Privacy Policy

Website Privacy Policy

Effective Date: June 10, 2026

Kairos Sleep Clinic ("we," "us," or "our") operates the website KairosSleepClinic.com and associated digital services (the "Site"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our Site or communicate with us digitally. This policy applies strictly to information collected through our public website and digital marketing. It does not replace or supersede our HIPAA Notice of Privacy Practices, which governs your Protected Health Information (PHI).

1. Information We Collect

We collect information that you voluntarily provide to us, as well as automated data collected when you navigate the Site.

  • Personal Information: This includes your name, email address, phone number, and any details you provide via contact forms, scheduling requests, or portal communications.
  • Automated Information: We automatically collect certain data when you visit our Site, including your IP address, browser type, operating system, referring URLs, device information, and pages viewed. We may use cookies and similar tracking technologies to improve site functionality and security.

2. How We Use Your Information

We use the information we collect to:

  • Respond to clinical inquiries and manage appointment booking.
  • Provide, operate, and maintain our Site.
  • Send administrative communications, such as automated email or text message appointment confirmations and reminders.
  • Comply with applicable legal obligations and protect our clinical infrastructure.

3. Text Messaging & SMS Communication (TCPA Compliance)

If you provide your mobile phone number and explicitly opt-in to receive text messages from us, you consent to receive transactional and appointment-related SMS messages.

  • Opt-Out: You can opt-out of text alerts at any time by replying STOP to any message.
  • Data Sharing & Privacy: Mobile numbers collected for SMS consent and communications will strictly remain confidential. We do not sell, rent, or share SMS consent data or phone numbers with third parties or affiliates for marketing purposes. Message and data rates may apply.

4. Data Security

We implement appropriate administrative, technical, and physical security measures designed to protect your personal information. However, please note that no transmission of data over the internet or cellular networks can be guaranteed 100% secure.

HIPAA Notice of Privacy Practices (NPP)

Effective Date: June 10, 2026

THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE REVIEW IT CAREFULLY.

1. Our Legal Duty

We are required by law to maintain the privacy of your Protected Health Information (PHI), to provide you with this notice of our legal duties and privacy practices with respect to your PHI, and to notify you following a breach of unsecured PHI. We are required to abide by the terms of this Notice of Privacy Practices currently in effect.

2. Permitted Uses and Disclosures of PHI

We may use and disclose your medical records for the following purposes without obtaining your explicit written authorization:

  • For Treatment: We may use and disclose your PHI to provide, coordinate, or manage your medical care. For example, your sleep specialist may share diagnostic data with your primary care physician, a durable medical equipment (DME) supplier (e.g., for CPAP setups), or a sleep laboratory conducting an overnight diagnostic study.
  • For Payment: We may use and disclose your PHI so that the services you receive can be billed and collected from you, an insurance company, or a third-party payer. For example, we submit diagnosis codes and clinical charting to your health insurance provider to secure prior authorizations or clinical claims reimbursement.
  • For Healthcare Operations: We may use and disclose your PHI to support the business operations of our clinic. This includes internal quality assessment reviews, compliance auditing, training programs, and clinical system upgrades.
  • Business Associates: We may contract with third-party "Business Associates" to perform operations on our behalf (e.g., electronic health record [EHR] platforms, electronic billing clearings, secure telehealth platforms). All Business Associates are legally bound by contract to protect your PHI under standard Business Associate Agreements (BAAs).
  • Required by Law / Public Health: We may disclose PHI when required by federal, state, or local laws; for public health activities; to report suspected abuse or neglect; or to comply with a valid court order or judicial subpoena.

3. Uses and Disclosures Requiring Your Specific Authorization

The following uses and disclosures will be made only with your written authorization, and you have the right to revoke such authorization at any time:

  • Uses and disclosures of PHI for marketing or commercial purposes.
  • Disclosures that constitute an explicit sale of your PHI.

4. Your Rights Regarding Your PHI

You possess the following federal rights regarding your medical and billing records:

  • Right to Access and Copy: You have the right to inspect and obtain an electronic or paper copy of your medical and billing records. We will provide this within 30 days of a written request. We may charge a reasonable, cost-based processing fee.
  • Right to Request Restrictions: You have the right to request constraints on how we use or disclose your PHI for treatment, payment, or operations. We are not required to agree to your request, except if you request that we do not disclose PHI to your health insurance plan for payment or operations purposes, and the PHI pertains solely to an item or service for which you have paid us completely out-of-pocket.
  • Right to Request Confidential Communications: You have the right to request that we communicate with you about medical matters in a certain way or at a certain location (for example, only calling your personal cell phone or sending communications strictly via a secure patient portal).
  • Right to Amend: If you feel that medical information we maintain is incorrect or incomplete, you may request a formal amendment. Your request must be submitted in writing and provide a valid clinical reason supporting the change.
  • Right to an Accounting of Disclosures: You have the right to request a list of certain disclosures we have made of your PHI for purposes other than standard treatment, payment, healthcare operations, or those explicitly authorized by you.

5. Complaints

If you believe your privacy rights have been violated, you may file a complaint with our clinic's Privacy Officer or directly with the Secretary of the U.S. Department of Health and Human Services (HHS). You will not be penalized or retaliated against for filing a complaint.

To contact our compliance department:

Attn: Privacy Officer

Kairos Health PLLC / Kairos Sleep Clinic

Email: info@kairossleepclinic.com

Phone: (385) 267-7863