restrict, or port personal information we hold about you, and to withdraw consent where processing is based on consent. To exercise any of these rights, contact us using the details in Section 11; we respond within the timelines required by applicable law.

8–10. Cookies, Third-Party Links & Updates

Cookies & tracking. We use first- and third-party cookies for essential operation, analytics, and (where enabled) marketing attribution. Control preferences in your browser; see our Cookie Policy.
Third-party links. VLMS is not responsible for the privacy practices of linked sites; read their notices before providing information.
Updates. We may update this policy to reflect legal, regulatory, or operational changes. The effective date reflects the latest revision; material changes are communicated via our website or direct notice.

11. Contact & Complaints

For privacy questions, access requests, or to report a concern, contact our Privacy Officer at privacy@valiantlifecare.com or through our contact page. You may also file a complaint with the U.S. Department of Health and Human Services Office for Civil Rights.