Privacy by default.

Sorva handles protected health information under HIPAA and runs an SMS messaging program for referral coordination. We sign BAAs with every customer, encrypt data in transit and at rest, and never share mobile opt-in data with third parties for any purpose.

Health information

HIPAA & PHI

PHI handling

All clinical data flows through Sorva under a Business Associate Agreement (BAA). Information is used only to complete the referral, prior auth, and follow-up loop you initiated.

Encryption

Encrypted in transit (TLS 1.2+) and at rest (AES-256). Access logs are immutable and reviewable on request.

Retention

Patient identifiable data is retained only as long as needed to complete the referral cycle and meet HIPAA documentation requirements. De-identified analytics may be retained longer.

Third parties

We share PHI only with the payers, specialists, and clearinghouses required to complete a referral or prior auth — never with marketers, data brokers, or any party that hasn't signed a BAA with us.

Your rights

Patients have the right to request access, correction, and deletion of their data, consistent with HIPAA. Providers may direct such requests to appointments@sorvahealth.com.

SMS messaging

Mobile messaging program

Program

Sorva sends SMS to support the referral and care-coordination loop. Messages may include appointment confirmations and reminders, prior-authorization status updates, scheduling links from your provider, and operational notices about a referral your physician initiated. We do not send marketing or promotional messages.

Consent

Patients opt in at the point of care — typically by providing a mobile number during intake or check-in and confirming consent to receive transactional SMS related to their referral. Provider and staff numbers are opted in by their organization during platform onboarding. Each consent is logged with timestamp, source, and the language the user agreed to.

Frequency

Message frequency varies based on activity in your referral. Most patients receive between 1 and 6 messages per referral episode.

Mobile opt-in data

No mobile information — including phone numbers, SMS opt-in records, or consent data — will be shared with third parties or affiliates for marketing or promotional purposes. Mobile opt-in data and consent are excluded from every category of data sharing described elsewhere in this policy and are not sold, rented, or disclosed to any third party for marketing purposes.

Opt out & help

Reply STOP to any Sorva message to unsubscribe. You'll receive a single confirmation, then no further messages. Reply HELP for support information, or email appointments@sorvahealth.com.

Carrier notice

Message and data rates may apply. Delivery is subject to your mobile carrier's network — carriers are not liable for delayed or undelivered messages.

Questions about this policy? Email appointments@sorvahealth.com. We'll respond within five business days.

LAST UPDATED · 2026-06-04

The routing layer between primary care, outpatient specialists, and the patients moving between them.

Product

Platform How it works For PCPs For Specialists Testimonials Prior Auth

Company

About Team Contact

Trust

Privacy Terms