Privacy Policy

Last updated: June 14, 2026

1. Information We Collect

ZorabiHealth collects information necessary to provide our healthcare platform services. This includes personal identifiers (name, email, date of birth), protected health information (medical history, medication records, vital signs), and usage data (interaction logs, feature utilization).

2. How We Use Your Information

We use collected information to operate, maintain, and improve our platform; facilitate medication management and refill routing; provide clinical decision support insights; comply with legal and regulatory obligations; and communicate service-related announcements.

3. Data Sharing

We share data only with your explicit consent or as required by law. Authorized healthcare providers and pharmacy vendors receive access solely to data necessary for treatment, payment, and healthcare operations. We never sell personal information or PHI to third parties.

4. Data Security

We implement administrative, physical, and technical safeguards consistent with HIPAA and SOC 2 requirements. These include encryption at rest (AES-256) and in transit (TLS 1.3), access controls, audit logging, and regular security assessments.

5. Your Rights

You have the right to access, amend, and request deletion of your personal information. Patients may request an accounting of disclosures. Requests should be submitted to privacy@zorabihealth.com and will be processed within 30 days.

6. Data Retention

We retain PHI for the duration of your account plus seven years, consistent with medical record retention requirements. Anonymized data used for analytics and platform improvement may be retained indefinitely.

7. Contact

For privacy-related inquiries, contact our Privacy Officer at privacy@zorabihealth.com or write to ZorabiHealth, Inc., 450 Serene Parkway, Suite 300, San Francisco, CA 94107.