NextBedNextBed

NextBed, Inc. — Privacy Policy

Last updated: 09/19/2025

This Privacy Policy explains how NextBed, Inc. (“NextBed,” “we,” “us,” or “our”) collects, uses, shares, and safeguards information when you use our platform and related services (the “Service”). By using the Service, you agree to this Policy. If you use the Service on behalf of an organization, you confirm you are authorized to do so.

1) Information We Collect

A. Information You Provide

  • Referral summaries (no PHI): Non-identifying details such as age range, ZIP area (e.g., ZIP3), payer/plan, clinical needs (e.g., dialysis, wound care), bariatric flag, a brief non-sensitive note, and your work contact details for follow-up.
  • Facility data: Services offered, payers accepted, public contact information, and responses to referral requests (e.g., “Interested”).
  • Account & organization info: Name, email, role, organization, and settings you configure.

B. Automatic Collection

  • Usage and device data: Page views, clicks, timestamps, IP address, browser type, and similar technical logs used for security, troubleshooting, and analytics.
  • Cookies/local storage: Used to keep you signed in and remember preferences.

2) How We Use Information

  • Operate, maintain, and improve the Service.
  • Deliver referral alerts to facilities you select and relay “Interested” responses back to you.
  • Provide customer support and communicate about the Service.
  • Monitor for abuse, secure the Service, and comply with legal obligations.
  • Create aggregate, de-identified analytics (e.g., volume of requests by region).

3) PHI and HIPAA

The Service is designed so outreach does not include Protected Health Information (PHI). Do not include names, exact dates of birth, medical record numbers, street addresses, personal phone/email, or other identifiers in referral summaries or messages sent through the Service.

  • No BAA by default: NextBed is not your HIPAA Business Associate unless we execute a separate written BAA. Without a BAA, do not submit PHI to the Service.
  • Erroneous PHI: If we become aware that PHI was submitted to the Service, we will take reasonable steps to delete it where feasible and may contact the submitting user or organization.

4) How We Share Information

  • With facilities you select: We share non-identifying referral summaries and your sender contact information so facilities can respond.
  • Service providers: Trusted vendors (e.g., hosting, email/SMS delivery, analytics) under contracts requiring data protection and use only on our instructions.
  • Organization visibility: Certain activity and settings may be visible to admins in your organization.
  • Legal/compliance: To comply with law, protect rights and safety, or in a merger, acquisition, or similar corporate transaction.
  • No sale of personal data: We do not sell or rent personal information.

5) Data Retention

We retain information for as long as needed to provide the Service, comply with legal obligations, and prevent abuse. Aggregated and de-identified insights may be retained indefinitely. You can request deletion of your account information (subject to legal/operational limits).

6) Security

We use administrative, technical, and physical safeguards appropriate for the data we process (e.g., encrypted transport, restricted access). No system is 100% secure; please use good judgment and avoid submitting PHI.

7) Your Choices

  • Update notification preferences (email/SMS) and profile settings in the app.
  • Request access, correction, or deletion of your account information by contacting us.
  • Most browsers let you control cookies; certain features may rely on them.

8) Children’s Privacy

The Service is not directed to individuals under 18, and we do not knowingly collect information from minors.

9) International Use

The Service is hosted in the United States and intended for U.S. providers and facilities. If you access the Service from outside the U.S., you are responsible for compliance with local laws.

10) Changes to This Policy

We may update this Policy from time to time. If changes are material, we will provide reasonable notice (e.g., in-app message or email). Your continued use of the Service after an update means you accept the revised Policy.

11) Contact Us

Questions or requests: Bryan@nb.care