PRIVACY POLICY

Last Updated: 2025-11-14

Fuse Insight, Inc. (“Fuse”, “we”, “us”, “our”)
‍
This Privacy Policy explains how Fuse collects, uses, stores, and protects personal information when you visit our website (www.fuseinsight.com), use our products, or interact with us. Fuse Insight, Inc. is registered in the USA and provides automated insurance verification and healthcare workflow software to organizations operating in the United States.

1. Who This Policy Applies To
This Privacy Policy applies to Website Visitors, Customers, Authorized Users, and individuals whose data is processed by Customers, including patients whose information Customers submit into the platform (“Customer Data”). Customers are responsible for ensuring appropriate permissions or consents for Customer Data.

2. Information We Collect
We collect the following categories of information:

Information you provide directly: name, work email, phone number, organization name and job title, form submissions, login credentials, and support communications. Billing details are handled by our third-party payment processor; Fuse does not store full credit card information.

Customer Data (including PHI): insurance information, CPT codes, procedure details, patient demographic details, eligibility and benefits responses, documentation and notes. For PHI, Fuse acts as a Business Associate under HIPAA and uses PHI only to provide services.

Automatically collected information: IP address, browser and device information, pages viewed, interactions, timestamps, diagnostics, referring pages. We use standard cookies for functionality, analytics, security, and advertising measurement. We do not use live chat or session replay tools.

Analytics and advertising technologies: Google Analytics / GA4, Meta Pixel including CAPI, and hosting logs. These tools provide aggregated insights. Cookie preferences can be adjusted via browser settings.

3. How We Use Information
We use personal information to operate and secure the website and platform, authenticate users, process verification workflows, provide support, improve features, send service-related communications, send optional marketing communications, and comply with legal and regulatory requirements.

We may also generate aggregated or de-identified information that does not identify any individual. We may use this data to analyze usage patterns, improve features, and enhance the performance of the platform

4. Legal Basis for Processing (UK and EU GDPR)
We process data under the following bases: contract performance, legitimate interests, consent, legal obligations, and HIPAA-compliant processing for US health data.

5. How We Share Information
We share information with service providers that support hosting, infrastructure, email, security, authentication, payments, and customer support. Providers are contractually required to protect data and use it only for Fuse’s purposes. Information may be transferred during corporate transactions such as mergers, acquisitions, financings, or restructurings. We may disclose data to comply with law, respond to lawful requests, or protect safety and security. Fuse does not sell personal information or PHI.

Fuse Analytics Limited (United Kingdom) may share personal data with Fuse Insight, Inc. (United States), which provides hosting, infrastructure, and platform services. These transfers occur only as necessary to operate the website, deliver the platform, provide support, and maintain our systems.

6. How We Protect Information
We use SOC 2 Type II controls, encryption in transit and at rest, access controls, monitoring, network security, data minimization, secure retention, penetration testing, and HIPAA-aligned policies.

7. International Data Transfers
Fuse hosts most infrastructure in the United States. Any international transfers use Standard Contractual Clauses, the UK Addendum, or other lawful mechanisms.

Because personal data is processed in the United States, individuals acknowledge that such transfers involve international data movement under UK/EU GDPR; Fuse implements Standard Contractual Clauses and equivalent safeguards to protect that data during transfer.

8. Data Retention
We retain data as long as needed to provide services, comply with obligations, support audits, or resolve issues. Customers may request deletion of Customer Data, subject to legal and contractual limits.

9. Your Rights
Depending on your jurisdiction, you may have rights to access, correct, delete, restrict, or port your personal data, object to certain processing, or withdraw consent.
Requests should be sent to foundrs@fuseinsight.com. Customers are responsible for HIPAA patient rights requests.

10. California Privacy Notice
For California residents: Fuse does not sell personal information and does not share personal information for cross-context behavioral advertising. You may request access, correction, or deletion by emailing founders@fuseinsight.com.

11. Children
The website is not intended for individuals under 16. Fuse does not knowingly collect information from children via the website. PHI relating to minors is handled under HIPAA and Customer agreements.

12. Changes to This Policy
We may update this Privacy Policy periodically. The “Last updated” date will show the latest version.

13. Entity Responsibility
Fuse Insight, Inc. (United States) is the primary provider of the Fuse platform and services. Fuse Analytics Limited (United Kingdom) acts as the data controller for personal data collected from individuals in the UK and EU when they interact with our website or receive marketing communications. All customer data processed within the Fuse platform is controlled by the Customer; Fuse acts as a processor or Business Associate (where applicable) and does not process UK/EU patient information.

14. Contact Us
Fuse Insight, Inc.
founders@fuseinsight.com