Last updated: January 1, 2025

Privacy Policy

1. Who We Are

MedVita Clinic ("MedVita Clinic", "we", "us", or "our") operates the website medvita.com. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services.

2. Information We Collect

We may collect the following categories of information:

Appointment data: name, email address, phone number, date of birth, reason for visit, and the doctor or service you select.
Contact form data: name, email address, and the content of your message.
Usage data: IP address, browser type, pages visited, and referring URLs (collected automatically via server logs and analytics).

We do not collect payment card data directly. All payments are processed by PCI-DSS– compliant third-party processors.

3. How We Use Your Information

To schedule and manage your appointments.
To communicate appointment confirmations, reminders, and follow-ups.
To respond to your enquiries via the contact form.
To improve our website and services through aggregated analytics.
To comply with applicable legal and regulatory obligations, including HIPAA.

4. HIPAA Compliance

As a covered healthcare entity, MedVita Clinic complies with the Health Insurance Portability and Accountability Act (HIPAA). Protected Health Information (PHI) is handled according to our Notice of Privacy Practices, which is available at the front desk and on request.

5. How We Share Your Information

We do not sell your personal information. We may share it with:

Service providers acting on our behalf (e.g., appointment scheduling software, email delivery) under data-processing agreements.
Healthcare providers involved in your care, as permitted by HIPAA.
Law enforcement or regulators when required by law.

6. Cookies & Tracking

We use essential cookies to operate the site and, with your consent, analytics cookies to understand traffic patterns. You can manage cookie preferences in your browser settings.

7. Data Retention

We retain appointment and health records for a minimum of 7 years in accordance with California state law and HIPAA requirements, or longer if required by specific medical regulations.

8. Your Rights (CCPA / California Residents)

California residents have the right to:

Know what personal information we collect and how it is used.
Request deletion of personal information not needed for ongoing care.
Opt out of the sale of personal information (we do not sell your data).
Non-discrimination for exercising these rights.

To submit a request, email us at hello@medvita.com.

9. Security

We implement administrative, technical, and physical safeguards—including TLS encryption, access controls, and regular security audits—to protect your information. No system is 100% secure; please contact us immediately if you suspect a breach.

10. Contact Us

For privacy-related questions or requests, contact our Privacy Officer at hello@medvita.com or write to us at 1420 Wellness Boulevard, Suite 300, San Francisco, CA 94105.