Privacy Policy

Effective Date: 04/20/2025

TeyaHealth ("we", "us", or "our") complies with the Health Insurance Portability and Accountability Act (HIPAA) and other applicable U.S. healthcare privacy laws. This Privacy Policy describes how we handle Protected Health Information (PHI) and personal data through our healthcare services.

1. Information We Collect

  • Patient Health Information (PHI): Medical history, treatment records, insurance information, and other data protected under HIPAA
  • Personal Identifiers: Name, date of birth, Social Security Number, address, and contact information
  • Payment Information: Credit card details, insurance policy numbers, and billing records
  • Technical Data: IP addresses, device information, and website usage patterns

2. How We Use Health Information

  • Provide medical treatment and services
  • Process insurance claims and payments
  • Coordinate care with other healthcare providers
  • Comply with public health reporting requirements

3. HIPAA Compliance

  • Maintain appropriate administrative, physical, and technical safeguards
  • Limit PHI disclosure to minimum necessary standards
  • Execute Business Associate Agreements with third-party vendors
  • Provide breach notifications as required by law

4. Patient Rights Under HIPAA

  • Request access to medical records
  • Amend inaccurate health information
  • Request restrictions on certain uses/disclosures
  • Receive accounting of disclosures
  • File privacy complaints with HHS Office for Civil Rights

5. Data Security Measures

  • AES-256 encryption for data at rest and in transit
  • Multi-factor authentication for system access
  • Regular security risk assessments
  • Audit controls and activity monitoring

6. Data Retention

We maintain medical records for at least 6 years from last treatment date or as required by state law. Financial records are retained for 7 years per IRS requirements.

7. Third-Party Disclosures

PHI may be shared with:

  • Healthcare providers involved in your treatment
  • Health insurance companies
  • Government agencies as required by law
  • Accredited business associates with signed BAAs

8. SMS Disclosure

SMS opt-in and phone numbers collected for SMS consent will not be shared with any third party and affiliate company.

9. Changes to This Policy

We will notify patients of material changes through secure messaging or posted notices in our facilities.

Contact Information

11 Apex Drive, Suite 300A #167
Marlborough, MA 01752

This Notice describes how medical information about you may be used and disclosed and how you can get access to this information. Please review it carefully.

Adopt The Change You Need!

Don’t let outdated systems slow you down! Get started with TeyaOne, and you'll get more than just software— a solution that works with you.

Request a demo NOW