Black Rivet Tech
← Back to home

Privacy Policy

Effective date: July 1, 2026 · Last updated: July 1, 2026

This Privacy Policy describes how Black Rivet Tech ("we," "us," or "our") collects, uses, and protects information in connection with the LabBridge application and related websites and services (collectively, the "Service"). By using the Service, you agree to the practices described here.

1. Who we are

The Service is operated by Black Rivet Tech, based in Florida, United States (mailing address available on request). For privacy questions, contact us at privacy@blackrivettech.com.

2. Information we collect

  • Account information: name, email address, organization, and role, provided when a clinician or staff member registers.
  • Health information: laboratory results and related clinical data processed on behalf of healthcare providers so they can review results and communicate with patients. This information is handled as Protected Health Information (PHI) under HIPAA where applicable.
  • Usage and device information: log data, device type, and interactions with the Service, used to operate and secure it.

3. How we use information

  • To provide, maintain, and improve the Service.
  • To enable clinicians to review lab results and communicate with patients.
  • To secure the Service, prevent misuse, and comply with legal obligations.

We do not sell personal information, and we do not use PHI for advertising.

4. How information is shared

We share information only as needed to operate the Service: with the healthcare provider organization you belong to; with service providers (subprocessors) who process data on our behalf under appropriate agreements, including HIPAA Business Associate Agreements where required; and as required by law. We use subprocessors such as Amazon Web Services (hosting, messaging, and AI processing) under a Business Associate Agreement.

5. Data security

We use administrative, technical, and physical safeguards designed to protect information, including encryption in transit, access controls, and audit logging. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

6. Data retention

We retain information for as long as needed to provide the Service and to meet legal, regulatory, and contractual obligations, after which it is deleted or de-identified.

7. Your choices and rights

Depending on your location and role, you may have rights to access, correct, or delete certain information. Patients should direct requests to their healthcare provider, who controls the clinical record. Account holders may contact us at privacy@blackrivettech.com. You may request deletion of your account at any time.

8. Children's privacy

The Service is intended for use by healthcare professionals and their staff, not directly by children. Clinical information about pediatric patients is processed only on behalf of, and under the direction of, healthcare providers.

9. Changes to this policy

We may update this Privacy Policy from time to time. Material changes will be posted here with an updated effective date.

10. Contact

Black Rivet Tech · Florida, United States
privacy@blackrivettech.com


This policy is provided for transparency about how the Service handles data.