Why TheraponHealthSecurity ComplianceContact Us
How It Works
Healthcare Data & Analytics InfrastructureEmbedded Clinical AnalyticsClinical Intelligence Infrastructure
Solutions
Integrations

Privacy Policy

TheraponHealth Privacy Policy (HIPAA-Aware)

Last Updated: April 28, 2026

1. Overview

TheraponHealth, Inc. (“TheraponHealth,” “we,” “our,” or “us”) provides a technology platform and related services that enable organizations to collect, integrate, manage, and transmit health-related and wellness data from third-party devices, applications, and systems (the “Services”).

This Privacy Policy describes how information is collected, used, disclosed, and safeguarded when interacting with:

  • Our website, located at www.theraponhealth.com (the “Website”)
  • TheraponHealth-provided applications
  • The TheraponHealth technology platform and APIs

2. Our Role Under HIPAA and Similar Laws

TheraponHealth operates primarily as a business-to-business technology platform provider.

Our customers (“Clients”) may include healthcare providers, health plans, digital health companies, employers, and other Covered Entities or Business Associates. When applicable and pursuant to a separate written agreement, TheraponHealth may act as a Business Associate under the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”). In such cases, TheraponHealth processes protected health information (PHI) solely on behalf of and in accordance with Client instructions.

TheraponHealth does not independently determine the purpose or means of processing protected health information(PHI) and does not use protected health information(PHI) for its own purposes except as permitted by contract and applicable law.

3. Scope of This Privacy Policy

This Privacy Policy applies to information collected through the Website and business interactions and describes TheraponHealth’s general data practices. This Privacy Policy does not replace or supersede any Business Associate Agreement (BAA), Data Processing Agreement (DPA), or other Client-specific agreements. In the event of a conflict, the applicable agreement controls.

4. Information We Collect

Website and Business Contact Information: We may collect names, email addresses, job titles, company information, IP addresses, browser data, and other information voluntarily provided through forms or inquiries. This information is not considered protected health information (PHI).

Client Data and End User Data: Through the Services, TheraponHealth may process user or patient identifiers, device-generated health or wellness data, and related metadata on behalf of Clients. Where such data constitutes protected health information (PHI), it is processed only pursuant to a valid BAA or equivalent agreement.

5. Use of Information

TheraponHealth uses information to operate and maintain the Services, provide support, secure systems, improve platform functionality, and comply with legal and contractual obligations. TheraponHealth does not sell protected health information(PHI) or use protected health information(PHI) for advertising.

6. Disclosure of Information

Information may be disclosed to Clients, service providers, regulators, or as required by law. Any disclosure of protected health information (PHI) is limited to what is permitted under HIPAA and applicable agreements.

7. Safeguards and Security

TheraponHealth maintains administrative, technical, and physical safeguards designed to protect information, including protected health information (PHI, consistent with HIPAA Security Rule standards. No system can be guaranteed to be completely secure.

8. Breach Notification

Where acting as a Business Associate, TheraponHealth will notify the applicable Client of any Breach of Unsecured Protected health information (PHI) in accordance with HIPAA and contractual obligations.

9. Aggregated and De-Identified Data

TheraponHealth may create and use de-identified or aggregated data for analytics, service improvement, and operational purposes. Such data is not protected health information (PHI).

10. Cookies and Tracking

The Website may use cookies and similar technologies for functionality and analytics. Cookies are not used to track End Users within Client applications.

11. Data Retention

Information is retained as necessary to provide Services, comply with legal obligations, and meet contractual requirements. Protected health information (PHI) retention is governed by applicable BAAs or DPAs.

12. Individual Rights

End Users should submit requests related to protected health information (PHI) access, correction, or deletion to the applicable Client. TheraponHealth assists Clients as required by law and contract.

13. International Data Processing

Data may be processed in the United States or other jurisdictions where TheraponHealth or its service providers operate, with appropriate safeguards.

14. Changes to This Privacy Policy

TheraponHealth may update this Privacy Policy periodically. Updates will be posted with a revised effective date.

15. Contact Information

TheraponHealth, Inc.
Baltimore, MD 21202, USA
legal@theraponhealth.com