Privacy Policy

Last updated: March 27, 2026

1. Introduction

Wingman Health, LLC ("Wingman Health," "we," "us," or "our") is committed to protecting the privacy and security of your personal information. This Privacy Policy describes how we collect, use, disclose, and safeguard information when you visit our website, use our browser extension, or engage with our services.

2. Information We Collect

2.1 Information You Provide

We collect information you voluntarily provide, including:

  • Name, email address, phone number, and practice information when you create an account or fill out forms
  • Professional credentials and EHR system details during onboarding
  • Payment information processed through our secure payment provider
  • Communications you send to us via contact forms or email

2.2 Information Collected Automatically

When you use our services, we may automatically collect:

  • Device and browser information
  • Usage data and interaction patterns with our extension
  • Log data including IP address, access times, and pages viewed

2.3 Protected Health Information (PHI)

Our browser extension processes patient referral and prior authorization data within your EHR environment. We handle all PHI in strict compliance with HIPAA regulations. PHI is processed locally within the extension and is only transmitted through encrypted channels when necessary for referral or PA submission.

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our services
  • Process referrals and prior authorizations on your behalf
  • Send you service-related communications
  • Analyze usage patterns to improve our product
  • Comply with legal obligations

4. HIPAA Compliance

Wingman Health is fully compliant with the Health Insurance Portability and Accountability Act (HIPAA). We maintain administrative, physical, and technical safeguards to protect PHI. We will enter into a Business Associate Agreement (BAA) with all covered entities before accessing or processing PHI.

5. Data Security

We implement industry-standard security measures including:

  • AES-256 encryption for data at rest
  • TLS 1.3 encryption for data in transit
  • SOC 2 Type II certified infrastructure
  • Regular security audits and penetration testing
  • Role-based access controls and audit logging

6. Data Sharing

We do not sell your personal information. We may share information with:

  • Healthcare providers and payers as necessary to process referrals and PAs
  • Service providers who assist in operating our platform (under strict contractual obligations)
  • Law enforcement when required by law

7. Data Retention

We retain personal information for as long as necessary to provide our services and comply with legal obligations. PHI is retained in accordance with HIPAA requirements and applicable state laws.

8. Your Rights

You have the right to:

  • Access and receive a copy of your personal information
  • Request correction of inaccurate information
  • Request deletion of your information (subject to legal requirements)
  • Opt out of marketing communications

9. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at:

Wingman Health, LLC
San Antonio, Texas
Email: [email protected]
Phone: (210) 744-8543