Business information only
PRP can begin with specialty, payer mix, approximate claim volume and value, supported pathway, and documentation readiness. None of those questions requires a patient identifier.
Security & PHI
The PRP website, scheduling pages, and claim-fit review are designed for business-level information only. Patient records move through a separate onboarding workflow.
Never place patient names, dates of birth, member IDs, claim numbers, or clinical documents into a public or scheduling field.
PRP can begin with specialty, payer mix, approximate claim volume and value, supported pathway, and documentation readiness. None of those questions requires a patient identifier.
When the relationship requires PRP to receive protected health information, the parties establish the appropriate services agreement, business associate agreement, and secure intake method first.
PRP’s operating model is designed around controlled access, minimum-necessary use, defined workflow ownership, and exchange through approved systems rather than public forms or ordinary scheduling tools.
Security requirements, system access, document exchange, retention, and client-specific controls are reviewed as part of implementation.
Authoritative reference
HHS explains that covered entities and business associates generally use written agreements that define permitted uses of PHI and require appropriate safeguards.
Review HHS business-associate guidanceThis page does not represent SOC 2 certification or any other third-party security certification.Security review
Start with business-level information; PRP will identify the appropriate next step.
Request a claim review