Skip to main content
Try the pre-release of Breast Imaging Finder. Full release coming June 1.

Privacy Policy

Breast Imaging Finder (BIF)
Privacy Policy

Effective DateMarch 22, 2026
EntityI/O Trak, Inc. d/b/a Breast Imaging Finder (BIF)
Contacthello@breastimagingfinder.com

1. Scope of This Privacy Policy

This Privacy Policy explains how BIF collects, uses, discloses, and protects personal information when individuals visit or use the BIF website, mobile experience, provider dashboard, claim workflow, support channels, and related services.

This Policy applies to information collected from patients, consumers, provider representatives, prospective subscribers, reviewers, support contacts, and website visitors. It also applies to information BIF receives from facilities, public or licensed source datasets, analytics tools, and service providers.

This Policy does not govern the privacy practices of third-party facilities, providers, payment processors, map providers, scheduling vendors, or linked websites. Those parties may have separate privacy practices and terms.

2. What BIF Is — and Is Not

BIF is a directory and profile-management platform designed to help users locate breast imaging facilities and help authorized provider representatives claim and manage facility profiles. BIF may publish public facility information, provider-supplied profile content, badges, educational content, reviews, and contact options.

BIF is not a medical provider, insurer, emergency service, or clinical decision-making tool. Unless expressly stated otherwise in a separate agreement, BIF does not provide diagnosis, treatment, medical advice, or emergency response services.

Because BIF operates in a healthcare-adjacent environment, some information collected through the platform may be health-related or sensitive. BIF therefore expects users not to submit unnecessary medical information through public forms, reviews, or general inquiries.

3. Categories of Personal Information We Collect

We collect the following categories of information, depending on how you interact with the platform.

A. Information you provide directly

  • Identifiers and contact information, such as name, business name, facility name, title, email address, phone number, mailing address, and account credentials.
  • Provider verification information, such as employment role, affiliation details, facility selection, proof of authority, uploaded supporting materials, alternate-contact information, and claim/verification communications.
  • Profile and listing content, such as facility descriptions, physician biographies, service pages, hours, forms, images, logos, accreditations, scheduling links, and other content submitted for publication.
  • Inquiry and support information, such as messages submitted through contact forms, support requests, demo requests, billing questions, and provider onboarding communications.
  • Subscription and transaction information, such as plan selection, subscription status, invoice metadata, and limited payment-related information. Payment card data is processed by our payment processor and is not stored by BIF.
  • Review and feedback content, such as ratings, review text, survey responses, and moderation-related records.
  • Newsletter and marketing preferences, such as sign-up status, communication preferences, and opt-out selections.

B. Information collected automatically

  • Device and usage information, such as IP address, browser type, device identifiers, operating system, language settings, referring URLs, pages viewed, clicks, timestamps, and session activity.
  • Cookies and similar technologies used for site functionality, security, analytics, and personalization.
  • Approximate location information inferred from IP address, and search-input location information such as city, state, or ZIP code entered by the user.

C. Information from other sources

  • Public or licensed source data used to seed or refresh facility listings, including regulatory, certification, accreditation, directory, and business information.
  • Information from provider representatives, parent organizations, group administrators, and alternate contacts involved in a claim or verification workflow.
  • Information from service providers and business partners, such as analytics tools, payment processors, customer-support tools, email platforms, and content moderation tools.

4. Sensitive and Health-Related Information

BIF may receive information that is considered sensitive under certain state privacy laws, including precise or inferred location, account credentials, and information that may reveal a consumer's health interests or care-seeking activity. BIF may also receive consumer health data if a user submits information through a contact form, review, support request, or other interaction related to screening, imaging, symptoms, appointments, or treatment preferences.

BIF does not ask users to submit diagnosis, treatment details, insurance numbers, Social Security numbers, government IDs, or other highly sensitive medical information through general-use forms unless expressly required for a specific, disclosed purpose. Users should not post such information in reviews, profile content, or open text fields.

Where required by applicable law, BIF will obtain any legally required consent before collecting, using, or sharing sensitive personal information or consumer health data for purposes that require consent.

