We respect your privacy and are dedicated to safeguarding it via our compliance with this privacy policy (“Policy”). This Policy describes the types of information we may collect from you or that you may provide (“Personal Information”) on the getclarivia.com website (“Website” or “Service”) and any of its related products and services (collectively, “Services”), and our practices for collecting, using, maintaining, protecting, and disclosing that Personal Information. It also describes the choices available to you regarding our use of your Personal Information and how you can access and update it.
This Policy is a legally binding agreement between you (“User”, “you” or “your”) and Clarivia LLC (“Clarivia LLC”, “we”, “us” or “our”). If you are entering into this Policy on behalf of a business or other legal entity, you represent that you have the authority to bind such entity to this Policy, in which case the terms “User”, “you” or “your” shall refer to such entity. If you do not have such authority, or if you do not agree with the terms of this Policy, you must not accept this Policy and may not access and use the Website and Services. By accessing and using the Website and Services, you acknowledge that you have read, understood, and agree to be bound by the terms of this Policy. This Policy does not apply to the practices of companies that we do not own or control, or to individuals that we do not employ or manage.
You can access and use the Website and Services without telling us who you are or revealing any information by which someone could identify you as a specific, identifiable individual. If, however, you wish to use some of the features offered on the Website, you may be asked to provide certain Personal Information (for example, your name and e-mail address).
We receive and store any information you knowingly provide to us when you create an account, make a purchase, or fill any forms on the Website. When required, this information may include the following:
You can choose not to provide us with your Personal Information, but then you may not be able to take advantage of some of the features on the Website, such as receiving a medical consultation or prescription. Users who are uncertain about what information is mandatory are welcome to contact us.
We do not knowingly collect any Personal Information from children under the age of 18. Our Services are intended for adults 18 years of age or older. If you are under the age of 18, please do not submit any Personal Information through the Website and Services. If you have reason to believe that a child under the age of 18 has provided Personal Information to us through the Website and Services, please contact us to request that we delete that child’s Personal Information from our Services.
We encourage parents and legal guardians to monitor their children’s Internet usage and to help enforce this Policy by instructing their children never to provide Personal Information through the Website and Services without their permission.
Clarivia LLC acts primarily as a data controller regarding the information you provide directly to our Website for account creation, service requests, and platform operation. We determine the purposes and means of processing this information to facilitate your access and use of the Services.
When you submit health information for a medical consultation, that information is processed by our independent medical group partner, Beluga Health, P.A., acting as a covered entity under HIPAA, and by Clarivia LLC acting as their Business Associate for certain functions. Similarly, when a prescription is issued, information is shared with our partner pharmacy, ChemistryRX, also acting as a covered entity, with Clarivia LLC acting as a Business Associate for facilitating fulfillment. In these roles as a Business Associate, we process PHI according to the instructions of the respective covered entity and our Business Associate Agreements.
In order to make the Website and Services available to you, or to meet a legal obligation, we may need to collect and use certain Personal Information. If you do not provide the information that we request, we may not be able to provide you with the requested products or services. Any of the information we collect from you may be used for the following purposes:
Processing your Personal Information depends on how you interact with the Website and Services, where you are located in the world and if one of the following applies: (i) you have given your consent for one or more specific purposes (e.g., telehealth consent, marketing consent); (ii) provision of information is necessary for the performance of our Terms of Service with you and/or for any pre-contractual obligations thereof; (iii) processing is necessary for compliance with a legal obligation (like HIPAA); (iv) processing is related to a task that is carried out in the public interest or in the exercise of official authority vested in us; (v) processing is necessary for the purposes of the legitimate interests pursued by us (e.g., platform security, service improvement) or by a third party, provided your rights do not override such interests.
Note that under some legislations we may be allowed to process information until you object to such processing by opting out, without having to rely on consent or any other of the legal bases. In any case, we will be happy to clarify the specific legal basis that applies to the processing, and in particular whether the provision of Personal Information is a statutory or contractual requirement, or a requirement necessary to enter into a contract.
