Privacy Policy

Placeholder. Replace this content with the legally-reviewed privacy policy for the CT EVV mobile application. Use this page structure as a starting point.

Information we collect

The CT EVV mobile app collects only the information needed to verify visits and meet federal EVV requirements: caregiver identity, consumer reference, visit type, location (during active visits only), check-in / check-out timestamps, and device metadata for security.

How we use it

To create auditable visit records, satisfy the 21st Century Cures Act EVV mandate, prevent fraud, and provide your agency with operational visibility into care delivery.

Where data lives

Visit data is transmitted over HTTPS / TLS and stored in a secure, multi-tenant database isolated by agency. Credentials are stored in the device's hardware-backed secure enclave and are never transmitted in plaintext.

Location data

Location is collected only during active visits. The app does not collect location data when no visit is in progress.

Sharing

We do not sell personal information. Data is shared only with your employing agency and, where required by law, with state Medicaid programs and EVV aggregators.

Your rights

Contact your agency administrator for questions about your data, or write to privacy@cozzitech.com.