+1(202)549-8404
service@iphealth.net
English 中文

Log in

IPhealth privacy policy

Imperial Physician Health’s Privacy Statement

IPhealth.net and its affiliated companies (“Imperial Physician Health,” “IPhealth,” “we,” “us,” or “our”) place great importance on the privacy of individuals who use our website (“Site”), mobile applications, and related services (including IPhealth Prime services) (collectively, the “Services”).

This Privacy Statement (“Privacy Statement”) explains how we collect, use, and share information from individuals (“Members”) who use our Services. It also describes what information may be visible to other Members or physicians when using our Services. This Privacy Statement further informs you of your rights and choices regarding personal information and how you can contact us if you have any questions or concerns.
By using our Services, you agree to the collection, use, disclosure, and practices described in this Privacy Statement. In addition, your use of our Services is governed by our Terms of Use.

For the purposes of this Privacy Statement, “personal information” refers to any information that identifies, relates to, describes, or can reasonably be used to identify an individual, whether alone or combined with other information, such as name, email address, phone number, address, date of birth, or healthcare information. Personal information does not include anonymized data. “Protected Health Information” (“PHI”) has the meaning assigned under the Health Insurance Portability and Accountability Act (“HIPAA”) and is not treated as personal information under this Privacy Statement but is instead governed by our Notice of Privacy Practices below.

Information We Collect

We may collect various types of information from you, your device, or about you and your device from a variety of sources, as described below.

You may browse many sections of our Site or applications without providing personal information. However, in certain parts of the Site, we may request personal information. When applicable, we will indicate whether and why you must provide your personal information and the consequences of not doing so. If you do not provide requested personal information, you may not be able to use certain parts of our Services if such information is required by law or is necessary to provide the Services.

Information You Provide to Us

Registration and Profile Information

We collect information you provide when creating an IPhealth account, including your name, email address, password, and date of birth. We also collect any additional optional profile information (“Profile”) you choose to provide, such as health goals, medications, medical conditions, location, and other data.
Profile information allows us to personalize your experience and helps IPhealth physicians provide appropriate treatment plans.

Payment Information

When you add a credit card or payment method to your profile or make purchases through our Services, we collect the payment card information or receive it from a third-party payment processor.

Communications

If you contact us directly, we may receive additional information such as your name, email address, phone number, communications content, attachments, and any other information you choose to provide.
If you subscribe to our newsletter, we will collect your email address.
When we send you emails, we may track whether you open them to help improve our Services.

Job Applicants

If you apply for a job, you may submit contact details, a resume, and other application materials. We collect the information you provide, including education and employment history. If you apply via LinkedIn, we receive relevant information from LinkedIn.

Information We Collect When You Use the Services

Location Information

When you use the Services, including the mobile app, and if you allow us, we may collect precise location data to connect you with local physicians, comply with regulations, and personalize your experience (e.g., recommending nearby pharmacies, doctors, or labs).
We may also infer your approximate location from your device or IP address.

Device Information

We automatically receive information about the device and software you use to access our Services, such as IP address, browser type, operating system version, device identifiers, mobile advertising identifiers, carrier information, installed apps, and push notification tokens.

Usage Information

We automatically collect information about your interactions with the Services, such as pages viewed, content accessed, your posts, and timestamps.

Cookies and Similar Technologies

We and third-party partners use cookies, pixel tags, and similar technologies to collect information over time and across different services.
For more details, see our Cookie Policy.

Information We Receive from Third Parties

Virtual Consultation Summaries

After each virtual consultation, physicians prepare a consultation summary (“Consult Summary”), which may include symptoms, diagnosis, and treatment details. These summaries become part of your Profile and are visible to physicians treating you through the Services.

Social Media Accounts

If you link our Services to your social media accounts (e.g., Facebook, Twitter), we may receive information from those platforms depending on your privacy settings and permissions.

Use of IPhealth Data

With your consent, IPhealth may use your medical record data to communicate with you or for aggregated, de-identified internal analysis and product development.

