Privacy Policy

Introduction

At Apex Custom Software (“Company,” “we,” “our,” or “us”), we are committed to protecting the privacy, security, and integrity of the information entrusted to us. This Privacy Policy outlines how we collect, use, disclose, and safeguard personal data and Protected Health Information (PHI), in accordance with applicable laws, including the Health Insurance Portability and Accountability Act (HIPAA).

By accessing or using our website (www.apexcustomsoftware.com), you agree to the terms outlined in this Privacy Policy.

Information We Collect

We may collect the following categories of information:

1. Personal Information

• Name, email address, phone number
• Company or organization details
• Contact and communication data

2. Technical Data

• IP address, browser type, operating system
• Website usage data and analytics

3. Protected Health Information (PHI)

Where applicable, we may collect or process PHI on behalf of covered entities in compliance with HIPAA regulations. This includes:

• Medical records
• Electronic health records (EHR)
• Healthcare-related data tied to individuals

How We Use Information

We use collected information to:

• Provide and improve our software solutions and services
• Respond to inquiries and client requests
• Ensure system security and prevent fraud
• Comply with legal and regulatory requirements
• Support healthcare operations, including care coordination and case management

HIPAA Compliance & Privacy Practices

Apex Custom Software adheres to HIPAA requirements and upcoming regulatory changes. We are committed to ensuring transparency, accessibility, and patient rights regarding PHI.

Patient Rights & Access to PHI

Individuals have the right to:

• Inspect their PHI in person and take notes or photographs
• Receive access to their PHI within 15 days of request (updated from 30 days)
• Obtain electronic copies of PHI (ePHI), particularly when maintained in an Electronic Health Record (EHR)
• Direct us to transmit their ePHI to:
  • A third party (limited to EHR-maintained data)
  • A personal health application of their choice

We also:

• Provide PHI at no charge under certain qualifying circumstances
• Inform individuals of their right to receive copies instead of summaries of PHI
• Enable individuals to direct sharing of PHI between covered entities

Fees & Transparency

In compliance with updated HIPAA guidelines:

• We provide clear, publicly accessible fee schedules on our website for PHI access and disclosures
• We offer individualized cost estimates upon request before fulfilling PHI access requests

Use & Disclosure of PHI

We may use or disclose PHI under the following circumstances:

1. Treatment, Payment, and Healthcare Operations

• Includes expanded definitions covering care coordination and case management

2. Safety & Public Interest

• Disclosure permitted when harm is seriously and reasonably foreseeable

3. Good Faith Disclosures

• PHI may be used or disclosed based on a good faith belief that it is in the individual’s best interest

4. Military & Government Use

• PHI may be disclosed to all uniformed services as permitted under updated guidelines

Minimum Necessary Standard Exception

We recognize exceptions to the “minimum necessary” standard for:

• Individual-level care coordination
• Case management activities
  These exceptions apply regardless of whether the activity falls under treatment or healthcare operations.

Electronic Health Records (EHR)

We acknowledge and support the formal definition of Electronic Health Records (EHR) and ensure:

• Secure storage and transmission of ePHI
• Compliance with all interoperability and access regulations
• Proper handling of EHR-based data sharing requests

Third-Party Requests

When directed by an individual:

• We will respond to records requests from other covered healthcare providers or health plans
• We ensure secure and compliant transmission of PHI between authorized entities

Notice of Privacy Practices

We are not required to obtain written acknowledgment from individuals confirming receipt of a Notice of Privacy Practices. However, we ensure:

• Easy access to our privacy practices
• Clear communication of rights and obligations

Data Security

We implement industry-standard safeguards, including:

• Encryption of sensitive data
• Secure access controls
• Continuous monitoring and vulnerability assessments

Despite our efforts, no system is 100% secure. We encourage users to take precautions when sharing sensitive information.

Cookies & Tracking Technologies

Our website may use cookies and similar technologies to:

• Improve user experience
• Analyze website traffic
• Optimize performance

Users can control cookie settings through their browser preferences.

Data Retention

We retain personal data and PHI only for as long as necessary to:

• Fulfill service obligations
• Comply with legal and regulatory requirements
• Resolve disputes and enforce agreements

Your Rights

Depending on applicable laws, users may have the right to:

• Access, update, or delete personal data
• Request data portability
• Restrict or object to processing
• File a complaint with a regulatory authority

Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in legal, regulatory, or operational requirements. Updates will be posted on this page with a revised effective date.

Contact Information

If you have any questions, requests, or concerns regarding this Privacy Policy or your data, please contact:

Apex Custom Software
Website: https://www.apexcustomsoftware.com/
Email: apexsales@apexcustomsoftware.com
Phone: (214) 725-9792

Final Commitment

At Apex Custom Software, we prioritize trust, compliance, and transparency. Our privacy practices are designed to meet the highest standards in data protection while adapting to evolving HIPAA regulations and healthcare technology requirements.