1. Introduction

This Privacy Policy explains how Sunrise Transcription ("we," "us"), located at 10040 18th Street N, Suite 6 #68692, St. Petersburg, FL 33716, collects, uses, and protects information when you visit sunrisetranscription.com (the "Site") or use our services. It applies to Site visitors and prospective clients. The handling of Protected Health Information (PHI) processed on behalf of healthcare clients is governed separately by HIPAA and the Business Associate Agreement (BAA) executed with each client — not by this policy.

2. Information We Collect

Information you provide: when you submit our contact form or communicate with us, we collect the details you share — such as your name, work email, phone number, practice or organization name, area of interest, and message content.

Information collected automatically: like most websites, our hosting and infrastructure providers may log standard technical data such as IP address, browser type, pages visited, and referring URLs for security and performance purposes. The Site does not use advertising trackers.

Third-party resources: the Site loads fonts from Google Fonts and images from Unsplash; contact form submissions are transmitted through FormSubmit to deliver your message to us. These providers may process technical data (such as your IP address) as part of serving those requests, under their own privacy policies.

3. How We Use Information

We use the information you provide to respond to inquiries, provide quotes, deliver and improve our services, communicate about your account, and meet legal obligations. We do not sell your personal information, and we do not use client PHI for marketing under any circumstances.

4. How We Share Information

We share information only with: (a) service providers who help us operate the Site and business (such as hosting and form delivery), bound to appropriate protections; (b) professional advisers where necessary; and (c) authorities where required by law. We do not sell or rent personal information to third parties.

5. Protected Health Information (PHI)

PHI contained in client dictation and documents is processed solely to provide contracted services, under an executed BAA. Safeguards include 256-bit TLS encryption in transit, AES-256 encryption at rest, role-restricted access, background-checked staff under confidentiality agreements with annual HIPAA training, and immutable audit logging. PHI is never used for marketing or shared except as permitted by the BAA and applicable law.

6. Data Retention

We retain contact and business information as long as needed for the purposes above or as required by law. PHI retention and destruction follow the terms of the applicable BAA and client instructions.

7. Your Rights and Choices

Depending on your location, you may have rights to access, correct, or delete personal information we hold about you, or to object to certain processing. To exercise these rights, contact us at suraj@emrtranscription.com. Patients seeking access to medical records should contact their healthcare provider directly, as providers control the medical record.

8. Security

We use administrative, technical, and physical safeguards appropriate to the sensitivity of the information we handle. No method of transmission or storage is 100% secure, but we work continuously to protect the information entrusted to us.

9. Children's Privacy

The Site is intended for healthcare professionals and businesses and is not directed to children under 13. We do not knowingly collect personal information from children through the Site.

10. Changes to This Policy

We may update this Privacy Policy periodically; the Effective date above reflects the latest version. Material changes will be reflected on this page.

11. Contact Us

Privacy questions or requests: suraj@emrtranscription.com · (518) 261-4885 · 10040 18th Street N, Suite 6 #68692, St. Petersburg, FL 33716.