PatientForms.io

Privacy Policy

Last updated: March 2026

PatientForms.io (“we,” “our,” or “us”) is committed to protecting the privacy and security of your personal information. This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you use our platform.

1. Information We Collect

We collect information you provide directly to us, including:

  • Account information: name, email address, practice name, and contact details when you create an account.
  • Patient form data: information submitted by patients through forms created on our platform, which may include protected health information (PHI).
  • Usage data: information about how you interact with our platform, including pages visited, features used, and device information.
  • Payment information: billing details processed securely through our payment provider (Stripe). We do not store full credit card numbers on our servers.

2. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our platform and services.
  • Process transactions and send related information.
  • Send you technical notices, updates, and support messages.
  • Respond to your comments, questions, and requests.
  • Monitor and analyze trends, usage, and activities in connection with our services.

3. Data Security

We implement industry-leading security measures to protect your data:

  • HIPAA Compliance: Our platform is designed to meet the requirements of the Health Insurance Portability and Accountability Act (HIPAA) for handling protected health information.
  • AES-256 Encryption: All PHI fields are encrypted at rest using AES-256 field-level encryption.
  • TLS Encryption: All data transmitted between your browser and our servers is encrypted in transit using TLS.
  • Audit Logging: Comprehensive audit logs track all access to and modifications of patient data.
  • Access Controls: Role-based access controls ensure that only authorized personnel can access sensitive data.

4. Data Sharing and Disclosure

We do not sell your personal information. We may share information in the following circumstances:

  • With service providers who assist in operating our platform (e.g., hosting, payment processing).
  • When required by law, regulation, or legal process.
  • To protect the rights, property, or safety of PatientForms.io, our users, or others.
  • With your consent or at your direction, such as through webhook integrations you configure.

5. Your Rights

You have the right to:

  • Access the personal information we hold about you.
  • Request correction of inaccurate information.
  • Request deletion of your account and associated data, subject to legal retention requirements.
  • Export your data in a standard format.
  • Opt out of marketing communications at any time.

6. Data Retention

We retain your information for as long as your account is active or as needed to provide services. We may also retain certain information as required by law or for legitimate business purposes such as audit logging and compliance.

7. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on this page and updating the “Last updated” date.

8. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

PatientForms.io
Email: hello@patientforms.io

This policy is subject to change. Last updated March 2026.