Privacy Policy
This policy explains how Sirius Solutions Global, LLC collects, uses, and protects your information when you use our services or visit our website. We are committed to handling all data with transparency, accuracy, and full legal compliance.
Summary: We collect only the information needed to deliver our services. We do not sell your data to third parties. All protected health information is handled in full compliance with HIPAA. For questions, contact us at info@siriussolutionsglobal.com.
1 Introduction
Sirius Solutions Global, LLC ("Company," "we," "our," or "us") operates at 18383 Preston Rd #202, Dallas, TX 75252. We provide AI-assisted medical billing, revenue cycle management, credentialing, and related healthcare administrative services to providers and practices across the United States.
This Privacy Policy applies to all individuals who visit our website at billing.siriussolutionsglobal.com, submit inquiries through our contact forms, or engage with our services in any capacity. By accessing our website or using our services, you agree to the practices described in this policy.
If you have questions about this policy or how we handle your information, you may contact us at any time using the contact details at the end of this document.
2 Information We Collect
The information we collect depends on how you interact with us. We collect only what is necessary to provide and improve our services.
Personal and Business Information
When you contact us, request a consultation, or engage our services, we may collect your full name, email address, phone number, job title, practice name, business address, NPI number, tax identification number, provider details, insurance contract information, and billing preferences.
Protected Health Information (PHI)
As a medical billing and RCM company, we process protected health information on behalf of our healthcare provider clients. This includes patient demographics, diagnosis codes, treatment records, insurance details, and any other health-related data required to submit and manage insurance claims. All PHI is handled exclusively under the terms of a signed Business Associate Agreement (BAA) and in full compliance with HIPAA.
Financial Information
We may collect payment details, account numbers, and transaction history as required to process service fees and reconcile billing activity for our clients.
Technical and Usage Information
When you visit our website, we automatically collect certain technical information including your IP address, browser type, operating system, device identifiers, referring URLs, pages visited, and time spent on each page. This information is collected through cookies and standard web analytics tools and is used solely to improve site performance and user experience.
Communications Data
We retain records of emails, support requests, consultation notes, and other correspondence between you and our team. This information is used to deliver and improve our services and to maintain accurate records of our client relationships.
3 How We Use Your Information
We use the information we collect for the following purposes:
- To deliver, manage, and improve our medical billing, credentialing, and RCM services
- To submit, track, and appeal insurance claims on behalf of our provider clients
- To verify insurance eligibility and manage prior authorizations
- To communicate with you about your account, service updates, and support requests
- To generate reports and analytics that help you understand your practice's revenue performance
- To comply with legal, regulatory, and contractual obligations
- To detect, investigate, and prevent fraudulent activity or security incidents
- To respond to inquiries, schedule consultations, and process service agreements
- To send relevant information about our services where you have consented to receive such communications
We do not use your information for purposes beyond those described above without your explicit consent.
4 How We Share Your Information
We treat your information with strict confidentiality. We do not sell, rent, or trade your personal information or your patients' protected health information to any third party.
Service Providers and Subcontractors
We may share information with carefully vetted subcontractors and technology vendors who assist us in delivering our services. All such parties are bound by confidentiality agreements and, where applicable, by a Business Associate Agreement. They may only access information necessary to perform their specific function and are prohibited from using it for any other purpose.
Insurance Payers and Clearinghouses
In the normal course of billing services, we transmit claim information to insurance payers, Medicare, Medicaid, and electronic clearinghouses on behalf of our provider clients. This transmission is authorized under the BAA and is limited to what is required to process and adjudicate claims.
Legal Requirements
We may disclose information when required by law, court order, regulatory investigation, or other legal process. We will notify affected clients of such disclosures where legally permitted to do so.
Business Transfers
In the event of a merger, acquisition, or sale of company assets, information held by Sirius Solutions Global may be transferred to the successor entity. Any such transfer will be subject to the same privacy protections described in this policy.
5 HIPAA Compliance and Protected Health Information
Business Associate Agreement: Sirius Solutions Global operates as a Business Associate under HIPAA. We execute a formal Business Associate Agreement with every healthcare provider client before processing any protected health information on their behalf.
