1. Introduction
Welcome to Reverse Disease Rx ("we," "us," or "our"). We are committed to protecting your privacy and handling your personal information responsibly.
This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you engage with our wellness education, lifestyle coaching, and holistic self-care support services (collectively, the "Services"), including through our website, platform, email communications, coaching sessions, and digital materials.
By accessing or using our Services, you acknowledge that you have read, understood, and agree to the practices described in this Privacy Policy.
2. No Medical Treatment or Protected Health Information (PHI)
Reverse Disease Rx is not a licensed medical provider and does not offer diagnosis, treatment, or medical advice.
We do not collect, store, or transmit Protected Health Information (PHI) as defined under the U.S. Health Insurance Portability and Accountability Act (HIPAA). We are not a HIPAA-covered entity, and our platform is not intended for use by healthcare providers.
Any health-related information you voluntarily share (e.g., symptoms, medications, lab results) is provided at your own risk and does not create a clinician-patient relationship. We recommend avoiding the sharing of sensitive medical records unless necessary for your coaching goals.
3. Information We Collect
We collect information to provide and improve our Services. The types of information include:
A. Personal Information You Provide
When you sign up, book a session, or communicate with us, you may provide:
- Full name
- Email address
- Mailing address
- Phone number
- Payment details (processed securely via third-party processors like Stripe or PayPal)
- Wellness goals, lifestyle habits, dietary preferences, sleep patterns, stress levels
- Feedback or questions about the program
B. Health-Related Information (Voluntary)
You may choose to share non-clinical wellness details such as:
- Energy levels
- Mood patterns
- Digestive health
- Exercise routines
- Food sensitivities
Note: While helpful for personalized coaching, we urge caution. We do not maintain medical records, and this data is not stored with the same protections as clinical health data.
C. Automatically Collected Data
When you visit our website or use our digital platform, we may collect:
- IP address
- Device type and browser
- Operating system
- Pages visited and time spent
- Referral source
- Cookie and tracking data (see Section 9)
We use tools like Google Analytics (with IP anonymization enabled) and platform log files to understand usage and improve our site.
D. Communications
We may retain records of emails, chat logs, or session notes for service continuity and quality improvement — unless you request deletion.
4. How We Use Your Information
We use your information only for the following purposes:
- To deliver and personalize your coaching experience
- To communicate with you about your account, sessions, or updates
- To process payments and manage billing
- To improve our programs, content, and platform
- To respond to your inquiries and support needs
- To comply with legal obligations
- To protect our rights, safety, and systems
We do not use your data for:
- Selling to third parties
- Targeted advertising (we do not run behavioral ad campaigns)
- Profiling for automated decision-making
5. Legal Basis for Processing (GDPR & International Compliance)
If you are located in the European Economic Area (EEA), UK, or other regions with data privacy laws, our processing is based on:
- Consent: When you sign our Service Agreement, you consent to data use as described.
- Contractual Necessity: To provide the coaching services you've purchased.
- Legitimate Interests: For customer support, service improvement, and fraud prevention.
You may withdraw consent at any time (see Section 8), though this may affect your ability to continue using the Services.
6. Sharing of Information
We do not sell, rent, or monetize your personal information. We may share data only in the following limited circumstances:
A. Trusted Service Providers
We use third-party tools that may access your data, including:
- Payment processors (e.g., Stripe, PayPal)
- Email marketing platforms (e.g., Mailchimp)
- Hosting and cloud storage services
- Coaching and scheduling platforms
All vendors are contractually obligated to protect your data and use it only as directed.
B. Legal Compliance
We may disclose information if required by law, court order, or government request.
C. Safety and Protection
We may share information to:
- Prevent fraud or security threats
- Protect our rights or property
- Respond to emergencies involving danger of harm
D. Aggregated or De-Identified Data
We may use and share non-personal, anonymized data for research, program development, or publishing insights (e.g., "80% of participants reported better sleep"). This data cannot identify you.
