The DripDoc — IV Infusion & Wellness
Soft blue water surface with light caustics

Legal

HIPAA Notice of Privacy Practices

This notice describes how medical information about you may be used and disclosed and how you can get access to this information. Please review carefully.

Last updated · May 2026

01

Our commitment

The DripDoc is committed to safeguarding your protected health information (PHI) in accordance with the Health Insurance Portability and Accountability Act (HIPAA), the HITECH Act, and applicable New York State privacy laws. We are required by law to maintain the privacy of your PHI, provide you with this notice, and abide by its terms.

02

How we use & disclose PHI

We use and disclose your PHI for treatment, payment, and health care operations without your written authorization.

Other permitted disclosures include public health activities, required reporting to government agencies, judicial and administrative proceedings, law enforcement when required by law, and to avert a serious threat to health or safety.

Any use or disclosure not described in this notice will be made only with your written authorization, which you may revoke at any time in writing.

  • Treatment: sharing PHI with consulting providers or pharmacies involved in your care.
  • Payment: submitting information needed to process payment through Square.
  • Operations: quality review, training, and administrative activities.
  • Required by law: court orders, subpoenas, and mandatory reporting obligations.
03

Your rights

You have specific rights regarding your PHI. To exercise any of these rights, submit a written request to our Privacy Officer at thedripdoc@gmail.com.

  • Right to access and obtain a copy of your records.
  • Right to request amendments to records you believe are inaccurate or incomplete.
  • Right to receive an accounting of certain disclosures.
  • Right to request restrictions on uses and disclosures for treatment, payment, or operations.
  • Right to request confidential communications (for example, by a specific phone number).
  • Right to a paper copy of this notice on request.
  • Right to be notified of a breach of unsecured PHI.
04

Insecure communication channels

Our website contact form, standard SMS, and general email are not encrypted and are not secure channels. Please do not transmit PHI through these channels. For clinical questions, your provider will follow up through a HIPAA-compliant channel such as our secure messaging system, a phone call, or a secure portal.

05

Marketing & sale of PHI

We will not use or disclose your PHI for marketing purposes or sell your PHI without your written authorization, except as permitted by law (for example, face-to-face communications or promotional gifts of nominal value).

06

Breaches

In the event of a breach of unsecured PHI, we will notify affected individuals without unreasonable delay and in no case later than 60 days after discovery, in accordance with HIPAA and applicable state breach notification laws.

07

Changes to this notice

We reserve the right to change this notice at any time and to make the revised notice effective for PHI we already have about you, as well as any information we receive in the future. The current notice will always be available on this page.

08

Contact our Privacy Officer

To exercise your rights, ask questions, or file a complaint, contact our Privacy Officer at thedripdoc@gmail.com or 929-630-5447. You may also file a complaint with the U.S. Department of Health and Human Services Office for Civil Rights at hhs.gov/ocr. We will not retaliate against you for filing a complaint.