Book A Strategy Call
15-minute discovery call. No commitment required.
Privacy & Trust

Privacy Policy

Your data, protected by a healthcare BPO that never sells it.

How Staffingly, Inc. collects, uses, shares, and protects information across our healthcare outsourcing and remote staffing services. We never sell your data.

Last updated: June 28, 2026
HIPAA-Compliant SOC 2 Type II ISO 27001 HITRUST BAA Signed We Never Sell Data Our security
Privacy Policy

How we handle your information

Plain-language transparency from a HIPAA-aware healthcare outsourcing partner. Jump to any section below.

Who We Are and Scope

Staffingly, Inc. (“Staffingly,” “we,” “us,” “our”) is a healthcare outsourcing and remote staffing company. We provide HIPAA-aware healthcare BPO services, including prior authorization outsourcing, insurance eligibility verification, revenue cycle management outsourcing, medical billing outsourcing, credentialing, healthcare virtual assistants, and healthcare customer support and call center outsourcing for practices and health systems across the United States.

This Privacy Policy explains how we collect, use, share, and protect information through this website (stg-staging4staffinglycom-staging.kinsta.cloud), our forms, scheduling tools, web chat, email, and phone communications.

Our role. For personal information collected through this website and our sales and intake process, Staffingly acts as the data controller. When we deliver healthcare services for a client, we typically act as a Business Associate under HIPAA, and any Protected Health Information (PHI) we handle in service delivery is governed by the Business Associate Agreement (BAA) and services agreement with that client, not by this website policy. Staffingly is a healthcare outsourcing provider; we are not a Covered Entity.

Information We Collect

Information you provide

When you submit a form, book a call, use web chat, email, or call us, we may collect your name, work email, phone number, organization, role or title, and the message or request you send.

Information collected automatically

Subject to your cookie consent, we may collect your IP address, device and browser type, pages visited, referring source, and cookie or analytics identifiers.

Communications

We may keep records of emails, SMS, web chat, and phone or AI-assisted voice calls, which may be recorded or transcribed for quality, training, and follow-up where permitted by law.

Service-delivery data

When we deliver healthcare services, we may handle client and patient data, including PHI and ePHI, strictly under the applicable BAA and contract.

Please do not submit patient information (PHI) through this website. Our marketing forms are for business contact details only.

How We Use Information

We use the information we collect to:

  • respond to your inquiry and provide the information you request;
  • schedule and confirm meetings and discovery calls;
  • send proposals, service updates, and follow-up communications;
  • deliver, operate, secure, and improve our services and website;
  • prevent fraud and protect our systems and clients; and
  • comply with legal, regulatory, and contractual obligations.

SMS and Text Messaging

If you provide your mobile number and opt in (for example, on a form or when booking a call), you may receive SMS text messages from Staffingly related to your inquiry, appointment, or follow-up.

You may receive SMS messages after submitting a form or booking a call.

Message frequency may vary. Message and data rates may apply.

Reply STOP to opt out at any time. Reply HELP for help.

Consent to receive SMS is not a condition of any purchase.

Your phone number and SMS consent are never sold, rented, or shared with third parties for their marketing.

SMS consent is collected separately and is not shared with third parties or affiliates for marketing purposes.

Email Communications

Staffingly may send follow-up emails about your inquiries, appointments, proposals, service updates, and any information you request.

  • You can unsubscribe from marketing emails at any time using the unsubscribe link or by contacting us.
  • Transactional or service emails (for example, appointment confirmations, security notices, or responses to your request) may still be sent where necessary to provide a service you asked for.

AI-Powered Voice and Phone Calls

To respond quickly, we may use AI-assisted voice technology and automated calling for scheduling, intake, reminders, and healthcare lead follow-up. These calls may be recorded or transcribed for quality, training, and accuracy where permitted by law, and you can ask for a live team member at any time. Recordings and transcripts are handled under the same confidentiality and security controls described in this policy, and we obtain consent before recording where required.

Cookies, Analytics, and Consent

We use cookies and similar technologies to operate the site, remember preferences, measure performance, and (with your consent) support analytics and marketing.

We use Cookiebot, a consent management platform by Usercentrics, to:

  • automatically scan and categorize the cookies and trackers on our site;
  • block non-essential cookies until you give consent;
  • present a cookie banner and maintain an up-to-date cookie declaration;
  • record and store your consent choices (consent logs) so your preferences are respected; and
  • support Google Consent Mode v2 and help us honor GDPR and CCPA/CPRA requirements.

You can change or withdraw your cookie consent at any time through the cookie banner or preferences link on our site. For more detail, see the Cookiebot / Usercentrics privacy information.

Third-Party Platforms and Processors

We rely on trusted third-party platforms that process data on our behalf as service providers (processors) under contract:

  • GoHighLevel / HighLevel (LeadConnector) powers our web forms, scheduling calendars, sales funnels, web chat, and consent checkboxes. Information you submit through these tools is processed on the HighLevel platform. See the HighLevel privacy policy.
  • Calendly powers meeting scheduling and calendar booking. When you book a meeting, the details you provide are processed by Calendly. See the Calendly privacy policy.
  • Analytics, email, and SMS providers help us measure site performance and send the email and SMS you have requested or consented to.