7. Data Retention
We retain your personal information only as long as necessary:
- For active customers: During and up to 3 years after service completion
- For deactivated accounts: Up to 2 years, unless deletion is requested
- For marketing contacts: Until you unsubscribe or 3 years of inactivity
We may retain certain data longer if required by law, audit needs, or legitimate business purposes. Upon deletion request, we will remove your data from active systems, though backups may persist briefly due to technical processes.
8. Your Privacy Rights
Depending on your location, you may have the right to:
| Right | Description | Applies To |
|---|---|---|
| Access | Request a copy of your data | GDPR, CCPA, PIPEDA |
| Correction | Update inaccurate information | GDPR, CCPA |
| Deletion | Ask us to erase your data | GDPR, CCPA |
| Restriction | Limit how we use your data | GDPR |
| Portability | Receive your data in a usable format | GDPR |
| Withdraw Consent | Opt out of processing | GDPR |
| Opt-Out of Sales | Request no sharing for advertising | CCPA |
To exercise any of these rights, please email us at reverse.disease.rx@gmail.com.
We will respond within:
- 30 days (GDPR)
- 45 days (CCPA)
- Or as required by your local law
We may verify your identity before fulfilling requests.
9. Cookies and Tracking Technologies
We use cookies and similar technologies to:
- Remember your preferences
- Analyze traffic and site usage
- Enhance user experience
We do not use third-party behavioral advertising cookies (e.g., Facebook Pixel for retargeting).
You can manage cookies via your browser settings. Disabling cookies may affect site functionality. Our Cookie Policy is part of this Privacy Policy. We use:
- Essential Cookies: Always active (e.g., login, security)
- Performance Cookies: Anonymous analytics (e.g., Google Analytics)
10. Data Security
We implement reasonable administrative, technical, and physical safeguards to protect your data, including:
- SSL/TLS encryption for website and forms
- Secure password practices
- Limited staff access to personal data
- Regular software updates
Note: No internet transmission or storage system is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.
11. International Data Transfers
Your data may be transferred to and processed in countries outside your home jurisdiction, including the United States, where privacy laws may differ.
We ensure appropriate safeguards are in place:
- For EU/UK: We comply with GDPR transfer mechanisms (e.g., Standard Contractual Clauses)
- For Canada: Data remains subject to PIPEDA; we limit U.S. transfers to necessary operations
- For all: We use trusted providers with strong privacy commitments
By using our Services, you consent to cross-border data transfer as described.
12. Third-Party Links
Our website may contain links to external sites (e.g., educational blogs, research articles). We are not responsible for their privacy practices. Please review their policies independently.
13. Policy Updates
We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. We will:
- Post the revised policy on our website
- Update the "Effective Date" at the top
- Notify active customers via email if changes are material
Your continued use of our Services after updates constitutes acceptance.
14. How to Contact Us
If you have questions, requests, or concerns about this Privacy Policy or your data, please contact us:
- Email: reverse.disease.rx@gmail.com
- Mailing Address: 251 Webster Street, Palo Alto, CA
For GDPR-related concerns, you may also contact your local Data Protection Authority (DPA), such as:
- Ireland (EU): Data Protection Commission (dpc.ie)
- UK: Information Commissioner's Office (ico.org.uk)
- Canada: Office of the Privacy Commissioner (priv.gc.ca)
15. Additional Jurisdictional Disclosures
United States
This Service is based in Delaware, USA. We comply with federal and state privacy laws, including CCPA. California residents may request disclosure of data sharing practices and opt out of "sales" (none occur).
European Union (GDPR)
We comply with GDPR as a data controller. You have the right to lodge a complaint with your local DPA under Article 77.
Canada (PIPEDA)
We follow PIPEDA principles. Customers may request access or correction of personal information.
Australia (Privacy Act)
We respect Australian privacy rights. Complaints may be made to the Office of the Australian Information Commissioner (OAIC).
Rest of World
Customers are responsible for ensuring local compliance. In certain jurisdictions (e.g., India, Saudi Arabia), sharing health content may be restricted. Use is at your own discretion.
16. No Medical Device Disclaimer
Reverse Disease Rx is not a medical device and has not been approved, cleared, or licensed by the FDA, Health Canada, MHRA, TGA, EMA, or any other regulatory authority. Our services are for wellness education only.