Privacy Policy

CVODirectory ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our healthcare verification directory service.

1. Information We Collect

Verification Contact Data

We collect and maintain verification contact information for healthcare credentialing purposes, including:

• Organization names and contact details
• Phone numbers and email addresses
• Physical addresses
• Verification website URLs and login credentials
• Contact type classifications (Education, Licenses, Hospitals, Insurance, Payers)
• Supplementary notes and verification procedures

Malpractice Policy Information

• Policy numbers and carrier information
• Coverage amounts and policy dates
• Premium amounts and claims history
• License numbers and policy status

User-Submitted Information

• Verification request submissions
• Contact form inquiries
• Email addresses and names for communication
• Request reasons and supporting documentation

2. Cookies and Tracking Technologies

We use cookies and similar technologies to improve your experience and support our services:

Google AdSense and Analytics

• Google AdSense uses cookies to serve relevant advertisements
• Google Analytics tracks website usage and performance
• These services may collect IP addresses, browser information, and usage patterns
• You can opt out of personalized advertising at Google Ads Settings

Essential Cookies

• Session management and user authentication
• Form data preservation and search preferences
• Security and fraud prevention

3. Healthcare Data Handling Practices

While our service primarily handles administrative verification contact information rather than protected health information (PHI), we maintain strict data handling practices:

• All data is encrypted in transit and at rest
• Access controls limit data viewing to authorized personnel
• Regular security audits and vulnerability assessments
• Secure data centers with physical access controls
• Staff training on data privacy and security protocols

4. How We Use Your Information

• Provide healthcare credential verification services
• Process and respond to verification requests
• Maintain and update our verification contact database
• Communicate with users about their requests and our services
• Improve our website functionality and user experience
• Comply with legal obligations and regulatory requirements
• Detect and prevent fraud or security breaches

5. Your Rights and Data Retention

Your Rights

• Access: Request information about data we hold about you
• Correction: Request correction of inaccurate or incomplete data
• Deletion: Request deletion of your personal data (subject to legal requirements)
• Portability: Request a copy of your data in a structured format
• Objection: Object to processing of your data for certain purposes

Data Retention

• Verification contacts: Retained as long as actively used for verification purposes
• User requests: Retained for 3 years for audit and improvement purposes
• Malpractice policies: Retained according to insurance industry standards
• Analytics data: Aggregated data retained indefinitely; personal identifiers removed after 26 months

6. Third-Party Integrations

We integrate with trusted third-party services to enhance our platform:

• Google Services: AdSense, Analytics, and reCAPTCHA
• Cloud Infrastructure: Secure hosting and database services
• Email Services: For communication and notifications
• Payment Processing: For premium services (if applicable)

These third parties have their own privacy policies and may collect information independently. We encourage you to review their privacy practices.

7. GDPR and CCPA Compliance

GDPR (European Users)

• Lawful basis for processing: Legitimate interests and consent
• Right to withdraw consent at any time
• Data Protection Officer contact: privacy@cvodirectory.com
• Right to lodge complaints with supervisory authorities

CCPA (California Users)

• We do not sell personal information to third parties
• Right to know what personal information is collected
• Right to delete personal information
• Right to non-discrimination for exercising CCPA rights

8. Data Security

We implement comprehensive security measures to protect your information:

• SSL/TLS encryption for all data transmission
• Database encryption and regular security updates
• Multi-factor authentication for administrative access
• Regular security audits and penetration testing
• Employee background checks and security training
• Incident response procedures and breach notification protocols

9. Updates to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. We will notify users of significant changes by posting a notice on our website or sending email notifications. Your continued use of our services after such modifications constitutes acceptance of the updated Privacy Policy.

10. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us: