VA Health Plus (“Company,” “we,” “our,” or “us”) is committed to protecting the privacy, confidentiality, and security of personal and healthcare-related information.
This Privacy Policy describes how we collect, use, disclose, and safeguard information when you visit our website https://vahealthplus.com/ or use our virtual medical assistant services.
By accessing our website or services, you agree to the practices described in this Privacy Policy.
1. Scope of This Policy
This Privacy Policy applies to:
- Visitors to our website
- Clients using our virtual assistant services
- Healthcare providers and organizations engaging our services
This policy does not apply to third-party services or platforms not controlled by VA Health Plus.
2. Information We Collect
We collect various types of information to provide HIPAA-aware virtual assistant services efficiently.
2.1 Personal Information
We may collect personally identifiable information, including:
- Full name
- Email address
- Phone number
- Business or clinic name
- Billing and payment information
2.2 Protected Health Information (PHI)
In the course of providing services, we may process Protected Health Information (PHI) on behalf of healthcare clients.
PHI may include:
- Patient names
- Appointment records
- Insurance details
- Medical administrative data
| Important: VA Health Plus processes PHI only as instructed by the client and solely for administrative purposes. |
2.3 Technical and Usage Data
We may automatically collect:
- IP address
- Browser type and version
- Device identifiers
- Pages visited and time spent
- Referring URLs
2.4 Cookies and Tracking Technologies
We use cookies, pixels, and similar technologies to:
- Improve website performance
- Analyze user behavior
- Enhance user experience
You may disable cookies through your browser settings.
3. How We Use Your Information
We use collected data for the following purposes:
3.1 Service Delivery
- Provide virtual medical assistant services
- Manage administrative workflows
- Support healthcare operations
3.2 Communication
- Respond to inquiries
- Provide service updates
- Send administrative notifications
3.3 Business Operations
- Process payments
- Maintain records
- Improve service quality
3.4 Security and Compliance
- Detect fraud or unauthorized access
- Ensure compliance with legal obligations
- Protect sensitive healthcare information
4. HIPAA Compliance and PHI Protection
4.1 Business Associate Role
VA Health Plus may function as a Business Associate under HIPAA when handling PHI on behalf of Covered Entities.
4.2 Business Associate Agreement (BAA)
Where applicable, we enter into a Business Associate Agreement (BAA) with clients to define responsibilities related to PHI handling.
4.3 Safeguards for PHI
We implement reasonable safeguards, including:
Administrative Safeguards
- Employee training on data privacy
- Confidentiality agreements
- Access control policies
Technical Safeguards
- Secure systems and platforms
- Password-protected access
- Data encryption where applicable
Physical Safeguards
- Controlled access to systems and devices
- Secure work environments
4.4 Limitations of Responsibility
While we implement safeguards:
- Clients are responsible for their own HIPAA compliance
- VA Health Plus does not guarantee full regulatory compliance unless explicitly agreed in writing
5. Legal Basis for Processing (GDPR Considerations)
Where applicable, we process personal data based on:
- Contractual necessity
- Legal obligations
- Legitimate business interests
- User consent
6. Sharing and Disclosure of Information
We do not sell personal or healthcare data.
We may share information with:
6.1 Service Providers
Third-party vendors assisting with:
- Hosting
- Payment processing
- IT support
These providers are bound by confidentiality obligations.
6.2 Legal Requirements
We may disclose information if required by:
- Law enforcement
- Regulatory authorities
- Court orders
6.3 Business Transfers
In case of merger, acquisition, or sale, user data may be transferred.
7. Data Security
We implement industry-standard security measures, including:
- Secure infrastructure
- Role-based access control
- Data encryption (where applicable)
- Monitoring for unauthorized access
However, no system is completely secure, and we cannot guarantee absolute security.
8. Data Retention
We retain information only as long as necessary for:
- Service delivery
- Legal compliance
- Business purposes
Retention periods may vary depending on:
- Contractual requirements
- Regulatory obligations
After retention periods expire, data is securely deleted or anonymized.
9. Your Privacy Rights
Depending on your jurisdiction, you may have the following rights:
9.1 Access and Portability
Request access to your personal data.
9.2 Correction
Request correction of inaccurate information.
9.3 Deletion
Request deletion of your data, subject to legal limitations.
9.4 Restriction of Processing
Limit how your data is used.
9.5 Withdrawal of Consent
Withdraw consent where processing is based on consent.
To exercise your rights, contact us using the information below.
10. California Privacy Rights (CCPA/CPRA)
If you are a California resident, you may have additional rights, including:
- Right to know what personal data is collected
- Right to request deletion
- Right to opt out of data sale (we do not sell data)
- Right to non-discrimination
11. International Data Transfers
Your information may be transferred and processed in countries outside your jurisdiction, including the United States.
By using our services, you consent to such transfers.
12. Third-Party Links
Our website may contain links to external websites. We are not responsible for their content or privacy practices.
13. Children’s Privacy
Our services are not intended for individuals under 18. We do not knowingly collect data from minors.
14. Changes to This Privacy Policy
We may update this Privacy Policy periodically.
Changes will be posted on this page with an updated effective date.
Continued use of our services constitutes acceptance of changes.
15. Contact Information
If you have any questions about this Privacy Policy or your data:
Email: contact@vahealthplus.com
Website: https://vahealthplus.com/