Privacy Policy
Effective Date: March 1, 2026
Purple Labs Rx ("we," "our," "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website (purplelabsrx.com) and use our services.
Information We Collect
Information you provide directly:- Name, email address, phone number, and shipping address when you create an account or place an order
- Date of birth and gender for medical intake purposes
- Health history, current medications, allergies, and treatment goals submitted during the provider intake process
- Payment information for order processing
- Communications you send to our support team
- Browser type, operating system, and device information
- IP address and approximate geographic location
- Pages visited, time spent on pages, and referring URLs
- Cookies and similar tracking technologies (see Cookies section below)
How We Use Your Information
We use the information we collect to:
- Facilitate provider consultations and prescription services
- Process and fulfill your orders
- Communicate with you about your orders, account, and treatment
- Improve our website, services, and customer experience
- Comply with legal and regulatory obligations
- Send marketing communications (only with your consent; you can opt out anytime)
Medical Information & HIPAA
Purple Labs Rx is a telehealth platform that connects patients with licensed providers. Your medical information — including health intake responses, prescriptions, and provider communications — is handled through our HIPAA-compliant patient portal powered by AsherMD.
AsherMD maintains HIPAA compliance for all protected health information (PHI). This means your medical information is encrypted in transit and at rest, access is restricted to authorized healthcare providers, and all handling follows federal HIPAA regulations.
Purple Labs Rx does not sell, rent, or share your medical information for marketing purposes.
How We Share Your Information
We share your information only in the following circumstances:
Healthcare providers: Your health intake and medical information is shared with the licensed physician who reviews your case and writes your prescription. This is necessary to provide the medical services you've requested. Pharmacy partners: Your prescription and shipping information is shared with our 503A compounding pharmacy partners for medication fulfillment. Payment processors: Payment information is shared with our payment processing partners to complete transactions. We do not store full credit card numbers on our servers. Service providers: We work with third-party service providers for website hosting, analytics, email delivery, and customer support. These providers are contractually obligated to protect your information and use it only for the services they provide to us. Legal requirements: We may disclose information when required by law, court order, or governmental regulation, or when we believe disclosure is necessary to protect our rights, your safety, or the safety of others.We do not sell your personal information to third parties.
Cookies & Tracking
We use cookies and similar technologies to:
- Maintain your session and remember your preferences
- Analyze website traffic and usage patterns (via Google Analytics and Vercel Analytics)
- Improve website performance and user experience
You can control cookies through your browser settings. Disabling cookies may affect some website functionality.
Third-party analytics: We use Google Analytics 4 and Vercel Analytics to understand how visitors use our website. These services collect anonymous usage data and do not have access to your medical information.Data Retention
We retain your personal information for as long as your account is active or as needed to provide services. Medical records are retained in accordance with applicable state and federal healthcare record retention requirements. If you request account deletion, we will remove your personal information from our active systems, subject to legal retention requirements.
Your Rights
Depending on your jurisdiction, you may have the right to:
- Access the personal information we hold about you
- Request correction of inaccurate information
- Request deletion of your personal information
- Opt out of marketing communications
- Request a copy of your data in a portable format
To exercise any of these rights, contact us at privacy@purplelabsrx.com.
California residents: Under the CCPA, you have additional rights regarding your personal information, including the right to know what information we collect and how it's used, and the right to request deletion. We do not sell personal information as defined by the CCPA.Data Security
We implement reasonable administrative, technical, and physical safeguards to protect your information. This includes encryption of data in transit (TLS/SSL), secure hosting infrastructure, and access controls. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.
Children's Privacy
Purple Labs Rx services are intended for adults 18 years of age and older. We do not knowingly collect personal information from individuals under 18. If we become aware that we have collected information from a minor, we will take steps to delete it promptly.
Changes to This Policy
We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated effective date. We encourage you to review this policy periodically. Continued use of our services after changes constitutes acceptance of the updated policy.
Contact
For privacy-related questions or requests:
Email: privacy@purplelabsrx.com Mail: Purple Labs Rx, [Address to be added]For medical information requests, use your AsherMD patient portal.