Continuity of Care Colorado
Send Us Your Client

Legal · Privacy

Privacy Notice

How Continuity of Care Colorado collects, uses, and protects information about attorneys, firms, and the clients they refer.

Last updated: 2026-05-07

Who We Are

Continuity of Care Colorado (“Continuity,” “we,” “us”) is a Colorado-based service that connects personal injury attorneys with a vetted network of treating clinics. We coordinate client referrals, support records flow during active treatment, and administer healthcare liens on behalf of our network providers.

Continuity is not a healthcare provider and is not a HIPAA covered entity in its own right. The clinics in our network are covered entities and maintain their own Notices of Privacy Practices governing patient health information they collect during treatment. When we relay protected health information (“PHI”) to or from a network clinic, we do so under a Business Associate Agreement with that clinic and we handle the information consistent with the HIPAA Privacy and Security Rules.

What This Notice Covers

This notice explains:

  • The categories of information we collect about attorneys, firms, and the clients they refer.
  • How we use that information to deliver our services.
  • Who we share it with and why.
  • How we protect it.
  • The choices and rights you have over your information.

This notice applies to continuityof.care and any related services we operate under the Continuity of Care Colorado name. It does not cover the practices of network clinics, which are separately governed by each clinic’s own privacy notice.

Information We Collect

From Attorneys and Firms

When you submit a referral, contact form, or sign up for our portal, we collect:

  • Identifying information: attorney name, firm name, role, mailing address.
  • Contact information: phone number, email address, preferred contact method.
  • Account information: portal credentials and usage history, when applicable.
  • Communications: messages, notes, and case-related documents you send to us.

About Referred Clients

When you refer a client, you provide information about that client that may include protected health information. This typically includes:

  • Client name, date of birth, and contact information.
  • Date and circumstances of the accident or injury.
  • Insurance and claim information (carrier, policy, claim number, adjuster).
  • Other facts you provide that are necessary to schedule and coordinate care.

We use this information solely to introduce the client to a network clinic, support scheduling, and administer the resulting lien if one is established. We do not provide medical care.

Automatic Collection from Our Website

When you visit continuityof.care, we collect limited technical information automatically:

  • IP address, browser type, device type, and operating system.
  • Pages visited, referring URL, and timestamps.
  • Performance and error telemetry necessary to operate the site (e.g., page-load timing).

We use only essential cookies and first-party performance telemetry. We do not run third-party advertising or behavioral-tracking pixels on this site.

How We Use Information

We use the information we collect to:

  • Route referrals to the appropriate network clinic and confirm scheduling.
  • Communicate with you about cases, treatment status, records readiness, and lien balances.
  • Administer healthcare liens, payment, and settlement coordination.
  • Maintain and improve our portal, website, and supporting services.
  • Comply with our legal and contractual obligations, including obligations under Business Associate Agreements.
  • Detect and prevent fraud, abuse, and security incidents.

How We Share Information

With Network Clinics

We share client information with the clinic chosen to provide treatment. That clinic becomes the treating provider and the covered entity responsible for the client’s health record going forward. Each clinic’s privacy practices apply to information it collects directly from the client during treatment.

With the Referring Attorney or Firm

We share treatment status, records readiness, and lien information with the attorney or firm of record for the client. This is the core service we provide.

With Service Providers

We work with third-party service providers (for example: hosting, email delivery, document storage, analytics for site performance) that process information on our behalf under written contracts that require them to protect it and use it only for purposes we direct. Where these providers handle PHI on our behalf, they are engaged as subcontractor business associates under HIPAA.

For Legal and Safety Reasons

We may disclose information when we reasonably believe disclosure is necessary to:

  • Comply with a subpoena, court order, or other legal process.
  • Comply with applicable laws and regulations.
  • Protect the safety or rights of our network, our staff, our users, or the public.
  • Investigate or prevent fraud, abuse, or violations of our terms.

In Connection with a Business Transition

If Continuity is involved in a merger, acquisition, financing, or sale of assets, information may be transferred as part of that transaction. The recipient will remain bound by the terms of this notice or provide notice of any change.

Sale of Information

We do not sell personal information or PHI. We do not share information with third parties for their own marketing or advertising purposes.

HIPAA Scope and Business Associate Status

Where Continuity receives, creates, maintains, or transmits PHI on behalf of a network clinic, we operate as a Business Associate under HIPAA. We use and disclose PHI only as permitted by the underlying Business Associate Agreement, only as permitted or required by HIPAA, or as otherwise required by law. We maintain administrative, physical, and technical safeguards designed to protect PHI consistent with the HIPAA Security Rule.

If a client wishes to exercise rights regarding their treatment records (access, amendment, accounting of disclosures, restrictions), those requests should be directed to the treating clinic. Continuity will support the clinic in honoring valid requests as required by the HIPAA Privacy Rule and our agreements with the clinic.

Your Rights and Choices

Depending on your relationship to us and the laws that apply to you, you may have rights regarding your information. To exercise any of the following, contact us using the information at the bottom of this notice:

  • Access. Request a copy of contact and account information we hold about you or your firm.
  • Correction. Request that inaccurate or incomplete information be corrected.
  • Deletion. Request that we delete information we hold about you, subject to legal and contractual retention obligations.
  • Restrict communications. Opt out of non-essential communications. We will continue to send communications necessary to administer active referrals and liens.
  • Authorization revocation. Where information was provided under an authorization, revoke that authorization in writing for future uses and disclosures.

For client information, requests should generally be directed to the treating clinic. We will support those requests as a Business Associate consistent with the clinic’s instructions.

Cookies and Analytics

continuityof.care uses only essential first-party cookies required for site functionality and (where applicable) authenticated portal sessions. We use first-party performance telemetry (such as page-load timing) to keep the site reliable. We do not use third-party advertising cookies, retargeting pixels, or behavioral-tracking services on this site.

Data Security

We use industry-standard administrative, physical, and technical safeguards designed to protect information from unauthorized access, use, alteration, and disclosure. No system can be guaranteed completely secure. If we become aware of a breach involving PHI we hold, we will notify the affected covered entity as required under HIPAA, and any other affected parties as required by applicable law.

Data Retention

We retain information for as long as necessary to deliver the services described in this notice, to comply with our legal, regulatory, and contractual obligations (including HIPAA-required retention periods applicable to PHI we hold as a Business Associate), and to enforce our agreements.

Children’s Privacy

Continuity’s services are intended for legal professionals. We do not knowingly collect information directly from children. Where a referred client is a minor, the referring attorney is responsible for any consents required to share that minor’s information with the network for treatment coordination.

Out-of-State Visitors

Continuity is operated from Colorado. If you access continuityof.care from outside Colorado, you understand that your information will be processed in the United States.

Changes to This Notice

We may update this notice from time to time. Material changes will be posted on this page with a new “Last updated” date. Where required by law or by our Business Associate Agreements, we will provide additional notice.

Contact Us

If you have questions about this notice, or wish to exercise any of the rights described above:

Continuity of Care Colorado
Privacy inquiries: legal@continuityof.care
Phone: (720) 702-0600

For complaints about how we handle PHI as a Business Associate, you may also contact the treating clinic’s Privacy Officer or file a complaint with the U.S. Department of Health and Human Services, Office for Civil Rights. We will not retaliate against anyone for filing a complaint.

See also: Terms of Service.