5. How We Use Personal Information

  • To operate, maintain, and improve the BIF platform and its public directory, provider dashboard, education content, search tools, support features, and account functionality.
  • To create, review, approve, administer, and manage claimed listings, verified statuses, provider profiles, enhanced content, badges, and subscription features.
  • To verify identity, affiliation, authority, and listing accuracy, including by contacting the claimant, alternate contact, facility, or other appropriate sources.
  • To communicate about account activity, support requests, verification status, moderation decisions, service updates, billing matters, renewals, product changes, legal notices, and policy updates.
  • To moderate and govern content, including provider-submitted text, images, credentials, and user-generated reviews or feedback.
  • To secure the platform, detect and prevent fraud, abuse, spam, unauthorized access, deceptive activity, and other harmful or unlawful conduct.
  • To perform analytics, quality assurance, troubleshooting, debugging, product development, and service optimization.
  • To comply with applicable law, enforce agreements and policies, respond to lawful process, protect rights and safety, and maintain appropriate business records.

6. How We Disclose Personal Information

BIF may disclose personal information only as reasonably necessary for the purposes described in this Policy, including in the following circumstances:

  • Service providers and contractors that help us host, secure, maintain, analyze, support, moderate, email, map, or bill for the platform.
  • Payment processors and subscription-management providers that process billing transactions on our behalf.
  • Content moderation, fraud-prevention, accessibility, analytics, and customer-support vendors, to the extent required for their services.
  • Facilities, provider representatives, parent organizations, or alternate contacts when necessary to verify authority, investigate disputes, administer listings, or respond to a request initiated through the platform.
  • Legal, regulatory, or governmental authorities where required by law, subpoena, court order, or other lawful process.
  • A buyer, investor, lender, successor, or other participant in a merger, acquisition, financing, reorganization, asset sale, or similar transaction, subject to appropriate confidentiality and transition protections.
  • Other parties with your direction or consent.

BIF does not sell personal information in exchange for money. If BIF uses cookies or similar technologies in a way that may constitute a "sale," "sharing," or targeted advertising under applicable state law, BIF will provide any disclosures and opt-out choices required by law through its cookie and privacy controls.

BIF does not disclose sensitive personal information for purposes that require a special use limitation unless permitted by law or authorized by the individual.

7. Public Content and User-Generated Content

Some information on BIF is intended to be public. For example, public facility listings may display business contact information, public-source listing data, provider-approved profile content, badges, educational content, and review content. Information you choose to submit for publication may be visible to other users and may be indexed by search engines.

If you submit a review, comment, profile description, biography, image, or other public-facing content, do not include confidential, proprietary, financial, account, or medical information. BIF may monitor, moderate, remove, redact, reject, or refuse to publish user-generated content in its discretion and in accordance with its policies.

8. Cookies, Analytics, and Similar Technologies

BIF uses cookies and similar technologies to remember settings, keep users signed in, secure sessions, understand how the site is used, improve performance, and measure content effectiveness.

Your browser may permit you to block or delete cookies, but some site functionality may not work properly if you do so. Where required by law, BIF will provide cookie choices or consent mechanisms before using non-essential cookies or similar technologies.

9. Consumer Health Data and Health-Adjacent Privacy

Because BIF helps users locate breast imaging services and may collect information connected to a consumer's care-seeking activity, some information processed through the platform may qualify as consumer health data under certain state laws or may otherwise be treated as health-related information.

BIF uses health-related information only for the purposes reasonably necessary to operate the directory, process inquiries, administer listings, provide support, secure the platform, comply with law, and carry out other purposes described in this Policy. BIF does not use health-related information for materially different purposes without notice and any consent required by law.

If BIF experiences a reportable security incident involving covered health data and an applicable law requires notice, BIF will provide notification as required by that law.

For additional details, see our Consumer Health Data Addendum.

10. Provider, Facility, and Business Information

BIF may collect and publish business information relating to facilities and healthcare practices, including facility name, address, website, services, hours, accreditations, certifications, phone numbers, and provider-supplied descriptive content. To the extent that business information also identifies an individual, BIF will treat it as personal information where required by law.

Provider representatives are responsible for ensuring that the content they submit is accurate, current, and authorized for publication, and for providing required notices to any colleagues or alternate contacts whose information they submit to BIF.

