traumalis

Privacy Policy

Last Updated: March 22, 2026

1. OVERVIEW

Traumalis, LLC, a Georgia limited liability company ("we," "our," or "us") provides software services to healthcare organizations. This Privacy Policy explains how we collect, use, and protect information.

2. INFORMATION WE COLLECT

2.1 From Healthcare Organizations:

  • Account and billing information
  • Service usage analytics
  • Technical support communications
  • Access configurations
  • Contractual and contact information for agreement purposes

2.2 From Clinicians:

  • Name and email for account setup
  • Service usage analytics
  • Support requests
  • Session activity and application usage data

2.3 From Patients (via Clinician-Administered Sessions):

Patient data is collected through the healthcare organization and processed under clinician oversight. We do not collect any information that can be used to identify individual patients. Data collected includes:

  • Anonymous session data, including therapeutic responses, self-reported distress ratings, cognitive and emotional assessments, and other data generated during use of the Service
  • Technical data such as session timestamps and device/browser information

3. HOW WE USE INFORMATION

3.1 Service Provision: To provide, maintain, and improve our Service

3.2 Billing: To process payments and manage accounts

3.3 Support: To provide technical support and customer service

3.4 Legal Compliance: To comply with applicable laws and regulations

4. INFORMATION SHARING

We do not sell personal information. We may share information with:

  • Service providers who assist in Service delivery
  • Legal authorities when required by law
  • Business successors in case of merger or acquisition

5. DATA SECURITY

We implement appropriate technical and organizational measures to protect information, including encryption, access controls, and regular security assessments.

6. DATA RETENTION

We retain information only as long as necessary for Service provision and legal compliance.

7. PHI PROCESSING

Because patient data is collected without any identifying information, it does not constitute PHI under HIPAA. Should this change in the future, we will implement HIPAA-compliant safeguards and execute appropriate Business Associate Agreements prior to processing any PHI.

8. CONTACT INFORMATION

For privacy questions: support@traumalis.com