Mobile Privacy
Clarivia LLC respects your privacy regarding mobile information. No mobile phone numbers collected for account verification, transactional alerts, or consented marketing will be sold or shared with unaffiliated third parties for their marketing/promotional purposes. Text messaging originator opt-in data and consent will not be shared with any third parties other than necessary service providers (e.g., messaging platforms) strictly for the purpose of transmitting the messages. We will only use the information you provide to transmit your text messages or communicate about your account/service. Nonetheless, we reserve the right at all times to disclose any information as necessary to satisfy any law, regulation or governmental request, to avoid liability, or to protect our rights or property. When you complete forms online or otherwise provide us information in connection with the Service, you agree to provide accurate, complete and true information.
In case of Services requiring payment, you may need to provide your credit card details or other payment account information, which will be used solely for processing payments. We use third-party payment processors (“Payment Processors”) to assist us in processing your payment information securely.
Payment Processors adhere to the latest security standards as managed by the PCI Security Standards Council. Sensitive and private data exchange happens over an SSL secured communication channel and is encrypted and protected with digital signatures, and the Website and Services are also in compliance with reasonable vulnerability standards to create as secure of an environment as possible for Users. We will share payment data with the Payment Processors only to the extent necessary for the purposes of processing your payments, refunding such payments, and dealing with complaints and queries related to such payments and refunds.
Please note that the Payment Processors may collect some Personal Information from you, which allows them to process your payments (e.g., your email address, address, credit card details, and bank account number) and handle all the steps in the payment process through their systems. Their use of your Personal Information is governed by their respective privacy policies which may or may not contain privacy protections as protective as this Policy. We suggest that you review their respective privacy policies.
You may be able to delete certain Personal Information we have about you via your account settings page on the Website. The Personal Information you can delete may change as the Website and Services change. When you delete Personal Information, however, we may maintain a copy of the unrevised Personal Information in our records for the duration necessary to comply with our legal obligations (including medical record retention laws where applicable), resolve disputes, enforce our agreements, and for other legitimate business purposes. If you would like to delete your Personal Information or permanently delete your account, you can typically do so through your account settings or by contacting us.
Depending on the requested Services or as necessary to complete any transaction or provide any Service you have requested, we must share your information with our contracted partners and specific service providers we rely upon to operate the Website and Services. These include:
These Service Providers are authorized to use your information only as necessary to perform services on our behalf and are typically bound by confidentiality agreements and, where applicable, Business Associate Agreements consistent with HIPAA. We require them to abide by our policies or have privacy policies consistent with ours. We will not share any personally identifiable health information with unaffiliated third parties for their own marketing purposes without your explicit consent. Service Providers are given the information they need only in order to perform their designated functions.
We may also disclose any Personal Information we collect, use or receive if required or permitted by law, such as to comply with a subpoena, court order, or similar legal process, and when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request.
In the event we go through a business transition, such as a merger or acquisition by another company, or sale of all or a portion of its assets, your user account, and your Personal Information will likely be among the assets transferred.
We will retain and use your Personal Information for the period necessary to provide the Services, comply with our legal obligations (including applicable state and federal medical record retention requirements), resolve disputes, and enforce our agreements. Retention periods are determined based on the type of information and the purpose for which it was collected.
We may use any aggregated data derived from or incorporating your Personal Information after you update or delete it, but not in a manner that would identify you personally. Once the retention period expires, Personal Information shall be securely deleted or anonymized. Therefore, the right to access, the right to erasure, the right to rectification, and the right to data portability cannot be enforced after the expiration of the relevant retention period.
If you are a California resident, you have certain rights regarding your Personal Information under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA). This section describes your CCPA rights and explains how to exercise them.
Right to Know/Access: You have the right to request that we disclose certain information to you about our collection and use of your Personal Information over the past 12 months. This includes the categories of Personal Information collected, the sources of the information, the purposes for collecting or selling/sharing the information, the categories of third parties to whom we disclose Personal Information, and the specific pieces of Personal Information we have collected about you.
