contact@vitagelab.com

Privacy

  1. Home
  2. Privacy

PRIVACY POLICY

We respect your privacy and are committed to protecting it through our compliance with this privacy policy (“Privacy Policy”). This Privacy Policy describes the types of information we may collect from you or that you may provide (“Personal Information”) on the www.vitagelab.com website (“Site”), through email, text or other correspondences, and any of its related products and services (collectively, “Services”), and our practices for collecting, using, maintaining, protecting, and disclosing that Personal Information. It also describes the choices available to you regarding our use of your Personal Information.

This Privacy Policy is a legally binding agreement between you (“User”, “you” or “your”) and VitageLab, LLC, a California Limited Liability Company (“VitageLab, LLC”, “we”, “us” or “our”). If you do not agree with the terms of this Policy, you must not accept this Policy and may not access and use the Site and Services. By accessing and using the Site and Services, you acknowledge that you have read, understood, and agree to be bound by the terms of this Privacy Policy. This Privacy Policy does not apply to the practices of companies that we do not own or control, or to individuals that we do not employ or manage.

1. Information We Collect

We may collect personal information about you directly from you, from third parties such as providers, and automatically through your use of our Site. The types of personal information (“Personal Information”) we may collect include:

  • Contact information, such as your name, email address, and phone number.
  • Account details, such as username and password.
  • Billing and shipping information, such as your billing address, shipping address, and payment information.
  • Health information, such as information related to the purchase of testing kits and any HIPAA-related information necessary for processing and delivering those kits and results.
  • Device information, such as your IP address, browser type, operating system, and other technical information about your use of our Site.

Our Site and Services use “cookies” to help personalize your online experience. A cookie is a text file that is placed on your hard disk by a web page server. Cookies are uniquely assigned to you, and can only be read by a web server in the domain that issued the cookie to you. We may use cookies to collect, store, and track information for security and personalization, and for statistical purposes. Please note that you have the ability to accept or decline cookies. Most web browsers automatically accept cookies by default, but you can modify your browser settings to decline cookies if you prefer. However, note that your user experience may be affected by limiting cookies.

2. How Do We Use Your Information?

We function as an intermediary between patients and practitioners to facilitate the efficient ordering of lab work. In this process, we share patients' personal information with the practitioner and relevant medical staff, with the laboratory company conducting the tests, and with relevant personnel involved in managing orders and lab results. We may also share limited information with third-party vendors and service providers who assist us in operating and managing our Site, processing orders, and fulfilling and delivering products and Services purchased through us.

In addition to the aforementioned, any of the information we collect from you may be generally used for the following purposes:

  • Display and enhance our Site and Services.
  • Supply you with information, products, or services.
  • Manage and maintain your online account.
  • Contact you, and third parties as permitted and required, regarding the status of your orders.
  • Handle credit card and debit card transactions.
  • Provide promotional materials or advertisements concerning our products and Services.
  • To monitor and analyze trends, usage, and activities in connection with our Site.
  • To comply with legal obligations and HIPAA requirements.
  • To protect you and us as required or permitted by law.

3. How Do We Protect Your Information?

We secure information you provide on computer servers in a controlled, secure environment, protected from unauthorized access, use, or disclosure. We maintain reasonable administrative, technical, and physical safeguards in an effort to protect against unauthorized access, use, modification, and disclosure of Personal Information in our control and custody. However, no data transmission over the Internet or wireless network can be guaranteed.

Therefore, while we strive to protect your Personal Information, you acknowledge that (a) there are security and privacy limitations of the Internet which are beyond our control; (b) the security, integrity, and privacy of any and all information and data exchanged between you and the Site and Services cannot be guaranteed; and (c) any such information and data may be viewed or tampered with in transit by a third party, despite best efforts.

As the security of Personal Information depends in part on the security of the device you use to communicate with us and the security you use to protect your credentials, please take appropriate measures to protect this information.

4. HIPAA Compliance

We are committed to complying with the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) in the handling of your protected health information (“PHI”). Our practices for handling PHI include:

  • Implementing administrative, physical, and technical safeguards to protect the confidentiality, integrity, and availability of PHI.
  • Limiting access to PHI to authorized individuals for permitted purposes.
  • Conducting regular risk assessments and audits of our systems and processes.
  • Providing training to our employees on HIPAA compliance and data security.
  • Notifying affected individuals and authorities in the event of a breach of unsecured PHI as required by law.

5. Access To Your Information

You can access and modify specific information associated with your online account by signing in and navigating to your Account section on the Site.

6. Privacy of Children

We do not knowingly collect any Personal Information from children under the age of 18. If you are under the age of 18, please do not submit any Personal Information. If you have reason to believe that a child under the age of 18 has provided Personal Information to us through the Site, please contact us immediately.

We encourage parents and legal guardians to monitor their children’s Internet usage and to help enforce this Privacy Policy by instructing their children never to provide Personal Information through the Website and Services without their permission.

7. Payment Processing

For Services that require payment, you may need to provide your credit card or other payment details, which we'll use solely for processing payments. We use secure third-party payment processors to handle this information. These processors comply with the latest security standards set by the PCI Security Standards Council, ensuring your data is encrypted and protected during transmission. We only share necessary payment data with these processors for payment processing, refunds, and addressing payment-related inquiries. Please be aware that these processors may collect some of your personal information to manage payment processes, and their use of your data is governed by their own privacy policies. We recommend reviewing their policies for further details.