How We Use the Information We Collect

IPhealth uses collected information for the following purposes:

  • Operate, maintain, improve, and enhance the Services

  • Personalize your experience, provide relevant recommendations and health information

  • Understand usage patterns and develop new features

  • Build automated decision systems to classify symptoms or answer health questions (not used for marketing)

  • Connect you with appropriate physicians

  • Marketing and advertising (with consent where required)

  • Communication via email, SMS, push notifications, and phone

  • Facilitate transactions and payments

  • Integrate your social media account with your Profile

  • Fraud prevention, audits, quality assurance, safety, and security

  • Legal compliance

  • Provide additional notices at data collection points

  • Aggregate or de-identify data for business purposes

  • Promote products and services based on user interactions

Legal Bases for Processing (EEA Members Only)

We process personal information based on:

  • Consent

  • Contractual necessity

  • Legal obligations

  • Legitimate interests (e.g., product development, security)

How We Share Personal Information

We may share personal information as follows:

Affiliates

With affiliated entities for service-related purposes.

Vendors and Service Providers

With third parties who assist with service delivery (e.g., prescription services, IT services, recruiters, shipping providers).

Analytics Partners

With third-party analytics providers to improve IPhealth’s services.

Legal Obligations

We may disclose information to comply with applicable laws, regulations, legal processes, or government requests.

Member Content

Questions you post publicly may be visible to other users. Do not include personal information in public posts.

Social Media Sharing

Based on your actions, information may be shared with social networks.

Marketing

We do not rent or sell your personal information for third-party marketing without your permission.

Virtual Doctor Visits

Physicians you consult with can see your profile information, including real name and health data.

Mergers or Acquisition Events

Information may be transferred during corporate transactions.

International Transfers of Personal Information

We may transfer personal information internationally, including to the United States. We comply with applicable laws and Privacy Shield principles.

Security

We take commercially reasonable administrative, technical, and physical safeguards to protect personal information. However, no electronic transmission is completely secure.

Data Retention

We retain personal information only as long as necessary to fulfill the purposes outlined in this Statement unless the law requires a longer retention period.

Your Choices and Rights

  • Manage sharing preferences

  • Edit or delete optional profile information

  • Modify health records

  • Request deletion of public content

  • Unsubscribe from marketing communications

  • Manage notifications

  • Request account deactivation

  • Exercise EU/Swiss privacy rights (access, correction, deletion, restriction, portability, objection)

Children

We do not knowingly collect personal information from children under 13. Parents may contact us if they believe a child has provided information.

Google Services

We use Google Analytics, Google Maps, and Google reCAPTCHA. Their respective terms and privacy policies apply.

Third-Party Websites

Links to third-party sites are not governed by this Privacy Statement.

Contact IPhealth

Email: service@iphealth.net

Changes to This Privacy Statement

We may update this Privacy Statement and will post changes on this page.

IPhealth HIPAA Notice of Privacy Practices

Last Updated: December 30, 2024

This notice describes how your medical information may be used and disclosed, and how you can access this information. Please read it carefully.

Our Responsibilities

If you use IPhealth Prime services to receive virtual on-demand care from a physician, the data generated during these visits may constitute “Protected Health Information” (“PHI”) as defined under the Health Insurance Portability and Accountability Act (“HIPAA”). PHI is information created or maintained by certain entities (including healthcare providers) that relates to:
(a) your past, present, or future physical or mental health or condition;
(b) the provision of healthcare to you; or
(c) payment for such healthcare,
and that identifies you or could reasonably be used to identify you.

IPhealth healthcare providers (“IPhealth Providers”) are required by law to maintain the privacy and security of your PHI and to provide you with this Notice of Privacy Practices (“Notice”), which explains their obligations and your rights regarding PHI.
Unless you tell us otherwise in writing, we may use and disclose your PHI only as permitted under this Notice. If you change your mind, you may notify us at any time.
If a breach occurs that may compromise the privacy or security of your PHI, we will promptly notify you.

