Privacy Policy

1. Information We Collect

• Account data: email, name, phone, role, facility details.
• Credentials: certification name, issuing body, and uploaded documents.
• Shift & clinical data: SOAP notes, birth records, CPT/ICD-10 codes, and claim amounts.
• Usage data: log-in events, notifications, and basic device metadata.

2. How We Use It

To verify accounts, match doulas to hospital shifts, generate compliant Medicaid claims, send notifications about your account and shifts, and improve the platform.

3. Sharing

We share data only as needed: with the hospital that posted a claimed shift, with payers for billing, with our hosting and email infrastructure providers under appropriate agreements, or when required by law.

4. PHI & HIPAA

DoulaShift handles protected health information. We apply administrative, technical, and physical safeguards including row-level security, encrypted storage, and access controls. Hospitals and doulas remain responsible for their HIPAA obligations.

5. Retention

We retain clinical and billing records for the period required by applicable healthcare and tax regulations. You may request deletion of non-required account data.

6. Your Rights

You may access, correct, or delete your profile from Settings. For other requests (export, deletion of records not required by law), contact us.

7. Security Incidents

If we become aware of a breach affecting your data, we will notify you and applicable authorities as required by law.

8. Contact

Privacy questions: StaciaDoulaServices@outlook.com