Privacy Policy

This Privacy Policy explains how Corpademia, LLC, doing business as HealthBenIQ (“HealthBenIQ,” “we,” “our,” or “us”), collects, uses, discloses, and protects information when you visit healthbeniq.com, use our platform, or otherwise interact with us.

HealthBenIQ is a population health management and analytics platform provided to health plans, accountable care organizations, and other healthcare entities (our “Customers”). When we process Protected Health Information (“PHI”) on behalf of a Customer, we do so as a Business Associate under the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”), governed by a Business Associate Agreement (“BAA”) executed with that Customer. Our handling of PHI is controlled by the applicable BAA and by HIPAA’s Privacy, Security, and Breach Notification Rules.

1. Information We Collect

1.1 Information you provide directly

• Account and contact information — name, work email, organization, role, and phone number when you register, request a demo, or contact us.
• Member information received from Customers — demographic, clinical, claims, eligibility, and contact information provided to us by our Customers for processing under a BAA.
• Communications with us — the content of emails, support tickets, and form submissions you send us.

1.2 Information collected automatically

• Usage data — pages visited, features used, session duration, and similar analytics.
• Device and log data — IP address, browser type, operating system, device identifiers, and referring URLs.
• Cookies and similar technologies — we use a minimal set of cookies necessary for authentication, session management, and security. We do not use advertising or third-party tracking cookies.

1.3 Information from third parties

We may receive information from identity providers (such as Google Sign-In) when you authenticate, and from our Customers who engage us to process information on their behalf.

2. How We Use Information

We use information to:

• Provide, operate, maintain, and improve the HealthBenIQ platform.
• Process PHI on behalf of Customers under the terms of an executed BAA, for treatment, payment, and healthcare operations purposes as defined under HIPAA.
• Deliver care reminders, appointment notifications, and health program communications via SMS, voice, or email when members have opted in.
• Respond to inquiries, provide customer support, and send service-related announcements.
• Detect, investigate, and prevent security incidents, fraud, and abuse.
• Comply with legal obligations and enforce our Terms of Service.

3. SMS and Text Messaging (HealthBenIQ Care Reminders Program)

HealthBenIQ operates the HealthBenIQ Care Reminders Program, an SMS messaging program that delivers care reminders, appointment notifications, and health program communications on behalf of participating health plans.

When members enroll in a health plan, the health plan obtains express consent for SMS communications as part of the enrollment process. HealthBenIQ’s contractual agreements (Master Services Agreement and Business Associate Agreement) require each health plan customer to have documented express consent from members before providing their information to HealthBenIQ for SMS outreach. Messages are sent on behalf of the member’s health plan.

Members may also opt in by texting the HealthBenIQ number directly, thereby consenting to receive replies and follow-up messages.

3.1 Message content

HealthBenIQ text messages are neutral care-notification nudges. They do not contain clinical details, diagnoses, medications, test results, provider names, appointment times, or any other Protected Health Information in the message body. Messages direct the recipient to log in to their secure member portal, where any sensitive information is viewed behind authentication.

3.2 Message frequency

Message frequency varies but will not exceed approximately 2–4 messages per month per member under typical program configurations.

3.3 STOP and HELP

You may opt out at any time by replying STOP to any HealthBenIQ text message. You will receive a confirmation message (e.g., “You have been unsubscribed from HealthBenIQ Care Reminders. You will not receive any more messages. Reply HELP for help or contact us at contact@healthbeniq.com.”) and no further texts will be sent. To rejoin the program, you may text START to the same number or re-enroll through your health plan’s enrollment process.

Reply HELP to receive contact information for our support team (e.g., “HealthBenIQ Care Reminders: For help, email contact@healthbeniq.com or visit healthbeniq.com/privacy. Msg&data rates may apply. Reply STOP to cancel.”). Standard messaging and data rates from your wireless carrier may apply.

3.3a Opt-In Confirmation

After you opt in, you will receive an initial confirmation message (e.g., “Welcome to HealthBenIQ Care Reminders! You will receive up to 2–4 msgs/month with care reminders from your health plan. Reply HELP for help, STOP to cancel. Msg&data rates may apply.”).

3.4 No sale or sharing of mobile data

Mobile information (including phone numbers and SMS opt-in data) will not be shared or sold to third parties or affiliates for their marketing or promotional purposes. We share mobile information only with subprocessors acting on our behalf to deliver the messaging service (for example, Call Tracking Metrics for SMS transmission), subject to written data protection terms and, where applicable, a Business Associate Agreement.

3.5 Supported Carriers and Delivery

The HealthBenIQ Care Reminders Program is available on major U.S. wireless carriers. Carriers are not liable for delayed or undelivered messages. HealthBenIQ is not responsible for messages that are delayed, undelivered, or garbled due to carrier or technical issues outside our control.

4. How We Share Information

We share information only as follows:

• With the Customer who provided the information to us, or as directed by that Customer under an executed BAA.
• With subprocessors who support our operations, including cloud infrastructure (Google Cloud Platform), SMS and voice delivery (Call Tracking Metrics), and AI model services (Google Vertex AI / Gemini). All subprocessors are contractually bound to protect information and, where PHI is processed, are subject to a BAA.
• As required by law, in response to a valid legal process, or to protect the rights, safety, and property of HealthBenIQ, our Customers, members, or the public.
• In connection with a business transaction, such as a merger, acquisition, or sale of assets, subject to appropriate confidentiality and HIPAA obligations.

We do not sell personal information, and we do not share personal information with third parties for their own marketing purposes.

5. Data Security

HealthBenIQ implements administrative, physical, and technical safeguards designed to protect information against unauthorized access, use, disclosure, alteration, and destruction. These safeguards include encryption in transit and at rest, role-based access controls, customer-managed encryption keys (CMEK), audit logging, multi-factor authentication, and regular security assessments. No method of transmission or storage is 100% secure, and we cannot guarantee absolute security.

6. Data Retention

We retain information for as long as necessary to provide the platform and to fulfill the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law or by the terms of a Customer contract. PHI processed on behalf of a Customer is retained and disposed of in accordance with the applicable BAA, which typically requires return or destruction of PHI within a defined period following termination of services.

7. Your Rights

Depending on your jurisdiction, you may have rights to access, correct, delete, or restrict the processing of your personal information, and to withdraw consent for certain processing. If HealthBenIQ processes PHI about you on behalf of a healthcare Customer, you should contact that Customer directly to exercise HIPAA rights such as the right to access, amend, or receive an accounting of disclosures of your PHI. For all other requests, contact us at contact@healthbeniq.com.

8. Children’s Privacy

The HealthBenIQ platform is intended for use by healthcare professionals and adult members of participating health plans. We do not knowingly collect personal information directly from children under 13 through our website. Pediatric PHI processed on behalf of a Customer is handled only under an executed BAA.

9. International Users

HealthBenIQ is operated from the United States. If you access the platform from outside the United States, you consent to the transfer of your information to, and processing in, the United States, where data protection laws may differ from those in your jurisdiction.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by updating the “Effective” date at the top of this page and, where appropriate, by providing additional notice through the platform or by email. Your continued use of the platform after the effective date constitutes acceptance of the updated policy.