Last Updated: July 18, 2025
INTRODUCTION
This Privacy Policy describes how your personal and health information may be collected, used, and disclosed by our telehealth platform and associated medical groups. This policy applies to our website, mobile applications, and all related services (collectively, the "Services").
This Notice of Privacy Practices ("Notice") describes how your protected health information may be used and disclosed and how you can access this information. PLEASE REVIEW IT CAREFULLY.
WHO WE ARE
CuredMed and its subsidiaries ("we," "us," or "our") own and operate the Services. Our platform connects patients with healthcare providers for telehealth consultations, prescription services, and related healthcare solutions.
HIPAA COMPLIANCE STATEMENT
We are committed to protecting the privacy and security of your health information. While CuredMed itself may not be a "covered entity" under the Health Insurance Portability and Accountability Act of 1996 ("HIPAA"), our affiliated medical groups and healthcare providers are considered "covered entities." Additionally, CuredMed may function as a "business associate" to these covered entities in certain contexts. As such, we adhere to applicable HIPAA regulations and state privacy laws to protect your health information.
INFORMATION WE COLLECT
We collect several types of information from and about users of our Services:
Personal Information: Information that can identify you, such as name, email address, postal address, telephone number, date of birth, payment information, and government-issued identification.
Protected Health Information (PHI): Health information that is created or received by a healthcare provider, health plan, or healthcare clearinghouse that relates to your past, present, or future physical or mental health or condition, healthcare provision, or payment for healthcare services.
Usage Information: Information about your interaction with our Services, including browser type, IP address, pages visited, time spent on pages, links clicked, and conversion information.
HOW WE USE YOUR INFORMATION
For Treatment
We may use and disclose your health information to provide, coordinate, or manage your healthcare and related services. This includes sharing information with your physicians, specialists, pharmacies, and other healthcare providers involved in your care.
For Payment
We may use and disclose your information to bill and receive payment for services provided. This may include disclosures to health insurers or other entities responsible for billing and collection.
For Healthcare Operations
We may use and disclose your information for operational activities such as quality assessment, performance evaluation, training, and business management.
Other Permitted Uses
- Appointment reminders and follow-up communications
- Health-related benefits and services
- Research (with proper authorization)
- Legal requirements and public health activities
- To prevent a serious threat to health or safety
- For specialized government functions
- Workers' compensation cases
- Business associates who perform functions on our behalf
YOUR HEALTH INFORMATION RIGHTS
Under HIPAA and applicable state laws, you have the following rights regarding your protected health information:
Right to Access and Receive a Copy of Your Records
You have the right to inspect and obtain a copy of your healthcare records maintained by us, with limited exceptions. You must submit a written request to our Privacy Officer. We may charge a reasonable, cost-based fee for copies.
Right to Request an Amendment
If you believe information in your records is incorrect or incomplete, you have the right to request that we amend the records. Your request must be in writing and include a reason supporting the amendment.
Right to an Accounting of Disclosures
You have the right to request a list of certain disclosures we have made of your health information during the six years prior to your request.
Right to Request Restrictions
You have the right to request restrictions on certain uses and disclosures of your health information. We are not required to agree to all restriction requests but must comply with requests to restrict disclosure to a health plan for payment or healthcare operations purposes when you have paid in full out-of-pocket for the item or service.
Right to Request Confidential Communications
You have the right to request that we communicate with you about medical matters in a certain way or at a certain location (e.g., only by mail or at a specific address).
Right to a Paper Copy of This Notice
You have the right to receive a paper copy of this Notice of Privacy Practices upon request.
Right to Notification of a Breach
You have the right to be notified if your unsecured protected health information has been accessed, acquired, used, or disclosed in a manner not permitted under HIPAA that compromises the security or privacy of your PHI.
Right to File a Complaint
If you believe your privacy rights have been violated, you may file a complaint with our Privacy Officer or with the U.S. Department of Health and Human Services Office for Civil Rights. You will not be penalized or retaliated against for filing a complaint.If you believe your privacy rights have been violated, you may file a complaint with our Privacy Officer or with the U.S. Department of Health and Human Services Office for Civil Rights. You will not be penalized or retaliated against for filing a complaint.
EXERCISING YOUR RIGHTS
To exercise any of the rights described above, please submit your request through the contact form on our website. Our Privacy Officer will review and respond to your request.
STATE-SPECIFIC PRIVACY RIGHTS
In addition to the rights provided under HIPAA, residents of certain states may have additional privacy rights under state law:
California Residents
Under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), California residents have additional rights regarding their personal information, including:
- Right to know what personal information is collected, used, shared, or sold
- Right to delete personal information
- Right to opt-out of the sale of personal information
- Right to non-discrimination for exercising these rights
- Right to correct inaccurate personal information
- Right to limit use and disclosure of sensitive personal information
Other States
Residents of Virginia, Colorado, Connecticut, and Utah may have similar rights under their respective state privacy laws. Please contact our Privacy Officer for specific information about state-specific privacy rights.
INFORMATION SECURITY
We maintain physical, technical, and administrative safeguards to protect the security and confidentiality of your information. These include:
- Encryption of electronic protected health information
- Secure user authentication protocols
- Access control measures
- Regular security assessments
- Staff training on privacy and security practices
- Business Associate Agreements with third parties who access PHI
CHANGES TO THIS PRIVACY POLICY
We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. We will post the revised policy on our Services with the effective date and notify you of significant changes as required by law.
COMPLAINTS
If you believe your privacy rights have been violated, you may file a complaint by:
1. Completing the contact form on our website. Please select "Privacy Complaint" from the dropdown menu.
2. Filing a complaint with the U.S. Department of Health and Human Services Office for Civil Rights by:
- Visiting www.hhs.gov/ocr/privacy/hipaa/complaints/
- Calling 1-877-696-6775
We will not retaliate against you for filing a complaint.
CONTACT INFORMATION
If you have any questions about this Privacy Policy or our privacy practices, please contact our Privacy Officer by completing the contact form on our website. Please select "Privacy Policy Question" from the dropdown menu.
