RX Health ("we," "us," or "our") is committed to protecting the privacy and confidentiality of the personal and health information you share with us. This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you visit our website or use our telehealth platform.
By accessing or using our services, you agree to the terms of this Privacy Policy. If you do not agree, please discontinue use of our platform.
1. Information We Collect
1.1 Information You Provide Directly
- Account and registration information: name, email address, phone number, date of birth, and password.
- Health and medical information: height, weight, gender, medical history, health conditions, symptoms, and responses to clinical questionnaires.
- Payment information: credit card numbers and billing address (processed by our PCI-DSS compliant payment processor; we do not store raw card data).
- Shipping information: delivery address for prescription fulfillment.
- Communications: messages you send to our care team, support staff, or providers.
1.2 Information Collected Automatically
- IP address, browser type, device information, and operating system.
- Pages visited, time on site, referring URLs, and click-stream data.
- Cookies and similar tracking technologies (see Section 6).
1.3 Information from Third Parties
- Identity verification data from our verification service provider.
- Analytics and advertising data from trusted third-party partners.
2. How We Use Your Information
We use the information we collect to:
- Create and manage your patient account and provide telehealth services.
- Facilitate clinical evaluations and prescription fulfillment by licensed providers.
- Process payments and ship medications to your designated address.
- Communicate with you regarding your care, orders, and account activity.
- Comply with applicable laws, regulations, and healthcare standards, including HIPAA.
- Prevent fraud, protect platform security, and enforce our Terms of Service.
- Improve our platform, services, and patient experience through aggregated analytics.
- Send you appointment reminders, treatment updates, and (with your consent) promotional communications.
3. Sharing of Information
We do not sell your personal information. We may share your information only in the following circumstances:
- Healthcare providers: Licensed physicians and clinical staff who evaluate your eligibility and manage your care.
- Pharmacies: 503A-certified compounding pharmacies for prescription fulfillment.
- Service providers: Vendors who assist with payment processing, identity verification, email communications, analytics, and platform operations — all bound by data processing agreements.
- Legal compliance: When required by law, court order, or to protect the rights and safety of our patients and company.
- Business transfers: In connection with a merger, acquisition, or sale of assets, subject to confidentiality obligations.
Protected Health Information (PHI) is shared only as permitted under HIPAA and our Notice of Privacy Practices. See our HIPAA Notice for details.
4. Data Security
We implement industry-standard administrative, technical, and physical safeguards to protect your information, including:
- TLS/SSL encryption for all data in transit.
- Encryption of sensitive data at rest.
- Role-based access controls limiting data access to authorized personnel.
- Regular security audits and vulnerability assessments.
- HIPAA-compliant infrastructure and Business Associate Agreements (BAAs) with service providers.
While we take every reasonable precaution, no method of electronic transmission or storage is 100% secure. We encourage you to use a strong, unique password and to contact us immediately if you suspect unauthorized access to your account.
5. Your Rights and Choices
Depending on your state of residence, you may have the following rights:
- Access: Request a copy of the personal information we hold about you.
- Correction: Request correction of inaccurate or incomplete information.
- Deletion: Request deletion of your personal information, subject to legal and clinical record-retention obligations.
- Opt-out of marketing: Unsubscribe from promotional emails at any time by clicking "unsubscribe" or contacting us directly.
- Data portability: Request a structured, machine-readable export of your data where technically feasible.
To exercise your rights, contact us at privacy{{ get_option('site_name') }} or visit our Contact page. We will respond within 30 days.
6. Cookies and Tracking Technologies
We use cookies and similar technologies to:
- Maintain your session and authentication state.
- Remember your preferences and progress through our intake process.
- Analyze platform usage and improve our services.
- Deliver relevant advertising (with your consent where required by law).
You can control cookies through your browser settings. Disabling certain cookies may affect the functionality of our platform. We honor browser-level "Do Not Track" signals where technically feasible.
7. Children's Privacy
Our services are intended for adults 18 years of age and older. We do not knowingly collect personal information from individuals under 18. If you believe a minor has provided information through our platform, please contact us immediately and we will delete it.
8. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. We will notify you of material changes by posting the updated policy on this page with a revised effective date. Your continued use of our services after such changes constitutes your acceptance of the updated policy.
9. Contact Us
If you have questions, concerns, or requests related to this Privacy Policy, please contact us:
- Platform: RX Health
- Website: RX Health
- Contact Form: Contact Us