IPhealth Providers will follow this Notice for as long as it is in effect. They reserve the right to change the terms of this Notice at any time. Any changes will apply to all PHI they maintain, including PHI created or received before the revised Notice becomes effective. The new Notice will be posted on the IPhealth website and made available in the IPhealth application, and paper copies will be provided upon request.

For more information, visit:
https://www.hhs.gov/hipaa/for-individuals/notice-privacy-practices/index.html

How IPhealth Providers May Use and Disclose Your PHI

Treatment, Payment, and Healthcare Operations

IPhealth Providers may use or disclose your PHI for treatment, payment, and healthcare operations, as permitted under HIPAA. Examples include, but are not limited to:

Treatment

  • Consulting with other healthcare providers

  • Obtaining prior medical records

  • Treating you during a virtual visit

  • Coordinating follow-up care

Payment

  • Using or disclosing PHI to your health insurance plan

  • Processing claims or payment for services provided to you

Healthcare Operations

  • Quality assessment and improvement activities

  • Developing clinical guidelines

  • Case management and care coordination

  • Evaluating provider performance

IPhealth may conduct these activities directly or engage third-party “business associates” who, by contract, agree to comply with HIPAA.

With Your Authorization

IPhealth Providers may use or disclose your PHI when you provide written authorization that meets HIPAA requirements.
You may revoke your authorization in writing at any time.

As Required by Law

IPhealth Providers may use or disclose PHI when required to do so by federal, state, or local laws.

Other Permitted Uses and Disclosures

Yes, IPhealth Providers may use or disclose your PHI in other ways—usually to support public interests—after meeting specific legal requirements. Examples include:

Public Health and Safety

IPhealth Providers may share PHI to:

  • Prevent or control disease

  • Assist with product recalls

  • Report adverse drug reactions

  • Report suspected abuse, neglect, or domestic violence

  • Prevent or reduce serious threats to health or safety

Research

We may use or share PHI for certain types of health research.

Organ and Tissue Donation

We may share PHI with organ procurement organizations.

Additional State-Level Restrictions

Some states have stricter laws than HIPAA. When applicable, IPhealth Providers will follow the more restrictive law.
For example, certain states require written permission to disclose:

  • substance abuse treatment records

  • HIV-related information

Marketing and Sale of PHI

IPhealth Providers will never use or disclose your PHI for marketing purposes or sell your PHI without your written consent, except where permitted by HIPAA.

Your Rights Regarding Your PHI

You have the following rights under HIPAA:

1. Right to Inspect and Obtain a Copy

You may request to view or obtain an electronic or paper copy of your medical record and other health information we maintain.

  • We will provide the information within 30 days.

  • A reasonable, cost-based fee may apply.

  • You may also direct us to share your PHI with a family member, friend, or another individual involved in your care.

2. Right to Request an Amendment

You may request that we correct PHI you believe is inaccurate or incomplete.

  • We may deny your request, but if so, you will receive a written explanation within 60 days.

3. Right to Request Confidential Communications

You may request that we contact you in a specific way (e.g., home phone or office phone) or send mail to another address.
We will accommodate all reasonable requests.

4. Right to Request Restrictions

You may ask us not to use or share PHI for treatment, payment, or healthcare operations.

  • We are not required to agree, and may decline if it affects your care.

If you pay for a service in full out-of-pocket, you may request that we do not disclose PHI related to that service to your health plan.

  • We must honor this request unless a law requires disclosure.

5. Right to an Accounting of Disclosures

You may request a list (an “accounting”) of PHI disclosures made in the past six years, excluding disclosures for treatment, payment, or healthcare operations.

  • One list per year is free; additional lists may incur a reasonable fee.

6. Right to a Paper Copy of This Notice

You may request a paper copy at any time, even if you previously agreed to receive it electronically.

7. Right to Choose a Personal Representative

If you have a legally authorized representative—such as someone with medical power of attorney or a legal guardian—that person may exercise your rights on your behalf.

