Effective Date: 03-01-2026
Company: Legacy Row Imaging (“we,” “us,” “our”)
1. Overview
Legacy Row Imaging is committed to protecting your privacy and safeguarding your Personal Health Information (“PHI”) in accordance with applicable U.S. privacy laws, including the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) where applicable.
This policy describes how we collect, use, store, and disclose information when you use our services.
2. Scope of This Policy
This policy applies to all users of Legacy Row Imaging’s platform and services, including individuals who submit personal or health-related information to coordinate diagnostic imaging services.
3. Information We Collect
We collect only the information necessary to provide scheduling and coordination services, including:
- Full name
- Contact information (phone, email, address)
- Date of birth (if required by imaging facility)
- Physician’s order and related documentation
- Insurance or payment-related information (if applicable)
We do not collect more information than is reasonably necessary to complete service fulfillment.
4. How We Use Information
We use collected information solely to:
- Coordinate and schedule diagnostic imaging appointments
- Communicate with you regarding your appointment
- Transmit necessary information to third-party imaging facilities
- Process payments and billing through third-party processors
We do not sell, rent, or market your personal or health information.
5. Disclosure of Information
Your information may be shared only with the following parties:
- Independent imaging facilities
- Licensed radiologists involved in interpretation
- Authorized service providers supporting scheduling, billing, or technical infrastructure (including payment processors such as Stripe)
We do not disclose PHI to unauthorized third parties or advertisers.
6. HIPAA Status & Business Associate Role
Where applicable under HIPAA, Legacy Row Imaging acts as a Business Associate to covered entities such as healthcare providers and imaging facilities.
We enter into Business Associate Agreements (BAAs) when required and implement safeguards designed to protect PHI in accordance with HIPAA standards.
7. Minimum Necessary Standard
We limit access to and use of PHI to only the minimum amount necessary to perform scheduling, coordination, and administrative services.
Access to PHI is restricted to authorized personnel only.
8. Data Security
We implement reasonable administrative, technical, and physical safeguards to protect information, including:
- Encryption of data in transit and at rest (including 256-bit encryption where applicable)
- Secure access controls and authentication procedures
- Use of secure third-party infrastructure providers, including Stripe for payment processing
No system can guarantee absolute security.
9. Data Retention
We retain personal and health information only as long as necessary to:
- Provide services
- Comply with legal and regulatory obligations
- Resolve disputes or enforce agreements
Retention periods may vary based on applicable law and operational requirements.
10. Your Rights
Subject to applicable law, you may request:
- Access to your records
- Corrections to inaccurate information
- Deletion of non-required administrative data
Certain records may be retained where required by law or regulatory obligations.
11. Communications
By using our services, you consent to receive communications related to:
- Appointment scheduling
- Service updates
- Billing and administrative notifications
Communications may occur via email, phone, or SMS.
12. Third-Party Services
We rely on third-party service providers for payment processing, infrastructure, and operational support. These providers are contractually obligated to protect information consistent with applicable privacy standards.
13. Limitations
While we take reasonable steps to protect your information, no method of transmission or storage is 100% secure. You use our services at your own risk.
14. Changes to This Policy
We may update this Privacy & HIPAA Policy from time to time. Updates will be posted on this page with a revised effective date.
15. Contact Information
If you have questions about this policy, contact us at:
legacyrowinc@gmail.com
(352) 644-8454