Privacy Notice

Last updated: May 23, 2026

This notice explains what information the IHMS Connect portal collects from the authorized partners who use it, how that information is used, and how to reach us about it. It is a plain-English summary, not a legal contract, and may be updated as our practices evolve.

Who this applies to

IHMS Connect is an authenticated care-coordination tool for vetted referring facilities, home health and DME providers, and IHMS staff. It is not a public website. Access requires an approved account, and what each user can see is limited to the orders and conversations they are a party to.

What we collect

• Account data — name, email, role, and facility name you provide at sign-up.
• Discharge order data — patient and clinical details entered to coordinate care, which may include protected health information (PHI).
• Uploaded documents — files attached to an order, stored privately and retrievable only through short-lived, access-checked links.
• Messages — communications you exchange with the IHMS team and assigned providers about an order.
• Technical and audit data — standard request information and a record of key actions (who did what, and when) for security and accountability.

How we use it

Solely to operate the coordination portal: to route and track discharge orders, verify coverage and service fit, communicate with the people coordinating a patient’s care, and maintain operational and security records. We do not sell or rent personal information, and IHMS does not offer, pay, solicit, or receive compensation in exchange for patient referrals.

How we share it

• With the IHMS team and the assigned home health, DME, and caregiver providers coordinating that patient’s care.
• With insurance plans for the limited purpose of verifying eligibility for the requested services.
• With the service providers we use to operate the portal (for example, our hosting and database providers), under their standard terms.
• When required by law, regulation, valid legal process, or to protect the safety of a patient, our team, or the public.

Patient health information

Patient information is treated as confidential and is visible only to the people coordinating that patient’s care or as otherwise permitted under applicable law. Where IHMS or a contracted provider acts in a covered-entity or business-associate role under HIPAA, that relationship is documented separately through written agreements; nothing on this page should be read as those agreements.

Security

The portal is served only over HTTPS. Access is gated by account approval and enforced at the database level with row-level security, so users see only the records they are authorized for. Uploaded documents are stored in a private bucket and reachable only through expiring, per-request signed links. Key actions are recorded in an audit log. No system is perfectly secure, but we apply industry-standard administrative and technical safeguards appropriate to the information handled.

Retention

Records are retained for the period required to coordinate care and to satisfy legal, billing, and regulatory recordkeeping obligations. Technical logs are retained for a shorter period as part of standard operations.

Your choices

You may request a copy of, correction to, or deletion of the account information you provided by contacting our intake team. Requests involving patient records are handled in line with the agreements governing that data.

Contact

Questions about this notice can be sent to intake@ihmsconnect.com, or by phone at 727-212-2304 (fax 813-364-7807).

This page is an informational summary and does not by itself create a contract or a HIPAA business-associate relationship between IHMS and the reader. It should be reviewed by counsel before launch.