Each provider processes data under its own privacy policy and our agreements. We share only what is needed for these services to function, and we do not authorize them to use your information for their own marketing.

We Never Sell Your Data

We never sell your data. Period.

  • We do not sell, rent, or trade client data or lead data.
  • We do not sell or share your phone number, SMS consent, or contact details with third parties for their own marketing.
  • We treat all client information as strictly confidential, protected by our agreements, NDAs, and security controls.

We share information only with the service providers described above (under contract), when you direct us to, or when required by law. Under laws such as the CCPA/CPRA, we do not “sell” or “share” personal information as those terms are defined.

Data Security and HIPAA Safeguards

Security is core to a healthcare BPO. We apply administrative, physical, and technical safeguards aligned with HIPAA and recognized frameworks, including:

  • Business Associate Agreements (BAAs) with healthcare clients before any PHI is handled.
  • HIPAA-trained staff: every team member completes HIPAA training with annual refreshers, signs confidentiality and non-disclosure agreements, and passes background screening.
  • Controlled, secured facilities with role-based access, plus secured remote workspaces that keep client data off personal devices.
  • Encryption of data in transit and at rest, access controls, audit logging, and documented incident response.
  • A compliance posture aligned with SOC 2 Type II, ISO 27001, and HITRUST, supporting secure healthcare operations.

For more on how we protect PHI, see our HIPAA Security and Compliance page.

PHI, ePHI, and Our HIPAA Role

When Staffingly performs healthcare services, we typically act as a Business Associate under HIPAA. Any PHI or ePHI we access in service delivery is handled only as permitted by the BAA and applicable law, under the “minimum necessary” principle and the HIPAA Security Rule safeguards described above.

Staffingly is a healthcare outsourcing and BPO provider and is not a Covered Entity. This website and its marketing forms are not intended to collect PHI; patient information should be exchanged only through the secure, contracted channels established with each client.

Your Privacy Rights and Choices

Depending on where you live, you may have rights to access, correct, delete, or port your personal information, to object to or restrict certain processing, and to opt out of marketing.

  • Marketing: unsubscribe from emails, reply STOP to SMS, or contact us.
  • Cookies: manage preferences through our cookie banner (Cookiebot).
  • GDPR (EEA/UK): rights of access, rectification, erasure, restriction, portability, and objection.
  • CCPA/CPRA (California): rights to know, delete, correct, and opt out of sale or sharing. Because we do not sell or share personal information, there is nothing to opt out of, but you may still submit a request.

To exercise any right, contact us at support@staffingly.com. We will verify and respond within the timeframes required by law.

Data Retention

We keep personal information only as long as needed for the purposes described here and to meet legal, tax, and contractual obligations. Lead and inquiry data may be retained to follow up on your request unless you ask us to stop. Service-delivery data is retained per the applicable BAA and client agreement, then securely deleted or returned.

International Data and Global Delivery

Staffingly is headquartered in the United States and delivers services through secured facilities in India, Pakistan, Bangladesh, and Nigeria, and is officially established in Dubai, UAE under IFZA. Where data is processed across borders, we apply contractual and security safeguards, including BAAs and access controls, consistent with this policy and applicable law.

Children's Privacy

Our website and services are intended for businesses and healthcare organizations, not for children. We do not knowingly collect personal information from children under 16. If you believe a child has provided us information, contact us and we will delete it.

Changes to This Policy

We may update this Privacy Policy from time to time. The “Last updated” date at the top reflects the latest version. For material changes, we will provide notice where appropriate. Continued use of the site after an update means you accept the revised policy.

Contact Us

Questions about this policy or your information? We are here to help.

Staffingly, Inc.
15 Corporate Pl S, Suite 145, Piscataway, NJ 08854
Phone: (800) 489-5877
Email: support@staffingly.com

This Privacy Policy is provided for transparency and general information. It is not intended as legal advice. For questions about your specific situation, please consult qualified counsel or contact us.

FAQ

Privacy questions, answered

Does Staffingly sell my personal data?

No. We never sell, rent, or trade client data or lead data, and we do not share your phone number or SMS consent with third parties for their marketing.

How do I stop receiving SMS messages?

Reply STOP to any message to opt out, or reply HELP for help. Message and data rates may apply and message frequency may vary.

Is Staffingly HIPAA compliant?

Staffingly is a HIPAA-aware healthcare BPO. We sign Business Associate Agreements, our staff are HIPAA-trained with annual refreshers, and we maintain a security posture aligned with SOC 2 Type II, ISO 27001, and HITRUST. We act as a Business Associate where applicable, not a Covered Entity.

How do I unsubscribe from emails?

Use the unsubscribe link in any marketing email or contact support@staffingly.com. Service and transactional emails may still be sent where needed.

What cookies do you use and how do I manage them?

We use Cookiebot (by Usercentrics) to scan, categorize, and block non-essential cookies until you consent, and to record your preferences. You can change or withdraw consent anytime via the cookie banner.

Questions about privacy or data security?

Talk to a real person about how we protect data across HIPAA-aware healthcare outsourcing. No commitment.

LIVE Monica
Meet Monica AI
Online · Agent ready