11. Payment and Subscription Information

If BIF offers paid enhanced profiles or other subscriptions, transaction processing is handled by third-party payment processors. BIF does not store full payment card numbers or card security codes. BIF may retain billing contact details, subscription status, invoice records, plan history, renewal status, customer-service communications, and related business records as needed for account administration, tax, accounting, and legal purposes.

12. Security

BIF uses administrative, technical, and physical safeguards designed to protect personal information appropriate to the nature of the information and the risks involved. These measures may include access controls, least-privilege access, role-based permissions, secure development practices, encryption in transit, secure credential handling, logging, vendor oversight, moderation controls, and incident-response procedures.

No internet or storage system is absolutely secure. Accordingly, BIF cannot guarantee absolute security, but it will take commercially reasonable steps to protect information in its possession and control.

13. Data Retention

BIF retains personal information for as long as reasonably necessary for the purposes described in this Policy, including to provide services, maintain listings, operate subscriptions, complete transactions, resolve disputes, enforce agreements, investigate incidents, comply with legal obligations, preserve evidence, and maintain appropriate business and financial records.

Retention periods may vary based on the type of information, the sensitivity of the information, the purpose for collection, whether the information is public-facing, whether a legal hold applies, and whether deletion would impair platform integrity, fraud prevention, or compliance obligations.

14. Your Privacy Rights

Depending on where you live and subject to applicable exceptions, you may have rights regarding your personal information. These rights may include the right to know, access, correct, delete, or obtain a copy of certain personal information; the right to opt out of targeted advertising, certain profiling, or the sale/sharing of personal information; the right to limit certain uses of sensitive personal information; and the right not to be discriminated against for exercising privacy rights.

To submit a privacy request, contact BIF at hello@breastimagingfinder.com. BIF may need to verify your identity before completing a request and may deny or limit a request as permitted by law.

Authorized agents may submit requests on behalf of individuals where allowed by law, subject to identity and authority verification.

California residents may have rights under the California Consumer Privacy Act, as amended, including the right to know, delete, correct, and opt out where applicable.

If you are located in a state with a consumer health data law, you may have additional rights related to access, deletion, withdrawal of consent, or restrictions on the collection and sharing of consumer health data, subject to applicable exceptions.

To opt out of analytics tracking, use the "Opt Out" button on the privacy banner displayed at the bottom of the site, or contact us at the email address above.

15. Do Not Track and Global Privacy Controls

Some browsers or browser extensions may transmit "Do Not Track" or Global Privacy Control signals. Where required by law, BIF will process legally recognized opt-out preference signals for the relevant browser or device context. Because technical standards and legal requirements continue to evolve, BIF's response to such signals may vary by jurisdiction and implementation.

16. Children's Privacy

BIF is not directed to children under 13, and BIF does not knowingly collect personal information directly from children under 13 through the platform. If BIF learns that it has collected personal information from a child under 13 without appropriate authorization, it will take steps to delete the information as required by law.

17. Cross-Border Transfers

If personal information is transferred to or processed in a country other than the one in which it was collected, that information may be subject to the laws of the destination country. BIF will take reasonable steps to ensure that transferred data remains protected in a manner consistent with this Policy and applicable law.

BIF may contain links to third-party websites, maps, scheduling tools, provider websites, payment pages, videos, forms, or social features. BIF is not responsible for the privacy, security, content, or practices of those third parties, and users should review the privacy policies and terms of those services before interacting with them.

19. Changes to This Privacy Policy

BIF may update this Privacy Policy from time to time to reflect business changes, legal developments, operational needs, or product changes. When BIF makes material changes, it will update the Effective Date and provide additional notice where required by law. Your continued use of the platform after the updated Policy becomes effective is subject to the revised Policy, except to the extent applicable law requires a different form of notice or consent.

20. Contact Us

If you have questions about this Privacy Policy or BIF's privacy practices, contact:

You are leaving Breast Imaging Finder

You are about to visit:

This link goes to a website that is not operated by Breast Imaging Finder. We are not responsible for the content or privacy practices of external sites.

Continue

We use cookies for essential site functionality and collect anonymized analytics (such as page views) to help providers understand their visibility. We do not sell or share your personal information.

Privacy Policy