Your privacy and health data security are our top priorities
Last Updated: January 2025
Welcome to LlevateHer. This Privacy Policy explains how LlevateHer, LLC ("we," "us," or "our") collects, uses, protects, and shares your personal information and protected health information (PHI) when you use our website, mobile application, services, and hormone testing platform.
We are committed to protecting your privacy and complying with all applicable privacy laws, including the Health Insurance Portability and Accountability Act (HIPAA), the Health Information Technology for Economic and Clinical Health Act (HITECH), and other state and federal regulations.
We collect personal information that you provide directly to us, including:
As a healthcare service provider, we collect sensitive health information, including:
We use your information for the following purposes:
Important: We will never sell your personal health information to third parties. We will only use or share your PHI as described in this policy or as required by law.
We share your information only in the following limited circumstances:
Your PHI is shared with licensed healthcare providers (physicians, nurse practitioners, physician assistants) within our network who are directly involved in your care. These providers are HIPAA-compliant and bound by professional confidentiality requirements.
We share necessary information with Labcorp and other CLIA-certified laboratories to process your test orders and return results. These labs are HIPAA-compliant business associates with strict data protection obligations.
When you receive a prescription, we share necessary information with pharmacies (including compounding pharmacies) to fulfill your prescription orders. This includes your name, prescription details, and relevant medical information.
We use third-party payment processors (such as Stripe) to handle billing and payment transactions. These processors receive your payment information but do not receive your health information. They maintain PCI-DSS compliance for secure payment processing.
We work with service providers who help us operate our platform, including:
These service providers are contractually required to protect your data and use it only for the services they provide to us.
We may disclose your information when required by law, including:
If LlevateHer is involved in a merger, acquisition, sale of assets, or bankruptcy, your information may be transferred as part of that transaction. The acquiring entity will be required to honor the terms of this Privacy Policy.
You Have Control: We will never share your health information for marketing purposes or sell it to third parties. Any sharing is strictly limited to providing your care or fulfilling legal obligations.
LlevateHer is a HIPAA-covered entity, and we comply fully with the Health Insurance Portability and Accountability Act (HIPAA) Privacy and Security Rules. As a patient, you have specific rights regarding your Protected Health Information (PHI):
You can request and receive copies of your health records
Request corrections to inaccurate or incomplete information
Receive a list of disclosures we've made of your PHI
Request restrictions on certain uses or disclosures
Request communications by alternative means or locations
Receive this Privacy Policy and our HIPAA Notice
To exercise any of these rights, contact our Privacy Officer at [email protected] or write to us at the address listed in Section 11.
We implement industry-leading security measures to protect your information:
256-bit SSL/TLS encryption for all data in transit; AES-256 encryption for data at rest
HIPAA-compliant cloud hosting with AWS and Google Cloud; regular security audits and penetration testing
Multi-factor authentication; role-based access; strict employee training and background checks
24/7 security monitoring; incident response procedures; regular backups and disaster recovery plans
Data Breach Notification: In the unlikely event of a data breach affecting your PHI, we will notify you within 60 days as required by HIPAA, along with any applicable regulatory authorities.
You can access, update, or delete your account information at any time by logging into your account settings or contacting us at [email protected].
You can opt out of marketing emails at any time by clicking the "unsubscribe" link in any marketing email or adjusting your communication preferences in your account settings. Note: You cannot opt out of service-related communications (e.g., test results, appointment reminders, security alerts).
You have the right to request deletion of your account and personal information. However, we may be required to retain certain health records for legal, regulatory, or medical record-keeping purposes for a minimum of 7 years as required by law. Contact [email protected] to request deletion.
Our website does not currently respond to "Do Not Track" signals from browsers. You can control cookies and tracking through your browser settings.
If you reside in California, Virginia, Colorado, Connecticut, or other states with specific privacy laws, you may have additional rights:
To exercise these rights, contact us at [email protected].
We use cookies and similar tracking technologies to improve your experience and analyze platform usage:
Required for platform functionality, including authentication, security, and account access. These cannot be disabled.
Help us understand how users interact with our platform (Google Analytics, Mixpanel). You can opt out in your account settings.
Used to deliver relevant ads and measure campaign effectiveness. You can opt out through your browser settings or third-party opt-out tools.
You can control cookies through your browser settings. Note that disabling certain cookies may affect platform functionality. Learn more in our Cookie Policy.
Our platform may contain links to third-party websites, apps, or services (e.g., supplement retailers, wearable device integrations). We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any personal information.
Integrations: If you choose to connect third-party services (e.g., Apple Health, Fitbit, Oura Ring), you authorize us to access and use data from those services to enhance your experience. You can disconnect these integrations at any time in your account settings.
LlevateHer is intended for adults aged 18 and older. We do not knowingly collect personal information from individuals under 18 years of age. If we discover that we have inadvertently collected information from a minor, we will delete it immediately.
If you are a parent or guardian and believe your child has provided us with personal information, please contact us at [email protected].
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:
Your continued use of our services after any changes indicates your acceptance of the updated Privacy Policy. We encourage you to review this policy periodically.
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
Support
[email protected]Mailing Address
LlevateHer, LLC
Attn: Privacy Officer
[Your Address]
United States of America
Response Time: We aim to respond to all privacy requests within 30 days. For urgent matters, please mark your communication as "URGENT."
We are committed to protecting your personal and health information with the highest standards of security and compliance. Thank you for trusting LlevateHer with your hormone health journey.
Contact Privacy Team