Right to Delete: You have the right to request that we delete any of your Personal Information that we collected from you and retained, subject to certain exceptions (such as completing a transaction, complying with legal obligations including medical record retention, or detecting security incidents).
Right to Correct: You have the right to request that we correct inaccurate Personal Information that we maintain about you.
Right to Opt-Out of Sale/Sharing: We may engage in activities that could be considered a "sale" or "sharing" under CCPA, primarily related to the use of cookies and tracking technologies for targeted advertising (as described in Section 11). You have the right to opt-out of the "sale" or "sharing" of your Personal Information. You can typically exercise this right through cookie management tools on our Website or by contacting us. We do not knowingly sell or share the Personal Information of consumers under 16 years of age.
Right to Limit Use and Disclosure of Sensitive Personal Information: You have the right to limit our use and disclosure of sensitive personal information (like health information) to that use which is necessary to perform the services reasonably expected by an average consumer. We generally only use sensitive PHI as necessary to provide the requested medical and pharmacy services via our partners, or as permitted by HIPAA and consented to by you.
Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights. We will not deny you goods or services, charge you different prices or rates, provide you a different level or quality of goods or services, or suggest that you may receive a different price or rate or a different level or quality.
Exercising Your Rights: To exercise the rights described above, please submit a verifiable consumer request to us by using the contact information provided in Section 19. Only you, or someone legally authorized to act on your behalf, may make a verifiable consumer request related to your Personal Information. We will need to verify your identity before processing your request, which may require you to provide sufficient information to reasonably verify you are the person about whom we collected Personal Information or an authorized representative. We will respond to your request within 45 days, though that period may be extended once by an additional 45 days when reasonably necessary, provided we notify you of the extension.
Our Website and Services use “cookies” to help personalize your online experience and for operational purposes. A cookie is a text file placed on your hard disk by a web page server. Cookies are uniquely assigned to you and can only be read by a web server in the domain that issued the cookie.
We may use cookies to collect, store, and track information for security, personalization, service functionality (like remembering login state), and for statistical or marketing purposes (subject to your choices). You have the ability to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser settings to decline cookies if you prefer. You may also be able to manage preferences for certain cookies through controls made available on our Website. If you choose to decline essential cookies, you may not be able to fully experience the features of the Website and Services.
Our Website and Services may use third-party analytics tools (e.g., Google Analytics) that use cookies, web beacons, or other similar information-gathering technologies to collect standard internet activity and usage information. The information gathered is used to compile statistical reports on User activity (e.g., page visits, session duration) to help us monitor performance and improve our Website and Services. We do not typically use these tools to track or collect personally identifiable information directly, nor do we usually associate analytics data with individual User accounts in an identifiable way, except as may be necessary for troubleshooting or security purposes.
Some browsers incorporate a Do Not Track (DNT) feature that signals to websites you visit that you do not want to have your online activity tracked. Tracking is not the same as using or collecting information in connection with a website. How browsers communicate the DNT signal is not yet uniform. As a result, the Website and Services are not currently configured to respond to DNT signals communicated by your browser. However, we provide choices regarding tracking for advertising purposes, as described in Section 8 (CCPA Rights) and potentially through cookie management tools.
We may display online advertisements, and we may share aggregated and non-identifying information about our Users that we or our advertisers collect through the use of the Website and Services. We do not share personally identifiable information about individual Users with advertisers. In some instances, we may use this aggregated and non-identifying information to deliver tailored advertisements to the intended audience. We may also permit certain third-party companies (e.g., ad networks) to help us tailor advertising that we think may be of interest to Users and to collect and use other data about User activities on the Website (e.g., through cookies or pixels). These companies may deliver ads that might place cookies and otherwise track User behavior, which may constitute "sharing" under CCPA, subject to your right to opt-out.