We maintain a comprehensive HIPAA compliance program that includes the following safeguards:
- Administrative safeguards: designated privacy and security officers, workforce training, and documented policies and procedures
- Physical safeguards: controlled access to facilities and systems, workstation security, and device controls
- Technical safeguards: 256-bit AES encryption at rest and in transit, access controls, audit logs, and automatic session timeouts
- Breach notification procedures: processes for identifying, reporting, and mitigating any unauthorized access to PHI in accordance with the HIPAA Breach Notification Rule
We have maintained a zero data breach record across 6+ years of operation. All PHI access is logged, restricted to authorized personnel, and audited regularly.
6 Data Security
We implement industry-leading security measures to protect all data in our custody.
- Encryption: All data is encrypted at rest and in transit using 256-bit AES encryption, the same standard used by financial institutions
- Access Control: Role-based access controls ensure that team members can only access the data necessary for their specific function
- Certifications: We maintain PCI-DSS Level 1 certification, HIPAA compliance, CMS certification, and ISO 27001 alignment
- Monitoring: Our systems are monitored around the clock for unauthorized access, anomalies, and potential security incidents
- Vendor Security: All third-party vendors are evaluated for security practices before being granted any access to our systems or data
While no security system can guarantee absolute protection, we invest continuously in our infrastructure, training, and processes to minimize risk and respond quickly if an issue arises.
7 Data Retention
We retain information for as long as necessary to fulfill the purposes described in this policy, comply with legal and regulatory obligations, and resolve disputes.
- Client business records: Retained for a minimum of 7 years from the date of service, consistent with healthcare billing compliance requirements
- Protected health information: Retained in accordance with HIPAA requirements and applicable state laws, typically 6-10 years depending on jurisdiction
- Website usage data: Aggregated analytics retained for up to 24 months and then anonymized or deleted
- Communications and correspondence: Retained for the duration of the client relationship plus 3 years
- Financial records: Retained for 7 years as required by applicable tax and accounting regulations
When data is no longer required, we securely delete or anonymize it in accordance with our data destruction procedures.
8 Your Privacy Rights
Depending on your location and the nature of our relationship, you may have the following rights regarding your personal information:
- Right to Access: You may request a copy of the personal information we hold about you
- Right to Correction: You may request that we correct any inaccurate or incomplete information
- Right to Deletion: You may request deletion of your personal information, subject to our legal and contractual retention obligations
- Right to Restriction: You may request that we limit how we process your information in certain circumstances
- Right to Portability: You may request a copy of your data in a structured, machine-readable format where technically feasible
- Right to Object: You may object to certain types of processing, including direct marketing communications
California Residents (CCPA): If you are a California resident, you have the right to know what personal information we collect, the right to delete it, the right to opt out of any sale (we do not sell personal information), and the right to non-discrimination for exercising your privacy rights.
To exercise any of these rights, contact us using the information in Section 12. We will respond to verified requests within 30 days.
9 Cookies and Tracking Technologies
Our website uses cookies and similar tracking technologies to enhance your browsing experience, analyze site usage, and improve our services.
- Essential cookies: Required for basic site functionality including navigation and form submission. These cannot be disabled
- Analytics cookies: Help us understand how visitors interact with our site so we can improve content and performance. We use tools such as Google Analytics with anonymized IP settings
- Functional cookies: Remember your preferences and settings to personalize your experience on return visits
You can control or disable non-essential cookies through your browser settings or through the cookie consent banner displayed on your first visit to our site. Please note that disabling certain cookies may affect the functionality of some features.
10 Third-Party Links
Our website may contain links to third-party websites, resources, or services that are not operated by Sirius Solutions Global. These links are provided for your convenience only. We have no control over the content, privacy practices, or security of third-party sites and accept no responsibility for them. We encourage you to review the privacy policy of any third-party site you visit.
11 Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or business operations. When we make material changes, we will update the "Last Updated" date at the top of this page and, where appropriate, notify active clients directly by email.
Your continued use of our website or services after any changes become effective constitutes your acknowledgment of the updated policy. We encourage you to review this page periodically to stay informed about how we protect your information.
12 Contact Us
If you have questions about this Privacy Policy, wish to exercise your privacy rights, or want to report a privacy concern, please contact us using any of the following methods:
Sirius Solutions Global, LLC
18383 Preston Rd #202, Dallas, TX 75252
Email: info@siriussolutionsglobal.com
Phone: (682) 403-6805
For HIPAA-related privacy requests or to obtain a copy of our Business Associate Agreement, please include "Privacy Request" or "BAA Request" in the subject line of your email.
We take all privacy inquiries seriously and will respond within 5 business days. For urgent data security concerns, please call our office directly.