Privacy & Policy

Healthcare Quality Consulting LLC ("Company," "we," "us," or "our") operates the HOP (Healthcare Orientation Platform) at myhop.ai. We are committed to protecting the privacy and security of the information you provide to us. This Privacy Policy explains what information we collect, how we use it, and the rights you have regarding your information.HOP is a Business Associate-level secure SaaS platform designed for home health agencies and healthcare organizations. HOP collects and stores platform-generated data only, including training completion records, quality metrics, incident reports, and performance data created through platform use. HOP does not store Protected Health Information (PHI), employee records, licenses, employment information, or personnel files. We maintain HIPAA-level security and privacy standards for all data to support the compliance needs of our healthcare users.

1. Information We Collect

A. Information You Provide Directly

When you create an account or use HOP, we collect information you voluntarily provide, including:
         - Account information: name, email address, phone number, and job title
         - Organization information: agency name, address, and organizational details
         - User preferences: communication preferences, language settings, and platform customizations
         - Authentication information: passwords (encrypted) and security credentials
         - Agency DNA Profile information: organizational structure, patient populations, clinical focus areas, and quality priorities you configure

B. Information Collected Automatically

When you access HOP and use the platform, we automatically collect certain information about your device, usage, and the data you generate through your interactions:
         - Device information: browser type, operating system, device type, and unique device identifiers
         - Usage data: pages visited, features accessed, time spent on the platform, and interaction patterns
         - IP address and geolocation information
         - Cookies and similar tracking technologies to enhance your user experience
         - Platform-generated data: training completion records, quiz/assessment results, quality improvement metrics, incident reports you create, and performance data generated through HOP usage

C. SMS/Text Message Communications

Users who opt in to receive SMS notifications will have their mobile phone number collected and used solely for service-related communications, including training alerts, compliance updates, and platform notifications. SMS consent is not a condition of using HOP.

2. How We Use Your Information

We use the information we collect for the following purposes:

         - Providing and maintaining HOP services, including user support and platform functionality
         - Generating personalized learning experiences and customizing Huddle content based on your organization's Agency DNA Profile
         - Tracking training progress, completion status, and learning outcomes to support quality improvement initiatives
         - Analyzing incident reports and quality metrics to support A3 problem-solving and performance analytics
         - Sending service-related notifications, training assignments, and compliance updates
         - Analyzing platform usage patterns to improve features, content, and user experience
         - Enhancing security and protecting against fraud and unauthorized access
         - Complying with legal obligations and regulatory requirements
         - Responding to user inquiries and providing customer support

Important: We do not sell, rent, lease, or share your personal or organizational information with third parties for marketing purposes. We do not use your data for purposes unrelated to providing HOP services without your explicit consent.

3. Data Security and Encryption

Your information is secured with the highest standards of technical and administrative safeguards:

‍         - Azure Cloud Infrastructure: HOP data is hosted on Microsoft Azure servers located in the United States with enterprise-grade encryption and redundancy
         - Encryption in Transit: All data transmitted to and from HOP is encrypted using TLS 1.2 or higher
         - Encryption at Rest: All stored data is encrypted using AES-256 encryption standards
         - Access Controls: Only authorized employees with a legitimate business need can access user data
         - Audit Logging: All access to sensitive data is logged and monitored for unauthorized activity
         - HIPAA Compliance: While HOP does not store PHI, we maintain HIPAA-level security practices to support healthcare organizations
         - HITRUST Certification: HOP is pursuing HITRUST CSF certification, demonstrating our commitment to healthcare data security best practices

Security Note: While we implement comprehensive security measures, no data transmission over the internet can be guaranteed to be 100% secure. You use HOP at your own risk. We encourage you to use strong passwords and maintain the confidentiality of your login credentials.

4. HIPAA Breach Notification

Although HOP does not store PHI, we recognize that home health agencies using our platform may be HIPAA-covered entities or Business Associates. In the unlikely event of a security incident affecting user data, we will follow notification procedures consistent with HIPAA Breach Notification Rule requirements:

         - We will investigate any potential unauthorized access or disclosure without unreasonable delay
         - We will notify affected users of any confirmed breach involving their information
         - Notifications will include information about the breach, affected data, and recommended actions users can take
         - We will cooperate fully with affected organizations and regulatory authorities as required

5. Your Privacy Rights and Data Access

A. Right to Access Your Information

You have the right to request access to the personal and organizational information we hold about you. To request a copy of your data:
         1. Send an email to support@myhop.ai with the subject line "Data Access Request"
         2. Include sufficient information to identify your account and organization
         3. We will provide your information in a portable, machine-readable format within 30 days of verification

