Privacy Policy

1. Introduction

This Privacy Policy describes how Sonra ("Sonra," "we," "us," or "our") handles information when you visit our website at sonrahealth.com, contact us, or request or receive mobile diagnostic ultrasound services.

We are based in New York and currently provide services in New York. By using our website or services, you acknowledge this Policy. If you do not agree, please do not use our website or submit personal information through it.

2. Information we collect

We may collect the following categories of information:

• Contact and identity information — such as your name, email address, phone number, and the name of a referring physician or practice when you provide it.
• Booking and service information — such as requested scan type, urgency, preferred date, service location, address, unit or suite number, and whether you are booking for yourself or as a clinician for a patient.
• Health-related information — such as patient name, clinical context you include in messages or booking requests, and information needed to perform or coordinate ultrasound services. Some of this information may be protected health information under HIPAA.
• Communications — messages you send through our contact form, by email, or by phone.
• Technical information — such as IP address, browser type, device information, pages viewed, and referring URLs, collected automatically when you use our website.
• Payment-related information — if you pay for services, we or our payment processor may collect billing details necessary to process payment. We do not intentionally collect full payment card numbers on our website forms.

3. How we use information

We use information we collect to:

• Respond to inquiries and contact requests.
• Review, schedule, coordinate, and provide mobile ultrasound services.
• Confirm pricing, timing, and service-area availability.
• Communicate with you, your referring clinician, or authorized representatives about your request or care.
• Operate, maintain, secure, and improve our website and services.
• Comply with law, regulation, professional standards, and legal process.
• Protect the rights, safety, and security of patients, staff, and Sonra.

4. Health information and HIPAA

Sonra provides diagnostic imaging services and may create, receive, or maintain protected health information (PHI) subject to the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and applicable state health privacy laws.

When PHI is subject to HIPAA, we use and disclose it only as permitted or required by HIPAA, our Notice of Privacy Practices, and applicable law. Our Notice of Privacy Practices, which describes your HIPAA rights in more detail, is provided when services are rendered or upon request.

Information you submit through this website for scheduling or coordination may include PHI. We apply administrative, technical, and physical safeguards designed to protect PHI and other sensitive information.

5. How we share information

We do not sell your personal information. We may share information in the following circumstances:

• Service providers — such as email delivery, website hosting, scheduling, payment processing, and IT support vendors that process information on our behalf under contractual obligations to protect it.
• Clinical coordination — with referring physicians, other healthcare providers involved in your care, or individuals you authorize, when needed to provide services or deliver reports.
• Legal and safety — when required by law, subpoena, court order, or government request, or when we believe disclosure is necessary to protect rights, safety, or property, investigate fraud, or respond to an emergency.
• Business transfers — in connection with a merger, acquisition, reorganization, or sale of assets, subject to applicable law and continued protection of your information.

6. Cookies and analytics

Our website may use essential cookies or similar technologies needed for basic site functionality and security. We do not currently use third-party advertising cookies on our website.

If we add analytics or similar tools in the future, we will update this Policy to describe them and, where required, provide choices.

You can control cookies through your browser settings. Disabling cookies may affect certain site features.

7. Data security

We use reasonable administrative, technical, and physical safeguards designed to protect information against unauthorized access, loss, misuse, alteration, or disclosure.

No method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security.

If you believe your interaction with us is no longer secure, please contact us immediately using the details below.

8. Data retention

We retain information for as long as reasonably necessary to fulfill the purposes described in this Policy, provide services, comply with legal and professional record-keeping obligations, resolve disputes, and enforce our agreements.

Medical and billing records may be retained for longer periods as required by applicable law, regulation, or clinical standards.

9. Your rights and choices

Depending on applicable law, you may have rights to access, correct, delete, or obtain a copy of certain personal information, or to object to or restrict certain processing.

New York residents may have additional rights under the SHIELD Act and other state privacy laws, including rights related to data security and breach notification.

HIPAA provides separate rights for PHI, as described in our Notice of Privacy Practices.

To exercise rights that apply to you, contact us using the information below. We may need to verify your identity before responding. We will respond as required by applicable law.

10. Children's privacy

Our website and booking tools are not directed to children under 13, and we do not knowingly collect personal information from children under 13 through our website without appropriate parental consent.

Ultrasound services for minors may be arranged by a parent, guardian, or authorized clinician. If you believe we have collected information from a child improperly, please contact us.

11. Third-party websites

Our website may contain links to third-party sites or services. We are not responsible for their privacy practices. We encourage you to review the privacy policies of any third-party sites you visit.

12. Changes to this Policy

We may update this Privacy Policy from time to time. The effective date at the bottom of this page shows when it was last revised. Material changes will be posted on this page. Your continued use of the website after changes become effective constitutes acknowledgment of the updated Policy, subject to applicable law.

13. Contact us

For privacy questions, requests, or complaints, contact Sonra:

Email: info@sonrahealth.com

Phone: +1 (718) 551-2050

Mailing address: Sonra, New York, NY

We will work to respond to legitimate requests in accordance with applicable law.