Telemedicine with Elektra's board-certified clinicians is now available (and covered by insurance)! Free intro call

Get started

Privacy Policy

ElektraHealth.com Privacy Policy | Effective date: March 7, 2025

Your privacy matters to us. This Privacy Policy applies to My Elektra, Inc., a Delaware corporation (“Elektra Health,” “we,” “us,” or “our”). We provide certain administrative and management services to Electra Health Medical, P.C., a New York professional service corporation, Electra Health Medical Mass, P.C., a Massachusetts professional service corporation, Electra Women’s Medical, Inc., a Pennsylvania professional corporation, and/or Electra Women’s Health Medical NJ, PC, a New Jersey professional service corporation (collectively “the Practice”), as well as provide access to a technology platform to facilitate the care you receive from the Practice. It describes what personally identifiable information may be collected by or shared with us on www.elektrahealth.com and all related websites (collectively, the “Site”), mobile applications (the “Apps”), and web-based services (collectively with Site and Apps, our “Services”). It also describes how that information is stored, and how we use that information. Users (“Users”) include Elektra patients, members, and Site visitors as well as providers.

For the purpose of this Privacy Policy, “Personally Identifiable Information” means any information that, by itself or in combination with other information, identifies or can reasonably be used to identify an individual, such as their name, email address, telephone number, address, or date of birth. Personally Identifiable Information does not include information that is anonymized, or publicly available information that has not been combined with non-public Personally Identifiable Information.

When you sign up for or use Elektra Health, we ask you to confirm that you’ve read and agree to our Privacy Policy. This means that by submitting Personally Identifiable Information and other information to the Site, you consent to the collection, use, and disclosure of such information as set out in this Privacy Policy. 

As described in more detail below, this Privacy Policy does not intend to include information about how we or the Practice handles HIPAA-regulated personal health information (“PHI”). 

1. PERSONAL INFORMATION WE COLLECT

Generally, you may browse the Site and/or our applications without providing any Personally Identifiable Information. However, we ask that you provide information at various times and locations through the Site, through our Services, and/or through our electronic medical record.

1.1 The following is a list of information that we may collect from or about you:

  • Personally Identifying Information, including your name and contact information, such as your physical address, e-mail address and phone number
  • Electronic signature
  • Demographic information, including your gender, date of birth and zip code
  • Billing and payment information, including billing address, health plan participation and enrollee information, and credit card information, such as account number, expiration date and security information
  • Account information, including your username and password
  • Device and / or browser information, including your IP address, operating system, connection speed, bandwidth, browser type, web page requests, cookie information, other hardware and software attributes
  • Location information
  • Usage activity and viewing preferences
  • Photographic or video images submitted for identification purposes, including photographs of your driver’s license or passport
  • User information, including information or content you post or submit on the Services
  • Transaction history
  • For providers: your name and contact information and medical specialty
  • Information we collect from or about you in other online or offline contexts, including information submitted during purchases of Services and interactions with our employees

1.2 In addition, when you request an appointment with the Practice or from a physician or licensed practitioner associated with the Practice (“Practitioner” or “Practitioners”), you may share:

  • Personal information: your name and contact information and demographic information
  • PHI (Defined below), including medical information submitted for diagnosis or treatment purposes (including information about your applicable medical history) and current complaint or other reason for visiting a Provider
  • Date of visit
  • Images or videos you share for diagnosis or treatment purposes
  • Communications with the Practice or its Providers

1.3 To update your personal account information or to opt out of emails, contact [email protected].

1.4 Applicability of HIPAA 

The information you provide to the Practice or its Practitioners through the Services may be protected under federal and state laws applicable to health information, including but not limited to the Health Insurance Portability and Accountability Act of 1996, Public Law 104-191, and its implementing regulations, as may be amended from time to time (collectively, “HIPAA”). To the extent applicable, the Practice, its Practitioners, and pharmacies will use and disclose information about you that is protected under such privacy laws only as permitted or required by such laws. The Practice has adopted a NOTICE OF PRIVACY PRACTICES that describes how it uses and discloses individually identifiable health information protected by HIPAA. By accessing or using any part of the Services, you are acknowledging receipt of the Notice of Privacy Practices from the Practice.

As described in our Terms of Use, Elektra Health does not engage in the practice of medicine and is not a health care provider or a “covered entity” as defined by HIPAA. The Practice and its Practitioners each may be considered a “covered entity” under HIPAA, and Elektra Health may, in some cases, also be a “business associate” of a practice or its providers. If we are deemed a “business associate,” we will be subject to additional protections with respect to your protected health information, as defined under HIPAA, or other state laws. Your PHI will be used and disclosed only in accordance with such applicable laws and regulations.

We will not use or disclose PHI or other information about you that is protected under health information privacy laws except on behalf of the Practice, its Practitioners and pharmacies, or as otherwise permitted by such laws.  We also may de-identify PHI in compliance with HIPAA, and use such de-identified data for research or marketing purposes, or for any other purpose not prohibited by law.

2. HOW WE COLLECT PERSONAL INFORMATION

2.1 We may collect information directly from you when you visit, access or use the Services or when you register for an account with us. We may also collect information when you purchase a service, submit information to use through a survey, register for in-person or virtual educational or promotional events, communicate with us, or post or submit content on or in the Services.

