Privacy Policy for Pharmacy Workflow OS.
This Privacy Policy describes the categories of information that may be processed through the service, how that information may be used and disclosed, and the general security practices that support the platform.
Effective date: April 10, 2026What information may be processed
The service may process account, workflow, audit, operational, and support information submitted by authorized users, administrators, or customer representatives. Depending on the way a customer uses the service, that information may include regulated healthcare data. Customers are responsible for determining what data may lawfully be submitted to the service in their use case.
Account and authentication details used to manage access to the product.
Operational workflow records, audit history, and system configuration data entered by authorized users.
Support, contact, and product inquiry information submitted through public site forms or direct communication.
Technical diagnostics and security telemetry required to operate, troubleshoot, and protect the service.
Minimum necessary access
The service is designed to support role-based access and controlled workflow visibility so customers can limit access to the information required for each operational responsibility.
Operational security controls
The platform baseline includes authenticated access, encrypted transport expectations, append-only audit evidence, and PHI-safe logging requirements for regulated workflows.
Environment-specific compliance
Customers remain responsible for evaluating whether the service fits their legal, contractual, and regulatory requirements, including healthcare privacy obligations where applicable.
How information is used
Provide, operate, secure, and maintain the service, including authentication, authorization, storage, and workflow execution.
Maintain auditability, traceability, support operations, and incident response processes.
Respond to product inquiries, sales conversations, and customer support communications.
Meet applicable contractual, legal, regulatory, security, and compliance obligations.
How information may be disclosed
Infrastructure, hosting, storage, and integration providers engaged to operate the service.
Professional advisors, auditors, or service providers supporting security, compliance, and operations.
Government, regulatory, or legal requests when disclosure is required by law or necessary to protect the platform or its users.
Successors or counterparties involved in a corporate transaction, subject to appropriate confidentiality and legal obligations.
Security and retention
The platform is designed around authenticated access, role-based authorization, auditability, and secure operational controls. No service can guarantee absolute security, and customers remain responsible for their internal access controls, configuration, retention requirements, and deployment choices.
Updates and contact
This Privacy Policy may be updated from time to time to reflect changes to the service, legal requirements, or operational practices. Questions regarding this policy or the service's information practices may be submitted through the public contact route on this site.
Requests and policy questions
Request information about the categories of information associated with your use of the service, subject to applicable law and customer-specific data handling arrangements.
Request correction, update, or deletion of information where legally required and operationally appropriate.
Contact the site operator regarding questions about this Privacy Policy or public-site information practices.
Website: https://pharmacyworkflowos.com
Privacy and legal inquiries: colby@mfaapproach.com
General product inquiries: use the public contact page at /contact
This Privacy Policy does not replace customer legal or compliance review.
Covered entities, business associates, and other customers are responsible for validating their own legal, contractual, HIPAA, HITECH, retention, incident response, and data governance obligations before using the platform for regulated workflows.