Last Updated: April 12, 2024
This Privacy Policy explains how DoctorBox Health, Inc. (“DoctorPlan”, “we” or “us”) collects, uses, and discloses information about you when you access or use our websites, mobile applications, and other online products and services that link to this Privacy Policy (collectively, the “Service”), , contact our customer service team, engage with us on social media, or otherwise interact with us.
We may change this Privacy Policy from time to time. If we make changes, we will notify you by revising the date at the top of the policy and, in some cases, we may provide you with additional notice (such as adding a statement to our website homepage or sending you a notification). We encourage you to review the Privacy Policy whenever you access the Service or otherwise interact with us to stay informed about our information practices and the choices available to you.
Collection of Information
Use of Information
Sharing of Information
Analytics
Transfer of Information to the United States and Other Countries
Your Choices
Your California Privacy Rights
Additional Disclosures for Individuals in Europe
Contact Us
Information You Provide to Us
We collect information you provide directly to us. For example, we collect information when you create an account, make a referral, fill out a form, enter information, participate in any interactive features of the Service, complete a survey or questionnaire, request customer support, send a message, or otherwise communicate with us or communicate with your healthcare provider or other users through the Service. This information may include your name, contact information (including your email address, postal address, and phone number), healthcare information you choose to enter, download or access via the Service (including information about your medical conditions, associated symptoms, physical activities, vital signs, medications, treatment, diagnostic and other questionnaires, food and fluid intake, and medical appointments), and other information you choose to provide.
Protections Applicable to Your Information. DoctorPlan is not a healthcare provider or other Covered Entity, as defined under the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”). However, DoctorPlan is subject to certain requirements under HIPAA as a Business Associate (as that term is defined by HIPAA), including reasonable administrative, physical, and technical controls intended to protect protected health information (“PHI,” as defined by HIPAA). Where required by HIPAA, DoctorPlan enters into a Business Associate Agreement with each healthcare provider who uses the Service to interact with its patients.
Automatically Collected Information
When you access or use our Service, we automatically collect information about you, including:
Information We Collect from Other Sources We may obtain information from other sources and combine that with information we collect directly from you. For example, we may collect information about you from third parties, including other users, and from publicly available sources.
Information We Derive We may derive information or draw inferences about you based on the information we collect. For example, we may make inferences about your location based on your IP address or infer that you are interested in particular treatment options based on your browsing behavior and past purchases.
We use the information we collect to provide, maintain, support, and improve our Service. We may also use the information we collect to:
The Service is intended as a tool to assist users in gathering, recording, organizing, understanding, managing, sharing, and communicating healthcare information, and in allowing healthcare providers to access, use and enter information about an individual user who has authorized such access, use or entry of information. If you consent and direct the Service to do so, the Service will share your healthcare information and data with an authorized healthcare or wellness professional user, and any such shared information and data that constitutes PHI (including electronic PHI) under HIPAA will be protected accordingly.
We may also share information about you as follows or as otherwise described in this Privacy Policy:
With DoctorPlan’s vendors, service providers, consultants, partners, and professional advisors to the extent necessary to perform services for us, assist us in providing our Service to you, obtain advice, or otherwise protect and manage our business interests;
In response to a request for information if we believe disclosure is in accordance with, or required by, any applicable law or legal process, including lawful requests by public authorities to meet national security or law enforcement requirements;
If we believe your actions are inconsistent with our user agreements or policies, if we believe that you have violated the law, or if we believe it is necessary or to protect the rights, property, and safety of DoctorPlan or others;
In connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business by another company;
Between and among DoctorPlan and our current and future parents, affiliates, subsidiaries, and other companies under common control and ownership; and
With your consent or at your direction, and consistent with applicable law, including if you permit us to share certain information through the Service with your family or friends, with your authorized healthcare provider, or with any other third parties.
If you choose to share information with other users through the Service, such as in a message, discussion board, chat room, public or private group, or other interactive features of the Service, you understand that such information will be available to such other users, in accordance with the settings of such feature, and that DoctorPlan is not responsible for the actions of any third parties with whom you choose to share such information.
We may also share aggregated or de-identified information, which cannot reasonably be used to identify you (including, to the extent applicable, information that has been de-identified in accordance with HIPAA).
We may allow others to provide analytics services on our behalf across the web and in mobile apps. We and/or these entities may use cookies, web beacons, device identifiers, and other technologies to collect information about your use of the Service and other websites and applications, including your IP address, web browser, mobile network information, pages viewed, time spent on pages or in apps, links clicked, and conversion information. This information may be used, among other things, to analyze and track data, determine the popularity of certain content, provide support, deliver customized content on our Service and other websites, and better understand your online activity.
We store the information we collect about you for as long as is necessary for the purpose(s) for which we originally collected it, or for other legitimate business purposes, including to meet our legal, regulatory, or other compliance obligations.
DoctorPlan is based in the United States and we process and store information in the United States. We will take steps to ensure that your personal data receives an adequate level of protection in the jurisdictions in which we process it.
Account Information
You may update or correct your information at any time by logging into your account or emailing us at support@doctorplan.com. If you wish to obtain a copy of your personal information or de-activate your account, please email us at support@doctorplan.com. that we may retain certain information as required by law or for legitimate business purposes.
Cookies
Most web browsers are set to accept cookies by default. If you prefer, you can usually choose to set your browser to remove or reject browser cookies. Please note that removing or rejecting cookies may affect the availability and functionality of our Service.
Communications
You may opt out of receiving text messages or promotional emails from DoctorPlan by following the instructions in those emails or by changing the notification settings in your account. If you opt out, we may still send you non-promotional emails, such as those about your account or our ongoing business relations or related to your use of the Service.
Mobile Push Notifications/Alerts
With your consent, we may send promotional and non-promotional push notifications or alerts to your mobile device. You can deactivate these messages at any time by changing the notification settings on your mobile device.
California law permits residents of California to request certain details about how their information is shared with third parties for direct marketing purposes. If you are a California resident and would like to make such a request, you may contact us at support@doctorplan.com. However, please note that because DoctorPlan does not share personal information with third parties for direct marketing purposes unless users affirmatively agree to such sharing, we are not required to provide such information upon receiving a request, but rather may respond by notifying you of your right to prevent the disclosure.
If you have any questions about this Privacy Policy, please contact us at support@doctorplan.com.