Legal
ClinicOS Data Deletion Requests
How SaaS customers, staff users, and patients should route access, deletion, and records requests.
Effective date: June 4, 2026
ClinicOS SaaS account data
Clinic customers and authorized staff users may request access, correction, export, or deletion of ClinicOS account and business contact data by contacting privacy@clinicos.com. Some audit, security, billing, legal, backup, and compliance records may be retained as required or permitted by law and contract.
Clinic customer data
Clinic customer data is controlled by the clinic customer. Deletion or export of clinic operational data must be requested by an authorized clinic administrator and may be subject to contractual retention, legal hold, medical record, tax, accounting, or audit requirements.
Patient records and PHI
Patients should direct medical record, PHI, billing, and treatment-related access or deletion requests to the clinic that provides their care. ClinicOS will assist the clinic when legally required or contractually authorized, but ClinicOS generally cannot delete patient records directly at a patient's request without clinic authorization.
Identity verification
ClinicOS may need to verify identity, authority, organization role, or clinic authorization before acting on a request. Requests that affect patient records may require routing through the clinic's privacy official.