PRIVACY POLICY

Effective: October 30, 2023

Introduction

Minimal, Inc. (“Minimal,” “we,” or “us”) owns and operates the website located at www.minimal.com and its related mobile application (collectively, the “Platform”). Your access to and use of any part of the Platform, its content (“Content”), any products or services provided by Minimal, and any affiliated website, software, or application owned or operated by Minimal (collectively referred to as the “Service”) are governed by this Privacy Policy.

Within our Service, Minimal partners with Synergy Health., and potentially other medical groups in the future (collectively known as the “Medical Groups”). These partnerships enable online telehealth medical consultations and secure messaging between the Medical Group’s providers and patients. Our Service encompasses the professional medical services offered to you by the Medical Groups and their providers, and your engagement with these Services falls under this Privacy Policy. All mentions of “we” or “us” in this Privacy Policy include the Medical Groups and their providers.

We prioritize and respect the privacy of our Service users. This Privacy Policy illustrates how Minimal collects, processes, and discloses information to deliver the Service to you.

By creating, registering, or logging into an account via the Service, or through accessing or utilizing the Service in any capacity, you are automatically adhering to and acknowledging the most recent iteration of this Privacy Policy. Should there be any modifications to our Privacy Policy, we will make the revised version available and refresh the “Last updated” date.

If you’re accessing the Service on someone else’s behalf, you declare that you have their authorization to act in their stead and that they consent to and recognize the procedures and policies described in this Privacy Policy.

Undefined capitalized terms within this Privacy Policy hold the same definition as mentioned in Minimal’s Terms and Conditions.

No Use outside of the US Permitted

The Service is exclusively available within the US. This Privacy Policy, alongside our collection, processing, and disclosure of your information, is in accordance with U.S. law.

No Use by Minors Permitted

The Service caters to individuals 18 years old or above, or those of a higher age as mandated by state laws relevant to the jurisdiction where the Service is used. It isn’t designed for children under 18 years. If we become aware that we have inadvertently accumulated personal data from a minor via the Platform, we will take steps to delete that information. If you are a minor (or the parent or guardian of a minor) and want us to remove specific information, you can send a Request for Removal of Minor Information to:

By mail: Minimal, Inc., Attn: Privacy Officer, 2081 Norfork Rd. Northfield, IL 60093, with a subject line of “Removal of Minor Information”. Using U.S. Certified Mail, Return Receipt Requested, is recommended to confirm mailing, delivery, and tracking.

Each Request for Removal of Minor Information should clearly state:

  • The intent of your request.
  • The specific information you wish to be removed.
  • The exact location of this information on the Platform (providing the URL can help).
  • Your full name, address, city, state, zip code, and email address, specifying if you’d prefer a mail or email response.

We do not accept any Request for Removal of Minor Information via phone or fax. Minimal is not liable for non-compliance with any such request that is incomplete, mislabeled, or sent improperly.

Please be informed that there may be situations where we are not obligated to delete or eliminate information, such as when we are required to retain the data by any international, federal, state, or local law or regulation. Additionally, if the data is part of your electronic medical record held on behalf of your Providers as outlined in our Terms and Conditions, or if the data is posted by a third party, including any data you uploaded that was subsequently republished by another party, we may not be required to remove it. This section outlines Minimal’s voluntary protocols regarding the inadvertent collection of data from minors via our Service and is not an acknowledgment of being subject to the Children’s Online Privacy Protection Act or any similar regulations.

Information We Gather

During your use of our Service, we collect various types of information, including:

  • Personal details like your name, email, phone number, and addresses.
  • Account registration details like your login and password.
  • Demographic information such as gender, birth date, and postal code.
  • Technical data, including your IP address, browser type, and device details.
  • Social media information from platforms like Facebook, Twitter, and Instagram.
  • Interaction details with our Service and third-party sites linked through our Service.
  • Billing and payment data.
  • Images or videos for identification or non-medical purposes.
  • Details about third parties you refer to us.
  • Any content you submit or share via the Service or linked social media.
  • Any other information shared during communication with us.

If accessing our Service through a mobile device, we might also collect:

  • The name associated with your device.
  • The device’s phone number.
  • Geolocation data.
  • Device-specific ID details.
  • With your permission: contacts or third-party applications on your device.

For your providers, we may collect medical-related data like:

  • Medical data you share for diagnosis or treatment.
  • Information about past healthcare providers you visited.
  • Date of visit.
  • Images or videos shared for medical purposes.
  • Communications with healthcare providers.

Methods of Information Collection

Minimal collects data:

  • Directly from you when you use, register, or subscribe to our Service.
  • During any transaction or interaction with the Service.
  • When you sync or link the Service with any device or third-party accounts.
  • From comments, messages, or communications sent to us about you.
  • From providers who offer services to you through our Service, such as medical diagnoses, treatment plans, and related notes.
  • From third parties involved in your healthcare or medication provisions, like your prescription history, insurance details, and laboratory test results.

By simplifying and streamlining the information, we’ve aimed to make the privacy policy clearer and more user-friendly for Minimal, Inc. users.

Sure, here’s a more concise and organized version of the section you provided:

Use of Information

At Minimal, Inc., we employ various technologies and methodologies to utilize the information we collect. This includes using cookies, web beacons, and scripts to enhance user experience and understand platform engagement. We also integrate analytic tools like Google Analytics and advertising services for insights and targeted marketing. The information we gather serves multiple purposes, such as verifying identities, processing payments, facilitating service use, improving communication, and enhancing our offerings. We might share this information with third-party vendors and service providers to support these operations. It’s important to note that adjusting your device’s cookie settings may impact your experience on our platform. We commit to using this information responsibly and in alignment with our privacy policy, ensuring that your data is handled with care and discretion.