B. Right to Correct Your Information

You may request correction of inaccurate or incomplete information about you. To request a correction:
         1. Send an email to support@myhop.ai with the subject line "Data Correction Request"
         2. Describe the information you believe is inaccurate and provide the correct information
         3. We will verify your request and update the information within 15 business days

C. Right to Delete Your Information

Subject to certain legal and business obligations, you may request deletion of your account and associated data. To request deletion:
         1. Send an email to support@myhop.ai with the subject line "Delete Account" or "Delete My Information"
         2. Include your account email address or organization name
         3. We will verify your identity and process the deletion within 30 days
         4. Please note that some information may be retained for legal, compliance, or legitimate business purposes (e.g., billing records)

D. Right to Opt Out

You may opt out of receiving promotional communications and non-essential notifications:
         - For email communications: Click the "unsubscribe" link in any email or email support@myhop.ai with "Opt Out" in the subject line
         - For SMS communications: Reply STOP to any text message, or email support@myhop.ai for assistance
         - For help with SMS messages: Reply HELP to any text message

Note: You cannot opt out of service-related communications required to operate HOP, such as security alerts, account notifications, and compliance updates.

6. Data Retention

We retain your information for as long as necessary to provide HOP services and comply with legal obligations. Retention periods vary by data type:

7. Cookies and Tracking Technologies

HOP uses cookies and similar technologies to enhance your user experience. Cookies are small files stored on your device that help us remember your preferences, improve functionality, and understand how you use the platform.

Types of Cookies We Use
         - Essential cookies: Required for basic platform functionality and security
         - Performance cookies: Help us understand how you use HOP to optimize features
         - Preference cookies: Remember your settings and customizations
         - Analytics cookies: Collect aggregated data about usage patterns (anonymized)

Cookie Preferences

Most browsers are set to accept cookies by default. You can manage cookie preferences through your browser settings and choose to refuse all cookies or be notified when a cookie is sent. However, disabling cookies may limit HOP functionality and performance. Consult your browser's help documentation for instructions.We retain your information for as long as necessary to provide HOP services and comply with legal obligations. Retention periods vary by data type:

8. Children and Minors

HOP is designed for healthcare professionals and organizational use. We do not knowingly collect personal information from individuals under 16 years of age. If we discover that a child age 16 or younger has submitted personal information, we will delete that information from our records immediately. If you believe a minor has provided information to HOP, please contact us at support@myhop.ai.

9. Third-Party Links and Services

HOP may contain links to third-party websites and services. We are not responsible for the privacy practices or content of external sites. We encourage you to review the privacy policies of any third-party services before providing your information. Your use of third-party services is governed by their respective privacy policies, not this Privacy Policy.

10. International Data Processing

All HOP data is processed and stored exclusively on Microsoft Azure servers located in the United States. We do not transfer, store, or process data outside the United States. This ensures consistent legal protections and regulatory compliance for all users.

11. Contact Information and Privacy Requests

For questions about this Privacy Policy, to request your data, or to exercise any of your privacy rights, contact us:

         Healthcare Quality Consulting LLC
          Email: support@myhop.ai
           Alternative Email: monika@myhop.ai
         Response timeframe: We aim to respond to all privacy requests within 10 business days of verification.

Request Types and Subject Lines
         - "Data Access Request" to receive a copy of your information
         - "Data Correction Request" to update inaccurate information
         - "Delete Account" to delete your user account and associated data
         - "Delete My Information" to remove your data without account deletion
         - "Opt Out" to unsubscribe from marketing communications
         - "Privacy Question" for general privacy inquiries

12. California Privacy Rights

California residents have specific privacy rights under the California Consumer Privacy Act (CCPA). HOP does not sell or share personal information with third parties for their direct marketing purposes. California residents may contact us at support@myhop.ai with "California Privacy Rights" in the subject line for additional information about our privacy practices.

13. European Privacy Rights

If you are located in the European Union or United Kingdom, you have rights under the General Data Protection Regulation (GDPR). These include the right to access, correct, delete, restrict processing, and data portability. To exercise these rights or file a complaint, contact us at support@myhop.ai. You also have the right to lodge a complaint with your local data protection authority.

14. Policy Changes and Updates

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, and other factors. We will notify you of material changes by posting the updated policy on myhop.ai with a new effective date. Your continued use of HOP following such changes constitutes your acceptance of the updated Privacy Policy. We encourage you to review this policy regularly to stay informed about how we protect your information.