Save 15% — Military, Teachers, First Responders, Healthcare Workers & Students qualify. Claim your discount →
Rx
RxVigor
Legal

HIPAA Notice of Privacy Practices

Effective Date: January 1, 2025  ·  Last Updated: April 2025

THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE REVIEW IT CAREFULLY.

1. Who We Are

RxVigor is a telehealth platform that connects patients with licensed physicians for GLP-1 weight loss therapy. As a covered entity under the Health Insurance Portability and Accountability Act of 1996 (HIPAA), we are required by law to maintain the privacy of your protected health information (PHI), provide you with this Notice of our legal duties and privacy practices, and follow the terms of the Notice currently in effect.

2. How We May Use and Disclose Your Health Information

We use and disclose health information about you for the following purposes:

  • Treatment: We may use your PHI to provide, coordinate, or manage your healthcare and related services. For example, we may share your health information with the physician reviewing your intake assessment.
  • Payment: We may use and disclose your PHI for billing and payment purposes, including processing payments for your subscription and medication.
  • Healthcare Operations: We may use and disclose your PHI to support our business activities, including quality assessment, training, and compliance activities.
  • Compounding Pharmacies: We share necessary information with our licensed compounding pharmacy partners to fulfill your prescription.
  • Legal Requirements: We will disclose PHI when required by law, such as in response to a court order or subpoena.
  • Public Health Activities: We may disclose PHI to public health authorities as required by law.
  • Serious Threats: We may disclose PHI if we believe it is necessary to prevent a serious and imminent threat to health or safety.

3. Uses and Disclosures Requiring Your Authorization

Other uses and disclosures of your PHI will be made only with your written authorization, including:

  • Most uses and disclosures of psychotherapy notes
  • Uses and disclosures of PHI for marketing purposes
  • Disclosures that constitute a sale of PHI

You may revoke any authorization you give us at any time, in writing, except to the extent that we have already taken action in reliance on the authorization.

4. Your Rights Regarding Your Health Information

You have the following rights regarding the PHI we maintain about you:

  • Right to Access: You have the right to inspect and obtain a copy of your PHI that we maintain in a designated record set.
  • Right to Amend: You have the right to request that we amend your PHI if you believe it is incorrect or incomplete.
  • Right to an Accounting of Disclosures: You have the right to receive a list of certain disclosures we have made of your PHI.
  • Right to Request Restrictions: You have the right to request restrictions on how we use or disclose your PHI for treatment, payment, or healthcare operations.
  • Right to Request Confidential Communications: You have the right to request that we communicate with you about your health matters in a certain way or at a certain location.
  • Right to a Paper Copy of This Notice: You have the right to receive a paper copy of this Notice upon request.
  • Right to Opt Out of Fundraising: We do not conduct fundraising activities using your PHI.

5. Our Duties

We are required by law to maintain the privacy of your PHI, provide you with this Notice, and follow the terms of this Notice. We reserve the right to change our privacy practices and this Notice. If we make a material change, we will post the revised Notice on our website and make it available upon request.

6. Data Security

We implement appropriate technical, administrative, and physical safeguards to protect your PHI from unauthorized access, use, or disclosure. All data is encrypted in transit (TLS 1.2+) and at rest. Access to PHI is restricted to authorized personnel on a need-to-know basis.

7. Breach Notification

In the event of a breach of unsecured PHI, we will notify you as required by the HIPAA Breach Notification Rule, including notifying the Secretary of Health and Human Services and, if the breach affects 500 or more individuals in a state, prominent media outlets in that state.

8. Complaints

If you believe your privacy rights have been violated, you may file a complaint with us or with the Secretary of the U.S. Department of Health and Human Services. You will not be retaliated against for filing a complaint.

To file a complaint with us, contact our Privacy Officer at: [email protected]

To file a complaint with HHS: www.hhs.gov/hipaa/filing-a-complaint

9. Contact Us

For questions about this Notice or to exercise your rights, please contact:

RxVigor Privacy Officer

Email: [email protected]

Support: [email protected]

Terms of ServicePrivacy PolicyTelehealth ConsentMedical Disclaimer