Last modified: August 10, 2023
This Privacy Policy describes how MDLIVE collects and uses Personal Information about you through the use of our Website, mobile application (“Application”), and through email, text, and other electronic communications between you and MDLIVE.
MDLIVE, Inc. (“MDLIVE,” “we,” “our,” or “us”) respects your privacy, and we are committed to protecting it through our compliance with this policy.
This Privacy Policy (our “Privacy Policy”) describes the types of information we may collect from you or that you may provide when you visit MDLIVE.com or any of our affiliated websites where this Policy is posted(collectively, “Website”) and the MDLIVE Application and our practices for collecting, using, maintaining, protecting, and disclosing that information.
This policy applies to information we collect:
It does not apply to information collected by:
Note, MDLIVE is not a medical group. Any telemedicine consults obtained through our Website or Application are provided by independent medical practitioners including, but not limited to, MDLIVE Medical Group, P.A., MDLIVE Medical Group (DE), P.A., MDLIVE Medical Group of New York, MDLIVE Medical Group (IL), LLC, MDLIVE Medical Group(NC), P.C., MDLIVE Medical Group (NJ), LLC, MDLIVE Medical Group NM, LLC, MDLive Medical Group of California, MDL Medical Group (TX), PLLC, and MDLIVE Medical Group (AK) (collectively, “MDLIVE Medical Group”), which are independent medical groups with a network of United States based health care providers (each, a “Provider”). MDLIVE Medical Group (or your own medical provider if you do not use a MDLIVE Medical Group Provider) is responsible for providing you with a Notice of Privacy Practices describing its collection and use of your health information, not MDLIVE. If you do not agree to be bound by those terms, you are not authorized to access or use our Website, and you must promptly exit our Website or Application.
Please read this policy carefully to understand our policies and practices regarding your information and how we will treat it. If you do not agree with our policies and practices, you should not use our Website and Application. By accessing or using our Website and/or Application, you are deemed to have read and understood this Privacy Policy. This Privacy Policy may change from time to time (see Changes to Our Privacy Policy).Your continued use of our Website or Application after we make changes is deemed to be an acknowledgment that you have reviewed those changes, so please check this Privacy Policy periodically for updates.
Our Website and Application are not intended for children under the age of 18 without parental consent.
If you are under the age of eighteen (18) and wish to create an account with MDLIVE, your parent or legal guardian must create the account, submit your Personal Information, and agree to this privacy policy on your behalf. If you are under the age of 13, you may only use our services and access our Website and Application with the supervision and consent of your parents or legal guardians, including the Provider consultation services. If we learn that we have collected Personal Information from someone under the age of 13 that was not provided with the supervision and consent of the minor's parents or legal guardian, we will promptly delete that information. If you believe we have impermissibly collected Personal Information from someone under the age of13, please contact us using the information below.
Generally
We collect several types of information from and about users of our Website and Application (collectively, “Personal Information” or “Personal Data,” as defined under applicable state law), specifically information:
We collect this information:
Information You Provide to Us
The information we collect on or through our Website or through our Application is:
You also may provide information to be published or displayed (hereinafter, “posted”) on public areas of the Website or Application or transmitted to other users of the Website or Application or third parties (collectively, “User Contributions”). Your User Contributions are posted on and transmitted to others at your own risk. Although we limit access to certain pages, please be aware that no security measures are perfect or impenetrable. Additionally, we cannot control the actions of other users of the Website and Application with whom you may choose to share your User Contributions. Therefore, we cannot and do not guarantee that your User Contributions will not be viewed by unauthorized persons.
Video and audio from your medical telehealth visit may be recorded for purposes which may include treatment, quality, improvement of health status, customer and patient experience, customer and patient engagement and/or behavior modification, peer review, payment, efficiency, cost effectiveness and/or other purposes relating to operations and provision of telehealth services. Behavioral health visits are not recorded. By using the telehealth services available through our Website and Application you specifically consent to the recording of the medical visit.
Information We Collect Through Automatic Data Collection Technologies
As you navigate through and interact with our Website and Application, we may use automatic data collection technologies to collect certain information about your equipment, browsing actions, and patterns, specifically:
The information we collect automatically may include Personal Information or we may maintain it or associate it with Personal Information we collect in other ways or receive from third parties. It helps us to improve our Website and Application and to deliver a better and more personalized service by enabling us to:
The technologies we use for this automatic data collection may include, among others, the following:
We use your Personal Information for various purposes described below, including to:
We use information that we collect about you or that you provide to us, including any Personal Information:
We may also use your information to contact you about goods and services that may be of interest to you, including through newsletters. If you wish to opt-out of receiving such communications, you may do so at any time by clicking unsubscribe at the bottom of these communications. For more information, see “Choices About How We Use and Disclose Your Information”.
