1. Information We Collect
In order to deliver safe, effective, and personalized nursing services, Nursico collects a range of personal and health-related information from our clients, their authorized representatives, and website visitors. The categories of information we collect include: (a) Personal Identification Information such as your full legal name, date of birth, gender, residential and mailing address, email address, and telephone number; (b) Protected Health Information (PHI) including medical history, diagnoses, prescribed medications, treatment records, care notes, and clinical assessments that are directly relevant to the provision of nursing services; (c) Financial and Insurance Information including billing details, payment method information, health insurance plan details, and policy identification numbers required for claims processing; (d) Technical and Digital Data such as your IP address, browser type and version, operating system, device identifiers, pages visited, time spent on our website, and referring URLs collected automatically through cookies and analytics tools; and (e) Communication Records including emails, phone call logs, contact form submissions, service requests, and any other correspondence you initiate with our team. We collect only the information that is necessary and proportionate to the purpose for which it is being collected, and we do not engage in excessive or speculative data collection practices.
2. How We Use Your Information
The personal and health information we collect is used exclusively for legitimate purposes directly connected to the delivery of our nursing services, the administration of our business operations, and our legal compliance obligations. Specifically, we use your information to: provide, coordinate, and continuously improve the nursing and healthcare services you have requested or enrolled in; create and maintain accurate clinical care records in compliance with applicable medical record-keeping standards; communicate with you regarding your care plan, service appointments, billing statements, and any updates or changes to our services; facilitate billing and payment processing, including insurance claims submission and coordination of benefits; conduct internal quality assurance reviews, clinical outcome tracking, and service improvement initiatives; comply with mandatory reporting obligations, regulatory requirements, and legal process as required by federal or state law; send you service-related notifications, health reminders, and educational communications where you have provided consent to receive such communications; and protect the safety, integrity, and security of our patients, staff, and operations. We do not use your information for any purpose that is incompatible with the original purpose for which it was collected, and we do not engage in automated decision-making or profiling that produces legal or similarly significant effects.
3. Legal Basis for Processing
Nursico processes your personal information only where we have a lawful and documented basis for doing so under applicable federal and state privacy laws. The legal grounds upon which we rely include: (a) Your Explicit Consent — for the collection and use of sensitive health information, marketing communications, and any processing activity that is not strictly necessary for service delivery, we obtain your informed and affirmative consent prior to processing; (b) Contractual Necessity — where processing is required to perform the nursing services agreement you have entered into with us or to take pre-contractual steps at your request; (c) Legal Obligation — where processing is required to comply with applicable laws and regulations, including HIPAA, state nursing practice acts, mandatory health reporting laws, and court orders or legal process; (d) Vital Interests — in emergency situations where processing is necessary to protect the life, physical safety, or vital health interests of a patient or another individual; and (e) Legitimate Interests — for internal analytics, fraud prevention, network and information security, and other operational purposes where such interests do not override your fundamental privacy rights. We regularly review the legal bases for our processing activities to ensure they remain appropriate and proportionate.
4. HIPAA Compliance
Nursico is a covered entity under the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and its implementing regulations, including the HIPAA Privacy Rule and the HIPAA Security Rule. As such, we are legally obligated and morally committed to maintaining the confidentiality, integrity, and availability of all Protected Health Information (PHI) that we create, receive, maintain, or transmit in the course of providing nursing services. We have implemented a comprehensive HIPAA compliance program that includes: designation of a Privacy Officer responsible for overseeing all PHI-related policies and procedures; comprehensive workforce training on HIPAA privacy obligations conducted at onboarding and updated annually; administrative safeguards including written privacy policies, access management procedures, and incident response protocols; physical safeguards including secure document storage, controlled access to facilities, and proper disposal of physical PHI; and technical safeguards including encryption of electronic PHI at rest and in transit, secure login systems, audit logging, and automatic session timeouts. We execute Business Associate Agreements (BAAs) with all third-party vendors who have access to PHI as part of providing services on our behalf, and we conduct regular compliance audits to verify that all safeguards remain effective and current.
5. Sharing and Disclosure of Information
Nursico does not sell, rent, lease, or trade your personal or health information to any third party under any circumstances. We treat the confidentiality of your information as a fundamental obligation, not merely a legal requirement. However, we may share your information in the following limited and controlled circumstances: with licensed healthcare providers, physicians, specialists, and care team members directly involved in your treatment for the purpose of coordinating and delivering your care; with third-party billing and payment processing companies that assist us in managing financial transactions, subject to strict contractual data protection obligations; with health insurance companies and payers for the purpose of submitting claims and processing insurance reimbursements as authorized by you or required by your plan; with government agencies, regulatory bodies, law enforcement authorities, or courts where we are legally required to disclose information or where disclosure is necessary to prevent imminent harm; and with technology service providers, software vendors, and cloud infrastructure companies that support the operation of our services, all of whom are bound by comprehensive data processing agreements and HIPAA-compliant BAAs. In all cases of permitted sharing, we apply the principle of minimum necessary disclosure, meaning we share only the information that is directly required for the specific purpose, and nothing beyond that.
