At Medical Street, we are committed to protecting the privacy and security of our customers’ personal information. This Privacy Policy outlines our practices regarding the collection, use, and disclosure of personal information when you use our services, visit our website, or interact with us in any other way. Our goal is to ensure transparency and trust by explaining how we handle your personal data.

This Privacy Policy applies to all personal information collected by Medical Street through our website, mobile applications, customer service interactions, and other online and offline channels. It covers the information we collect, how we use it, how we protect it, and your rights regarding your personal data.

To help you understand this Privacy Policy, we provide definitions for key terms used throughout the document:

• Personal Information: Any information that relates to an identified or identifiable individual. This includes, but is not limited to, names, contact details, health information, and financial information.
• Processing: Any operation or set of operations performed on personal information, whether by automated means or not, such as collection, storage, use, disclosure, and deletion.
• Data Controller: The entity that determines the purposes and means of processing personal information. For the purposes of this Privacy Policy, Medical Street is the data controller.
• Third Parties: Individuals or entities that are not the subject of the personal information or the data controller but who may process personal information on behalf of the data controller or have other interactions with the personal information.
• Cookies: Small pieces of data stored on a user’s device by a web browser that help track and store information about the user’s visit to a website.

At Medical Street, we collect various types of personal information to provide our services effectively and ensure a seamless experience for our customers. The types of data we collect include:

• Name: First and last name.
• Contact Details: Email address, phone number, physical address.

• Medical History: Information about past and present medical conditions, treatments, and medications.
• Health Metrics: Data related to health measurements such as blood pressure, glucose levels, and other relevant health indicators.

• Billing Details: Credit card information, billing address, and other payment-related details.
• Insurance Information: Details of your health insurance policy, including provider and policy number.

• IP Address: The unique address that identifies a device on the internet or a local network.
• Device Information: Information about the device used to access our services, such as device type, operating system, and browser type.
• Usage Data: Information about how you interact with our website and services, including pages visited, time spent on pages, and other similar data.

We collect personal information through various methods to ensure we gather accurate and relevant data efficiently. The methods include:

• User Input: Information provided directly by users through account registration, purchase forms, surveys, and other interactive features on our website.
• Forms: Data collected through forms filled out by users, such as contact forms, feedback forms, and health assessment questionnaires.

• Cookies: Small data files stored on your device by your web browser that help us track and store information about your visit to our website. Cookies enable us to recognize your device and preferences, improving your browsing experience.
• Analytics: Data collected through analytics tools that monitor and analyze website usage patterns and user behavior. This includes tools like Google Analytics that help us understand how users interact with our services and identify areas for improvement.

We use the data we collect to provide, improve, and market our services, as well as to comply with legal requirements. The primary purposes for data usage include:

• Telehealth Consultations: Using health and personal information to facilitate remote medical consultations with healthcare providers.
• EHR Access: Providing secure access to Electronic Health Records (EHR) for both patients and healthcare providers.

• User Feedback: Analyzing feedback from users to enhance the quality of our services and address any issues or concerns.
• Data Analytics: Using aggregated data to understand usage patterns, improve website functionality, and develop new features.

• Newsletters: Sending newsletters and updates about our services, health tips, and other relevant information.
• Promotions: Informing users about promotions, special offers, and events related to our services.

Regulatory Requirements: Ensuring compliance with legal and regulatory obligations, such as reporting requirements and responding to lawful requests from public authorities.

We adhere to the following principles to ensure that your personal data is processed responsibly and securely:

We process personal data lawfully, fairly, and in a transparent manner. We ensure that individuals are informed about the processing of their data and the purposes for which it is used.

We collect personal data for specific, explicit, and legitimate purposes and do not process it in a manner that is incompatible with those purposes.

We collect and process only the personal data that is necessary for the purposes outlined in this policy. We strive to minimize the amount of data we collect and limit it to what is directly relevant and necessary.

We take reasonable steps to ensure that the personal data we process is accurate and, where necessary, kept up to date. We encourage users to update their personal information to ensure accuracy.

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, or resolve disputes. After this period, personal data is securely deleted or anonymized.

We implement appropriate technical and organizational measures to protect personal data against unauthorized access, accidental loss, destruction, or damage. We ensure that personal data is processed confidentially and securely.

We may share your personal data with third-party service providers who perform services on our behalf. These service providers are carefully selected to ensure they meet our data protection standards. The types of services they provide include:

• Cloud Storage: Secure storage of data to ensure accessibility and reliability.
• Payment Processors: Handling transactions and payment-related information.
• Analytics Providers: Conducting data analysis to help us understand user behavior and improve our services.
• Marketing Services: Assisting with communication and promotional activities.

