Privacy Policy

Privacy & Terms of Use

Effective Date: 07/04/2011

Last Updated: 02/18/2026

Introduction

Welcome to the website and services of (AMC) AMERICAN MEDICAL COMPLIANCE, Inc. (“AMC,” “we,” “us,” or “our”). AMC provides compliance training, continuing education content, learning management services, reporting, and related support services for healthcare organizations and other regulated industries.

This Privacy Policy explains how we collect, use, disclose, and protect personal information. By accessing or using our website or services, you consent to the practices described in this policy.

Information We Collect

Information You Provide
We may collect information that you voluntarily provide, including:
• Name
• Email address
• Phone number
• Company/organization
• Job title
• Account login credentials
• Billing and payment information (if applicable)
• Course enrollment, assignment, progress, assessment, and completion information
• Support requests, communications, and feedback

Customer Data (Data Processed Through Services)
Depending on the services provided, AMC may process data submitted by customers or generated through customer use of our services (“Customer Data”). Customer Data may include information about employees, contractors, customers, patients, clients, students, or other individuals, depending on the customer’s business and configuration.

Information Collected Automatically
When you visit our website or use our services, we may collect information automatically, including:
• IP address
• Browser type
• Device information
• Pages viewed and interactions
• Date/time of access
• Referring URL
• Log files
• Cookie identifiers and usage analytics

Sensitive Information and Regulated Data

  1. General Sensitive Data
    AMC does not require customers to provide sensitive personal information unless it is necessary for the specific services being provided. Where sensitive information is processed, we apply appropriate safeguards.

    B. Healthcare Data (HIPAA / PHI)
    In certain engagements, AMC provides services to healthcare organizations. In these engagements, AMC may create, receive, maintain, or transmit Protected Health Information (“PHI”) as defined under the Health Insurance Portability and Accountability Act (“HIPAA”). When AMC handles PHI:
    • We implement HIPAA-aligned safeguards
    • We sign a Business Associate Agreement (BAA) when required
    • PHI is used and disclosed only as permitted by HIPAA and applicable agreements
    AMC does not use PHI for marketing or advertising.

    C. Other Industry-Specific Regulated Data
    Depending on the customer and service scope, AMC may also process data subject to other laws and regulations (e.g., financial information, education records, employment-related data). AMC processes regulated data only as required to deliver contracted services and as instructed by the customer.

How We Use Information

We use information for purposes such as:
• Providing, operating, and maintaining our services
• Creating and managing user accounts
• Delivering contracted services to customers
• Administering training assignments, course delivery, assessments, reporting, and certificates
• Customer support and troubleshooting
• Security monitoring, fraud prevention, and system integrity
• Improving and developing products and services
• Internal analytics and reporting
• Billing and payment processing (if applicable)
• Communicating service updates, operational notices, and customer support messages
• Complying with legal obligations

Artificial Intelligence (AI), Automation, and Analytics

AMC may use automation, rules-based processing, and analytics to support administrative workflows, operational efficiency, quality assurance, data validation, and reporting.

Where AMC uses AI-enabled features, they are intended to support administrative or business functions. AMC does not use Customer Data, including PHI, to train public or third-party AI models.

Legal Bases for Processing

Depending on the jurisdiction and context, we process information based on:
• Contractual necessity
• Legal compliance
• Legitimate interests (security, service improvement, fraud prevention)
• Consent (where required for certain communications)

Consent for Communications (SMS and Email)

Where AMC uses SMS or email communications, we follow applicable laws and industry requirements, including:
• Obtaining explicit opt-in consent where required for marketing communications
• Providing clear opt-out mechanisms (e.g., “Reply STOP” for SMS, unsubscribe links for email)
• Maintaining consent records securely where applicable

You may withdraw consent at any time by:
• Clicking the “Unsubscribe” link in an email (for marketing emails)
• Replying “STOP” to an SMS message
• Emailing us at info@amccme.com

Disclosure of Information

Service Providers and Subprocessors
We may share information with trusted vendors and subcontractors (“Service Providers”) who help us operate and deliver services, such as:
• Cloud hosting and infrastructure providers
• Identity and access management providers
• Communications platforms (email/SMS)
• Support ticketing systems
• Analytics tools (primarily website analytics)
• Payment processors (if applicable)

Service Providers are contractually required to protect personal information and may only process it to provide services to AMC.

