PRIVACY POLICY
Zynix INC Privacy Policy
At Zynix INC (“Zynix”), we are committed to protecting your privacy and ensuring your personal data is handled responsibly. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our products and services. By using Zynix products or services, you consent to the practices described in this policy.
1. Information We Collect
We may collect the following types of information:
-
Personal Information: This includes identifying information such as your name, email address, and NPI
-
Usage Data: Information about how you access and use our services, including IP addresses, device identifiers, browser types, and interaction with our products.
-
Other Data: We may collect additional data as required for product enhancements, customer support, or compliance with regulatory bodies.
2. Use of Information
We use the collected information for the following purposes:
-
HIPAA Compliance: Ensure all medical information collected through Zynix is processed in accordance with the Health Insurance Portability and Accountability Act (HIPAA). This includes securing patient data, ensuring data privacy, and limiting access to authorized personnel only.
-
Service Delivery: Provide, operate, and maintain our services, including any updates or enhancements to our products.
-
Account Management: Manage user accounts, process billing information, and respond to customer service requests.
-
Compliance with Laws: Ensure compliance with applicable laws and regulations, including healthcare laws and standards.
3. Disclosure of Information
We will not share or disclose your information to third parties.
- Compliance with Legal Obligations: We may disclose information to government authorities or other entities if required to comply with applicable legal processes, subpoenas, or laws, including health-related regulations.
Unauthorized Access Disclaimer
By using this system, you acknowledge that you are solely responsible for maintaining the confidentiality of your login credentials and securing access to your account. Zynix INC is not responsible for any unauthorized access, disclosure, or misuse of data resulting from failure to properly secure your account, including but not limited to instances where:
- Another individual accesses the system using your credentials.
- You fail to log out of the system after use.
- Inadequate security measures are implemented on your end, such as leaving devices unattended or sharing login information.
Zynix INC will not be held liable for any damages or breaches of confidentiality that occur due to unauthorized access to your account. It is your responsibility to ensure that only authorized individuals have access to the system under your credentials.
Data Ownership Disclosure
All data, including but not limited to medical records, patient information, and any other protected health information (PHI), entered into or processed by the Zynix INC system remains the sole property of the healthcare provider or organization that owns and controls such data.
Zynix INC does not claim ownership over any information submitted to or stored within the system. Providers retain full rights and responsibility for the data, including its use, storage, sharing, and compliance with applicable laws, such as HIPAA.
Our role is strictly to facilitate access to, and management of, the data as directed by the healthcare provider or organization. Zynix INC will not sell, distribute, or use the information for any purpose other than those outlined in the service agreement, and only in accordance with the provider’s instructions.
EHR/EMR Data Entry Disclaimer
By using the Zynix INC system to enter, transfer, or write data into any Electronic Medical Record (EMR) or Electronic Health Record (EHR), you acknowledge that Zynix INC serves as a tool for facilitating this process and does not assume responsibility for the accuracy, completeness, or correctness of the data entered.
It is the responsibility of the healthcare provider or organization to:
- Review all data entered into the EMR/EHR for accuracy.
- Ensure that any information transferred via the Zynix INC system is properly verified.
- Correct any discrepancies or errors that may occur in the documentation process.
Zynix INC is not liable for any errors, omissions, or inaccuracies in the data transferred into the EMR/EHR, nor for any resulting clinical or operational decisions based on the data entered. The healthcare provider assumes full responsibility for validating and managing all patient information within their medical record systems.
Business Associate Agreement Requirement
Providers are required to enter into a Business Associate Agreement (BAA) with Zynix prior to the exchange of any protected health information (PHI). The BAA will outline the obligations of both parties concerning the safeguarding of PHI in compliance with the Health Insurance Portability and Accountability Act (HIPAA) and its implementing regulations.
However, if a parent organization already has a BAA in place with Zynix that covers the provider’s operations, a separate BAA will not be required. Failure to sign the BAA, when applicable, may result in the inability to utilize Zynix services for any activities involving PHI.
4. Data Security
We take data security seriously and implement appropriate physical, technical, and administrative safeguards to protect personal and healthcare-related information from unauthorized access, use, or disclosure.
-
HIPAA Safeguards: We follow HIPAA-compliant measures to safeguard patient data, including encryption, secure storage, and limited access controls to authorized personnel.
-
Breach Notification: In the event of a data breach involving protected health information (PHI), we will notify affected parties as required under HIPAA and applicable state laws.
5. Data Retention
We will retain your personal and healthcare-related information for as long as is necessary to fulfill the purposes outlined in this policy or as required by law. For healthcare-related data, we adhere to HIPAA regulations regarding data retention and disposal.
6. Your Rights
As a user of our services, you have the following rights:
-
Access and Correction: You may request access to or corrections of your personal information, including healthcare-related information, at any time.
-
Data Portability: Upon request, we will provide a copy of the personal data.
-
Opt-Out of Communications: You may opt out of receiving non-essential communications from us, such as promotional emails.
-
Right to Restrict Use: You have the right to request that we restrict the processing of your personal and healthcare-related information, subject to any legal obligations we may have.
7. Private Medical Provider Use Only
Our services, including those that process healthcare-related data, are designed for private medical provider use only. Any healthcare information processed or collected is intended for use by licensed healthcare professionals within their practice to improve clinical workflow, support patient care, and ensure regulatory compliance. Unauthorized use by individuals or entities not affiliated with healthcare services is strictly prohibited.
8. Updates to this Privacy Policy
We may update this Privacy Policy from time to time. Any changes will be posted to our website with the updated effective date. We encourage you to review this policy periodically.
9. Contact Us
If you have any questions or concerns about this Privacy Policy, or if you would like to exercise your rights, please contact us at:
Zynix INC
Support Team
727-222-4521
info@medvisecorp.com