8. Right to File a Complaint

If you believe your rights have been violated, you may file a complaint:

With IPhealth:

Email: service@iphealth.net

Or with the U.S. Department of Health and Human Services (HHS):

200 Independence Avenue, S.W.
Washington, D.C. 20201
Phone: 1-877-696-6775
Online: https://www.hhs.gov/hipaa/filing-a-complaint/what-to-expect/index.html

We will not retaliate against you for filing a complaint.

Who to Contact Regarding This Notice

You may contact IPhealth for any of the following reasons:

  • Request a copy of this Notice

  • Request a copy of your medical records

  • Request an amendment to your records

  • File a complaint

  • Appoint a representative

  • Exercise any other rights described above

Contact Information:
Email: service@iphealth.net

IPhealth Office Address:
1145 19th St NW #608
Washington, DC 20036
USA

IPhealth Privacy Shield Statement

Below is the complete English translation of your Privacy Shield Statement, which governs EU-U.S. and Swiss-U.S. data transfers.

Privacy Shield Statement — Introduction

IPhealth, Inc. and its affiliates (“IPhealth,” “we,” “us,” or “our”) respect your privacy. This Privacy Shield Statement (“Privacy Shield Statement”) describes the standards and procedures we follow when processing personal information transferred from the European Economic Area (“EEA”) or Switzerland to the United States under the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks.

IPhealth has certified and adheres to the Privacy Shield Principles (“Principles”).
More information: www.privacyshield.gov
Our certification: www.privacyshield.gov/list

“Personal information” refers to any data relating to an identified or identifiable individual, including name, address, telephone number, email address, and healthcare information.
“Processing” includes collection, use, storage, consultation, or disclosure of personal information.

This Statement supplements the IPhealth Privacy Statement. If there is a conflict between this Statement and the Privacy Shield Principles, the Principles govern.

How We Receive and Process Personal Information from the EEA and Switzerland

We act as:

1. A Data Controller

When we collect personal information directly through our websites (including IPhealth.net), mobile apps, or in connection with relationships with partners, customers, and vendors.

2. A Data Processor / Agent

When we process personal information on behalf of Members based on their instructions, such as personal data stored in the Doctor AI application.
In these cases, Members are the data controllers, and our responsibilities are defined by contracts.

IPhealth commits to following all Privacy Shield Principles for personal information received from the EEA or Switzerland.

Privacy Shield Principles

1. Notice

Our Privacy Statement and this Privacy Shield Statement describe our data practices for personal information received from Europe.

2. Choice

Members control the type of information shared and the purposes for processing.
Members may opt out if:

  • their personal information is used for purposes materially different from the original reason it was collected, or

  • their personal information is transferred to a third party acting as a data controller.

For sensitive information, Members must opt in before such use or transfer.

3. Accountability for Onward Transfer

We may transfer personal information to third parties acting as data controllers or agents.
We comply with the Principles’ “Onward Transfer” rules.

If a third-party agent processes personal information in a manner inconsistent with the Principles, we remain liable unless we prove we were not responsible for the harm.

4. Security

We take reasonable and appropriate measures to protect personal information from loss, misuse, unauthorized access, disclosure, alteration, or destruction.

5. Data Integrity and Purpose Limitation

We limit personal information to what is relevant for processing purposes and take reasonable steps to ensure accuracy and completeness.
We retain personal information only as long as necessary unless law requires longer retention.

6. Access

Members may access, correct, amend, or delete their personal information unless the burden or cost is unreasonable or another exception applies.

7. Recourse, Enforcement, and Liability

We regularly review our compliance with these Principles.
IPhealth is subject to the investigatory and enforcement authority of the U.S. Federal Trade Commission (FTC).
We may disclose information to public authorities when required by law.

If Members have complaints, they may contact:

Email: data.privacy@IPhealth.net

If unresolved, disputes may be referred to EU or Swiss data protection authorities, or to JAMS (Judicial Arbitration and Mediation Services).
In some cases, binding arbitration may be available.

Amendments

This Privacy Shield Statement may be updated as required by the Privacy Shield Framework. The “Last Updated” date will be adjusted accordingly.

Contact Us

Email: service@iphealth.net
Address: 1145 19th St NW #608, Washington, DC 20036