We require all third-party service providers to maintain the confidentiality and security of your personal data. They are only permitted to process your data for the specific purposes outlined in our agreements with them and in accordance with our instructions.

We may disclose your personal data when required to do so by law or in response to valid requests by public authorities, such as law enforcement agencies or regulatory bodies.

We will disclose personal data to comply with applicable laws, regulations, legal processes, or governmental requests. This includes providing information to tax authorities, regulatory agencies, and other authorized entities as necessary.

We may disclose personal data in response to lawful requests from law enforcement agencies to protect the safety and security of our users, prevent fraud, or comply with a judicial proceeding, court order, or legal process.

In the event of a business transfer, such as a merger, acquisition, or sale of assets, your personal data may be transferred to the new owner or entity. This ensures the continuity of services and the safeguarding of your personal data.

If Medical Street is involved in a merger, acquisition, or sale of all or a portion of its assets, your personal data may be transferred as part of the transaction. We will notify you of any such changes and inform you of your rights regarding your personal data.

We take the security of your personal data seriously and implement a variety of measures to protect it from unauthorized access, loss, or misuse. Our security measures include:

We use encryption to protect sensitive data both in transit and at rest. This ensures that your personal information is securely transmitted over the internet and safely stored on our servers.

We implement strict access controls to limit access to your personal data to authorized personnel only. Access to sensitive information is granted based on the principle of least privilege and is regularly reviewed.

We use secure storage solutions to safeguard your personal data. Our servers are protected by advanced security technologies, including firewalls, intrusion detection systems, and regular security assessments.

While we take significant measures to protect your personal data, you also have a role to play in ensuring the security of your information. Here are some responsibilities you should be aware of:

• Strong Passwords: Create strong, unique passwords for your accounts and update them regularly.
• Confidentiality: Keep your account credentials confidential and do not share them with anyone. Avoid using the same password across multiple websites.
• Two-Factor Authentication: Enable two-factor authentication (2FA) for an added layer of security, if available.

• Suspicious Activity: If you notice any suspicious activity on your account or believe your account credentials have been compromised, contact us immediately.
• Security Concerns: Report any security concerns or vulnerabilities you may discover in our services. We take all reports seriously and investigate promptly.

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. The retention periods for different types of data are based on the following criteria:

• Purpose of Collection: The length of time we need to retain the data to achieve the purposes outlined in this privacy policy.
• Legal Obligations: Legal and regulatory requirements that mandate the retention of certain data for specific periods.
• Business Needs: Operational and business needs, including maintaining accurate business and financial records.

We retain personal data to comply with applicable laws and regulations, such as tax and financial reporting requirements, healthcare regulations, and data protection laws. The retention periods are determined based on these legal obligations.

When personal data is no longer needed for the purposes for which it was collected, or upon your request, we will securely delete or anonymize the data. The process for data deletion includes the following steps:

You have the right to request the deletion of your personal data. To exercise this right, please contact us at support@medicalstreet.biz or call . We will review your request and take appropriate action in accordance with applicable laws and regulations.

• Verification: We will verify your identity to ensure the security of your personal data before proceeding with the deletion request.
• Review and Approval: We will review your request to ensure it complies with legal and regulatory requirements.
• Deletion: We will securely delete or anonymize the personal data within a reasonable time frame, unless retention is required for legal, regulatory, or legitimate business purposes.

We respect your rights regarding your personal data and are committed to providing you with the ability to exercise these rights. Below are the various rights you have concerning your personal data and the processes to exercise them:

You have the right to access the personal data we hold about you.

You can request information about the personal data we process about you, including the purposes of processing, categories of data, and the recipients of your data.

• Submission: Submit a request for access to your personal data by contacting us at support@medicalstreet.com.
• Verification: We will verify your identity to protect your personal data.
• Response: We will respond to your request within a reasonable time frame, providing you with a copy of your personal data and any relevant information.

You have the right to correct inaccurate or incomplete personal data.

If you believe that any personal data we hold about you is inaccurate or incomplete, you have the right to request correction or completion of the data.

• Submission: Submit a correction request by contacting us at support@medicalstreet.com or calling [Phone Number].
• Verification: We will verify your identity to protect your personal data.
• Update: We will review and update your personal data as necessary, informing you of the changes made.

You have the right to request the deletion of your personal data.