6. Data Retention
Nursico retains personal and health information for the periods required by law and for as long as reasonably necessary to fulfill the purposes for which the information was collected. Specifically, we adhere to the following retention guidelines: medical and clinical records are retained for a minimum of seven (7) years from the date of last service in accordance with Texas state law and federal Medicare/Medicaid regulations; records relating to the care of minors are retained until the patient reaches age 21, or for seven years from the last date of service, whichever is longer; billing and financial records are retained for six (6) years in accordance with HIPAA requirements and IRS record-keeping standards; correspondence, care coordination records, and administrative documents are retained for five (5) years unless a longer period is required by applicable law; and website analytics data and technical logs are retained for a maximum of twenty-six (26) months before being anonymized or deleted. Once a retention period expires, we securely dispose of records using HIPAA-compliant destruction methods, including shredding of physical documents and certified deletion of electronic records. You may request early deletion of non-health personal data where no legal obligation requires its retention, and we will process such requests within thirty (30) days.
7. Your Rights and Choices
Nursico respects your rights as a data subject and is committed to making it easy for you to understand and exercise those rights. Depending on your jurisdiction and the type of information we hold, you may have the following rights: the Right to Access, which allows you to request a copy of the personal and health information we hold about you and to understand how it is being used; the Right to Rectification, which entitles you to request correction of any inaccurate, outdated, or incomplete information in our records; the Right to Erasure (within HIPAA limits), which allows you to request deletion of personal data that is no longer necessary for the purposes for which it was collected, subject to legal retention requirements; the Right to Restrict Processing, which allows you to request that we limit how we use your information in certain circumstances; the Right to Data Portability, which entitles you to receive your data in a structured, commonly used format for transfer to another provider; the Right to Object to non-essential communications, including marketing emails and promotional materials; and the Right to Lodge a Complaint with the U.S. Department of Health and Human Services Office for Civil Rights if you believe your HIPAA rights have been violated. To exercise any of these rights, please submit a written request to support@nursico.site. We will respond to all requests within thirty (30) days and will not charge a fee for reasonable access requests.
8. Cookies and Tracking Technologies
The Nursico website uses cookies, web beacons, pixel tags, and similar tracking technologies to improve your browsing experience, analyze website traffic, and deliver content and features that are relevant to your interests. Cookies are small text files stored on your device that allow our website to recognize you on return visits, remember your preferences, and compile aggregated statistical data about site usage patterns. We use the following categories of cookies: Strictly Necessary Cookies that are essential for basic website functionality and cannot be disabled; Functional Cookies that remember your choices such as language preferences and previously viewed services; Performance and Analytics Cookies that collect anonymous information about how visitors navigate our website, which pages generate the most engagement, and where users encounter difficulties; and Targeting Cookies used to deliver relevant service content based on your browsing behavior within our website. You have the right to control which non-essential cookies are stored on your device. You may manage your cookie preferences at any time through your browser settings or through our cookie consent tool. Please note that disabling certain categories of cookies may limit your ability to access some features of our website. For full details on our cookie practices, please refer to our separate Cookie Policy.
9. Data Security
The security of your personal and health information is one of our highest operational priorities, and we have implemented a multi-layered security framework designed to protect your data against unauthorized access, use, disclosure, alteration, and destruction. Our technical security measures include: 256-bit SSL/TLS encryption for all data transmitted between your device and our servers; AES-256 encryption for sensitive data stored at rest in our databases; multi-factor authentication requirements for all staff accessing patient records; role-based access controls that restrict employee access to data on a strict need-to-know basis; automated intrusion detection and real-time security monitoring systems; regular vulnerability assessments and penetration testing conducted by qualified third-party security professionals; and automatic session timeouts and activity logs for all systems that process PHI. Our administrative security measures include mandatory security awareness training for all employees, a documented incident response plan, regular internal security audits, and contractual security obligations imposed on all vendors and business associates. In the event of a data breach or security incident involving your PHI, we are committed to notifying affected individuals in accordance with HIPAA’s Breach Notification Rule and applicable state breach notification laws. We encourage you to contact us immediately at support@nursico.site if you have any concerns about the security of your personal information.
10. Changes to This Privacy Policy
Nursico reserves the right to modify, update, or revise this Privacy Policy at any time in response to changes in applicable law, regulatory guidance, our business practices, or the services we offer. We are committed to ensuring that this policy accurately reflects how we handle your personal information at all times. When we make changes to this policy, we will update the ‘Last Updated’ date at the top of the document and post the revised policy on our website at nursico.site/privacy-policy. For changes that are material — meaning they significantly affect your rights or how we use your personal or health information — we will provide notice through additional channels, which may include a prominent banner on our website homepage, a notification within your account portal, or a direct email to the address on file for your account. We encourage you to review this Privacy Policy periodically to remain informed about how we are protecting your information. Your continued use of our website or services following the posting of any changes constitutes your acknowledgment of the updated policy. If you do not agree with any modifications, you have the right to discontinue use of our services and request deletion of your non-health personal data by contacting us directly.
Contact Us
If you have any questions, concerns, or requests regarding this policy or our services, please do not hesitate to reach out to us. Our team is available around the clock to assist you.
Email: support@nursico.website
Phone: +1 469 922 8336
Address: 1109 Conway Dr, San Marcos, TX 78666
Website: www.nursico.website