Health Information
Some information MDLIVE collects constitutes protected health information (“PHI”) under the U.S. Health Insurance Portability and Accountability Act (“HIPAA”). As set forth above, MDLIVE Medical Group (or your own medical provider if you do not use an MDLIVE Medical Group Provider) will provide you with a Notice of Privacy Practices describing its collection, use and disclosure of your PHI, not MDLIVE, Inc. MDLIVE is a “business associate” (as that term is used under HIPAA) that provides services to and for MDLIVE Medical Group, other health care providers and health care plans, referred to as “covered entities” under HIPAA, and enters into business associate agreements with these covered entities. MDLIVE will use and disclose PHI only in accordance with the business associate agreements and HIPAA.
De-Identified Information
We may de-identify your Personal Information so that it no longer reasonably identifies you. In this case, we may use this de-identified data without restriction and for any purpose, including to improve our Website, Application, and products and services.
We do not share or otherwise disclose your Personal Information for purposes other than those outlined in this Privacy Policy. We may disclose Personal Information that we collect or you provide as described in this privacy policy:
We may disclose Personal Information that we collect or you provide as described in this privacy policy:
We may also disclose your Personal Information:
We offer you choices on how you can opt out of our use of tracking technology, disclosure of your Personal Information for our advertising to you, and other targeted advertising.
We do not control the collection and use of your information collected by third parties. We strive to provide you with choices regarding the Personal Information you provide to us. We have created mechanisms to provide you with control over your Personal Information:
You may review and change your Personal Information by logging into the Application or Website and visiting your Account Details page.
You can review and change your Personal Information by logging into our Website or Application and visiting either the Account Details section of our Application or Website. You may also notify us through the Contact Information below of any changes or errors in any Personal Information we have about you to ensure that it is complete, accurate, and as current as possible or to delete your account. We cannot delete your Personal Information except by also deleting your account with us. We may also not be able to accommodate your request if we believe it would violate any law or legal requirement or cause the information to be incorrect.
With respect to any PHI in our possession, you have certain rights under HIPAA as described in the Notice of Privacy Practices provided to you by your healthcare Provider.
California and Colorado residents have additional rights with respect to accessing and Correcting Personal Information, as described in the Privacy Rights for California and Colorado Residents, below.
Information transmitted over the Internet is not completely secure, but we do our best to protect your Personal Information. You can help protect your Personal Information and other information by keeping your password to our Website confidential.
We have implemented measures designed to secure your Personal Information from accidental loss and from unauthorized access, use, alteration, and disclosure. We use application timeouts and encryption technology for information sent and received by us.
The safety and security of your information also depends on you. Where you have chosen a password for the use of our Website or Application, you are responsible for keeping this password confidential. We ask you not to share your password with anyone.
Unfortunately, the transmission of information via the Internet is not completely secure. Although we work diligently to try and protect your Personal Information, we cannot guarantee the security of your Personal Information transmitted to our Website or on or through our Application. Any transmission of Personal Information is at your own risk. We are not responsible for circumvention of any privacy settings or security measures contained on the Website, in your operating system, or in the Application.
The California Consumer Privacy Act (“CCPA”) and the Colorado Privacy Act (“CPA”) provide residents of those states with certain additional privacy rights as described below.
These California and Colorado Privacy Rights supplement the other information contained in our Privacy Policy and apply solely to visitors, users, and others who reside in the State of California or the State of Colorado (“consumers” or “you,” when either term is used in the applicable section).
Please note that these laws expressly exclude information regulated as protected health information (PHI) collected by a “covered entity” (e.g., a health care provider or insurance plan) or “business associate” (e.g., MDLIVE) that provides services to covered entities subject to HIPAA. In addition, the CCPA also excludes information regulated under the California Confidentiality of Medical Information Act (CMIA).
Categories of Personal Information and Personal Data that MDLIVE Collects
As described in more detail in other areas of our Privacy Policy, we collect and/or disclose Personal Information or Personal Data about you when you visit use our Website or Application, including information that you provide to us and information that we automatically collect from you or your computer or device as you use our Website or Application. Please refer to Information We Collect About You and How We Collect It for additional information and details.
