Fizy health
Privacy Policy guide

What the Fizy Health Privacy Policy covers — and where to read it

The official Fizy Health Privacy Policy at /privacy explains how we collect, use, share, and protect information when clinics visit fizy.health, use app.fizy.health, or contact our team. It covers account data, platform usage, payment metadata, and protected health information processed under a Business Associate Agreement for covered clinics. Fizy Health does not sell personal information or use patient data for third-party advertising.

Searching Fizy Health privacy policy should land you on a summary with a direct link to the binding document — plus context for HIPAA, BAA, and patient requests through your clinic.

Read Privacy Policy Security page
Official policy at /privacy BAA-governed PHI No data selling Tokenized payments Clinic B2B platform Patient requests via clinic
Privacy scope

What the Privacy Policy governs on Fizy Health

The Privacy Policy is the authoritative document for data practices. This brand guide orients clinic operators and compliance leads before they read every section — highlighting PHI under BAA, payment handling, subprocessors, and how patient rights requests typically flow through the covered clinic.

  • Surfaces

    Marketing site and clinic ordering platform

    The policy covers fizy.health (marketing and content) and app.fizy.health (B2B ordering platform). Clinic account holders and authorized staff are in scope when they store patient-linked order data after onboarding and BAA execution.

  • PHI

    Protected health information under BAA

    When Fizy Health processes PHI on behalf of a covered clinic, processing is governed by the Business Associate Agreement and HIPAA safeguards — tenant isolation, encryption, role-based access, and audit logging. Technical detail lives on the Security page.

  • Sharing

    Operate the service — not sell data

    Fizy Health shares information to operate the platform, comply with law, or at your direction — including routing orders to pharmacy fulfillment partners and processing payments through tokenized integrations. The policy states we do not sell personal information or use patient data for third-party ads.

  • Patients

    Rights requests through the covered clinic

    Patients should generally direct PHI access, correction, or deletion requests through their clinic as covered entity. Fizy Health assists clinic customers per the BAA when requests involve platform-held records — as summarized in the Privacy Policy FAQ.

Privacy Policy paired with Security documentation and BAA

Binding policy at /privacy HIPAA-aligned processing BAA at onboarding No PHI in routine logs Terms cross-link Support: support@fizy.health

Who should read the Privacy Policy before ordering?

Built for you if

You need official data practices documentation for vendor review.

  • Legal or compliance requires reviewing privacy terms before approving Fizy Health for production PHI.
  • You want clarity on payment tokenization, subprocessors, and order routing data sharing.
  • You need to explain to patients how clinic ordering software handles their information.
May not be ideal if

You need a different document type.

  • You need technical security controls only — start with the Security page instead.
  • You need binding order and refund terms — read the Terms of Service at /terms.
  • You are a patient with a PHI request — contact your clinic first as covered entity.
Data in daily ops

Where the Privacy Policy meets product behavior

These workflows touch the data categories described in the official Privacy Policy — on infrastructure documented on the Security page.

Explore all platform capabilities
Learn more

Related privacy and compliance guides.

See the full Fizy Health guide
FAQ

Privacy Policy questions clinics ask.

  • Document

    Where is the official Fizy Health Privacy Policy?

    The binding Privacy Policy lives at /privacy on fizy.health. This brand guide summarizes key topics and links to the official document — always read /privacy for legal terms.

  • HIPAA

    How does the Privacy Policy relate to HIPAA?

    When Fizy Health processes PHI for covered clinics, processing is governed by the BAA and HIPAA safeguards described in the policy and Security page. The clinic remains covered entity for workforce and patient-facing policies.

  • Selling

    Does Fizy Health sell clinic or patient data?

    No. The Privacy Policy states Fizy Health does not sell personal information and does not use patient data for third-party advertising. Sharing is limited to operating the service, legal compliance, or your direction.

  • Payments

    How does Fizy Health handle card data?

    Payment methods are tokenized through the payment processor. Fizy Health does not store full card numbers on platform servers — see Privacy Policy FAQ on payment card information.

  • Patients

    Can patients contact Fizy Health directly for PHI requests?

    Patients should generally direct PHI access, correction, or deletion requests through their clinic. Fizy Health assists clinic customers per the BAA when requests involve platform-held records.

Read the official Privacy Policy.

This guide orients clinic teams — the binding document at /privacy governs data practices on fizy.health and app.fizy.health.

Read Privacy Policy Security and compliance