MaVie Clinic

Privacy Policy

Effective Date: March 2, 2026

MaVie Clinic Professional Nursing Corporation, doing business as MaVie Clinic (“MaVie Clinic,” “we,” “us,” or “our”), is committed to protecting the privacy and security of personal and medical information entrusted to us. MaVie Clinic is a California-based telehealth medical practice and a healthcare provider subject to the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) and the California Confidentiality of Medical Information Act (“CMIA”). This Privacy Policy explains how information is collected, used, disclosed, protected, retained, and destroyed through our website and telehealth services. 1. MaVie Clinic collects personal information and Protected Health Information (“PHI”) that you voluntarily provide when using our services, including demographic information, contact details, payment information, medical history, clinical data, laboratory results, photographs or videos submitted for evaluation, and other information necessary to provide medical care. We may also collect limited technical information automatically through your interaction with our website and digital platforms, such as IP address, device type, browser information, and general usage data, solely for security, operational, and functionality purposes. 2. Most information collected by MaVie Clinic constitutes PHI and is governed exclusively by HIPAA and CMIA. Uses and disclosures of PHI are subject to these laws and are described in detail in our Notice of Privacy Practices, which outlines your rights and our legal obligations regarding your health information; in the event of any inconsistency, the Notice of Privacy Practices controls. 3. Information is used solely to provide, manage, and support healthcare services and clinic operations, including scheduling appointments, conducting telehealth evaluations, establishing and maintaining a provider-patient relationship, developing treatment plans, maintaining medical records, processing payments, and complying with legal and regulatory requirements; MaVie Clinic does not sell personal or health information and does not use such information for third-party marketing purposes. 4. Information may be shared only as necessary to support patient care and clinic operations, including disclosure to secure electronic health record and telehealth platforms, payment processors, laboratories, imaging providers, and independent, licensed third-party 503A compounding pharmacies responsible for medication fulfillment; in limited circumstances we may facilitate connections to manufacturer-direct programs for brand-name medications when clinically appropriate; all third parties are required by law or contract to safeguard information and are prohibited from selling or misusing it. 5. By using MaVie Clinic’s services, you acknowledge that communications may occur electronically through secure platforms, including video, phone, email, and messaging systems, and while reasonable safeguards are in place, no electronic transmission can be guaranteed to be completely secure; our website may use cookies or similar technologies for basic functionality, security, and performance monitoring, which do not provide access to PHI, and you may adjust your browser settings to limit or disable cookies, though doing so may affect website functionality. 6. MaVie Clinic maintains administrative, technical, and physical safeguards designed to protect information from unauthorized access, use, or disclosure consistent with applicable federal and California law; despite these safeguards, no system can be guaranteed to be completely secure. 7. MaVie Clinic maintains medical records and Protected Health Information in accordance with HIPAA, CMIA, and applicable California record retention laws; adult patient medical records are retained for a minimum of seven (7) years from the date of the last clinical encounter; for minor patients, records are retained for at least seven (7) years after the patient reaches eighteen (18) years of age, or longer if otherwise required by law; if a patient is no longer actively receiving services from MaVie Clinic, their records remain securely stored for the legally required retention period, with access restricted to authorized personnel; upon expiration of the applicable retention period, records are securely destroyed in accordance with HIPAA standards, including secure electronic deletion protocols or certified destruction procedures. 8. Rights regarding access, amendment, restriction, or disclosure of PHI are governed exclusively by HIPAA and CMIA and are described in our Notice of Privacy Practices, and this Privacy Policy does not create or expand any rights beyond those provided by applicable law. 9. To the extent applicable, MaVie Clinic complies with California privacy laws; however, information collected by MaVie Clinic is primarily PHI governed by HIPAA and CMIA, and nothing in this Privacy Policy is intended to expand, limit, or modify rights or obligations established under those laws. 10. MaVie Clinic may update this Privacy Policy from time to time to reflect changes in legal requirements or clinic operations, and updates will be posted with a revised effective date, and continued use of our website or services constitutes acknowledgment of the updated policy. 11. If you have questions or concerns regarding this Privacy Policy or our privacy practices, please contact MaVie Clinic at [email protected] or (209) 806-4841, and this inbox is not monitored for urgent or emergency concerns; for emergencies, call 911 or go to the nearest emergency room.

Verify Approval for www.mavieclinic.com