Privacy Policy

Last Updated: April 14, 2025

At Ithaca Health, we are committed to protecting your privacy. This Privacy Policy explains how we collect, use, share, and safeguard your information when you visit our website (www.ithaca-health.com), join our waitlist, or use our telehealth hormone therapy services. By using our site or services, you agree to this policy. If you have questions, contact us at support@ithaca-health.com.

1. Information We Collect

We collect information to provide and improve our services, including:

  • Personal Information: When you join our waitlist or contact us, we may collect your name, email address, and phone number (optional). Post-launch, our telehealth services may collect additional details like health information, billing details, and account preferences, as needed for hormone therapy care.
  • Usage Data: We automatically collect data about your interactions with our site, such as IP address, browser type, pages visited, and timestamps, via cookies and analytics tools.
  • Health Information: After launch, if you become a patient, we collect protected health information (PHI) like medical history and hormone therapy needs, per HIPAA standards.

2. How We Use Your Information

We use your information to:

  • Manage our waitlist and notify you about our launch.
  • Provide telehealth hormone therapy services, including consultations, prescriptions, and follow-ups.
  • Process payments and subscriptions (post-launch).
  • Improve our website and services through analytics.
  • Communicate with you, such as responding to inquiries or sending updates.
  • Comply with legal obligations, like HIPAA or Utah regulations.

3. How We Share Your Information

We do not sell or rent your information. We may share it only:

  • With Service Providers: Trusted partners (e.g., telehealth platforms, payment processors) who follow strict privacy rules and sign Business Associate Agreements (BAAs) for HIPAA compliance.
  • For Legal Reasons: To comply with laws, court orders, or to protect our rights (e.g., Utah Code § 13-11-4).
  • With Your Consent: If you explicitly agree to share specific data (e.g., for referrals).

4. Data Security

We use industry-standard measures to protect your data, including:

  • Secure Sockets Layer (SSL) encryption for website interactions.
  • HIPAA-compliant platforms for telehealth and patient data (post-launch).
  • Restricted access to your information by trained staff only.
  • Regular security reviews to prevent breaches.

However, no system is 100% secure. We’ll notify you promptly if a breach occurs, per HIPAA and Utah law.

5. Cookies and Tracking

Our site uses cookies to enhance your experience (e.g., remembering preferences) and for analytics (e.g., Google Analytics). You can disable cookies in your browser, but some features may not work. We don’t use cookies to collect health data pre-launch.

6. Your Rights

You have the right to:

  • Access: Request a copy of your data (e.g., waitlist info or patient records).
  • Correct: Update inaccurate information.
  • Delete: Ask us to remove your data (except where required by law, like medical records for 7 years under Utah law).
  • Opt-Out: Unsubscribe from marketing emails or texts via the “unsubscribe” link.

To exercise these rights, email support@ithaca-health.com. We’ll respond within 30 days, per HIPAA and consumer laws.

7. HIPAA Compliance

Post-launch, our telehealth services will handle protected health information (PHI) under the Health Insurance Portability and Accountability Act (HIPAA). We’ll use HIPAA-compliant tools (e.g., secure telehealth platforms, encrypted EHRs) and train staff to protect your PHI. You’ll receive a Notice of Privacy Practices at your first visit.

8. Third-Party Links

Our site may link to external sites (e.g., payment processors). We’re not responsible for their privacy practices. Review their policies before sharing data.

9. Children’s Privacy

Our services are for adults 18+. We don’t knowingly collect data from children under 13, per COPPA. Contact us if you believe we have such data.

10. International Users

Our services are based in Utah, USA. If you’re outside the US, your data is processed under US laws, including HIPAA for health information. By using our site, you consent to this.

11. Changes to This Policy

We may update this policy to reflect legal or service changes. We’ll post updates on this page and notify you via email or site notice if significant. Check back regularly.

12. Contact Us

For questions or to exercise your rights, contact:

Ithaca Health LLC
support@ithaca-health.com

We’re here to help you feel confident in your privacy.