8. Retention of Information

We will retain and use your Personal Information for the period necessary to comply with our legal obligations, to enforce our Policy, resolve disputes, and unless a longer retention period is required or permitted by law. We may use any aggregated data derived from or incorporating your Personal Information after you update or delete it, but not in a manner that would identify you personally.

9. Specific Regional Rights

Out of respect for your privacy, we have implemented additional measures to comply with the obligations and rights associated with the collection of Personal Information as dictated by the laws governing the regions of our Users.

If you are a resident of California, Colorado, Connecticut, Delaware, Iowa, Maryland, Utah, or Virginia, you have certain rights and we aim to take reasonable steps to allow you to correct, amend, delete, or limit the use of your Personal Information. This supplemental section, together with other relevant sections of this Privacy Policy, provides information about your rights and how to exercise them under the California Consumer Privacy Act and the California Privacy Rights Act (collectively, “CCPA”), the Colorado Privacy Act (“CPA”), the Connecticut Data Privacy Act (“CDPA”), the Delaware Online Privacy and Protection Act (“DOPPA”), the Iowa Consumer Data Protection Act (“ICDPA”), the Maryland Personal Information Protection Act (“PIPA”), the Utah Consumer Privacy Act (“UCPA”), the Virginia Consumer Data Protection Act (“VCDPA”), and any and all regulations arising therefrom. Unless otherwise expressly stated, all terms in this section have the same meaning as defined in the related state laws.

In addition to the rights as explained in this Privacy Policy, if you provide Personal Information as defined in the statute to obtain Services for personal, family, or household use, you have the right to submit requests related to your Personal Information once a calendar year. Note that there are circumstances when we may not be able to comply with your request such as when we are not be able to verify your request or we may find that providing a full response conflicts with other legal obligations or regulatory requirements. You will be notified if it’s the case.

  • Right to know and right to access: You have the right to request certain information we have collected about you. Once we receive and confirm a verifiable request from you, we will disclose to you to the extent permitted by law.
  • Right to correct: You have the right to request that we correct your inaccurate Personal Information taking into account the nature of the Personal Information and the purposes of the processing of the Personal Information.
  • Right to delete: You have the right to request deletion of your Personal Information.
  • Right to opt-out of the sale and sharing: You have the right to opt-out of the sale of your Personal Information which may include selling, disclosing, or transferring Personal Information to another business or a third party for monetary or other valuable consideration.
  • Right to consent to or limit the use of your sensitive personal information: You have the right to consent to the use of your Sensitive Personal information and to direct us to restrict its use and disclosure solely to what is essential for carrying out or delivering the Services in a manner reasonably anticipated by an average user, or for certain business objectives as specified by law. However, we do not use Sensitive Personal Information for any purposes other than those legally permitted or beyond the scope of your consent.
  • Right to non-discrimination: You have the right to not be discriminated against in the Services or quality of Services you receive from us for exercising your rights. We may not, and will not, treat you differently because of your data subject request activity, and we may not and will not deny goods or Services to you, charge different rates for goods or Services, provide a different level quality of goods or Services, or suggest that we would treat you differently because of your data subject request activity.
  • Shine the Light: California residents that have an established business relationship with us have the right to know how their personal information is disclosed to third parties for their direct marketing purposes under California’s “Shine the Light” law, or the right to opt out of such practices.

10. Third Party Sites

The Site and Services contain links to other resources that are not owned or controlled by us. Please be aware that we are not responsible for the privacy practices of such other resources or third parties. We encourage you to be aware when you leave the Site and to read the privacy statements of each and every resource that may collect Personal Information.

11. Data Breach

In the event we become aware that the security of the Site and Services has been compromised or Users’ Personal Information has been disclosed to unrelated third parties as a result of external activity, including, but not limited to, security attacks or fraud, we reserve the right to take reasonably appropriate measures, including, but not limited to, investigation and reporting, as well as notification to and cooperation with law enforcement authorities. In the event of a data breach, we will make reasonable efforts to notify affected individuals if we believe that there is a reasonable risk of harm to the User as a result of the breach or if notice is otherwise required by law.

12. How to Exercise Your Rights

Any requests to exercise your rights can be directed to us through the contact details provided in this document. Please note that we may ask you to verify your identity before responding to such requests. Your request must provide sufficient information that allows us to verify that you are the person you are claiming to be.

13. Changes and Amendments

We reserve the right to modify this Privacy Policy or its terms related to the Site and Services at any time at our discretion. When we do, we will revise the updated date at the bottom of this page. We may also provide notice to you in other ways at our discretion, such as through the contact information you have provided.

An updated version of this Privacy Policy will be effective immediately upon the posting of the revised terms unless otherwise specified. Your continued use of the Site and Services after the effective date of the revised terms will constitute your consent to those changes. You are encouraged to review this Privacy Policy periodically for any changes.

14. Acceptance of this Privacy Policy

You acknowledge that you have read this Privacy Policy and agree to all its terms and conditions. By accessing and using the Site and Services you agree to be bound by this Privacy Policy. If you do not agree to abide by the terms of this Privacy Policy, you are not authorized to access or use the Site and Services.

15. Contacting Us

If you have any questions, concerns, or complaints regarding this Privacy Policy, we encourage you to contact us at contact@vitagelab.com. We will attempt to resolve complaints and disputes and make every reasonable effort to honor your wish to exercise your rights as quickly as possible and in any event, within the timescales provided by applicable data protection laws.

This document was last updated on April 1, 2024.