Technologies We Use

  • Cookies: Small data files stored on your device. They store user preferences and can recognize your browser. There are various types, like browser cookies and session cookies.
  • Flash Cookies: Cookies using Adobe Flash, stored permanently on your device.
  • Web Beacons: Embedded code in websites or emails, monitoring your activity.
  • Scripts: Code in a website that tracks user interactions like clicked links.
  • Analytic Tools: Offered by third parties, they track website traffic, audience, and more.
  • Advertising Services: We use data to show ads relevant to your interests, sometimes using cookies for targeted advertising.

Examples of Tools and Services We Use:

  • Meta Platforms: Like Facebook and Instagram for analytics and advertising. Meta’s Data Policy
  • Google Analytics: A service by Google that uses cookies to analyze platform use. Google’s Data Usage Policy
  • Other Third-Party Tools: To track our platform’s performance.

Blocking or adjusting settings for these technologies may affect platform functionality. By using our Service, you allow us to track your activities and use these technologies.

Purposes for Using Information

We and our affiliates use your data to:

  • Verify your identity, administer your account, process payments, communicate with you, provide customer support, improve user experience, monitor activities on our Service, place and track orders, protect our rights, and more.
  • We may de-identify your data and use it for any legal purpose.

Disclosure of Information

We may share your data with:

  • Vendors for various purposes, like promoting our Service.
  • Pharmacies and providers to serve you.
  • Third parties, like during a merger or sale.

Compliance with Local Privacy Laws and Regulations Our organization is committed to adhering to all privacy laws and regulations in the jurisdictions where we operate. We understand the importance of privacy and are dedicated to protecting our clients’ personal and sensitive information in accordance with local legal standards.

HIPAA Compliance for Dispensing Drugs in the US In cases where we facilitate the dispensing of drugs to or within the United States, we strictly comply with the Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule (45 CFR 164). This includes, but is not limited to, the following measures:

  1. Protected Health Information (PHI) Handling:
    • We ensure that any transmission of PHI complies fully with HIPAA requirements.
    • Our methods for transmitting PHI include the use of Secure-Socket Layer (SSL) technology or equivalent to safeguard the data during transmission.
  2. Online Privacy Measures:
    • For any online transmissions involving PHI, our website displays a privacy policy that is consistent with the HIPAA Privacy Rule.
    • This policy details how we collect, use, disclose, and protect PHI received through our online platforms.

Commitment to Data Security Our organization is dedicated to maintaining the highest level of data security. We regularly review and update our security practices to ensure the protection of our clients’ information against unauthorized access or data breaches.

Patient Rights Regarding Protected Health Information (PHI)

In accordance with the Health Insurance Portability and Accountability Act (HIPAA), our patients have specific rights regarding their Protected Health Information. These rights include:

  1. Right to Access and Receive Copies:
    • Patients have the right to access and obtain a copy of their PHI that we maintain in our records, subject to certain limitations.
  2. Right to Request Amendments:
    • If a patient believes that their PHI is incorrect or incomplete, they have the right to request an amendment to their records.
  3. Right to an Accounting of Disclosures:
    • Patients are entitled to request an accounting of certain disclosures we have made of their PHI. This does not include disclosures made for treatment, payment, healthcare operations, or certain other purposes.
  4. Right to Request Restrictions:
    • Patients may request restrictions on how we use or disclose their PHI for treatment, payment, or healthcare operations, as well as to certain family members, relatives, or friends involved in their care.
  5. Right to Request Confidential Communications:
    • Patients have the right to request that we communicate with them about their PHI in a certain way or at a specific location, especially if the usual method of communication could endanger them.
  6. Right to Be Notified of a Breach:
    • In the case of a breach of unsecured PHI, patients have the right to be notified promptly.
  7. Right to File a Complaint:
    • If a patient believes their privacy rights have been violated, they have the right to file a complaint with our organization or with the U.S. Department of Health and Human Services Office for Civil Rights.

Our Commitment to Upholding Patient Rights We are committed to upholding these rights and will provide patients with the necessary support and information to exercise them. Requests regarding PHI should be made in writing, and we will respond in a timely manner in accordance with HIPAA guidelines.

Updates and Amendments This privacy policy may be updated or amended periodically to reflect changes in our practices or legal requirements. We encourage our clients to review this policy regularly to stay informed about how we are protecting their information.

Data Retention

We’ll keep your data as long as needed for our services or legal requirements.

Transactions

We may ask for transaction-relevant information, like your credit card details. Our current third-party payment processors are Braintree and Stripe. Learn more at Braintree’s Privacy Policy and Stripe’s Privacy Policy.

Third Parties

We’re not accountable for the privacy practices of third parties linked to our Service.

Consumer Privacy Rights

At Minimal, Inc., we deeply respect and uphold consumer privacy rights. We understand the significance of your personal information and are dedicated to ensuring its protection and proper handling in accordance with relevant privacy laws. As a user, you have specific rights concerning your personal data, such as the right to request access to, correction of, or deletion of your personal information, as well as the right to object to certain uses of your information. Minimal, Inc. is committed to facilitating these rights and will not engage in any form of discrimination against individuals who exercise their privacy rights. Our approach to handling user data is grounded in transparency, responsibility, and respect for individual privacy preferences.

Miscellaneous

Protect your account. You can opt out of certain communications. We might not respond to “do not track” browser signals. We may update this policy, and changes will appear on our website.

How to contact us?

For questions, email us at [email protected].

Minimal, Inc.
2081 Norfork Rd.
Northfield, IL 60093
Attn: Privacy Officer

We will attempt to respond to your questions or concerns promptly after we receive them.