Last updated: April 2026
Heerio collects the minimum information necessary to operate the check-in service. For each practice, we store the practice name, professional names, and professional phone numbers used to deliver SMS notifications. When a client checks in, we create an arrival record that contains only the professional selected and a timestamp. We never collect, store, or transmit full client names, date of birth, diagnosis, insurance information, or any other protected health information (PHI).
Arrival records are temporary. Each record is automatically deleted 4 hours after it is created. We do not maintain a history of client visits and do not build any profile of individuals who use the kiosk.
Professionals who provide their mobile phone number during practice onboarding consent to receive SMS notifications when a client arrives for their appointment. Message frequency varies based on appointment volume. Message and data rates may apply. Reply STOP to opt out or HELP for help.
Heerio uses the following third-party services to operate:
Heerio is designed to minimize contact with protected health information. Because we do not store full client names or clinical data, Heerio operates as a notification layer rather than a covered entity system. Practices are responsible for their own HIPAA compliance obligations and should consult their compliance officer if they have questions about how Heerio fits into their workflow. In the event of a data breach affecting practice or professional information, affected parties will be notified within 72 hours.
Heerio does not use tracking cookies or third-party analytics. The kiosk and dashboard pages do not load any advertising or behavioral tracking scripts.
Questions about this policy? support@heerio.app