top of page

Privacy Policy

Effective Date: July 1, 2024

​

Omnis Medical Services ("we," "us," or "our") operates the website https://www.omnismedicalservices.com/ (the "Service"). This Privacy Policy outlines our policies regarding the collection, use, disclosure, and protection of personal data in accordance with applicable laws, including but not limited to HIPAA (Health Insurance Portability and Accountability Act), TCPA (Telephone Consumer Protection Act), GDPR (General Data Protection Regulation), and CMS guidelines for Durable Medical Equipment (DME) suppliers.

​

1. Definitions

  • Service: The https://www.omnismedicalservices.com/ website.

  • Personal Data: Information that can identify an individual.

  • Usage Data: Data collected automatically through service use.

  • Cookies: Small files stored on your device.

  • Data Controller: Entity that determines how personal data is processed.

  • Data Processor: Entity processing data on behalf of the controller.

  • Data Subject: The individual whose personal data is being processed.

  • PHI: Protected Health Information as defined under HIPAA.

2. Information We Collect

  • Personal Information: Name, address, email, phone number, insurance details, health-related data, etc.

  • Usage Data: IP address, browser type, visit duration, etc.

  • Tracking & Cookies Data: Used to enhance service performance and personalize experiences.

3. Legal and Regulatory Compliance

HIPAA Compliance

We comply with HIPAA by implementing appropriate administrative, technical, and physical safeguards to protect PHI. All employees receive HIPAA training and PHI is disclosed only to authorized personnel.

TCPA Compliance

By submitting contact information (via forms, calls, or SMS opt-ins), you provide consent to be contacted via phone or SMS. You may opt-out by replying "STOP" to any SMS or by contacting us directly.

CMS and DMEPOS Supplier Standards

We comply with all Centers for Medicare & Medicaid Services (CMS) requirements for DME suppliers, including identity verification, proof of medical necessity, proper documentation, and secure delivery protocols.

GDPR Compliance

Residents of the EEA have the right to access, modify, or delete their personal data. We only collect and use data with your explicit consent or under lawful basis.

4. Use of Data

  • To provide and maintain our Service

  • To process DME orders and insurance claims

  • To comply with legal obligations

  • To send service-related communications

  • To improve service quality and security

5. Retention of Data

We retain data only as long as necessary for the purposes outlined and as required under CMS, HIPAA, and IRS regulations.

6. Sharing and Disclosure

We do not sell or lease your personal data. Data is only shared with:

  • Healthcare providers

  • Insurance payers

  • CMS and regulatory bodies

  • Service providers under signed HIPAA-compliant Business Associate Agreements (BAAs)

7. Security

We use encryption, access controls, secure servers, and routine audits to protect all personal and health information.

8. Do Not Track Signals

Our Service does not respond to Do Not Track signals. You can set your browser to refuse cookies, but some features may be limited.

9. Your Rights

  • Request access, correction, or deletion of data

  • Withdraw consent

  • Request portability of your data

  • File a complaint with the appropriate regulatory body

10. Children’s Privacy

We do not knowingly collect personal data from individuals under 18. If such data is found, it will be deleted immediately.

11. Changes to this Policy

We reserve the right to update this Privacy Policy. Any changes will be posted on this page with an updated "Last Updated" date.

12. Contact Us

If you have any questions about this Privacy Policy, please contact us:

bottom of page