Compliant patient education for Retina and Oncology practices

BAA in place

We sign a Business Associate Agreement with every practice we engage with.

No PHI in campaigns

Protected health information is never included in campaign content.

Secure data handling

Robust platform built with top tier compliance and advanced threat protection.

Minimum necessary standard

We only access the patient data required to deliver campaigns — nothing more.

Compliance

Health Insurance Portability and Accountability Act (HIPAA)

Requires any company handling protected health information keeps it private and secure.

Prior written consent

We only send campaigns to patients who have given consent to receive messages.

One-to-one consent

Consent is specific to your practice, patients aren't opted into a shared or third-party list.

Do not call registry

We check every campaign against the national do-not-call registry before campaigns go out.

Opt-out built in

Every campaign includes a compliant opt-out so patients can remove themselves at any time.

Time restriction adherence

Patients only receive communication during permitted hours, never early morning or late at night.

Sender identification

Every message clearly identifies your practice as the sender, no ambiguity about who is reaching out.

Compliance

Telephone Consumer Protection Act (TCPA)

Protects patients from unwanted calls and texts, it sets the rules for who you can contact, how, and when.

Certified infrastucture

PatientLink operates on SOC 2 certified infrastructure for data storage and processing.

Access controls

Patient data is accessible only to authorized personnel involved in campaign delivery.

Audit ready

Our systems and processes are documented and auditable at any time.

Ongoing monitoring

Security controls are continuously monitored to meet SOC 2 standards.

Compliance

System and Organization Controls Type II (SOC 2)

An independent audit that verifies we have the right systems and controls in place to handle sensitive data responsibly.

Trusted by healthcare organizations that demand the highest standards of data privacy and regulatory compliance

“Max and the team were able to stand up our performance marketing program from scratch, get fantastic results, and maintain end-to-end systems in a privacy-focused fashion. I'd recommend them to anyone looking for digital marketing.”

Venture arm of

“Max and team are the real deal. They were able to help our portfolio use performance marketing to get their first thousand customers. They bring a wealth of knowledge in the digital marketing space and are a pleasure to work with.”

Venture studio behind

Our services

We build your campaigns, handle compliance, and run delivery so your staff can focus on patient care.

Services

Book a demo

Connect with our team to see how your practice would benefit from our patient education campaigns.

Book a demo