the personal and health-related data of patients, clients, partners, and other users who interact with our telehealth platform and institutional website, in accordance with applicable data protection and healthcare privacy laws. By accessing our website and using our telehealth services, you agree to the terms of this Privacy Policy. Website: https://lp.viajourneytelehealth.com

1. Collection of Information

We collect personal, health, and non-personal information to provide telehealth services, enable communication, ensure quality customer service, and improve website navigation.

ensuring the security of your health data, and respecting your confidentiality is our top priority.

1.1 Personal and Health Information (voluntarily provided)

- Full name, date of birth, and physical address.

- Email address and phone number.

- Health and medical information provided voluntarily during consultations (e.g., specific medical needs, symptoms, ongoing treatments, and medical history).

- For B2B Corporate Accounts: Company name, Employer Identification Number (EIN), number of employees, and corporate contact details.

- Messages, documents, and files submitted through website forms or our telehealth platform. (Note: Via Journey strictly does not require, collect, or check Social Security Numbers (SSN) or immigration status).

1.2 Non-Personal Information (automatically collected)

- IP address

- Browser and device type

- Browsing data (pages visited, time spent on the site, and interactions) This information may be collected through cookies, pixel tags, and similar technologies to improve performance, security, and user experience.

2. Purposes of Data Processing

The information collected is used for:

Customer Service and Business Relationships: To respond to inquiries, manage B2B corporate accounts, and provide institutional support.

Improving User Experience: To optimize website functionality and analyze platform performance.

Communication: To reply to user inquiries, provide appointment reminders, and — only when authorized — send updates about our services.

Legal Compliance and Security: To prevent fraud, protect website integrity, and ensure a safe, confidential environment for all patients.

3. Data Sharing
Via Journey does not sell, rent, or share your personal or medical data with third parties for commercial purposes. Data sharing may occur only in the following strictly necessary cases:

3.1 Healthcare and Service Providers
With trusted partner companies and healthcare professionals responsible for:

- Licensed medical professionals conducting the telehealth consultations.

- Local pharmacies (e.g., CVS, Walgreens) strictly for the purpose of fulfilling your medical prescriptions.

- Website hosting, technical maintenance, and encrypted communication platforms. These partners have limited access to data strictly necessary to perform their functions and are bound by strict medical confidentiality and security agreements

3.2 Legal Compliance
When required to comply with court orders or valid legal obligations. (Important Guarantee: Because we do not collect immigration status or SSN, this information cannot and will not be shared with any immigration enforcement agencies).

3.3 Non-Identifiable Data

We may use aggregated and anonymized information for statistical analysis and platform improvement.

4. Legal Basis for Data Processing

- Data processing is carried out in accordance with applicable legal bases, including:

- User consent (for consultations and communications).

- Provision of healthcare and telehealth services.

- Compliance with legal or regulatory obligations.

- Performance of contracts (including B2B corporate healthcare packages).

- Legitimate interests of Via Journey, prioritizing the rights, health, and freedoms of the data subject.

5. Data Storage, Retention, and Security

5.1 Storage and Retention
Data is retained only for as long as necessary to fulfill the medical and operational purposes outlined in this Policy, considering medical record retention laws, legal obligations, and good governance practices. After these periods, data is securely deleted or anonymized.

5.2 Security Measures

We adopt rigorous technical and administrative measures to protect personal and medical data, including:

- SSL encryption across the entire website and telehealth platform.

- Restricted access control to medical records (only authorized healthcare providers).

- Server and system monitoring.

Internal medical confidentiality policies.

- Secure environments protected against unauthorized access.

6. Use of Cookies

We use cookies to improve user experience. These may include:

Essential cookies: necessary for website and patient portal operation.

Analytical cookies: help us understand how the site is used.

Functional cookies: store user preferences (e.g., language settings).

Marketing cookies (optional): used for institutional analysis and campaigns. Users may configure their browsers to refuse or remove.

7. User Rights (Data Subjects)
You have the following rights regarding your privacy:

Access your personal and health-related data.

Request correction of incomplete or outdated data.

Request deletion of data, when applicable by law.

Withdraw consent for specific data uses.

Request information about data use and sharing.

Opt out of receiving institutional or marketing communications.

To exercise your rights or contact our Privacy Team, please use:

Email: care@viajourneytelehealth.com

Phone: +1 (860) 944 6487

Address: 8433 enterprise circle, suite 100 # 401

8. Updates to This Policy

This Privacy Policy may be updated periodically to reflect legal, operational, technological, or healthcare regulatory changes. The most current version will always be available on our website, with relevant changes clearly highlighted.

9. SMS Consent

SMS Consent and phone numbers collected for SMS communication purposes (such as appointment reminders or prescription updates) will not be shared with any third party or affiliates for marketing purposes.