Pathway Systems LLC ("Pathway Systems," "we," "us," or "our") operates Patient Path, an SMS-based communication platform that helps healthcare providers stay connected with patients during their care journey.
Trust and confidentiality are fundamental to the physician–patient relationship. This Privacy Policy explains how we collect, use, and protect information obtained through Patient Path.
By texting our program number, responding "YES" to an enrollment message, or having your healthcare provider enroll you with your authorization, you consent to receive automated SMS messages related to your care.
Patient Path provides the technical tools that support consent collection and enforcement; your healthcare provider remains responsible for ensuring that your participation is authorized in accordance with applicable law.
Message frequency varies based on your care pathway—from several messages per day during early recovery to periodic check-ins over time. Message and data rates may apply. Carriers are not liable for delayed or undelivered messages.
Reply HELP for assistance or STOP to opt out at any time. Consent to receive messages is voluntary and is not a condition of receiving medical treatment.
Not for Emergencies. Patient Path is not designed for medical emergencies. If you are experiencing a medical emergency, call 911 or go to your nearest emergency room. Do not rely on text messaging for urgent medical concerns.
Patient Path is intended for individuals 18 years of age or older. Patients under 18 may only participate with appropriate parental or guardian consent obtained by the healthcare provider.
We collect only the minimum information necessary to deliver messaging services:
Contact Information: Your mobile phone number.
Enrollment Information: Your name, your healthcare provider, procedure type, and procedure date.
Message Data: The content of SMS messages exchanged between you and Patient Path.
When your healthcare provider enrolls you, they are responsible for obtaining your authorization and ensuring compliance with their own policies and applicable law. Patient Path relies on provider-directed enrollment and does not independently verify provider-obtained consent.
We use your information to deliver care-related messages based on your provider's instructions, support communication between you and your care team, and improve the reliability and safety of our service.
We do not use your information for advertising or sell it to third parties.
Information Only. Messages from Patient Path are intended to support—not replace—your relationship with your healthcare provider. Always follow up directly with your care team if you have questions about your treatment.
Patient Path may use artificial intelligence to help respond to your questions. AI responses are guided by your provider's instructions and clinical content. AI does not make independent clinical decisions, and we do not use your information to train public AI models.
Information that identifies you and relates to your healthcare is Protected Health Information (PHI) under HIPAA. Pathway Systems treats your information in accordance with HIPAA and applicable state privacy laws, and operates as a Business Associate to healthcare providers using our platform.
Additional details regarding provider responsibilities, system use, and consent obligations are set forth in the Patient Path Terms & Conditions.
We may share information with vendors who help operate Patient Path (such as messaging and hosting providers). These vendors are bound by Business Associate Agreements and confidentiality obligations.
We may also disclose information when required by law, to protect patient safety, or to address fraud or security incidents.
We do not share your information with marketers or advertisers.
We protect your information using reasonable and appropriate safeguards, including encryption, access controls, and secure cloud infrastructure located in the United States. Standard SMS is not end-to-end encrypted during transmission over carrier networks; by enrolling, you acknowledge this limitation.
In the unlikely event of a data breach affecting your information, we will notify you as required by HIPAA and applicable state law.
Reply STOP to any message to stop receiving texts. This halts future messages but does not automatically delete information already collected. Certain information may be retained as required for healthcare operations, legal compliance, or as directed by your healthcare provider.
To request deletion of your information or ask questions about your data, contact us at the address below. We will respond within 30 days. You may also have rights to access or request copies of your information under HIPAA, which you may exercise through your healthcare provider.
We retain information for the period necessary to support your care and comply with legal requirements, after which it is securely deleted.
We may update this Privacy Policy from time to time. Updates will be posted on our website, and we may notify you by SMS when appropriate. Continued use of Patient Path after an update constitutes acceptance of the revised policy.
Questions about this Privacy Policy or your information may be directed to: