Legal
Privacy Policy
Last updated: March 2026 · Effective: March 2026 · Applies to: claimvise.ai, claimvise.com, claimvise.in and all ClaimVise platform services
This Privacy Policy describes how Innodel Technologies Private Limited ("we", "us", "ClaimVise") collects, uses, and protects information when you use the ClaimVise platform and website. By using our services, you agree to this policy.
1. Who We Are
ClaimVise is a product of Innodel Technologies Private Limited, a company incorporated in India under the Companies Act, 2013. Our registered office is in India. ClaimVise provides AI-powered revenue cycle management and medical billing automation services to healthcare providers and billing companies in the United States and globally.
Data Controller: Innodel Technologies Private Limited
Contact: info@innodel.com
2. Information We Collect
2.1 Account & Contact Information
- Name, email address, organisation name, and role when you register or contact us
- Billing and payment details processed through our payment provider
- Communication records including emails and demo requests
2.2 Platform Usage Data
- Log data including IP addresses, browser type, pages visited, and actions taken
- Claim processing metrics (volume, accuracy rates, processing times) — not patient-level data
- Feature usage patterns to improve the platform
2.3 Healthcare Data (PHI)
When you upload clinical documents, superbills, or patient records for billing processing, those documents may contain Protected Health Information (PHI) as defined under HIPAA. See Section 4 for our specific treatment of PHI.
3. How We Use Your Information
We use information we collect for the following purposes:
- Providing, operating, and improving the ClaimVise platform
- Processing medical claims and generating billing outputs on your behalf
- Communicating about your account, features, and support
- Detecting and preventing fraud, abuse, and security incidents
- Complying with legal obligations including HIPAA, applicable Indian law, and US healthcare regulations
- Generating aggregate, anonymised analytics to improve AI model accuracy
We do not sell your personal information to third parties. We do not use your data for advertising purposes.
4. Healthcare Data & Protected Health Information (PHI)
PHI uploaded to ClaimVise is used solely for the purpose of processing medical billing on your behalf. It is never used to train AI models without explicit written consent. It is never sold, shared, or disclosed to any party other than as required for claim processing or as mandated by law.
As a Business Associate under HIPAA, ClaimVise commits to:
- Using PHI only for permitted purposes as defined in our Business Associate Agreement (BAA)
- Implementing appropriate administrative, technical, and physical safeguards for PHI
- Reporting any breach of PHI to covered entities within the timeframes required by HIPAA
- Returning or destroying PHI upon termination of the service relationship
- Making PHI available for patients' rights requests as required under HIPAA
All PHI is encrypted in transit (TLS 1.3) and at rest (AES-256). Every access to PHI is logged with a cryptographic SHA-256 integrity hash as part of our HIPAA-compliant audit trail.
5. Data Sharing & Third Parties
We share data with third parties only in the following circumstances:
- AI processing: Clinical documents are processed using Anthropic's Claude API under a data processing agreement. Anthropic does not use your data to train models.
- Infrastructure: Our platform runs on cloud servers subject to appropriate data processing agreements
- Legal requirements: We may disclose information when required by law, court order, or government authority
- Business transfers: In the event of a merger, acquisition, or sale of assets, data may be transferred to the new entity with equivalent privacy protections
We do not share PHI with any third party except as required for claim processing (e.g. clearinghouses, payers) or as explicitly authorised by you.
6. Data Security
We implement industry-standard security measures including:
- TLS 1.3 encryption for all data in transit
- AES-256 encryption for data at rest
- JWT-based authentication with token expiry
- SHA-256 cryptographic integrity hashing on all audit log entries
- Role-based access controls limiting data access to authorised personnel only
- Regular security reviews and vulnerability assessments
7. Data Retention
We retain account data for as long as your account is active and for 7 years after account closure to comply with healthcare regulatory requirements. PHI is retained only as long as required for billing purposes and in accordance with your BAA and applicable law. You may request deletion of your data by contacting us at info@innodel.com.
8. Your Rights
Depending on your location and applicable law, you may have the right to:
- Access the personal information we hold about you
- Request correction of inaccurate data
- Request deletion of your data (subject to legal retention obligations)
- Object to or restrict certain processing of your data
- Receive your data in a portable format
- Withdraw consent where processing is based on consent
To exercise any of these rights, contact us at info@innodel.com. We will respond within 30 days.
9. Cookies
The ClaimVise website uses minimal, essential cookies only — for session management and security. We do not use tracking cookies, advertising cookies, or analytics cookies from third parties. You can disable cookies in your browser settings; this may affect the functionality of the platform login.
10. Contact Us