GREENLIGHT

Legal

Privacy Policy

Last updated: February 7, 2026

1. Introduction

Tourist SOS, Inc. ("Company," "we," "us") operates the GreenLight platform. This Privacy Policy describes how we collect, use, store, and protect information when you use our Service. We are committed to protecting the privacy of healthcare providers, patients, and all individuals whose data we process.

2. Information We Collect

Account Information

Name, email address, facility name, country, and other details you provide during registration and onboarding.

Patient Information

Patient name, date of birth, insurance member ID, and other details you submit for eligibility verification and claims. This information is provided by you and is processed solely to deliver the Service.

Insurance and Billing Data

Insurance plan details, coverage information, claim amounts, diagnosis codes, and procedure codes as needed for claims submission and processing.

Usage Data

Log data, browser type, IP address, pages visited, and actions taken within the Service for analytics and security purposes.

3. How We Use Information

We use collected information to:

  • Verify insurance eligibility with U.S. insurance payers
  • Submit and process claims on your behalf
  • Disburse collected payments to your account
  • Provide customer support and platform assistance
  • Improve the Service and develop new features
  • Comply with legal and regulatory obligations
  • Detect and prevent fraud or unauthorized access

4. Information Sharing

We share information only as necessary to provide the Service:

  • Insurance payers — patient and clinical data required for eligibility checks and claims processing
  • Clearinghouse partners — encrypted claim data transmitted through certified electronic data interchange (EDI) channels
  • Payment processors — billing information necessary to process subscription fees and disbursements
  • Legal compliance — when required by law, regulation, or valid legal process

We do not sell personal information or patient data to third parties.

5. Data Security

We implement industry-standard security measures to protect your data, including encryption in transit (TLS) and at rest, access controls, audit logging, and regular security assessments. While no system is completely secure, we take reasonable precautions to safeguard the information you entrust to us.

6. Data Retention

We retain account and transaction data for as long as your account is active and for a minimum of seven (7) years after account closure to comply with healthcare billing regulations and tax requirements. You may request deletion of your account data, subject to our legal retention obligations.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data (subject to legal retention requirements)
  • Object to or restrict certain processing activities
  • Export your data in a portable format

To exercise these rights, contact us at privacy@touristsos.com.

8. International Data Transfers

As an international service, data may be processed in the United States and other countries. By using the Service, you consent to the transfer of your data to the United States for processing. We ensure appropriate safeguards are in place for such transfers.

9. Cookies and Tracking

We use essential cookies to maintain your session and preferences. We do not use third-party advertising cookies. Analytics cookies, if used, are anonymized and used solely to improve the Service.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or through the Service. The "Last updated" date at the top reflects the most recent revision.

11. Contact

For questions about this policy or our data practices, contact us at privacy@touristsos.com.