Privacy Policy

Last updated: May 5, 2026

1st Medical Billing (“we,” “our,” or “us”) provides outsourced medical billing, denial management, and revenue cycle services to medical practices in California. This Privacy Policy explains what information we collect through our public website at 1stmedbill.com, how we use it, and the choices you have. Please read it carefully.

Scope of this Policy

This Policy applies only to information collected through this public website and related sales and intake activities. It does not apply to Protected Health Information (PHI) we handle on behalf of our clinical clients. PHI is governed by the Health Insurance Portability and Accountability Act (HIPAA) and by the Business Associate Agreements (BAAs) we sign with each client. If you are a patient and have questions about your health information, please contact your healthcare provider directly.

Information We Collect

When you visit or interact with this website, we may collect:

• Information you give us directly through the contact form, an email, or a phone call: your name, your practice or organization name, your business phone number, your business email address, and any details you choose to share about your billing needs.
• Information collected automatically when you load a page: your IP address, browser type, device type, the page you came from, the pages you view, and timestamps. This is standard server log and analytics data.
• Information from advertising and measurement tools: if you click an ad or interact with our site, Google Ads conversion tracking and similar tools may set cookies that let us measure which ads led to which inquiries.

We do not ask for, and do not want, patient health information through this website. If you accidentally send PHI through the public contact form, we will delete it and ask you to use the secure channel established under your BAA instead.

How We Use Your Information

We use the information you give us to:

• Respond to your inquiry, schedule a revenue cycle audit, and answer questions about our services.
• Send occasional follow-up about the inquiry you submitted, or about services that are clearly relevant to a practice like yours. You can ask us to stop at any time.
• Keep records of business communications, as is standard for any service provider.
• Improve the website and understand which marketing channels actually bring qualified inquiries.

We do not sell your information. We do not rent it. We do not share it with unrelated third parties for their marketing.

Cookies and Tracking

Our website uses cookies and similar technologies for two main purposes:

• Site operation: cookies that keep the site working correctly and remember basic preferences during your visit.
• Advertising measurement: Google Ads conversion tracking (account AW-18126295805) and the Google global site tag (gtag) record whether a visit that came from one of our ads resulted in a form submission or call. This tells us which ads work, so we are not flying blind on our marketing spend.

You can disable cookies in your browser settings, opt out of personalized Google advertising at adssettings.google.com, and use private browsing if you prefer not to be measured. Disabling cookies will not prevent you from using this website.

Service Providers We Rely On

We use a small number of third-party providers to actually run the website and our sales workflow. These include:

• A hosting provider that runs the web server.
• Google Ads and Google Analytics products for advertising measurement and basic site analytics.
• An email service used to receive form submissions and reply to leads.

These providers only see what they need to do their job. They are bound by their own published terms and, where applicable, by data processing agreements with us. None of them receive PHI through this public website, because the public website does not collect PHI.

How Long We Keep Information

We keep website inquiries and the resulting email correspondence for up to three years from your last interaction with us, so we can pick up the conversation if you come back, and so we have ordinary business records. After that we delete them, unless a longer retention period is required by law or by an active client relationship. Server logs and analytics data are retained for shorter periods consistent with each provider’s defaults.

Your Choices and California Rights

If you are a California resident, the California Consumer Privacy Act (CCPA), as amended, gives you the right to:

• Know what personal information we have collected about you and how we have used it.
• Delete personal information we have collected from you, subject to limited exceptions (for example, records we are required to keep).
• Correct inaccurate personal information we maintain about you.
• Opt out of any “sale” or “sharing” of your personal information for cross-context behavioral advertising. We do not sell personal information, and we do not engage in cross-context behavioral advertising of your personal information beyond the standard Google Ads conversion measurement described above.
• Be free from retaliation for exercising any of these rights.

To exercise any of these rights, email us at [email protected] with the subject line “Privacy Request.” We will verify your identity (usually by confirming you control the email address or phone number we already have on file) and respond within the timeframe required by California law.

HIPAA and Protected Health Information

1st Medical Billing acts as a Business Associate of its clinical clients. PHI we handle in that role is governed by HIPAA, by the HITECH Act, and by the Business Associate Agreement signed with each client. Those obligations are separate from this Privacy Policy, are stricter than the general rules described here, and take precedence over anything in this Policy with respect to PHI.

If you are a patient with a question about your health information, please contact your provider. Your provider is in the best position to address your request and, if needed, can route the question to us through the proper channel.

Children

This website is intended for medical practice owners, administrators, and other business contacts. It is not directed to children under 13, and we do not knowingly collect personal information from children through this site.

Security

We use industry-standard safeguards to protect the information you submit through this website, including encryption in transit (HTTPS) and access controls on the systems that store inquiries. No method of transmission over the internet is 100% secure, so we ask that you do not send sensitive information, and especially not PHI, through the public contact form.

Updates to this Policy

We may update this Privacy Policy from time to time. When we do, we will update the “Last updated” date at the top of the page. If we make a material change, we will give clear notice on the website, and where appropriate, by email to people we have an active relationship with.

Contact Us

Questions about this Privacy Policy, or a privacy request, can go to:

1st Medical Billing
7453 Woodley Ave.
Lake Balboa, CA 91406
Phone: 818-741-2620
Email: [email protected]