TerpComm Website Privacy Policy

Last updated: [JANUARY 2026]

Who we are

We are TerpComm, a part of TerpComm, LLC. We provide interpreting and related language services, including services in healthcare and other sensitive environments.

This Privacy Policy explains how we collect, use, and protect personal information when you:

  • Visit www.terpcomm.com or any other TerpComm website
  • Submit a Request an Interpreter or other online form
  • Visit our payment site at pay.terpcomm.com to pay an invoice online
  • Communicate with us through the contact options listed on our website

For some services, especially healthcare-related interpreting, we may receive or create Protected Health Information (PHI) as a Business Associate under HIPAA. In those cases, our use and disclosure of PHI is also governed by HIPAA, applicable state law, and our contracts with covered entities.

If you have questions about this policy or how your information is handled, you can contact us at:

What personal data we collect

We collect information in two main ways:

  1. Information you choose to provide, for example through forms on our website or when you email or call us.
  2. Information collected automatically when you visit our sites, such as basic technical and security-related data.

Information you provide

Depending on how you interact with TerpComm, we may collect:

  • Contact information
    Your name, email address, phone number, mailing address, organization, and preferred language.
  • Service and scheduling information
    Information you provide when requesting an interpreter, asking for a quote, or communicating about a service, such as appointment date and time, general type of appointment, and language preferences.
  • Interpreter and contractor information
    If you apply to work with TerpComm or log into a portal as an interpreter or contractor, we may collect information related to your work history, certifications, and availability.
  • Invoice and billing information
    Limited billing information necessary to issue or track an invoice, such as invoice number, amount due, payment status, and basic billing contact details.

We do not ask you to include detailed medical or highly sensitive information in public web forms. If such information is needed, it is handled through secure, HIPAA-aligned systems, not public-facing forms.

Information collected automatically

When you visit our websites, we may automatically collect:

  • Device type, browser type, and basic system information
  • IP address and general region
  • Pages visited and time of visit
  • Basic session information used to keep the site secure and functional

We currently do not use Google Analytics or other third-party behavioral analytics tools on our main public site.

HIPAA and PHI

When we receive or create PHI while providing services for a healthcare provider or health plan:

  • We handle PHI only as permitted by HIPAA, applicable state law, and any Business Associate Agreement we have with that provider.
  • PHI is stored and processed in our backend HIPAA-aligned systems, separate from our public-facing website.
  • Our payment site (pay.terpcomm.com) does not expose PHI. It uses an invoice code and other non-PII fields.

Why we collect and use personal data

We collect and use information only for specific, legitimate purposes related to our services, including:

  • To provide and manage interpreting services
    Responding to requests for interpreters, scheduling and coordinating assignments, communicating about logistics, and managing interpreter and staff records.
  • To operate our websites and online tools
    Keeping our sites functional and secure, and preventing misuse and detecting suspicious activity.
  • To handle billing and payments
    Issuing invoices, confirming payments, and resolving payment questions or disputes.
  • To follow legal and contractual requirements
    Complying with HIPAA, state privacy laws, and other regulations, and meeting the terms of our contracts with clients and providers.
  • To send service-related notifications
    If you are an individual receiving interpreting services, we may contact you by phone, text, or email:
    • To confirm that an interpreter has been scheduled
    • To send reminders related to interpreting services
    • To notify you of changes, delays, or issues related only to interpreting services
    These messages are about interpreting logistics only and not the medical or appointment content itself.
  • To send marketing communications (only if you opt in)
    If you choose to receive updates, newsletters, or promotional information from TerpComm, we use your contact information to send those communications. You can opt out at any time.

We do not sell personal information and we do not use your data for targeted advertising across unrelated websites.

When we collect personal data

We collect information at the following times:

  • When you visit our websites, including pay.terpcomm.com
  • When you submit a form, such as Request an Interpreter or Contact Us
  • When you create or use a login to access a portal or secure page
  • When you send us an email, call us, or otherwise communicate with us
  • When you pay an invoice online using pay.terpcomm.com

Your decision to provide information is voluntary. However, if you choose not to provide information that is needed to schedule services or process a payment, we may not be able to provide those services.

Where your data is stored and processed

TerpComm’s websites and services are operated on servers primarily located in the United States.

If you are located outside the United States and choose to use our websites or services, you understand that your information may be transferred to, processed in, and stored in the United States, where privacy laws may be different from those in your home country.

For healthcare-related interpreting, PHI is stored in our backend HIPAA-aligned systems, subject to HIPAA and our contracts with covered entities.