Categories of Sources from Which MDLIVE Has Collected Personal Information or Personal Data
We collect Personal Information or Personal Data directly from you, for example when you provide it to us, such as to contact us through our Website or Application, and indirectly from you automatically through your computer or device as you use our Website or Application. We may also collect Personal Information or Personal Data about you from our advertising partners and service providers.
Use of Personal Information or Personal Data
We may use Personal Information or Personal Data we collect for the purposes described elsewhere in this Privacy Policy. Please refer to the section “How We Use Your Information” for details about our practices regarding the use of Personal Information.
Sharing and Disclosing Personal Information and Personal Data, and Purposes for Such Disclosures
MDLIVE may disclose your Personal Information or Personal Data to various service providers for one or more business purposes as described above. When we disclose Personal Information or Personal Data to a service provider for a business purpose, we enter a contract that describes the purpose and requires the recipient to both keep that Personal Information or Personal Data confidential and not use it for any purpose except performing the contract.
The Personal Information or Personal Data we may disclose for our business purposes may include your contact information or other information you have provided to us, as well as unique identifiers that identify you to us or to our service providers, such as companies that assist us with marketing and advertising. Please refer to the Information We Collect About You and How We Collect It and Disclosure of Your Information sections for additional information and details.
Additionally the CCPA defines a “sale” as disclosing or making available to a third party Personal Information in exchange for monetary or other valuable consideration, and “sharing” broadly includes disclosing Personal Information or making it available to a third party for purposes of cross-context behavioral advertising. While we do not disclose Personal Information to third parties in exchange for monetary compensation, we may “share” or “sell” (as defined by the CCPA) identifiers and internet and electronic network activity information to third parties. We do so in order to improve and evaluate our advertising campaigns and better reach customers and prospective customers with more relevant ads and content. More details about our marketing practices are described above in the Information We Collect Through Automatic Data Collection Technologies and Disclosure of Your Information sections.
We do not have actual knowledge that we sell or share any Personal Information about individuals who are under sixteen (16) years old.
To the extent you are a California resident, you may have the following rights regarding your Personal Information:
To make a request for the rights described above, please contact us at (800)-400-6354 or by emailing us at privacy@mdlive.com.
Only you, or a person registered with the California Secretary of State that you authorize to act on your behalf, may make a verifiable consumer request related to your Personal Information. You may also make a verifiable consumer request on behalf of your minor child. You may only make a verifiable consumer request for access twice within a 12-month period.
Please note that the verifiable consumer request must provide sufficient information that allows us to reasonably verify you are the person about whom we collected Personal Information or an authorized representative. We specifically request that you provide us with the following information: (1) first and last name; (2) email address; (3) date of birth; and (4) address. We will take steps to verify your request by matching the information provided by you with the information we have in our records. In some cases, we may request additional information in order to verify your request or, where necessary, to process your request.
Your request must also include sufficient detail to allow us to properly understand, evaluate, and respond to it.
Under the CPA, Colorado residents have the right to receive certain disclosures regarding a business' processing of “Personal Data,” as defined under the CPA, as well as certain rights with respect to our processing of such Personal Data. To the extent you are a resident of Colorado, and we collect Personal Data subject to applicable Colorado law, the following applies.
If any of the rights described in the sections above apply to you, you may make a request by contacting us at (800)-400-6354 or by emailing us at privacy@mdlive.com. Please indicate that you are making a request pursuant to your “Colorado Privacy Rights” and provide us with the following information: (1) first and last name; (2) email address; (3) physical address; and (4) date of birth. We will take steps to verify your request by matching the information provided by you with the information we have in our records.
We may change this Privacy Policy at any time. It is our policy to post any changes we make to our Privacy Policy on this page with a notice that the Privacy Policy has been updated on the Website's home page or the Application's home screen. If we make material changes to how we treat our users' Personal Information, we will notify you by email to the email address specified in your account and/or through a notice on the Website's homepage or the Application's home screen. The date this Privacy Policy was last revised is identified at the top of the page. You are responsible for ensuring we have an up-to-date active and deliverable email address for you, and for periodically accessing the Application or visiting our Website and reviewing this Privacy Policy to check for any changes.
You may contact us through the contact information below.
If you have any questions, concerns, complaints or suggestions regarding our Privacy Policy or otherwise need to contact us, you may contact us at the contact information below or through the “Contact Us” page on our Website or in the Application.
How to Contact Us:
MDLIVE, Inc.
Attn: Chief Compliance Officer
3350 SW 148th Avenue, Suite 300
Miramar, Florida 33027
Telephone: (888)910-8508
Email: privacy@mdlive.com