Customer Disclosures
We disclose Customer Data to the customer and their authorized users as required to provide services.

Legal and Safety


We may disclose information if required by law, subpoena, court order, or to protect the rights, safety, and security of AMC, our customers, or others.

Business Transfers

If AMC is involved in a merger, acquisition, financing, or sale of assets, information may be transferred as part of that transaction subject to appropriate confidentiality protections.

Cookies and Tracking Technologies

We use cookies and similar technologies to:
• Maintain website functionality
• Improve performance and security
• Analyze traffic and usage trends

You can manage cookies through your browser settings. Some features may not function properly if cookies are disabled.

Data Security

AMC uses reasonable administrative, technical, and physical safeguards designed to protect personal information and Customer Data, including:
• Encryption in transit (TLS/SSL)
• Role-based access controls (RBAC)
• Least-privilege access policies
• Secure cloud environments
• Audit logging and monitoring
• Multi-factor authentication where applicable
• Workforce security awareness training
• Incident response procedures
• Vendor risk management practices

No system can be guaranteed 100% secure, but we continuously work to strengthen protections.

SOC 2 Type I

AMC has successfully completed a SOC 2 Type I examination covering the Trust Services Criteria for Security, Availability, and Confidentiality as of February 9, 2026. A SOC 2 Type I report evaluates the design of controls at a point in time and does not assess operating effectiveness over a period (SOC 2 Type II).

Data Retention

We retain personal information only as long as necessary to:
• Provide services
• Meet contractual requirements
• Comply with legal obligations
• Maintain audit, security, and operational records
• Resolve disputes and enforce agreements

When data is no longer needed, it is securely deleted, anonymized, or de-identified where appropriate.

Incident Response and Breach Notification

AMC maintains an incident response program. If a security incident affects Customer Data, we will notify impacted customers in accordance with applicable law and contractual obligations.

If PHI is involved, notification procedures will follow HIPAA breach notification requirements and any applicable BAA terms.

Your Rights

Depending on your location, you may have rights such as:
• Accessing your personal information
• Requesting correction
• Requesting deletion (subject to legal exceptions)
• Restricting or objecting to certain processing
• Withdrawing consent where applicable
• Filing a complaint with a regulator

Requests can be submitted to: info@amccme.com

California Privacy Rights (CPRA Notice)

If you are a California resident, you may have rights under the California Consumer Privacy Act as amended by the CPRA, including:
• The right to know what personal information we collect and use
• The right to request deletion (subject to exceptions)
• The right to correct inaccurate information
• The right to opt out of the sale or sharing of personal information

AMC does not sell personal information and does not share personal information for cross-context behavioral advertising.

Certain information may be exempt from CPRA requirements when regulated by HIPAA or other federal laws.

International Data Transfers

If personal information is transferred outside the EEA/UK, AMC uses safeguards such as Standard Contractual Clauses (SCCs) or other lawful mechanisms, where required.

Children’s Privacy

AMC’s services are not intended for children under the age of 16. We do not knowingly collect personal information from children without verifiable parental consent.

Third-Party Websites

Our website may contain links to third-party websites or services. AMC is not responsible for the privacy practices of third parties. Please review their privacy policies.

Policy Changes

We may update this Privacy Policy periodically. Changes become effective when posted on our website. If we make material changes, we will provide notice as required by applicable law.

Contact Information

(AMC) AMERICAN MEDICAL COMPLIANCE, Inc.
Email: info@amccme.com
Website: https://amccme.com

Connect With Us

Twitter Facebook-f Pinterest Linkedin-in Google
© 2026 | American Medical Compliance | All Rights Reserved