Effective Date: March 1, 2026
EVVidence collects information necessary to provide electronic visit verification services, including: names, phone numbers, email addresses, GPS location data during service visits, and service delivery records.
We use collected information to: verify service delivery, generate compliance reports, manage user accounts, and improve our services. We do not sell personal information to third parties.
EVVidence operates as a Business Associate under HIPAA. We implement administrative, physical, and technical safeguards to protect Protected Health Information (PHI). All PHI is encrypted at rest and in transit.
Service records are retained for the duration of the business relationship and for a minimum period required by applicable state and federal regulations. Upon account termination, PHI is de-identified after 60 days. Agencies are responsible for exporting records needed to meet state and federal retention requirements (typically 5-10 years under Medicaid regulations) before account closure.
We employ industry-standard security measures including encryption, access controls, audit logging, session management, and regular security assessments to protect your data.
You have the right to access, correct, or request deletion of your personal information. Contact us at privacy@evvidence.io to exercise these rights.
For privacy inquiries, contact: privacy@evvidence.io