Privacy Policy

Last Updated: March 6, 2026

CrownGenix ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you use our telehealth platform, website, and related services (collectively, the "Services"). Please read this policy carefully. By accessing or using our Services, you agree to the terms of this Privacy Policy.

1. Information We Collect

Personal Information

We may collect the following personal information when you register, complete a consultation, or otherwise use our Services:

  • Full name, date of birth, and gender
  • Email address, phone number, and mailing address
  • Government-issued identification (when required for identity verification)
  • Account credentials (username and encrypted password)

Health Information

As a telehealth platform, we collect health-related information necessary to provide our services, including:

  • Medical history and health questionnaire responses
  • Photographs submitted for clinical evaluation
  • Prescription and medication history
  • Communications with healthcare providers through our platform
  • Treatment plans and clinical notes

Payment Information

  • Credit/debit card details (processed securely through our third-party payment processor)
  • Billing address
  • Transaction history

We do not store full credit card numbers on our servers. Payment processing is handled by PCI-DSS compliant third-party processors.

Automatically Collected Information

  • IP address and browser type
  • Device information and operating system
  • Pages visited, time spent, and navigation patterns
  • Referring website or source

2. How We Use Your Information

We use the information we collect for the following purposes:

  • Providing Telehealth Services: To facilitate consultations, prescriptions, and treatment plans with licensed healthcare providers.
  • Order Fulfillment: To process and ship prescription and over-the-counter products.
  • Communication: To send appointment reminders, treatment updates, shipping notifications, and respond to your inquiries.
  • Payment Processing: To authorize, process, and manage payments and refunds.
  • Account Management: To create and maintain your account, verify your identity, and provide customer support.
  • Improvement of Services: To analyze usage patterns, improve our platform, and develop new features.
  • Legal Compliance: To comply with applicable laws, regulations, and legal processes.
  • Marketing: With your consent, to send promotional communications about our services. You may opt out at any time.

3. HIPAA Compliance

CrownGenix is committed to compliance with the Health Insurance Portability and Accountability Act (HIPAA). Your Protected Health Information (PHI) is handled in accordance with HIPAA regulations, including:

  • We maintain appropriate administrative, technical, and physical safeguards to protect your PHI.
  • We limit access to your PHI to authorized personnel who need it to provide services.
  • We enter into Business Associate Agreements (BAAs) with third-party service providers who may access your PHI.
  • We provide you with a separate Notice of Privacy Practices that describes in detail how your health information may be used and disclosed.

4. Data Security

We implement industry-standard security measures to protect your information, including:

  • SSL/TLS encryption for all data transmitted between your browser and our servers
  • Encryption of sensitive data at rest
  • Regular security assessments and vulnerability testing
  • Role-based access controls for employees and contractors
  • Secure data centers with physical access controls
  • Audit logging of access to Protected Health Information

While we strive to protect your information, no method of electronic storage or transmission is 100% secure. We cannot guarantee absolute security.

5. Third-Party Services

We may share your information with trusted third parties who assist in operating our platform:

  • Licensed Healthcare Providers: Physicians and pharmacists who provide consultations and dispense medications.
  • Payment Processors: To securely process transactions (e.g., Stripe).
  • Shipping Partners: To deliver products to your address.
  • Analytics Providers: To help us understand site usage and improve our services.
  • Communication Platforms: To send transactional emails and notifications.

We do not sell your personal information to third parties. We do not share your health information for marketing purposes without your explicit consent.

6. Cookies and Tracking Technologies

We use cookies and similar technologies to:

  • Maintain your session and remember your preferences
  • Analyze site traffic and usage patterns
  • Track referral sources and affiliate relationships
  • Provide a personalized user experience

You can control cookies through your browser settings. Disabling cookies may affect the functionality of certain features on our platform.

7. Your Rights

You have the following rights regarding your information:

  • Access: You may request a copy of the personal information we hold about you.
  • Correction: You may request that we correct inaccurate or incomplete information.
  • Deletion: You may request deletion of your personal information, subject to legal and regulatory retention requirements.
  • Opt-Out: You may opt out of marketing communications at any time by clicking the "unsubscribe" link in our emails or visiting our unsubscribe page.
  • Data Portability: You may request a copy of your data in a commonly used, machine-readable format.
  • HIPAA Rights: For health information, please refer to our HIPAA Notice of Privacy Practices for a full description of your rights.

To exercise any of these rights, please contact us using the information below.

8. Data Retention

We retain your information for as long as necessary to provide our services and comply with legal obligations. Medical records are retained in accordance with applicable state and federal regulations. When information is no longer needed, we securely dispose of it.

9. Children's Privacy

Our Services are not intended for individuals under the age of 18. We do not knowingly collect personal information from minors. If we become aware that we have collected information from a minor, we will take steps to delete it promptly.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the "Last Updated" date. Your continued use of the Services after changes are posted constitutes your acceptance of the revised policy.

11. Contact Information

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

  • CrownGenix
  • [Your Address]
  • Email: [Your Email]
  • Phone: [Your Phone Number]
© 2026 CrownGenix. All rights reserved. This Privacy Policy is provided for informational purposes and does not constitute legal advice.