Privacy Policy

Goldleaf Partners Privacy Policy

The purpose of this Privacy Policy (hereinafter “Policy”) is to let you know the ways Goldleaf Partners (hereinafter “Goldleaf”) collects, uses, and shares information through the Goldleaf website (hereinafter “Site”). Goldleaf recognizes the need to maintain the confidentiality of Protected Health Information (PHI) and Personal Identity Information (PII). This Policy includes company requirements for the security and protection of such information throughout Goldleaf and its approved vendors, both on and off work premises.


“Protected Health Information (PHI)” is patient-identifiable information, whether oral, electronic, or paper, which is created or received by Goldleaf and relates to an individual’s healthcare or payment for the provision of service.

“Personally Identifiable Information (PII)” is information that can be used to uniquely identify, contact, or locate a single person or can be used with other sources to uniquely identify an individual.


This Policy does not apply to any other websites or organizations that may be linked or referred to through this Site; Goldleaf is not responsible for the information practices of any third party. Goldleaf encourages users to read the privacy policy of any third party before sharing personal information. For information regarding the privacy practices of a health plan or other service provider, users are encouraged to contact the health plan or other service provider directly.

Protecting Personal Information and Security

Goldleaf works to protect its users’ personal information from loss, misuse, or unauthorized alteration by using industry-recognized security safeguards, coupled with a range of other security procedures and practices. Goldleaf maintains physical, electronic, and procedural safeguards that comply with applicable laws, including both internal and external resources to review its security procedures. If users provide PHI or PII to Goldleaf through this Site, the sensitive information is encrypted before it is transmitted.

While Goldleaf takes certain physical, electronic, and administrative measures designed to protect the confidentiality of information, due to the nature of the Internet, we cannot and do not guarantee that all information will remain secure. By submitting information through this Site, users acknowledge their awareness of these risks. If a user does not wish to submit personal information electronically, he/she may choose not to do so; however, the user may not be able to make use of the full functionality of this Site. Users of this Site agree that Goldleaf (including our affiliates and vendors and all owners, directors, employees, and agents) is not responsible for any consequence of illegal or unauthorized acts by third parties, including but not limited to hacking or similar crimes.

This Site does not monitor or behave differently if the user’s computer transmits a “do not track” or similar beacon or message. Goldleaf policies permit employees to access information only on a business need-to-know basis and employees are educated on the importance of confidentiality and customer privacy. Goldleaf employees who violate company privacy policies will be subject to the disciplinary process.

Goldleaf does not reveal customer information to any external organization unless it has previously informed the customer in disclosure or agreements (such as in this Policy), has been authorized by the customer, or is required by law. Goldleaf will not record personal or sensitive information when users visit our Site unless the information is entered voluntarily.

Whenever Goldleaf hires other organizations to provide support services, the business associate agrees to comply with all HIPAA requirements and the Goldleaf Privacy Policy. Goldleaf does not use or share – internally or externally – PHI for any purpose other than the following:

  • the administration of a customer’s account or claim,
  • as disclosed to the customer when the information is collected,
  • that which the customer consents,
  • as required by law or to protect our own rights, or
  • as otherwise permitted by this privacy policy.

Changes to this Privacy Policy

Goldleaf continues to provide this notice at the frequency required by law. Updates will be posted on this or a similar page of this Site. Goldleaf will continue to follow the policies set forth in this notice even when a customer relationship no longer exists. By using this Site, user agrees to the terms of this Privacy Policy including any future changes.

Information Collected

Goldleaf collects personal information such as name, billing address, e-mail, and phone number when users interact with Goldleaf to use its products. Goldleaf collects both online and offline information about users through other sources such as user’s employer and health plan or other service provider, personal information to deliver or allow access to Goldleaf’s products and services, and information about the user’s system as it interacts with Goldleaf, such as IP address and browser information.

Cookies and Similar Technology

Goldleaf uses common Internet technologies, such as cookies and web beacons to manage its websites and services, advertising, and e-mail programs. Goldleaf collects user feedback, community discussions, chats, and other interactions, such as surveys. Goldleaf may obtain additional information about users, such as demographic information from commercially-available sources and may combine this with information collected from users through this Site or offline (e.g., paper forms).

Reviewing and Changing User Information

Users may be able to update certain personal information through various web portals accessible via the Site. To do so, users may log into the applicable portal(s) by browsing to and clicking on the pull-down menu Select an account to login and choosing the appropriate option.


Goldleaf does not sell nor rent personal information of users to third parties for promotional or marketing purposes and does not share personal information with anyone outside of Goldleaf for their promotional or marketing use without user consent. Goldleaf uses personal or financial information to provide users with information and services requested and to give a customized, interactive experience with its products. Goldleaf may communicate with users regarding other service or product offerings provided by Goldleaf and may provide notice to users of third-party offerings that may be of interest.

Goldleaf summarizes and de-identifies or aggregates information about users and combines that information with that of others in a way that does not identify users personally to understand how Goldleaf products are used. This helps to deliver and develop new products and services. Because non-personal information or aggregate information does not identify users, Goldleaf does not limit the ways it may use or share non-personal information. For example, Goldleaf may share non-personal information with its affiliates, suppliers, employees and agents, other businesses, and the government.

Goldleaf may use and disclose information to comply with applicable laws, regulations, and legal processes. Additionally, Goldleaf reserves the right to use information to protect and enforce its rights and those of its affiliates, vendors, users, or other third parties.

Goldleaf may use and disclose information collected as otherwise necessary or useful to conduct its business, so long as such use is permitted by law. Specific examples include: analyzing audience and usage patterns for Site modifications; storing information about user preferences to direct or customize specific content to individual users, recognizing users upon subsequent visits to Site to expedite login. Goldleaf may also use and disclose information for any other purpose with user consent and/or as may be disclosed in the area of this Site where the information is collected.

Goldleaf may share and transfer information specifically including PII to any affiliate as well as in the event of a sale of assets, merger, corporate reorganization, or similar transaction.

Children’s Privacy

This Site is not intended for and may not be used by children under the age of 13. Goldleaf does not knowingly collect PII from children under the age of 13; however, parents and or guardians may submit information about their children or covered persons under the age of 13 to Goldleaf. If a user believes that Goldleaf has received information directly from a person under 13, please contact Goldleaf Partners and appropriate action will be taken.


Goldleaf Partners
8009 34th Ave S., Suite 320
Bloomington, MN 55425
Phone: 866.882.8442
Effective Date: July 1, 2015

When the IRS performs an audit, they find the answers to these questions for many businesses are “NO”. By simply letting Goldleaf Partners handle retirement and payroll plans, clients can rest easy knowing their answers are “YES”.