Effective Date: June 2025

At OneSpotCare, we prioritize the privacy and security of your personal and health information. This Privacy Policy explains how we collect, use, store, and protect your data in compliance with the Health Insurance Portability and Accountability Act (HIPAA), as well as other applicable privacy laws.

1. Protected Health Information (PHI)

Certain information you provide—including medical history, prescriptions, treatment details, and other health-related data—may be classified as Protected Health Information (PHI) under HIPAA. We treat this information with the highest level of confidentiality and security.

2. Information We Collect

We collect the following types of information:
•  Personal Identifiers: Name, date of birth, email, phone number, billing and shipping address.
•  Health Information: Medical details necessary for treatment or prescription purposes.
•  Payment Details: Billing information for order processing.
•  Technical Data: IP address, device type, and usage analytics to improve the website experience.

3. How We Use Your Information

We use your information to:
•  Process orders for prescriptions, weight loss treatments, and peptides.
•  Coordinate with licensed medical providers and pharmacies for treatment approvals and fulfillment.
•  Communicate order confirmations, shipping updates, and support requests.
•  Ensure compliance with legal and regulatory standards, including HIPAA.

4. How We Protect Your Information

To safeguard your information, we use:
•  HIPAA-compliant platforms for data storage and transmission.
•  Encryption (SSL/TLS) during data transfer.
•  Role-based access control to ensure only authorized personnel can view PHI.
•  Audit logs and security monitoring to detect unauthorized access.

5. Disclosure of Information

We only share PHI with:
•  Licensed healthcare providers for medical review and approval.
•  Pharmacies for fulfillment of prescriptions.
•  Payment processors to complete transactions.
•  Legal or regulatory bodies if required by law.

We will never sell your PHI or personal data.

6. Your HIPAA Rights

You have the right to:
•  Request a copy of your PHI.
•  Request corrections to your health records.
•  Request restrictions on how your PHI is used or shared.
•  Receive an accounting of disclosures.
•  File a complaint if you believe your privacy rights have been violated.

7. Retention of Information

We retain your data only as long as necessary to fulfill the purposes outlined in this policy or as required by law.

8. Third-Party Links

Our website may contain links to external sites. We are not responsible for the privacy practices or content of those sites.

9. Updates to This Policy

We may update this Privacy Policy periodically. Any changes will be posted on this page with the updated effective date.

10. Contact Us

If you have questions about this policy or how your information is handled, please contact:
📧 connect@onespotdoc.com