LicenseGuardLicenseGuard

Privacy Policy

Last updated: March 10, 2026

What We Collect

When you use LicenseGuard, we collect the following information:

  • Account email address and name
  • Practice name, specialty, and location
  • Staff member names, roles, and email addresses
  • Credential types, license numbers, and expiry dates
  • Alert delivery logs and preferences
  • Payment information (processed via Stripe — not stored by us)

What We Do NOT Collect

  • Patient health information (PHI)
  • Medical records or clinical notes
  • Social Security numbers
  • Any data protected under HIPAA

How We Use Your Data

  • Powering your credential tracking dashboard
  • Sending expiry alert emails at configured intervals
  • Processing your subscription payment
  • Improving the product and fixing bugs

Data Retention

Active data is retained while your account is active. Within 30 days after account cancellation, all your data is permanently deleted. We recommend exporting your data via Settings > Export before cancelling.

Third-Party Services

  • Stripe — Payment processing. Your card information is handled entirely by Stripe and never touches our servers.
  • Resend — Email delivery for expiry alerts.
  • Vercel / Hosting Provider — Application hosting with SOC 2 compliant infrastructure.

All third-party services operate under Data Processing Agreements (DPAs).

HIPAA Compliance

LicenseGuard tracks administrative credential data — not patient health information. This data is not classified as PHI under HIPAA. For organizations requiring a Business Associate Agreement (BAA), we offer BAAs on Agency plans. Contact us at support@licenseguard.com.

Security

All data is encrypted at rest and in transit. We use SOC 2 compliant hosting infrastructure with regular security audits. Access to production systems is restricted and logged.

Contact

For privacy-related questions, contact us at privacy@licenseguard.com or through our contact page.