Privacy Policy
Effective Date: October 5, 2025
Healsend Inc. — Master Privacy Policy
Healsend Inc.
30 N Gould St Ste R
Sheridan, WY 82801
Email: yourhealth@healsend.com
Website: https://stage.cprxholdings.com
Contents
- Introduction & Roles
- Scope; U.S.-Only Audience
- Key Definitions
- Categories of Information Collected
- Sources of Personal Information
- Purposes of Processing
- Our Role as MSO/Technology Provider
- HIPAA/HITECH Boundary
- Consumer Health Data
- Biometric & Sensor Data
- Sensitive Personal Information
- Cookies & Tracking
- Targeted Advertising & Opt-Outs
- Disclosures to Third Parties
- Retention & Disposal
- Security Program
- Incident Response
- General U.S. Privacy Rights
- California Privacy Rights
- Other State Privacy Rights
- Children’s Privacy
- Marketing & Communications
- Financial & PCI Matters
- Controlled Substances
- Accessibility & Non-Discrimination
- Automated Decision-Making & AI
- Telehealth Data Flows
- Data Subject Request Process
- Changes to this Policy
- Contact Information
1. Introduction & Roles
Healsend Inc. operates a U.S.-only telehealth technology and administrative services platform. We are a management services organization (MSO) and technology facilitator. We do not practice medicine, dispense medication, or make clinical decisions. Licensed, independent professional entities and their clinicians deliver clinical services; independent pharmacies dispense prescriptions. This Master Privacy Policy explains how Healsend collects, uses, discloses, and protects personal information in connection with our Services.
2. Scope; U.S.-Only Audience
This Policy applies to users located in the United States. We market only to U.S. residents and do not target or offer the Services to individuals outside the United States. If you access the Services from outside the U.S., you do so at your own initiative and understand your information will be processed in the U.S.
4. Categories of Personal Information Collected
Depending on your interactions, we may collect:
- Identifiers (name, address, email, phone).
- Health and clinical intake information.
- Financial and transaction data.
- Internet and device metadata (IP, logs).
- Geolocation and communication records.
- Images and media uploads (IDs, photos).
- Biometric and sensor data.
14. Disclosures to Third Parties
Professional Entities/Providers — to facilitate care, scheduling, and communications.
Pharmacies — to fulfill prescriptions and manage delivery logistics.
Service Providers/Subprocessors — hosting, storage, analytics, and payment processing.
Authorities and legal process — as required by law or to protect rights and safety.
Appendices Summary
Appendix B — Retention Schedule
Account & identifiers: Life of account + 7 years. Health intake: Minimum 7 years. Payment tokens: 7 years. Logs: 12–24 months.
Appendix F — Cookies & Tracking
Strictly necessary cookies for security and authentication. Functional cookies for preferences. Analytics for site improvement (opt-out available).
