Privacy

Privacy Policy

Effective May 8, 2026 · Last updated May 8, 2026

This page describes what Diem Heroes collects from people who use diemheroes.com and the marketplace we operate, and what we do with that information. We try to write it in plain language. If anything is unclear, email support@diemheroes.com.

Who we are

Diem Heroes is a marketplace that connects per-diem nurses with healthcare providers (schools, hospitals, clinics, nursing homes, and similar). We are not a staffing agency — we don't employ nurses or sit between a clinician and their paycheck. The platform surfaces candidates and roles to each other.

What we collect

When you fill out a form on this site, we collect:

  • Information you give us directly: name, email address, phone number, U.S. state, and audience-specific fields (nursing credential and free-text work interest for nurses; organization, role-needed, and free-text role description for hiring teams).
  • Assent metadata: the version of these Terms and this Privacy Policy you accepted at submission, the consent method, and a timestamp — so we can prove what you agreed to.
  • Information your browser sends automatically: a partial record of your IP address (the first three octets only — enough for rate-limiting and abuse prevention, not enough to identify you), and a parsed family/version of your browser's user-agent string. We retain the full IP address only for legal hold and purge it on the same retention schedule as the rest of your information.
  • Referrer URL: the page that referred you to us, used for channel attribution and abuse detection.
  • Cookies: we set a session cookie only on the recruiter app (the part behind a login). The public marketing pages don't set first-party tracking cookies. As of this revision, the public pages also don't load third-party tracking scripts; if we add analytics in the future, we'll update this policy and request consent where required.

We may also pull from public records — state nursing boards and the federal NPPES NPI registry — to populate the directory of clinicians and organizations. If your record is in our index from public sources, you can ask us to remove it (see "Your rights" below).

How we use it

  • To surface clinicians and roles to each other based on the criteria submitted.
  • To contact you about the role or interest you submitted.
  • To improve the platform — internal analytics, debugging, preventing abuse.
  • To meet legal obligations (responding to lawful requests, record-keeping for tax and compliance purposes).

How we share it

We do not sell your contact information to advertisers or data brokers. We do not share it for cross-context behavioral advertising. The narrow list of third parties who may handle your data on our behalf:

  • Cloudflare — hosts diemheroes.com and stores our database.
  • Resend — delivers transactional emails (your confirmation messages, our outreach to you).
  • Hiring providers, only with specific affirmative consent: we may share a nurse's contact information with a hiring provider — and a provider's contact information with a nurse — only when both sides have signaled interest in a specific role. Never on a list, never as a bulk export.

Communications and consent

When you submit a form, you authorize us to contact you about the role or interest you described, by email and (only if you provide a phone number) by manually-sent call or text. You are not required to provide a phone number to use the service. We do not use automated dialing systems. We do not send bulk SMS. If we ever want to send SMS in a different way, we'll ask separately and explicitly first and record your consent.

You can opt out of any communication at any time by replying with "stop" to a text or "unsubscribe" to an email, or emailing support@diemheroes.com.

How long we keep your information

Per category:

  • Identifiers + credential information (name, email, phone, state, credential, organization, role-needed, work-interest text): duration of the role conversation plus 12 months. Deleted automatically thereafter unless you've asked to stay on the directory long-term.
  • Network-activity logs (IP-prefix, user-agent family, referrer): 90 days.
  • Email correspondence: 24 months.
  • Assent metadata (terms version accepted, privacy version accepted, consent method, timestamp, full IP for legal hold): retained for the longer of 24 months after your last activity or any applicable statute of limitations on contract-formation disputes.

Your rights

You can:

  • Ask what information we have about you.
  • Ask us to correct or delete your information.
  • Ask us to stop contacting you.
  • Ask for a copy of your information in a portable format.

Email support@diemheroes.com with the subject "Privacy request" and the request you'd like us to honor. We respond within 45 days.

Your California privacy rights (CCPA / CPRA)

Categories of personal information we collect (per Cal. Civ. Code § 1798.140(v)):

  • Identifiers: name, email, phone, IP-prefix, full IP for legal hold.
  • Professional or employment-related information: nursing credential, organization affiliation, role being filled, free-text work interest.
  • Internet or other electronic network activity information: parsed user-agent family, referrer URL.

We do not collect biometric, precise geolocation, audio or visual recordings, education records, or financial information. We do not collect Sensitive Personal Information as defined in Cal. Civ. Code § 1798.140(ae). Nursing-credential data is professional/employment information about you, not health information about a third party, and we do not use it to infer health, racial, religious, or other sensitive attributes.

Sources: directly from you via web form; from public records (state nursing boards, the federal NPPES NPI registry) for the directory.

Business purposes: surfacing clinicians and roles, contacting you about the match, fraud and abuse prevention, legal compliance.

Disclosed for a business purpose to: hosting and infrastructure (Cloudflare); email delivery (Resend); hiring providers (with both-sides specific consent only).

Sold or shared: None. We do not sell or share personal information for cross-context behavioral advertising. There is no "Do Not Sell or Share" link because we don't sell or share.

Retention: see "How long we keep your information" above.

Your California rights: to know, to delete, to correct, to obtain a portable copy, to opt out of sale or sharing (not applicable here — we don't sell or share), to limit use of sensitive personal information (not applicable — we don't collect SPI), and not to be retaliated against for exercising these rights. Email support@diemheroes.com with subject "California Privacy Request." We verify by matching submitted information to our records and respond within 45 days (extendable once by 45 days). You may designate an authorized agent under Cal. Civ. Code § 1798.135(c) by providing signed written authorization.

Other state privacy rights

If you reside in Virginia, Colorado, Connecticut, Utah, Texas, Oregon, Montana, Iowa, Tennessee, Indiana, or Delaware, you have rights similar to the California rights above: access, correction, deletion, portability, and opt-out of targeted advertising, sale, or significant-decision profiling. We do not engage in any of those activities. To exercise a right, email support@diemheroes.com with subject "State Privacy Request." We respond within 45 days. If we deny a request, you may appeal by replying to our denial; we respond to appeals within 60 days (Virginia, Colorado) or 45 days (other states).

Texas residents: We do not sell sensitive personal data. We do not sell biometric personal data.

Security

We use industry-standard transport encryption (TLS) and store sensitive credentials as secrets. We don't accept payment information through this site. No system is perfectly secure; if we ever discover a breach affecting your information, we'll notify you as required by law.

Children

Diem Heroes is for adults. We do not knowingly collect information from anyone under 18. If you believe we've collected information from a minor, email support@diemheroes.com and we'll delete it.

International users

Diem Heroes is a U.S.-based service for U.S. per-diem nursing. We do not target EU/UK residents and do not knowingly collect data from outside the United States. If you are in the EU or UK and submitted information, contact support@diemheroes.com to request deletion.

Changes to this policy

If we make material changes to this policy, we'll update the "Effective" and "Last updated" dates at the top and, where appropriate, notify affected users by email. Continued use of the site after a change means you accept the updated terms.

Contact

support@diemheroes.com — for any privacy question, request, or concern.