Privacy Policy

Renu Healthcare
Effective Date: December 2, 2025
Last Updated: December 2, 2025

Introduction
Welcome to Renu Healthcare (“Renu,” “we,” “us,” or “our”). We are committed to protecting your privacy and
ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose,
and safeguard your information when you visit our website at www.renuhealthrecovery.com (the “Website”),
use our mobile application (if applicable), or engage with our telehealth services and weight loss programs
(collectively, the “Services”).
Please read this Privacy Policy carefully. By accessing or using our Services, you acknowledge that you have
read, understood, and agree to be bound by this Privacy Policy. If you do not agree with the terms of this
Privacy Policy, please do not access or use our Services.
Important: This Privacy Policy applies to personal information and non-health-related data collected through
our Services. For information about how we handle your Protected Health Information (PHI), please refer to our
Notice of Privacy Practices (HIPAA Privacy Policy), which is a separate document.

Table of Contents

1. Information We Collect
2. How We Use Your Information
3. How We Disclose Your Information
4. Cookies and Tracking Technologies
5. Data Security
6. Data Retention
7. Your Privacy Rights
8. Children’s Privacy
9. Third-Party Links and Services
10. International Users
11. Changes to This Privacy Policy
12. Contact Us
13. Information We Collect
    We collect information about you when you use our Services. The types of information we collect include:
    1.1 Information You Provide Directly
    When you interact with our Services, you may voluntarily provide us with certain information, including:
    Account Information
    Name
    Email address
    Phone number
    Username and password
    Date of birth
    Gender
    Mailing address and billing address
    Health Assessment Information
    Medical history and health conditions
    Current medications and supplements
    Weight, height, and body measurements
    Lifestyle and dietary habits
    Exercise routines
    Health goals and objectives
    Payment Information
    Credit card or debit card information
    Billing address
    Payment transaction history
    Communications
    Information you provide when contacting customer support

Feedback, surveys, and testimonials
Messages sent through our platform or chat features
Profile Information
Profile photo or avatar
Preferences and settings
Subscription preferences
1.2 Information Collected Automatically
When you access our Services, we automatically collect certain information about your device and usage,
including:
Device Information
IP address
Device type and model
Operating system and version
Browser type and version
Unique device identifiers (such as MAC address)
Mobile network information
Usage Information
Pages visited and features used
Date and time of access
Referring and exit pages
Search queries
Click data and navigation paths
Time spent on pages
Links clicked
Location Information
General geographic location (city, state, and country) based on IP address
Precise geolocation data (if you grant permission through your device settings)

1.3 Information from Third-Party Sources
We may receive information about you from third-party sources, including:
Payment Processors
Transaction verification and payment processing information from our payment service providers (such as
Stripe or Adyen)
Analytics and Advertising Partners
Information about your interactions with advertisements and marketing campaigns
Aggregated data from analytics providers
Social Media Platforms
Information from social media platforms if you choose to connect your account or interact with our social
media pages
Publicly Available Sources
Information from publicly accessible databases or sources, where permitted by law
1.4 Information from Healthcare Providers
If you authorize us, we may receive information from your healthcare providers, including:
Medical records and test results
Prescription history
Treatment plans and recommendations

2. How We Use Your Information
   We use the information we collect for various purposes, including:
   2.1 To Provide and Improve Our Services
   Service Delivery: Provide you with access to our telehealth platform, weight loss programs, and related
   services
   Account Management: Create and manage your account, process registrations, and authenticate users
   Treatment and Care: Facilitate consultations with healthcare providers, manage prescriptions, and
   coordinate your care

Communication: Send you appointment reminders, treatment updates, lab results, and other service-related
communications
Customer Support: Respond to your inquiries, requests, and complaints
Personalization: Customize your experience and provide tailored recommendations based on your health
goals and preferences
Service Improvement: Analyze usage patterns and feedback to improve our Services, develop new
features, and enhance user experience
2.2 For Payment and Business Operations
Payment Processing: Process payments, bill for services, and manage subscriptions
Billing: Generate invoices and statements
Fraud Prevention: Detect and prevent fraudulent transactions and unauthorized access
Business Analytics: Conduct business planning, analysis, and reporting
Legal Compliance: Comply with applicable laws, regulations, and legal processes
2.3 For Marketing and Communications
Marketing Communications: Send you promotional materials, newsletters, and information about our
services, products, and special offers (subject to your consent where required by law)
Research and Surveys: Invite you to participate in surveys, research studies, or feedback requests
Advertising: Display targeted advertisements based on your interests and usage of our Services
You can opt out of marketing communications at any time by following the unsubscribe instructions in our
emails or contacting us directly.
2.4 For Legal and Safety Purposes
Legal Obligations: Comply with legal requirements, court orders, and government requests
Safety and Security: Protect the safety, rights, and property of Renu Healthcare, our users, and the public
Dispute Resolution: Resolve disputes, enforce our Terms of Service, and address violations of our policies
2.5 With Your Consent
We may use your information for other purposes with your consent, which we will obtain at the time of
collection.

3. How We Disclose Your Information
   We may disclose your information to third parties in the following circumstances:
   3.1 Service Providers and Business Associates
   We share information with third-party service providers who perform services on our behalf, including:
   Healthcare Providers
   Licensed physicians, nurse practitioners, and other healthcare professionals who provide medical
   consultations and prescribe medications
   Technology and Infrastructure Providers
   Cloud storage and hosting providers
   Customer relationship management (CRM) systems
   Data analytics and business intelligence tools
   Payment Processors
   Payment gateways and processors (such as Stripe and Adyen) to facilitate transactions
   Communication Services
   Email service providers and SMS/text messaging platforms
   Telehealth and video conferencing platforms
   Marketing and Advertising Partners
   Advertising networks and marketing platforms
   Email marketing services
   Pharmacy and Laboratory Partners
   Pharmacies that fulfill prescriptions
   Laboratories that process tests and provide results
   Customer Support
   Third-party customer support and helpdesk services
   These service providers are contractually obligated to protect your information, use it only for the purposes we
   specify, and comply with applicable privacy and security laws. Where required by law, we enter into Business
   Associate Agreements with healthcare-related service providers.

3.2 Business Transfers
If Renu Healthcare is involved in a merger, acquisition, asset sale, bankruptcy, or other business transaction,
your information may be transferred as part of that transaction. We will notify you of any such change in
ownership or control of your personal information.
3.3 Legal Requirements and Protection of Rights
We may disclose your information when we believe it is necessary to:
Comply with applicable laws, regulations, legal processes, or government requests
Enforce our Terms of Service, policies, or agreements
Protect the rights, property, or safety of Renu Healthcare, our users, or the public
Detect, prevent, or address fraud, security issues, or technical problems
Respond to claims that content violates the rights of third parties
3.4 With Your Consent
We may disclose your information to third parties when you provide your explicit consent to do so.
3.5 Aggregated and De-Identified Information
We may share aggregated, anonymized, or de-identified information that cannot reasonably be used to identify
you. This information may be used for research, analytics, marketing, and other purposes.

4. Cookies and Tracking Technologies
   4.1 What Are Cookies?
   Cookies are small text files stored on your device when you visit a website. They help websites remember your
   preferences and improve your user experience.
   4.2 Types of Cookies We Use
   Essential Cookies
   Required for the operation of our Services
   Enable core functionality such as security, authentication, and access to secure areas
   Cannot be disabled without affecting the functionality of our Services
   Analytics and Performance Cookies
   Collect information about how you use our Services
   Help us understand usage patterns and improve our Services

Include cookies from third-party analytics providers such as Google Analytics
Functionality Cookies
Remember your preferences and settings
Personalize your experience on our Services
Advertising and Marketing Cookies
Track your browsing activity across websites
Deliver targeted advertisements based on your interests
Measure the effectiveness of our marketing campaigns
4.3 Third-Party Cookies
We may allow third-party companies to place cookies on your device for analytics and advertising purposes.
These companies include:
Google Analytics: Collects usage data and generates reports on website traffic
Social Media Platforms: Enable social media sharing and interactions
Advertising Networks: Deliver targeted advertisements
4.4 Your Cookie Choices
Browser Settings: Most web browsers allow you to control cookies through their settings. You can:
Block all cookies
Accept only certain types of cookies
Receive notifications when cookies are set
Delete existing cookies
Please note that blocking or deleting cookies may affect the functionality and user experience of our Services.
Opt-Out Tools:
Google Analytics Opt-Out: Install the Google Analytics Opt-Out Browser Add-on at
https://tools.google.com/dlpage/gaoptout
NAI Opt-Out: Visit the Network Advertising Initiative opt-out page at http://optout.networkadvertising.org
DAA Opt-Out: Visit the Digital Advertising Alliance opt-out page at http://optout.aboutads.info

Do Not Track (DNT): Some browsers have a “Do Not Track” feature. Our Services do not currently respond to
DNT signals. However, you can use the opt-out tools described above to limit tracking.
4.5 Mobile Device Identifiers
Our mobile application may collect device identifiers and use mobile analytics tools. You can manage these
settings through your device’s privacy settings:
iOS: Settings > Privacy > Advertising > Limit Ad Tracking
Android: Settings > Google > Ads > Opt out of Ads Personalization

5. Data Security
   5.1 Security Measures
   We implement appropriate technical, administrative, and physical safeguards to protect your information from
   unauthorized access, use, disclosure, alteration, and destruction. These measures include:
   Technical Safeguards
   Encryption of data in transit (using SSL/TLS protocols) and at rest
   Secure socket layer (SSL) certificates for our Website
   Firewalls and intrusion detection systems
   Regular security audits and vulnerability assessments
   Multi-factor authentication for account access
   Administrative Safeguards
   Access controls and role-based permissions
   Employee training on privacy and security policies
   Confidentiality agreements with employees and contractors
   Incident response and breach notification procedures
   Physical Safeguards
   Secure data centers with restricted access
   Environmental controls to protect servers and equipment
   5.2 HIPAA Compliance
   For Protected Health Information (PHI) governed by HIPAA, we comply with the HIPAA Security Rule

requirements, including:
Conducting regular risk assessments
Implementing security policies and procedures
Ensuring Business Associate Agreements with subcontractors
Maintaining audit logs and access controls
5.3 Third-Party Security
We require our service providers and business associates to implement appropriate security measures to protect
your information. We conduct due diligence to ensure they meet our security standards.
5.4 Limitations
While we strive to protect your information, no method of transmission over the internet or electronic storage is
100% secure. We cannot guarantee absolute security, and you use our Services at your own risk. You are
responsible for maintaining the confidentiality of your account credentials and for any activity that occurs under
your account.

6. Data Retention
   6.1 Retention Periods
   We retain your information for as long as necessary to fulfill the purposes described in this Privacy Policy,
   unless a longer retention period is required or permitted by law. Factors that influence our retention periods
   include:
   Legal and Regulatory Requirements
   HIPAA requires us to retain certain health records for at least six years
   State laws may impose additional retention requirements
   Tax and financial records must be retained for specified periods
   Business Purposes
   Active accounts and ongoing treatment relationships
   Pending transactions or disputes
   Compliance with contractual obligations
   Your Requests
   Account deletion requests

Requests to restrict or erase data
6.2 Retention of Health Information
We retain your Protected Health Information (PHI) in accordance with HIPAA and applicable state laws,
typically for a minimum of six years from the date of creation or last use, whichever is later.
6.3 Deletion and Anonymization
When information is no longer needed, we will:
Securely delete or destroy the information
De-identify or anonymize the information so it can no longer be linked to you
You may request deletion of your account and information at any time, subject to legal retention requirements.

7. Your Privacy Rights
   Depending on your location, you may have certain rights regarding your personal information. These rights may
   include:
   7.1 Access and Portability
   Right to Access: You have the right to request access to the personal information we hold about you. We will
   provide you with a copy of your information in a commonly used format.
   Right to Data Portability: You have the right to request that we transfer your information to another service
   provider, where technically feasible.
   To exercise these rights, contact us using the information in the “Contact Us” section below.
   7.2 Correction and Amendment
   Right to Correct: You have the right to request that we correct inaccurate or incomplete information about you.
   You can update your account information directly through your account settings or by contacting us.
   7.3 Deletion
   Right to Delete: You have the right to request that we delete your personal information, subject to certain
   exceptions. We may retain information as required by law or for legitimate business purposes.
   To request deletion, contact us using the information in the “Contact Us” section below. Please note that
   deleting your account may result in the loss of access to our Services.
   7.4 Opt-Out Rights
   Marketing Communications: You have the right to opt out of receiving marketing communications from us.
   You can unsubscribe by:

Clicking the “unsubscribe” link in our emails
Updating your communication preferences in your account settings
Contacting us directly
Sale of Personal Information: We do not sell your personal information as defined by California law.
However, some of our data sharing with advertising partners may be considered a “sale” under certain state
laws. You can opt out by:
Using the “Do Not Sell or Share My Personal Information” link on our Website
Enabling the Global Privacy Control (GPC) signal in your browser
Targeted Advertising: You have the right to opt out of targeted advertising. You can opt out by:
Using the opt-out tools described in the “Cookies and Tracking Technologies” section
Adjusting your cookie preferences through our cookie banner
Visiting the NAI and DAA opt-out pages
7.5 Restriction and Objection
Right to Restrict Processing: You have the right to request that we restrict the processing of your information
in certain circumstances, such as when you contest the accuracy of the information.
Right to Object: You have the right to object to our processing of your information for direct marketing
purposes or based on our legitimate interests.
7.6 Withdrawal of Consent
If we are processing your information based on your consent, you have the right to withdraw your consent at
any time. This will not affect the lawfulness of processing based on consent before its withdrawal.
7.7 Non-Discrimination
We will not discriminate against you for exercising any of your privacy rights. This means we will not:
Deny you access to our Services
Charge you different prices or rates
Provide you with a different level or quality of services
Suggest that you will receive a different price, rate, or quality of services
7.8 California Privacy Rights
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA)
and the California Privacy Rights Act (CPRA), including:

Right to Know: You have the right to request information about the categories and specific pieces of personal
information we have collected about you, the sources of that information, the purposes for which we use it, and
the third parties with whom we share it.
Right to Delete: You have the right to request deletion of your personal information, subject to certain
exceptions.
Right to Correct: You have the right to request correction of inaccurate personal information.
Right to Opt-Out of Sale/Sharing: You have the right to opt out of the “sale” or “sharing” of your personal
information for targeted advertising purposes.
Right to Limit Use of Sensitive Personal Information: You have the right to limit our use and disclosure of
your sensitive personal information to purposes necessary to provide our Services.
Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights.
To exercise your California privacy rights, contact us at privacy@renuhealthrecovery.com or use the “Your
Privacy Choices” link on our Website.
7.9 Virginia, Colorado, Connecticut, and Utah Privacy Rights
If you are a resident of Virginia, Colorado, Connecticut, or Utah, you have similar rights under your state’s
privacy law, including the right to access, correct, delete, and opt out of certain processing activities.
7.10 Exercising Your Rights
To exercise any of your privacy rights, please contact us using the information in the “Contact Us” section
below. We may require you to verify your identity before processing your request. We will respond to your
request within the timeframe required by applicable law (typically 30-45 days).

8. Children’s Privacy
   Our Services are not intended for individuals under the age of 18, except in limited circumstances where minors
   aged 13-17 may use our Services with parental or legal guardian consent for specific treatments (such as acne
   treatment).
   We do not knowingly collect personal information from children under 13. If we become aware that we have
   collected personal information from a child under 13 without parental consent, we will take steps to delete that
   information as soon as possible.
   If you are a parent or legal guardian and believe your child has provided us with personal information without
   your consent, please contact us immediately at privacy@renuhealthrecovery.com.
   Special Protections for Minors:

Minors aged 13-17 (or their parents/guardians) may request removal of content or information posted on
our platform by contacting us at privacy@renuhealthrecovery.com with the subject line “Removal of Minor
Information.”
We will make reasonable efforts to remove such information, except where retention is required or
permitted by law.

9. Third-Party Links and Services
   Our Services may contain links to third-party websites, applications, and services that are not operated by us.
   This Privacy Policy does not apply to those third-party services. We are not responsible for the privacy practices
   of third parties, and we encourage you to review their privacy policies before providing any personal
   information.
   Examples of third-party services may include:
   Payment processors (e.g., Stripe, Adyen)
   Social media platforms (e.g., Facebook, Instagram, Twitter)
   Analytics providers (e.g., Google Analytics)
   Advertising networks
10. International Users
    Renu Healthcare is based in the United States, and our Services are intended for users in the United States. If
    you are accessing our Services from outside the United States, please be aware that your information may be
    transferred to, stored, and processed in the United States, where our servers and service providers are located.
    The United States may have data protection laws that differ from those in your country. By using our Services,
    you consent to the transfer of your information to the United States and the processing of your information in
    accordance with this Privacy Policy and U.S. law.
    If you are located in the European Economic Area (EEA), United Kingdom, or other regions with data
    protection laws, please note that we may transfer your personal information to countries that do not provide an
    equivalent level of data protection. We will take appropriate measures to ensure your information is protected in
    accordance with this Privacy Policy and applicable laws.
11. Changes to This Privacy Policy
    We may update this Privacy Policy from time to time to reflect changes in our practices, Services, legal

requirements, or for other operational reasons. When we make material changes, we will:
Notify You
Post a prominent notice on our Website
Send you an email notification (if you have provided your email address)
Update the “Last Updated” date at the top of this Privacy Policy
Your Continued Use Your continued use of our Services after the effective date of any changes constitutes your
acceptance of the updated Privacy Policy. If you do not agree to the updated Privacy Policy, you must stop using
our Services.
We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your
information.

12. Contact Us
    If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please
    contact us:
    Privacy Officer
    Renu Healthcare
    Email: privacy@renuhealthrecovery.com
    Phone: [Insert Phone Number]
    Address: [Insert Mailing Address]
    Website: www.renuhealthrecovery.com
    For HIPAA-Related Inquiries: Please refer to our Notice of Privacy Practices (HIPAA Privacy Policy) or
    contact our Privacy Officer.
    For California Residents: To exercise your California privacy rights, email us at
    privacy@renuhealthrecovery.com with “California Privacy Rights Request” in the subject line.

Summary of Key Points
Information We Collect: We collect information you provide, information collected automatically, and
information from third-party sources.
How We Use Information: We use your information to provide Services, process payments, communicate
with you, improve our Services, and comply with legal obligations.

How We Share Information: We share information with service providers, healthcare professionals,
payment processors, and as required by law.
Your Rights: You have rights to access, correct, delete, and control your information, as well as opt out of
marketing and targeted advertising.
Security: We implement robust security measures to protect your information, including encryption and
access controls.
Cookies: We use cookies and tracking technologies for analytics, personalization, and advertising. You can
manage cookies through your browser settings.
Contact Us: If you have questions or want to exercise your rights, contact us at
privacy@renuhealthrecovery.com.

Effective Date: December 2, 2025
This Privacy Policy complies with applicable federal and state privacy laws, including the California Consumer
Privacy Act (CCPA), the California Privacy Rights Act (CPRA), and similar state privacy laws. For information
about how we handle Protected Health Information (PHI) under HIPAA, please refer to our Notice of Privacy
Practices.