Privacy Policy

Last updated: August 24, 2025

At DrVisit, we are committed to protecting your privacy and the confidentiality of your personal health information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our telemedicine platform.

1. Information We Collect
Personal Information

We may collect the following types of personal information:

  • Name, address, phone number, and email address
  • Date of birth and gender
  • Insurance information
  • Payment and billing information
  • Emergency contact information
Health Information

We collect and maintain Protected Health Information (PHI) including:

  • Medical history and current health conditions
  • Medications and allergies
  • Treatment records and clinical notes
  • Diagnostic test results
  • Audio and video recordings of consultations
Technical Information
  • IP address and device identifiers
  • Browser type and operating system
  • Usage data and app analytics
  • Cookies and similar tracking technologies
2. How We Use Your Information

We use your information for the following purposes:

  • Providing telemedicine services and medical care
  • Scheduling appointments and sending reminders
  • Processing payments and insurance claims
  • Maintaining medical records and treatment history
  • Improving our services and platform functionality
  • Complying with legal and regulatory requirements
  • Communicating important updates about our services
3. HIPAA Compliance

HIPAA Protection: DrVisit is fully compliant with the Health Insurance Portability and Accountability Act (HIPAA). We implement appropriate safeguards to protect your Protected Health Information (PHI) and only use or disclose your health information as permitted by HIPAA regulations.

4. Information Sharing and Disclosure

We may share your information only in the following circumstances:

Healthcare Providers

We share your health information with licensed healthcare providers on our platform to facilitate your care.

Business Associates

We may share information with HIPAA-compliant business associates who help us operate our platform, such as cloud storage providers, payment processors, and IT service providers.

Legal Requirements

We may disclose information when required by law, such as:

  • Court orders or legal process
  • Public health reporting requirements
  • Patient safety or abuse reporting
  • Law enforcement investigations
5. Data Security

We implement comprehensive security measures to protect your information:

  • End-to-end encryption for all communications
  • Secure data storage with regular backups
  • Multi-factor authentication for user accounts
  • Regular security audits and vulnerability assessments
  • Employee training on privacy and security protocols
  • Compliance with SOC 2 Type II standards
6. Your Rights and Choices

You have the following rights regarding your personal information:

Access and Portability
  • Request access to your personal and health information
  • Obtain copies of your medical records
  • Request data portability to another provider
Correction and Updates
  • Request corrections to inaccurate information
  • Update your personal information at any time
Restrictions and Objections
  • Request restrictions on how we use your information
  • Object to certain types of processing
  • Opt-out of marketing communications
Deletion

Request deletion of your account and personal information, subject to legal retention requirements.

7. Cookies and Tracking Technologies

We use cookies and similar technologies to:

  • Maintain your login session
  • Remember your preferences
  • Analyze platform usage and performance
  • Provide personalized experiences

You can control cookies through your browser settings, but this may affect platform functionality.

8. Data Retention

We retain your information for as long as necessary to:

  • Provide ongoing healthcare services
  • Comply with legal and regulatory requirements
  • Resolve disputes and enforce our agreements

Medical records are typically retained for a minimum of 7 years as required by state and federal regulations.

9. International Data Transfers

Your information may be processed and stored in countries other than your own. We ensure appropriate safeguards are in place for international transfers and maintain the same level of protection regardless of location.

10. Children's Privacy

Our services are not intended for children under 13. We do not knowingly collect personal information from children under 13 without parental consent. If you believe we have collected such information, please contact us immediately.

11. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes by:

  • Email notification to registered users
  • Notice on our platform
  • Updated effective date at the top of this policy
12. Contact Information

For questions about this Privacy Policy or to exercise your rights, contact us at:

Privacy Officer
DrVisit, Inc.
123 Healthcare Street
Medical City, State 12345

Email: privacy@drvisit.com
Phone: +1 (555) 123-4567
Fax: +1 (555) 123-4568

Business Hours: Monday - Friday, 9:00 AM - 5:00 PM EST

Breach Notification: If you believe your personal information has been compromised, please contact us immediately at security@drvisit.com or call our security hotline at +1 (555) 911-HELP.

© 2025 DrVisit. All rights reserved. | This Privacy Policy is compliant with HIPAA, GDPR, and CCPA regulations.