Syntra logoSyntra logoSyntra
Get Free Audit
Legal & Compliance

Privacy Policy

Last Updated: September 23, 2025

Introduction and Scope

Syntra ("we," "us," or "our") is committed to protecting the privacy and security of personal information, including Protected Health Information (PHI), of all individuals who interact with our cloud-based operating system for private practice doctors. This Privacy Policy describes how we collect, use, disclose, and safeguard personal information and PHI in accordance with the Health Insurance Portability and Accountability Act (HIPAA) and other applicable privacy laws. This policy applies to all users of Syntra, including healthcare providers, their staff, patients, and website visitors. As a Business Associate to healthcare providers who are Covered Entities under HIPAA, we maintain strict compliance with all HIPAA requirements and implement comprehensive security measures to protect sensitive health information.

Definitions

Personal Information (PI)

Personal Information includes any information that can identify an individual, such as name, address, email address, telephone number, date of birth, and government-issued identification numbers.

Protected Health Information (PHI)

Protected Health Information encompasses health information created, received, maintained, or transmitted by Syntra, including demographic information, medical histories, test results, insurance information, and other data that can identify a patient and relates to their:

  • Past, present, or future physical or mental health condition
  • Healthcare services provided
  • Past, present, or future payment for healthcare services

Business Associate Status

Syntra operates as a Business Associate to healthcare providers (Covered Entities) under HIPAA. This relationship is formalized through Business Associate Agreements (BAAs) that establish our obligations and responsibilities in handling PHI.

SMS Communication and Consent

All the above categories exclude text messaging originator optin data and consent; this information will not be shared with any third parties. We will not share your opt-in to an SMS campaign with any third party for purposes unrelated to providing you with the services of that campaign. We may share your Personal Data, including your SMS opt-in or consent status, with third parties that help us provide our messaging services, including but not limited to platform providers, phone companies, and any other vendors who assist us in the delivery of text messages.

Information We Collect

Personal Information Collection

We collect personal information through:

  • Account creation and registration processes
  • Website forms and communication features
  • Customer support interactions
  • Service usage and system interactions

Health Information Collection

In providing our services, we collect and process PHI including:

  • Electronic health records
  • Patient intake information
  • Clinical documentation and notes
  • Billing and payment information
  • Prescription and medication records
  • Appointment scheduling data

Automatic Data Collection

Our system automatically collects certain technical information:

  • IP addresses and device identifiers
  • Browser type and operating system
  • Usage patterns and interactions with our platform
  • System logs and performance data

We use essential cookies and similar technologies to maintain system functionality and security. Analytics tools help us improve our services while maintaining HIPAA compliance.

Secure. Compliant.
Specialized.

Book a free retroactive audit to see how Syntra protects your practice and finds missed revenue.

Get Your Free Audit