How we share personal data

We share personal information only when necessary and only with appropriate safeguards. We may share information:

  • With your provider or organization
    When services are arranged through a hospital, clinic, school, government agency, or other organization, we may share relevant information with that organization in accordance with our agreements and applicable law.
  • With interpreters and staff
    We may share limited information necessary for an interpreter or staff member to deliver the service, such as appointment time, location, and language needs.
  • With service providers working on our behalf
    We use carefully selected vendors for hosting, email delivery, and payment processing (for example, Stripe for credit card payments). These providers are required by contract to:
    • Protect personal information
    • Use it only to provide services to TerpComm
    • Comply with applicable privacy and security standards
  • For legal, safety, or compliance reasons
    We may disclose information if required by law, court order, or government request, or if we believe it is necessary to protect the rights, safety, or property of TerpComm, our users, or others.
  • In business transitions
    If TerpComm undergoes a merger, acquisition, or other corporate change, personal information may be transferred as part of that transaction, subject to confidentiality and this policy (or any updated policy you are notified about).

We do not share your personal information with third parties for their own advertising, tracking, or profile-building purposes.

How we handle online payments with Stripe Express Checkout Elements

We use Stripe, Inc. as our payment processor for invoice payments made through pay.terpcomm.com using Stripe Express Checkout Elements.

What appears on pay.terpcomm.com

When you visit pay.terpcomm.com to pay an invoice, the page may display limited, non-PII invoice fields such as:

  • Invoice Code
  • Invoice Number
  • Amount Due
  • Transaction ID (after payment)
  • Payment Method
  • Date Paid

We intentionally do not load or display patient PHI or other sensitive personal details on this payment page. PHI remains in our backend HIPAA system.

Payments and credit card information

When you enter your credit or debit card information, that information is collected and processed directly by Stripe through their secure payment technology.

  • pay.terpcomm.com does not receive, store, or process your full credit card number, card security code (CVC), or complete payment credentials at any time.
  • We do not create or host our own credit card input fields. All sensitive card data is entered into Stripe-provided payment elements embedded on our site and sent directly to Stripe, bypassing our servers.

Data minimization and privacy

We follow a data minimization approach. We share with Stripe only the information strictly necessary to:

  • Authorize and process the payment
  • Verify the transaction
  • Support fraud prevention and compliance obligations

We do not sell, rent, or use payment data for advertising or profiling purposes.

Information we may receive from Stripe

After a payment is completed, we may receive limited, non-sensitive information from Stripe, such as:

  • Payment confirmation and transaction ID
  • Card brand (for example, Visa or Mastercard)
  • Last four digits of the card
  • Payment status (successful, pending, or failed)
  • Billing name or billing address if you provide it

We use this information only for:

  • Payment confirmation and receipts
  • Internal recordkeeping and reconciliation
  • Responding to support requests related to that payment
  • Accounting and audit purposes

Information we do not access

We never see or handle:

  • Full credit card numbers
  • Card verification codes (CVC / CVV)
  • Magnetic stripe data
  • Online banking credentials

All of this information is handled solely by Stripe.

Security and compliance

Stripe is a PCI-DSS Level 1 compliant payment processor, which is the highest level of security certification in the payments industry. By using Stripe Express Checkout Elements, sensitive payment information is protected using industry-standard encryption and security controls.

Stripe is an independent payment processor. The handling of payment information by Stripe is governed by Stripe’s own privacy and security practices. For more details, you can review Stripe’s Privacy Policy at stripe.com/privacy.

If you have questions about how your payment is processed or how we work with Stripe, you can contact us at privacy@terpcomm.com or use the contact options on our website.

How we protect your data

We use administrative, technical, and physical safeguards designed to protect personal information and PHI from unauthorized access, use, or disclosure. These include:

  • Limiting access to personal information to staff who need it to do their work
  • Using secure technologies and encryption where appropriate
  • Training our staff on privacy and security practices
  • Applying written policies for retention and disposal of confidential information

No method of transmission or storage is completely secure, but we work to align our practices with industry standards and legal requirements, including HIPAA where applicable.

If we experience a data breach affecting personal information that we control, we will follow applicable laws, including any required notifications. If we are acting as a Business Associate and handle data on behalf of a covered entity under HIPAA, we will notify that entity according to our contract with them.

How you can access and control your information

Depending on your relationship with TerpComm and where you live, you may have certain rights regarding your personal information, such as:

  • Accessing personal information we hold about you that is tied to our website or invoicing systems
  • Requesting corrections if your information is inaccurate
  • Requesting deletion of certain information, subject to legal, contractual, and operational requirements

These rights may not apply to PHI that we hold as a Business Associate under HIPAA, which is generally controlled by your healthcare provider or covered entity.

To make a request about your information or ask questions about your privacy rights, contact:

We may need to verify your identity before responding.

Marketing emails

If you receive marketing emails from TerpComm and no longer wish to receive them, you can:

  • Click the Unsubscribe or Manage preferences link in the email, or
  • Email us at ads@terpcomm.com requesting removal from marketing lists.

You may still receive service-related or legally required communications, such as appointment-related interpreter notifications or payment confirmations.

When this policy may change

We may update this Privacy Policy to reflect changes in our services, technology, legal requirements, or business practices.

  • The “Last updated” date at the top of this page shows when the policy was most recently revised.
  • If we make material changes, we may provide additional notice, such as a banner on our site or a direct communication when appropriate.

Your continued use of our websites or services after changes take effect means you accept the updated policy, subject to applicable law.