We may offer electronic newsletters or promotional emails to which you may voluntarily subscribe or consent. We are committed to keeping your e-mail address confidential and will not disclose your email address to any third parties for their direct marketing purposes without your consent, except as allowed in the information use and processing section or for utilizing a third-party provider (like an email service platform) to send such emails on our behalf. We maintain information sent via e-mail in accordance with applicable laws and regulations.
In compliance with the CAN-SPAM Act, all promotional e-mails sent from us will clearly state who the e-mail is from and provide clear information on how to contact the sender. You may choose to stop receiving our newsletter or marketing emails by following the unsubscribe instructions included in these emails or by contacting us. However, you will continue to receive essential transactional emails related to your account or service requests.
The Website and Services may contain links to other resources (e.g., partner websites, informational sites) that are not owned or controlled by us. Please be aware that we are not responsible for the privacy practices of such other resources or third parties. We encourage you to be aware when you leave the Website and Services and to read the privacy statements of each resource that may collect Personal Information.
We secure information you provide on computer servers in a controlled, secure environment, protected from unauthorized access, use, or disclosure. We maintain reasonable administrative, technical, and physical safeguards aligned with HIPAA requirements in an effort to protect against unauthorized access, use, modification, and disclosure of Personal Information and PHI in our control and custody. This includes measures like encryption, access controls, and secure infrastructure. However, no data transmission over the Internet or wireless network can be guaranteed to be 100% secure.
Therefore, while we strive to protect your Personal Information, you acknowledge that (i) there are security and privacy limitations of the Internet which are beyond our control; (ii) the security, integrity, and privacy of any and all information and data exchanged between you and the Website and Services cannot be absolutely guaranteed; and (iii) any such information and data may be viewed or tampered with in transit by a third party, despite best efforts.
As the security of Personal Information also depends on the security of the device you use and the security you use to protect your account credentials, please take appropriate measures to protect this information.
In the event we become aware that the security of the Website and Services has been compromised or Users’ Personal Information has been disclosed to unrelated third parties as a result of external activity, including, but not limited to, security attacks or fraud, we reserve the right to take reasonably appropriate measures. This includes investigation, reporting, notification to affected individuals and regulatory bodies (as required by laws like HIPAA), and cooperation with law enforcement authorities. We will make reasonable efforts to notify affected individuals if we believe that there is a reasonable risk of harm to the User as a result of the breach or if notice is otherwise required by law. When we do, we may post a notice on the Website, send you an email, or use other appropriate communication channels.
We reserve the right to modify this Policy or its terms related to the Website and Services at any time at our discretion. When we do, we will revise the updated date at the bottom of this page. We may also provide notice to you in other ways, such as through the contact information you have provided (e.g., email) or a notice on the Website.
An updated version of this Policy will be effective immediately upon the posting of the revised Policy unless otherwise specified. Your continued use of the Website and Services after the effective date of the revised Policy will constitute your consent to those changes. However, we will not, without your consent, use your Personal Information in a manner materially different than what was stated at the time your Personal Information was collected.
You acknowledge that you have read this Policy and agree to all its terms and conditions. By accessing and using the Website and Services and submitting your information you agree to be bound by this Policy. If you do not agree to abide by the terms of this Policy, you are not authorized to access or use the Website and Services.
If you have any questions, concerns, or complaints regarding this Policy, the information we hold about you, or if you wish to exercise your privacy rights (including those under CCPA or HIPAA), we encourage you to contact our Privacy Officer using the details below:
Clarivia LLC Privacy Officer
Email: support@getclarivia.com
Phone: 256-792-5982
Mailing Address: 1309 Coffeen Avenue STE 1200, Sheridan Wyoming 82801
We will attempt to resolve complaints and disputes and make every reasonable effort to honor your wish to exercise your rights as quickly as possible and in any event, within the timescales provided by applicable data protection laws (e.g., 30 days for HIPAA access requests, 45 days for CCPA requests, subject to extensions).
This document was last updated on April 18, 2025