CASES-IO

Privacy Policy

Last Updated: January 2025

1. Introduction

Cases-IO ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our medical-legal case management platform.

2. Information We Collect

2.1 Information You Provide

We collect information you provide directly, including:

  • Account information (name, email, company, phone number)
  • Case and claimant data entered into the platform
  • Medical records and documentation uploaded to the system
  • Communications with our support team
  • Billing and payment information

2.2 Automatically Collected Information

We automatically collect certain information, including:

  • Usage data (features used, pages viewed, time spent)
  • Device information (IP address, browser type, operating system)
  • Log data (access times, error logs)
  • Cookies and similar tracking technologies

3. How We Use Your Information

We use collected information to:

  • Provide, maintain, and improve our Service
  • Process transactions and manage your account
  • Send administrative communications and updates
  • Provide customer support and respond to inquiries
  • Monitor and analyze usage patterns and trends
  • Detect, prevent, and address technical issues and security threats
  • Comply with legal obligations and enforce our Terms of Service

4. Data Security and Isolation

We implement enterprise-grade security measures to protect your data:

  • Data Isolation: Each customer has dedicated, isolated databases and file storage
  • Encryption: Data is encrypted at rest and in transit using industry-standard protocols
  • Security Infrastructure: Our infrastructure is built with healthcare-grade security standards
  • Access Controls: Role-based permissions and multi-factor authentication
  • Monitoring: 24/7 security monitoring and regular security audits
  • Audit Logging: Comprehensive logging of all system access and changes

5. Information Sharing and Disclosure

We do not sell your personal information. We may share information in the following circumstances:

  • With Your Consent: When you authorize us to share information
  • Service Providers: With trusted third-party vendors who assist in operating our Service (e.g., hosting, payment processing)
  • Business Transfers: In connection with a merger, acquisition, or sale of assets
  • Legal Requirements: When required by law or to protect our rights and safety
  • Within Your Organization: With authorized users in your organization based on role permissions

6. Data Retention

We retain your information for as long as your account is active or as needed to provide services. After account termination, we will retain your data for a reasonable period to comply with legal obligations and resolve disputes. You may request deletion of your data, subject to legal retention requirements.

7. Your Rights and Choices

You have the right to:

  • Access and review your personal information
  • Correct inaccurate or incomplete data
  • Request deletion of your data (subject to legal requirements)
  • Export your data in a portable format
  • Opt-out of marketing communications
  • Disable cookies through your browser settings

8. Healthcare Data and Business Associate Agreements

We understand that our customers often handle sensitive medical information. We are prepared to enter into Business Associate Agreements (BAA) when required and maintain security infrastructure that meets healthcare industry standards.

9. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance user experience, analyze usage, and maintain security. You can control cookie preferences through your browser settings, though this may affect Service functionality.

10. Third-Party Links

Our Service may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies.

11. Children's Privacy

Our Service is not intended for individuals under 18 years of age. We do not knowingly collect information from children.

12. International Data Transfers

Your information may be transferred to and processed in the United States. By using our Service, you consent to such transfers. We ensure appropriate safeguards are in place for international data transfers.

13. Changes to Privacy Policy

We may update this Privacy Policy periodically. We will notify you of material changes via email or through the Service. Your continued use after changes constitutes acceptance of the updated policy.

14. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us at:

Address: 225 S. Church St. Suite 306, West Chester, PA 19382