Legal

Privacy policy

Last updated: April 2026

Who we are

Sorso is a trade name of DAS Capital Advisors, LLC. We provide fractional CFO and accounting services to healthcare clinics across the United States. Our website is located at thesorso.com.

What we collect

We may collect the following types of information when you interact with our website:

  • Contact information submitted through forms — including your name, email address, phone number, and practice details
  • Assessment responses from our financial health quiz, including revenue ranges and operational data you choose to provide
  • Usage data collected via analytics tools, such as pages visited, time on site, and referral sources

How we use your information

  • To respond to inquiries and schedule consultations
  • To deliver your financial health assessment results
  • To send our newsletter, The Deductible, if you have subscribed — you may unsubscribe at any time
  • To improve the performance and content of our website

How we protect your data

We use industry-standard encryption and security practices to protect your information. We do not sell personal information to third parties. Financial data shared as part of an engagement is never disclosed outside of that engagement without your explicit consent.

Third-party services

We use a limited set of third-party services to operate this website:

  • Supabase for database and authentication infrastructure.
  • Vercel for website hosting and deployment.
  • Google Analytics 4 (measurement ID G-NX7BXR20GL) for traffic analytics. You can opt out using Google's Analytics Opt-out Browser Add-on.
  • Calendly for scheduling discovery calls. Calendly's privacy policy applies to information submitted through the booking flow.
  • Beehiiv for newsletter subscription management. Subscriber emails are stored by Beehiiv and governed by their privacy policy.

Each of these services has its own privacy policy governing how they handle data.

Healthcare data and HIPAA

Sorso provides financial services to healthcare clinics. We routinely handle practice-level financial data (revenue reports, billing reconciliations, payer-mix summaries) but we do not require and do not solicit protected health information (PHI) to do our work. Client financial data is treated as strictly confidential under our engagement agreements.

If a Sorso engagement requires access to systems or reports that contain PHI, we will execute a Business Associate Agreement (BAA) with the covered entity before access is granted, and PHI will be handled under the terms of that BAA and applicable HIPAA Privacy and Security Rules.

This website does not collect PHI. Do not submit patient-level health information through website forms, email, or the assessment quiz.

Your rights

You may request to view, update, or delete any personal information we hold about you at any time. California residents have additional rights under the California Consumer Privacy Act (CCPA/CPRA), including the right to know what personal information we collect, the right to request deletion, and the right to opt out of any sale or sharing of personal information (we do not sell or share personal information). EU/EEA residents have equivalent rights under the GDPR where applicable.

To exercise any of these rights, email us at the address below. We respond within 30 days.

Contact

For privacy-related questions or requests, email stan@thesorso.com.