Privacy Policy

Steri-Pass ("we," "our," or "us") values your privacy and is committed to protecting your personal and organizational information. This Privacy Policy explains what information we collect, how we use it, how we protect it, and what rights you have with respect to your data. It applies to all users of the Steri-Pass mobile and web applications.

1. Information We Collect

We collect only the information necessary to operate the Steri-Pass platform and provide its services. The categories of information we collect include:

We collect this information directly from you when you register an account, use the App, or interact with our support team, and automatically through your use of the App.

2. How We Use Your Information

We use the information we collect for the following purposes:

• To operate and manage the surgical tray tracking system, including Check-In, Check-Out, and Re-Check-In workflows.
• To match trays to scheduled surgical cases and ensure accurate processing records.
• To calculate and process applicable fees in accordance with the Terms of Use and Service Agreement.
• To send automated notifications regarding tray status, approaching deadlines, and storage fee accrual.
• To generate operational reports for hospitals, vendors, and Sterile Processing Departments (SPDs).
• To provide customer support and respond to inquiries.
• To improve the functionality, performance, and user experience of the App.
• To comply with applicable laws, regulations, and legal obligations.

We do not use your information for automated decision-making or profiling that produces legal or similarly significant effects without your consent.

3. How We Share Your Information

Steri-Pass does not sell, rent, or trade your personal information to third parties. We may share information only in the following limited circumstances:

• With Hospitals and SPDs: Tray data and vendor information are shared with the hospital facilities and SPD staff necessary to perform tray processing operations.
• With Vendors: Hospitals and SPDs may share tray status and processing data with the relevant vendor associated with a given tray.
• With Service Providers: We work with trusted third-party vendors (such as payment processors, cloud hosting providers, and notification services) who process data on our behalf. These providers are contractually bound to use data only as directed by Steri-Pass and in accordance with this Policy.
• For Legal Compliance: We may disclose information if required to do so by law, court order, or governmental authority, or when we believe disclosure is necessary to protect the rights, property, or safety of Steri-Pass, our users, or the public.
• In a Business Transfer: In the event of a merger, acquisition, or sale of assets, user information may be transferred to the successor entity, subject to the same privacy protections described in this Policy.

4. Data Security

We take the security of your information seriously and employ the following safeguards:

• All data is encrypted in transit using TLS (Transport Layer Security) and encrypted at rest using industry-standard encryption protocols.
• Payment information is handled exclusively through a PCI-DSS-compliant payment processor. Steri-Pass does not store full credit card numbers.
• Access to user data is restricted to authorized personnel on a need-to-know basis and is protected by role-based access controls.
• We implement technical and organizational measures designed to prevent unauthorized access, loss, misuse, alteration, or destruction of your data.
• Our systems are monitored for security vulnerabilities and updated regularly.

5. Data Retention

We retain personal information for as long as your account is active or as needed to provide services, comply with legal obligations, resolve disputes, and enforce our agreements. When information is no longer required for these purposes, we securely delete or anonymize it in accordance with our internal retention schedule.

6. Your Privacy Rights

Depending on your location and applicable law, you may have the following rights with respect to your personal information:

• Right to Access: Request a copy of the personal information we hold about you.
• Right to Correction: Request that we correct inaccurate or incomplete information.
• Right to Deletion: Request that we delete your personal information, subject to legal retention requirements.
• Right to Restrict Processing: Request that we limit how we use your information in certain circumstances.
• Right to Data Portability: Request a copy of your data in a structured, machine-readable format where applicable.
• Right to Opt-Out of Marketing: Unsubscribe from any marketing or promotional communications at any time.

To exercise any of these rights, please contact us at support@steri-pass.com. We will respond to verified requests within thirty (30) days. We may need to verify your identity before processing certain requests.

Some rights may be limited where we are required to retain information for legal, contractual, or legitimate business purposes.

7. Cookies and Tracking Technologies

The Steri-Pass web application may use cookies and similar tracking technologies (such as local storage and session tokens) to support the following purposes:

• Session Management: Keeping you logged in and maintaining your session state.
• Preferences: Remembering your settings and preferences within the App.
• Analytics: Understanding how users interact with the App to improve performance and usability.

Cookies used by Steri-Pass do not store sensitive personal data such as passwords or payment information. You may configure your browser to refuse cookies, though doing so may affect the functionality of certain features of the App.

We do not use third-party advertising cookies or track users across unaffiliated websites.

8. Children's Privacy

The Steri-Pass platform is intended for use by healthcare professionals and business representatives. It is not directed at individuals under the age of 18. We do not knowingly collect personal information from minors. If we become aware that we have inadvertently collected information from a minor, we will take steps to delete it promptly.

9. Third-Party Links and Integrations

The App may contain links to third-party websites or integrate with external systems (such as hospital scheduling platforms). Steri-Pass is not responsible for the privacy practices of those third parties. We encourage you to review the privacy policies of any external services you access through or in connection with the App.

10. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

• Post the updated Policy within the App with a revised effective date;
• Notify registered users by email at least fourteen (14) days before material changes take effect; and
• Where required by law, obtain your consent before applying significant changes.

Continued use of the App after the effective date of any update constitutes your acceptance of the revised Policy. We encourage you to review this Policy periodically.

11. Governing Law

This Privacy Policy is governed by and construed in accordance with the laws of the State of Florida. Any disputes arising under or related to this Policy shall be subject to the exclusive jurisdiction of the courts located in Broward County, Florida.

Steri-Pass is headquartered in Coral Springs, Florida. If you are located outside the United States and use our App, please be aware that your information may be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your jurisdiction. By using the App, you consent to this transfer.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your personal information, please contact us: