Privacy Policy - CellRx

Effective Date: 12/17/2025

CellRx LLC (“CellRx,” “we,” “us,” or “our”) is committed to protecting the privacy and security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard information obtained through our website and related digital services.

This Policy applies to all website visitors, prospective patients, and users of our online services. Medical care is provided only to individuals who establish care within the state of Utah.

1. INFORMATION WE COLLECT

A. Personal Information You Provide

We may collect personal information that you voluntarily submit, including but not limited to:

Name

Email address

Phone number

Mailing address

Date of birth (when applicable)

Information submitted through contact forms, appointment requests, or inquiries

B. Health Information

Protected Health Information (“PHI”) is collected only after a patient relationship is established and is handled exclusively through HIPAA-compliant platforms, including our electronic health record (EHR) and secure communication systems.

PHI is not collected or stored directly through this website.

C. Automatically Collected Information

We may automatically collect limited technical data such as:

IP address

Browser type

Device type

Pages visited

Referring URLs

Date and time of access

This data is used for security, analytics, and website performance optimization.

2. HOW WE USE INFORMATION

We use collected information to:

Respond to inquiries and requests

Provide customer service and operational support

Schedule consultations or appointments

Improve website functionality and user experience

Comply with legal and regulatory requirements

Protect the security and integrity of our systems

We do not sell or rent personal information.

3. HIPAA COMPLIANCE

CellRx LLC complies fully with the Health Insurance Portability and Accountability Act (HIPAA).

All medical consultations occur via HIPAA-compliant telehealth platforms

All medical records are maintained in a HIPAA-compliant EHR

All patient communications involving health information are conducted through HIPAA-compliant channels

Website forms are used only for non-medical inquiries or intake initiation

Once a patient relationship is established, use and disclosure of PHI are governed by our Notice of Privacy Practices, provided separately.

4. DISCLOSURE OF INFORMATION

We may share information only as necessary with:

HIPAA-compliant service providers (EHR, telehealth, billing, labs)

Technology vendors providing website hosting, analytics, or communications support

Government authorities when required by law

Professional advisors (legal, compliance, accounting)

All vendors with access to sensitive data are required to meet appropriate privacy and security standards.

5. STATE PRIVACY RIGHTS

We honor applicable privacy rights under U.S. state laws, including but not limited to:

California Consumer Privacy Act (CCPA/CPRA)

Colorado Privacy Act (CPA)

Virginia Consumer Data Protection Act (VCDPA)

Connecticut Data Privacy Act (CTDPA)

Utah Consumer Privacy Act (UCPA)

Depending on your state of residence, you may have the right to:

Access personal information we hold about you

Request correction of inaccurate information

Request deletion of personal data (subject to legal exceptions)

Opt out of certain data processing activities

To exercise your rights, contact us using the information below.

6. COOKIES & TRACKING TECHNOLOGIES

Our website may use cookies and similar technologies to:

Enable core website functionality

Analyze website traffic

Improve user experience

You may control cookies through your browser settings. Disabling cookies may limit some website features.

7. DATA SECURITY

We implement administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, disclosure, or misuse. However, no internet transmission or storage system can be guaranteed to be 100% secure.

8. DATA RETENTION

We retain personal information only for as long as necessary to fulfill its intended purpose or to comply with legal, regulatory, or contractual obligations.

Medical records are retained in accordance with HIPAA and Utah state law.

9. CHILDREN’S PRIVACY

Our website and services are not intended for children under the age of 18. We do not knowingly collect personal information from minors.

10. THIRD-PARTY LINKS

Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of external sites. We encourage users to review the privacy policies of any third-party sites they visit.

11. CHANGES TO THIS POLICY

We may update this Privacy Policy periodically. Updates will be posted on this page with a revised effective date. Continued use of the website constitutes acceptance of the updated policy.

12. CONTACT INFORMATION

If you have questions about this Privacy Policy or wish to exercise your privacy rights, contact us at:

CellRx LLC

3098 Executive Parkway, Suite 100

Lehi, UT 84043

Phone: +1 (385) 707-2373

Email: [email protected]