Get Started
Get Started
Talk To A Specialist

Privacy Policy

VA Health Plus (“Company,” “we,” “our,” or “us”) is committed to protecting the privacy, confidentiality, and security of personal and healthcare-related information.

This Privacy Policy describes how we collect, use, disclose, and safeguard information when you visit our website https://vahealthplus.com/ or use our virtual medical assistant services.

By accessing our website or services, you agree to the practices described in this Privacy Policy.

1. Scope of This Policy

This Privacy Policy applies to:

  • Visitors to our website
  • Clients using our virtual assistant services
  • Healthcare providers and organizations engaging our services

This policy does not apply to third-party services or platforms not controlled by VA Health Plus.

2. Information We Collect

We collect various types of information to provide HIPAA-aware virtual assistant services efficiently.

2.1 Personal Information

We may collect personally identifiable information, including:

  • Full name
  • Email address
  • Phone number
  • Business or clinic name
  • Billing and payment information

2.2 Protected Health Information (PHI)

In the course of providing services, we may process Protected Health Information (PHI) on behalf of healthcare clients.

PHI may include:

  • Patient names
  • Appointment records
  • Insurance details
  • Medical administrative data
Important:
VA Health Plus processes PHI only as instructed by the client and solely for administrative purposes.

2.3 Technical and Usage Data

We may automatically collect:

  • IP address
  • Browser type and version
  • Device identifiers
  • Pages visited and time spent
  • Referring URLs

2.4 Cookies and Tracking Technologies

We use cookies, pixels, and similar technologies to:

  • Improve website performance
  • Analyze user behavior
  • Enhance user experience

You may disable cookies through your browser settings.

3. How We Use Your Information

We use collected data for the following purposes:

3.1 Service Delivery

  • Provide virtual medical assistant services
  • Manage administrative workflows
  • Support healthcare operations

3.2 Communication

  • Respond to inquiries
  • Provide service updates
  • Send administrative notifications

3.3 Business Operations

  • Process payments
  • Maintain records
  • Improve service quality

3.4 Security and Compliance

  • Detect fraud or unauthorized access
  • Ensure compliance with legal obligations
  • Protect sensitive healthcare information

4. HIPAA Compliance and PHI Protection

4.1 Business Associate Role

VA Health Plus may function as a Business Associate under HIPAA when handling PHI on behalf of Covered Entities.

4.2 Business Associate Agreement (BAA)

Where applicable, we enter into a Business Associate Agreement (BAA) with clients to define responsibilities related to PHI handling.

4.3 Safeguards for PHI

We implement reasonable safeguards, including:

Administrative Safeguards

  • Employee training on data privacy
  • Confidentiality agreements
  • Access control policies

Technical Safeguards

  • Secure systems and platforms
  • Password-protected access
  • Data encryption where applicable

Physical Safeguards

  • Controlled access to systems and devices
  • Secure work environments

4.4 Limitations of Responsibility

While we implement safeguards:

  • Clients are responsible for their own HIPAA compliance
  • VA Health Plus does not guarantee full regulatory compliance unless explicitly agreed in writing

5. Legal Basis for Processing (GDPR Considerations)

Where applicable, we process personal data based on:

  • Contractual necessity
  • Legal obligations
  • Legitimate business interests
  • User consent

6. Sharing and Disclosure of Information

We do not sell personal or healthcare data.

We may share information with:

6.1 Service Providers

Third-party vendors assisting with:

  • Hosting
  • Payment processing
  • IT support

These providers are bound by confidentiality obligations.

6.2 Legal Requirements

We may disclose information if required by:

  • Law enforcement
  • Regulatory authorities
  • Court orders

6.3 Business Transfers

In case of merger, acquisition, or sale, user data may be transferred.

7. Data Security

We implement industry-standard security measures, including:

  • Secure infrastructure
  • Role-based access control
  • Data encryption (where applicable)
  • Monitoring for unauthorized access

However, no system is completely secure, and we cannot guarantee absolute security.

8. Data Retention

We retain information only as long as necessary for:

  • Service delivery
  • Legal compliance
  • Business purposes

Retention periods may vary depending on:

  • Contractual requirements
  • Regulatory obligations

After retention periods expire, data is securely deleted or anonymized.

9. Your Privacy Rights

Depending on your jurisdiction, you may have the following rights:

9.1 Access and Portability

Request access to your personal data.

9.2 Correction

Request correction of inaccurate information.

9.3 Deletion

Request deletion of your data, subject to legal limitations.

9.4 Restriction of Processing

Limit how your data is used.

9.5 Withdrawal of Consent

Withdraw consent where processing is based on consent.

To exercise your rights, contact us using the information below.

10. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you may have additional rights, including:

  • Right to know what personal data is collected
  • Right to request deletion
  • Right to opt out of data sale (we do not sell data)
  • Right to non-discrimination

11. International Data Transfers

Your information may be transferred and processed in countries outside your jurisdiction, including the United States.

By using our services, you consent to such transfers.

12. Third-Party Links

Our website may contain links to external websites. We are not responsible for their content or privacy practices.

13. Children’s Privacy

Our services are not intended for individuals under 18. We do not knowingly collect data from minors.

14. Changes to This Privacy Policy

We may update this Privacy Policy periodically.

Changes will be posted on this page with an updated effective date.

Continued use of our services constitutes acceptance of changes.

15. Contact Information

If you have any questions about this Privacy Policy or your data:

Email: contact@vahealthplus.com

Website: https://vahealthplus.com/