Dashboard
  • Home
  • Privacy Policy

Effective Date: June 5, 2025

1. Introduction

Smarter EMR, Inc. ("Smarter EMR," "we," "our," or "us") respects your privacy and is committed to protecting the personal information you share with us. This Privacy Policy explains how we collect, use, disclose, and safeguard information—including phone numbers and SMS consent data—when you interact with our website, applications, products, and services (collectively, the "Services").

Our Services are designed for healthcare providers and their patients and comply with applicable privacy laws and industry regulations, including the Health Insurance Portability and Accountability Act of 1996 ("HIPAA"), the Telephone Consumer Protection Act ("TCPA"), the Controlling the Assault of Non‑Solicited Pornography and Marketing ("CAN‑SPAM") Act, and relevant state privacy statutes.

2. Scope

This Policy applies to information we process:

  • ● Through the Smarter EMR website ( https://smarteremr.com ) and any related sub‑domains; 
  • ● Inside our cloud‑based electronic medical record (EMR) platform;
  • ● Via mobile and web applications integrated with the platform; and
  • ● When we communicate with you by email, SMS, phone, or other channels.

3. Information We Collect

3.1 Account & Business Information

We collect names, business names, email addresses, mailing addresses, payment details, clinic identifiers, and other information required to create and support your account.

3.2 Patient & Health Information (Protected Health Information, “PHI”)

When patients receive care through clinics that use Smarter EMR, we may process PHI such as medical history, treatment details, prescriptions, laboratory data, and insurance information on behalf of the clinic as its “Business Associate” under HIPAA.

3.3 Device & Usage Information

Our systems automatically log IP addresses, browser types, device identifiers, referral URLs, pages viewed, and interactions with the Services.

3.4 Phone Numbers & SMS Consent Data

To enable text messaging, we capture and store:

  • ● The phone number provided by a user or patient;
  • ● The date, time, and method of opt‑in (e.g., checked box, double opt‑in SMS keyword, in‑clinic form);
  • ● The wording of the opt‑in disclosure presented at the time of consent;
  • ● The campaign or purpose for which messages will be sent (e.g., appointment reminders, prescription updates, marketing);
  • ● Opt‑out (STOP) and help (HELP) keywords and timestamps; and
  • ● Related preferences such as message frequency.

4. How We Use Information

We use the information we collect to:

  • 1. Deliver and improve the Services, including charting, billing, e‑prescribing, and analytics;
  • 2. Send transactional or operational SMS messages (appointment reminders, prescription notifications, one‑time passcodes, etc.);
  • 3. Deliver marketing or promotional SMS messages only where we have documented, prior express written consent;
  • 4. Monitor, audit, and secure our systems;
  • 5. Comply with legal obligations and enforce our Terms of Service;
  • 6. Generate de‑identified or aggregated insights that do not identify any individual.

Use of Phone Numbers & SMS Consent Data

Phone numbers and associated SMS consent records are used exclusively to deliver text messages for the campaign or purpose disclosed at the time of opt‑in. We do not use phone numbers obtained for transactional messaging to send marketing without a separate, explicit consent.

5. Sharing & Disclosure

We do not sell or rent personal information—including phone numbers or SMS consent data—to third parties. We share information only as described below:

Category Purpose of Sharing
Intercom, Inc. (SMS application provider) Message orchestration and customer‑support chat services
Telecommunication carriers and downstream SMS aggregators Routing and delivering SMS messages
Infrastructure & cloud providers (e.g., AWS) Hosting, storage, disaster recovery
Sub‑processors under HIPAA Business Associate Agreements E‑prescribing, payment processing, analytics
Compliance & law‑enforcement authorities When legally required or to protect rights, property, or safety

SMS‑Specific Commitment: Text‑messaging originator opt‑in data and consent will not be shared with any third parties except for (i) communication providers necessary to enable and route messages, and (ii) regulators or carriers that request proof of consent.

6. SMS Messaging Practices & Your Choices

  • Opt‑In: You will receive SMS messages only after providing clear consent (e.g., checking a consent box or replying YES to an opt‑in text).
  • Opt‑Out: You may reply STOP at any time to end messages from a particular short code or phone number. A confirmation text will be sent.
  • Help: Reply HELP for help or contact us at privacy@smarteremr.com.
  • Frequency: Message frequency varies based on clinic workflows and user settings, but will not exceed the amount disclosed at opt‑in.
  • Rates: Message and data rates may apply.

7. Data Retention

We retain phone numbers, SMS consent data, and message logs for as long as needed to (i) fulfill the purposes outlined in this Policy, (ii) comply with legal or contractual obligations, and (iii) maintain audit trails required under HIPAA or carrier regulations. When data is no longer required, we delete or de‑identify it according to industry best practices.

8. Security

Smarter EMR employs administrative, technical, and physical safeguards aligned with NIST SP 800‑53 and HIPAA requirements, including encryption in transit and at rest, role‑based access controls, multi‑factor authentication, and continuous monitoring.

9. HIPAA Compliance

Under HIPAA, Smarter EMR acts as a Business Associate to healthcare providers. We sign Business Associate Agreements (BAAs), implement the required safeguards, and limit the use and disclosure of PHI to what is permitted under those BAAs.

10. International Data Transfers (GDPR/EU‑UK)

For users in the European Economic Area, United Kingdom, or Switzerland, we rely on Standard Contractual Clauses or Data Processing Agreements to safeguard cross‑border transfers.

11. Children’s Privacy

Our Services are not directed to children under 13. We do not knowingly collect personal information from children without verifiable parental consent.

12. Your Rights & Choices

Depending on your location, you may have rights to access, correct, delete, or restrict the processing of your personal information. To exercise these rights, contact privacy@smarteremr.com.

13. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via an in‑app notification or email. Continued use of the Services after an update signifies acceptance of the revised Policy.

14. Contact Us

If you have questions about this Privacy Policy, SMS practices, or our privacy and security program, please contact:


Smarter EMR Privacy Officer
Email Address: support@smarteremr.com Phone: (702) 555‑0123
Mailing Address: 5725 S Valley View Dr Unit 7, Las Vegas, NV 89118
Notifications
Notes