Effective date: April 23, 2026 · STTIL Solutions LLC
STTIL Solutions LLC ("STTIL Solutions," "we," "us") is committed to handling data with transparency and care. This Privacy Policy explains what information we collect, how we use it, and your rights regarding that information — across all STTIL Solutions products and this website.
We operate Signal CGM, a B2B workflow tool for DMEPOS billing teams. Our data architecture is built around a core principle: collect the minimum necessary, store nothing we don't need.
Signal CGM does not store Protected Health Information (PHI). The sole crosswalk key is your organization's internal patient_id (MRN or account number). We do not collect, store, or process patient names, dates of birth, Social Security numbers, addresses, insurance member IDs, or any other direct patient identifiers. Your staff maintains the patient_id ↔ patient identity mapping in your own system of record.
Data Signal CGM processes per patient record:
This data is used solely to calculate coverage expiry and produce your prioritized worklist. It is not sold, shared with third parties, or used for any purpose outside your organization's workflow.
When you request a walkthrough, contact us via email, or register for Signal CGM access, we collect:
We use this information to respond to your inquiry, schedule walkthrough sessions, and communicate about your use of Signal CGM. We do not sell or share your contact information with third-party marketers.
This website (sttilsolutions.com) does not currently use third-party analytics trackers or advertising cookies. If we add analytics in the future, we will update this policy and provide opt-out options. Standard server logs (IP address, browser type, pages visited, timestamps) may be retained for security and operational purposes and are not used for marketing profiling.
Signal CGM is self-hosted on a Hostinger VPS. Data is encrypted at rest and in transit. Audit logs use hashed patient_id values — never raw identifiers. We are in the process of requesting a Business Associate Agreement (BAA) with our hosting provider as required under HIPAA for systems that may process data in proximity to PHI contexts.
STTIL Solutions does not use Convex, Supabase, or any third-party managed database service for Signal CGM at this time. All data remains on our self-operated infrastructure.
Signal CGM's core coverage calculation engine does not use AI or send patient data to external AI APIs. If AI-assisted features are added in future phases, we will request applicable BAAs and update this policy before any patient-adjacent data is processed externally.
Patient workflow records (patient_id, coverage calculations, worklist entries) are retained for the duration of your organization's active subscription and deleted within 30 days of account closure upon request. Business contact information is retained as long as your account is active or as needed for legal and operational purposes.
Depending on your jurisdiction, you may have the right to:
To exercise any of these rights, contact us at sttilsolutionsllc@pm.me. We will respond within 30 days.
STTIL Solutions products are designed for business use by healthcare and billing professionals. We do not knowingly collect personal information from individuals under 18 years of age.
We may update this Privacy Policy as our products evolve or as legal requirements change. We will notify active users of material changes via email at least 14 days before changes take effect. The effective date at the top of this page reflects the most recent revision.
Privacy questions, data requests, and BAA inquiries:
STTIL Solutions LLC
sttilsolutionsllc@pm.me
See also: Terms of Use · Return to sttilsolutions.com