Privacy Policy

This Privacy Policy applies to information collected through the RateScope public site, report preview pages, waitlist and availability forms, email communications tied to those flows, and the near-term paid digital report flow when checkout is enabled.

It does not create a separate patient-data or clinical-record service. The site is a benchmark information product and should not be used to submit treatment records, patient charts, or other protected health information.

We collect information in a few categories:

• Information you provide directly, such as your email address when you join a report waitlist or request an availability update.
• Context attached to that request, such as the report slug, payer brand, payer display name, state, CPT code, credential bucket, interest key, release ID, and source label tied to the page or CTA you used.
• Usage and interaction data from the public site, such as report preview views, checkout clicks, notify submissions, and related page-level analytics events.
• Error and diagnostic information generated when the site or browser reports a failure, which can include page URLs, browser and device context, and other technical debugging information sent at the time of the error.
• When checkout goes live, transaction and fulfillment metadata such as buyer email, order ID, report release purchased, delivery status, resend status, and associated support logs.

We do not use the public site as a place to collect patient treatment files, and the product is not an individual provider-rate lookup tool.

We use information to operate and improve the service, including to:

• send the waitlist, availability, or delivery email you asked for;
• fulfill paid report delivery and support resend or troubleshooting workflows;
• measure which report pages, articles, and conversion paths are working;
• debug site failures, prevent abuse, and maintain operational logs;
• keep internal records for product operations, auditing, and legal compliance; and
• respond to support, unsubscribe, deletion, correction, or notice requests.

The public site uses third-party tools and hosted systems, including:

• Vercel for site hosting and related application infrastructure.
• PostHog for product analytics, interaction measurement, and feature-flag support.
• Sentry for error monitoring and diagnostic telemetry.
• Resend for transactional emails such as waitlist confirmations, operator notifications, report-availability messages, and report-delivery emails.
• Lemon Squeezy, when checkout is enabled, for payment handling, tax handling, and merchant-of-record responsibilities.
• Vercel Blob and Supabase (if enabled) for mirrored operational storage or admin data if those integrations are enabled for a given environment.

When checkout is live, we expect to receive order and fulfillment metadata needed to deliver the product, but not full payment card numbers.

The site may use cookies, local storage, or similar browser technologies through PostHog and related application tooling to understand page views, conversion events, feature exposure, and site performance.

This implementation pass does not add a separate cookie-consent banner. By continuing to use the public site, you acknowledge that analytics and operational technologies may run as described here. You can also limit certain storage or tracking behaviors through your browser settings.

We retain waitlist, delivery, analytics, and support information for as long as reasonably needed for site operations, report delivery, audit trails, troubleshooting, abuse prevention, and legal compliance. Exact retention may vary by environment and enabled integrations.

We use commercially reasonable steps to protect operational data, but no internet-connected service can promise absolute security.

Currently, privacy and support requests are handled manually through support@ratescope.co.

• You can ask to access, correct, or delete the information you submitted through the public site.
• You can ask to stop receiving future availability or operational emails tied to your address.
• You can send support questions, legal notices, or privacy concerns to the same address.

The service is not directed to children and is not intended to collect data from minors. We also do not want patient records, diagnosis information, treatment notes, insurance member numbers, or other clinical or highly sensitive personal data submitted through the public site.

We may revise this Privacy Policy over time as the site, checkout flow, analytics stack, or legal posture changes. If we do, we will post the revised version here and update the effective date.

• Brand/operator name: RateScope
• Legal entity: Hyboria, Inc., a Delaware corporation
• Notice address: 8063 Challis Rd. #1054, Brighton, MI 48116
• Governing law: Delaware

Contact support@ratescope.co for privacy requests, unsubscribe requests, support questions, or legal notices.