Where does LineupMD data come from?

We ingest the official NPPES data dissemination file published by CMS (Centers for Medicare & Medicaid Services), plus Open Payments, Medicare Utilization, and Part D Prescribing data — all publicly available government datasets.

How fresh is the data?

The NPI dataset is refreshed monthly with weekly incremental updates. Open Payments and Medicare data are updated annually by CMS.

Is NPI data legal to use for sales outreach?

Yes. NPI data is public information maintained by a federal agency. It is not protected by HIPAA (it contains no patient data) and is freely available for any commercial purpose.

How is LineupMD different from the free NPI Registry?

The CMS NPI Registry API limits you to 1,200 results per query, has no radius search, requires exact NUCC taxonomy codes, and has rate limits. LineupMD indexes the entire 8M+ database with instant search, practice size intelligence, and enrichment from Open Payments and Medicare data.

Privacy Policy

Effective Date: March 24, 2026

Simple Software LLC, doing business as LineupMD ("we," "us," or "our"), operates the website located at lineupmd.com (the "Service"). This Privacy Policy explains what information we collect from users of our Service, how we use that information, and the choices you have regarding your data.

By using LineupMD, you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use the Service.

1. Information We Collect

1.1 Account Information

When you create an account, we collect your email address and a password. We use Supabase as our authentication provider. Passwords are hashed and stored securely by Supabase; we never have access to your plaintext password.

1.2 Payment Information

If you subscribe to a paid plan, your payment is processed by Stripe. We do not store your credit card number, expiration date, or CVC on our servers. Stripe provides us with a tokenized reference, your billing email, and subscription status. For more information, see Stripe's Privacy Policy.

1.3 Usage Data

We automatically collect information about how you interact with the Service, including:

Search queries you perform (specialty, location, filters)
CSV exports you generate (timestamp, row count, search parameters)
Alert and notification preferences you configure
Pages visited, features used, and general navigation patterns

1.4 Device and Log Data

When you access the Service, our hosting provider (Vercel) may automatically collect standard log data such as your IP address, browser type, operating system, referring URL, and access timestamps. This data is used for security, performance monitoring, and abuse prevention.

2. Information We Do Not Collect

LineupMD is a search tool for publicly available healthcare provider data. We do not collect, store, or process any protected health information (PHI), patient data, or medical records. The provider data displayed on LineupMD (names, addresses, phone numbers, specialties, NPI numbers) is sourced entirely from public government databases and is not subject to HIPAA.

3. How We Use Your Information

We use the information we collect to:

Provide, operate, and maintain the Service
Process payments and manage your subscription
Send you alerts and notifications you have opted into (e.g., new provider alerts)
Track CSV export usage against your plan limits
Respond to customer support requests
Monitor and analyze usage trends to improve the Service
Detect, prevent, and address fraud, abuse, or technical issues

4. Public Data Sources

The healthcare provider data displayed on LineupMD is sourced from the following public datasets maintained by the Centers for Medicare & Medicaid Services (CMS):

NPPES NPI Registry — Provider names, addresses, phone numbers, taxonomy codes, and NPI numbers
Open Payments — Payments and transfers of value from manufacturers to physicians and teaching hospitals
Medicare Provider Utilization & Payment Data — Aggregate service utilization and payment information
Medicare Part D Prescribing Data — Aggregate prescribing patterns by provider

All of this data is published by CMS for public use. LineupMD does not create, modify, or contribute to these datasets. We aggregate and index this data to make it more accessible and searchable.

5. Third-Party Services

We use the following third-party services to operate LineupMD:

Supabase — Authentication, database, and backend infrastructure. Supabase stores your account credentials and application data. See Supabase Privacy Policy.
Stripe — Payment processing and subscription management. Stripe handles all payment card data. See Stripe Privacy Policy.
Vercel — Website hosting and content delivery. Vercel may collect IP addresses and standard access logs. See Vercel Privacy Policy.

We do not sell, rent, or share your personal information with third parties for their marketing purposes.

6. Cookies

LineupMD uses cookies strictly for authentication and session management. When you sign in, Supabase sets secure, HTTP-only cookies to maintain your authenticated session. We do not use advertising cookies, tracking pixels, or third-party analytics cookies. You can clear these cookies at any time by logging out or clearing your browser data, though doing so will end your authenticated session.

7. Data Retention

We retain your account information and usage data for as long as your account is active or as needed to provide the Service. If you delete your account, we will delete your personal data within 30 days, except where we are required to retain it for legal or compliance purposes (e.g., payment records required by tax law).

8. Data Security

We implement industry-standard security measures to protect your information, including encrypted connections (TLS/HTTPS), hashed passwords, and secure infrastructure provided by Supabase and Vercel. However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.

9. Your Rights

You have the right to:

Access — Request a copy of the personal data we hold about you
Correction — Request correction of inaccurate personal data
Deletion — Request deletion of your account and associated personal data
Export — Request a machine-readable export of your personal data

To exercise any of these rights, contact us at support@lineupmd.com. We will respond to your request within 30 days.

10. Children's Privacy

LineupMD is not directed at individuals under the age of 18. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by updating the effective date at the top of this page and, where appropriate, sending a notification to the email address associated with your account. Your continued use of the Service after changes take effect constitutes acceptance of the revised policy.

12. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at:

LineupMD

Email: support@lineupmd.com

Website: lineupmd.com