Skip to main content

Privacy Policy

Last updated: July 18, 2025

Interpretation

At Ringmaster Technologies, we are committed to safeguarding the privacy and security of personal information entrusted to us. As a cloud-based SaaS provider serving healthcare and insurance organizations, our handling of data aligns with leading regulatory and industry frameworks, including SOC 2 Type II, HITRUST r2, HIPAA, and ISO 22301.

This External Privacy Policy outlines how we collect, use, share, and protect personal information through our services, websites, and business operations.

Scope

This Policy applies to all personal information collected, accessed, processed, transmitted, stored, or disclosed by Ringmaster Technologies on behalf of customers, partners, and users of our services.

Information We Collect

We may collect the following types of personal information:

  • Contact details (e.g., name, email, phone number)
  • Account credentials and usage metadata
  • Health-related information (PHI), where applicable under HIPAA
  • Payment or transaction data (if applicable)
  • System logs and audit trails
  • Support and communications history

We collect this information via:

  • Direct user input
  • Customer integrations
  • Automated tools and monitoring systems

Purpose of Collection

We use personal information for the following legitimate purposes:

  • Delivering and maintaining our SaaS platform
  • Managing user accounts and authentication
  • Detecting and preventing security incidents
  • Meeting regulatory, legal, and contractual obligations
  • Providing customer service and technical support
  • Improving service functionality and user experience

Data Sharing and Disclosures

We do not sell personal information. We only disclose data to:

  • Subprocessors under contractual agreements with equivalent data protection standards
  • Legal or regulatory authorities, when required by law
  • Third parties at the customer’s written direction or with appropriate consent

A list of authorized subprocessors is maintained and available upon request.

Data Security and Protection

Ringmaster Technologies employs a multilayered security approach consistent with our SOC 2 Type II, HITRUST r2, and HIPAA-aligned framework. Controls include:

  • Encryption of data in transit and at rest
  • Access control and user authentication via SSO and MFA
  • Activity monitoring, logging, and alerting
  • Regular risk assessments and vulnerability management
  • Business continuity and disaster recovery aligned with ISO 22301

Data Subject Rights

Where applicable by law, users may exercise the following rights:

  • Access their personal data
  • Correct or update inaccuracies
  • Request deletion (subject to contractual obligations)
  • Object to or restrict processing
  • Lodge a complaint with a supervisory authority

Requests may be submitted to [email protected].

Retention and Disposal

We retain personal information only as long as necessary to fulfill the stated purpose or as required by applicable law or contract. Upon expiration of the retention period, data is securely deleted or anonymized in accordance with our Data Disposal Policy.

Changes to this Disposal

We may update this policy to reflect legal, operational, or regulatory changes. Significant changes will be communicated via email or platform notifications.

Contact Us

For any questions about this External Privacy Policy or our data handling practices, please contact: Jason Delker Chief Product & Security Officer [email protected]

Reviewed and Approved

Description: Current Version

Revision Date: 03/21/2025

Review Date: 03/21/2026

Reviewer/Approver Name & Role: Jason Delker, Chief Product & Security Officer