You can request the erasure of your personal data when it is no longer necessary for the purposes for which it was collected, or if you withdraw your consent (where applicable).

• Submission: Submit a deletion request by contacting us at support@medicalstreet.com.
  
• Verification: We will verify your identity to protect your personal data.
• Deletion: We will securely delete or anonymize your personal data within a reasonable time frame, unless retention is required for legal, regulatory, or legitimate business purposes.

You have the right to request the restriction of your personal data processing.

You can request that we restrict the processing of your personal data under certain conditions, such as when you contest the accuracy of the data or object to the processing.

• Verification: We will verify your identity to protect your personal data.
• Assessment: We will assess the request and restrict processing where applicable, informing you of the actions taken.

You have the right to data portability.

You can request a copy of your personal data in a structured, commonly used, and machine-readable format, and you have the right to transmit this data to another data controller.

• Submission: Submit a data portability request by contacting us at support@medicalstreet.biz.
  
• Verification: We will verify your identity to protect your personal data.
• Transfer: We will provide you with a copy of your personal data or transfer it to another data controller as requested, within a reasonable time frame.

You have the right to object to the processing of your personal data.

You can object to the processing of your personal data for certain purposes, such as direct marketing or when processing is based on legitimate interests.

• Verification: We will verify your identity to protect your personal data.
• Assessment: We will assess the objection and cease processing your data as requested, unless we have compelling legitimate grounds to continue processing.

We use cookies and similar tracking technologies to enhance your experience on our website. The types of cookies we use include:

These cookies are necessary for the website to function properly. They enable basic features such as page navigation and access to secure areas of the site. Without these cookies, the website cannot function correctly.

These cookies collect information about how visitors use our website, such as which pages are visited most often and if users receive error messages. This data helps us improve the performance and functionality of our site.

language, or the region you are in) and provide enhanced, more personalized features. They can also be used to provide services you have asked for, such as watching a video or commenting on a blog.

These cookies are used to deliver advertisements more relevant to you and your interests. They are also used to limit the number of times you see an advertisement and help measure the effectiveness of advertising campaigns. These cookies remember that you have visited a website, and this information may be shared with other organizations, such as advertisers.

We use cookies for the following purposes:

Cookies help us to enhance your user experience by remembering your preferences and settings, providing personalized content, and enabling social media features.

We use cookies to collect information about how you interact with our website, allowing us to analyze website usage and improve our services based on user behavior and feedback.

Cookies assist us in delivering targeted advertisements and promotions, ensuring that our marketing efforts are relevant to your interests. They also help us measure the effectiveness of our marketing campaigns.

You have control over the use of cookies on our website. Here’s how you can manage your cookie preferences:

• Browser Settings: You can manage your cookie preferences through your browser settings. Most web browsers allow you to control cookies through their settings preferences. You can choose to block or delete cookies, or to be notified when a cookie is set.
• Cookie Consent Tools: Our website may include a cookie consent tool that allows you to customize your cookie preferences. You can accept or reject different categories of cookies based on your preferences.

• Advertising Cookies: You can opt out of targeted advertising cookies by using tools provided by third-party advertisers or through browser settings.
• Analytics Cookies: You can opt out of analytics cookies by adjusting your browser settings or using opt-out tools provided by the analytics service provider.

Medical Street is committed to protecting the privacy of children. Our services are not intended for use by individuals under the age of 18. We do not knowingly collect personal data from children under this age. If we become aware that we have inadvertently collected personal data from a child under the age of 18, we will take steps to delete such data as soon as possible.

For children under the age of 18 who may need to use our services with parental supervision or consent, we require verifiable parental consent. Parents or legal guardians must provide explicit permission for the collection, use, and sharing of their child’s personal data.

To ensure compliance with our age restrictions and parental consent requirements, we have implemented the following procedures:

• Initial Screening: During the registration process, we ask users to provide their date of birth to verify their age.
• Age Confirmation: If we suspect that a user may be under the age of 18, we may request additional information to confirm their age.

• Parental Contact: If a user is identified as being under the age of 18, we will contact the parent or legal guardian to obtain consent.
• Consent Form: We provide a consent form that must be completed and returned by the parent or legal guardian, confirming their approval for their child to use our services and for the collection and processing of their child’s personal data.
• Verification: We may take additional steps to verify the identity of the parent or legal guardian and their relationship to the child, such as requesting government-issued identification.

If you believe that we may have inadvertently collected personal data from a child under the age of 18 without proper consent, or if you have any questions or concerns about children’s privacy, please contact our customer service team at support@medicalstreet.com. We will take prompt action to address and resolve the issue.

