Skip to main content

Privacy Policy

Last updated: February 1, 2026

1. Introduction

Rimal Health ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our telehealth services. Please read this policy carefully. If you disagree with its terms, please discontinue use of our site.

2. Information We Collect

We may collect the following information:

  • Personal identification information — name, email address, phone number, date of birth
  • Health information — medical history, current medications, substance use history, treatment goals (protected health information / PHI under HIPAA)
  • Payment information — processed securely through our third-party payment processor; we do not store full card numbers
  • Usage data — IP address, browser type, pages visited, and time spent on pages

3. How We Use Your Information

  • To provide and manage your telehealth care
  • To facilitate physician review of your intake and prescription management
  • To communicate with you about your treatment
  • To process payments
  • To improve our services
  • To comply with legal obligations, including HIPAA requirements

4. HIPAA Compliance

Your protected health information (PHI) is handled in accordance with the Health Insurance Portability and Accountability Act (HIPAA). We implement appropriate administrative, physical, and technical safeguards to protect PHI. For details on your rights under HIPAA, please see our HIPAA Notice of Privacy Practices.

5. Information Sharing

We do not sell your personal information. We may share your information with:

  • Healthcare providers — your treating physician and pharmacy, as needed for your care
  • Service providers — third-party vendors who assist in operating our platform (all bound by confidentiality agreements)
  • Legal requirements — when required by law, court order, or governmental authority

6. Data Security

We use industry-standard encryption (TLS/SSL) for all data in transit and AES-256 encryption for data at rest. Access to PHI is restricted to personnel who need it to provide your care. We conduct regular security audits and maintain HIPAA-compliant infrastructure.

7. Cookies & Tracking

We use cookies and similar tracking technologies to improve your experience, analyze site traffic, and understand where our visitors come from. You can control cookie settings through your browser preferences.

8. Your Rights

You have the right to:

  • Access the personal information we hold about you
  • Request correction of inaccurate information
  • Request deletion of your information (subject to legal requirements)
  • Opt out of marketing communications at any time
  • File a complaint with the U.S. Department of Health & Human Services if you believe your HIPAA rights have been violated

9. Contact Us

For privacy-related questions or to exercise your rights, contact us at: support@rimalhealth.com