Medical Street operates globally, and your personal data may be transferred to, stored in, and processed in countries other than your own. We ensure that such international data transfers are conducted in compliance with applicable data protection laws and regulations.

When transferring personal data from the European Economic Area (EEA) or other regions with data transfer restrictions, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission. These clauses provide appropriate safeguards for the transfer of personal data to third countries by ensuring that data protection standards are maintained.

While the EU-U.S. Privacy Shield Framework has been invalidated, we may rely on other recognized frameworks or legal mechanisms for data transfers. We are committed to ensuring that any personal data transferred internationally receives an adequate level of protection in line with applicable laws and standards.

We implement various safeguards to protect your personal data during international transfers, including:

We include data protection obligations in our contracts with third parties involved in data processing and transfers. These contracts require third parties to comply with data protection standards and implement appropriate security measures.

We use technical and organizational measures to protect personal data during transfers, such as encryption and secure data transfer protocols. These measures help ensure the confidentiality and integrity of your personal data.

We ensure that international data transfers comply with applicable data protection laws and regulations, including obtaining necessary consents and adhering to legal requirements for cross-border data transfers.

You have the right to be informed about international transfers of your personal data and the safeguards in place to protect your data. If you have any questions or concerns about international data transfers, or if you wish to obtain a copy of the relevant safeguards, please contact our customer service team at support@medicalstreet.biz

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make changes to this policy, we will notify you in the following ways:

• Website Notification: We will post the updated Privacy Policy on our website, along with a notice highlighting the changes.
• Direct Notification: Where required by law or if the changes are significant, we will notify you directly via email or through other appropriate communication channels.

Each update to this Privacy Policy will be effective as of the date specified in the “Effective Date” section at the beginning of the updated policy. The Effective Date will be clearly indicated to inform you when the changes take effect.

If the changes to this Privacy Policy materially affect the way we handle your personal data, you will have the following rights:

• Review and Acceptance: You will have the opportunity to review the revised Privacy Policy and choose whether to continue using our services based on the updated terms.
• Withdrawal of Consent: If you do not agree with the changes, you may withdraw your consent to the processing of your personal data. To do so, please contact our customer service team at support@medicalstreet.biz.
• Account Termination: If you choose to withdraw your consent or if the updated policy terms are not acceptable to you, you may terminate your account with us. We will provide assistance in deleting your personal data as per the provisions outlined in the “Data Deletion” section of this policy.

If you have any questions, concerns, or inquiries about this Privacy Policy or our data protection practices, please feel free to contact us. Our dedicated privacy team is here to assist you with any issues related to your personal data.

• Email: support@medicalstreet.biz

To exercise your rights regarding your personal data, such as access, correction, deletion, restriction, data portability, or objection, please follow the procedure outlined below:

• Contact Method: You can submit your privacy requests by email, phone, or mail using the contact details provided above.
• Information to Include: Please include the following information in your request:
• Your full name
• Contact information (email address, phone number, mailing address)
• Description of your request (e.g., access, correction, deletion)
• Any relevant details that will help us process your request efficiently
  

• Identity Verification: To protect your personal data, we will verify your identity before processing your request. This may involve asking you to provide additional information or documentation.
• Confirmation: Once your identity is verified, we will confirm receipt of your request and begin processing it.

• Timeline: We aim to process all privacy requests within a reasonable time frame, typically within 30 days of receipt. If we need more time, we will inform you of the reason for the delay and the expected time frame.
• Communication: We will keep you informed of the progress of your request and notify you once it has been completed.

For a comprehensive understanding of our practices and your rights, we encourage you to review our related policies. These documents provide additional details about the terms and conditions of using our services and how we handle your information.

• Terms of Service: Our Terms of Service outline the terms and conditions for using our website and services, including user responsibilities and limitations.
• Return Policy: Our Return Policy provides detailed information about the return, exchange, and refund procedures for products purchased through our platform.
• Cookie Policy: Our Cookie Policy explains how we use cookies and other tracking technologies on our website and how you can manage your preferences.

We are committed to providing you with the resources and support you need to understand and manage your personal data. Below are some additional resources and contact points for further assistance:

• Privacy Resources: Access our privacy resources here to learn more about data protection, your rights, and best practices for safeguarding your information.
• Help Center: Visit our Help Center for answers to frequently asked questions and guides on using our services.
• Customer Support: For personalized assistance, contact our customer support team via email or phone.