2.2 ‍In addition to the information we collect directly from you, we may also collect information from the Practice and/or its Practitioners who provide treatment and other services to you in connection with the Services. This information may include, but is not limited to, diagnoses, care and/or treatment plans, and notes. We also may receive information from third parties that pay for your care or provide you with treatment or prescription medication, which may include prescription history, insurance policy, insurance eligibility and coverage, and laboratory or other testing results.

2.3 Some of the information we collect depends on the settings on your web browser or mobile device. Please check your web browser or mobile device if you want to learn what information your browser or mobile device sends or how to change your settings. In addition to the information sent by your web browser or mobile device, as you navigate through a website or mobile app, certain information can be passively collected (that is, gathered without you actively providing the information) using various technologies and means, such as navigational data collection.

2.4 Like most website operators, we use cookies and similar technologies, local shared objects (or any other successor tracker technology), Software Development Kits, and pixel tags that automatically receive and track certain data about how you and other visitors interact with our Services, preferences expressed and settings chosen. For example, we may collect information about the technology you use (such as your browser, type of computer, operating systems, mobile device and network used, and Internet service providers) and server log data (such as access dates and times, online features or pages viewed, system activity, and the third-party site or service you were using before interacting with our Services). These technologies are described in more detail below.

a.) “Cookies” are small text files that are stored on your browser or device by websites, mobile apps, online media and advertisements. There are different types of cookies. Cookies served by the entity that operates the website or app you are visiting or using are called “first party cookies” (so cookies served by us while you are using our Services are first party cookies). Cookies served by companies that are not operating the website or app you are visiting or using are called “third party cookies” (so, we may use a website analytics provider to set a cookie on your computer via our Services while you visit our Services, and that would be a third party cookie). Cookies may also endure for different periods of time. “Session Cookies” last only as long as your browser or app is open. These are deleted automatically once you close your browser or app. Other cookies are “persistent cookies” meaning that they survive after your browser or app is closed (for example, they may recognize your computer when you re-open our online services).

b.) “Local Shared Objects” (also called Flash cookies or HTML5 cookies) and any other successor technology refers generally to the collection of cookie-like data stored on a browser or computer by websites, ads, or third parties.

c.) “Pixel Tags” (also called beacons or pixels) are small blocks of code installed on (or called by) a web page, app or advertisement which can retrieve certain information about your device and browser, including device type, operating system, browser type and version, website visited, time of visit, referring website, IP address, and other similar information (including the small text file (the cookie) that uniquely identifies the device). Pixels provide the means by which third parties can set and read browser cookies from a domain that they do not themselves operate and collect information about visitors to that domain, typically with the permission of the domain owner. “Software Development Kits” (also called SDKs) function like pixels and cookies, but operate in the mobile app context where pixels and cookies cannot always function. The primary app developer can install pieces of code (the SDK) from partners in the app, thereby allowing such partners to collect certain information about user interaction with the app, information about the user device and network information.

d.) We also use services such as Google Analytics, a web analysis service provided by Google, Inc. (“Google”) to track website activity, along with the information on the traffic source. You can find out more about how Google uses data when you visit the Site and / or Apps by visiting google.com/policies/privacy/partners. 

3. HOW WE MAY USE PERSONAL INFORMATION

3.1 We will use your information only for the following purposes:

  • To provide, improve and create new services by Elektra Health;
  • To respond to your inquiries and to send you administrative communications about the Site;
  • To detect and defend against fraud and other threats to the Site and our users, and to administer your account.
  • To obtain your feedback about the Site and Elektra Health’s services
  • To send you electronic messages and emails, including news, announcements, reminders and opportunities from Elektra Health;
  • To process, fulfill, support, and administer transactions and orders for products and services ordered by you;
  • To contact you in response to a request;
  • To protect, establish or exercise our legal rights or defend against legal claims;
  • To administer quizzes, surveys, and sweepstakes;
  • To fulfill any other purpose for which you provide it;
  • To carry out our obligations and enforce our rights arising from any contracts entered into between you and us, including for billing and collection;
  • To notify you about changes to our Site, or any products or services we offer or provide though them;
  • In any other way we may describe when you provide the information; and
  • For any other purpose with your consent.

3.2 Subject to the limitations described in the Applicability of HIPAA section above, we may share the information we collect from you with the following third parties:

  • Our third party service provides (“Vendors”) that provide services to us to enable us to provide the Services, such as the hosting of the Services, data analysis, IT services and infrastructure, customer service, email delivery, and other similar services;
  • Our Vendors that provide services to enable us to run our business and administrative operations, such as legal and financial advisory services, auditing services, and other similar services;
  • Our Vendors that enable us to promote and advertise the Services, such as ad platforms or ad retargeting services, as well as those that enable us to comply with contact removal requests or requirements, such as mailing list removal services, do not call registries, and other similar services;
  • The Practice, its Practitioners, and pharmacies to enable them to provide services to you via the Services and to collect payment on their behalf; and
  • To researchers, to permit them to study women’s health.

We may combine the personal information your share with us through the Services with other information we collect from or about you, both online and offline. We also may combine personal information with records provided by third parties. We use this consolidated information to help us better design our Services, including the selection of Services and Products, to communicate information to you, to enhance our marketing and research activities, and to facilitate other business functions. We also may de-identify your information and disclose such de-identified information for any purpose not prohibited by applicable law.

We may also use your information to contact you about goods and services that may be of interest to you, including through newsletters. If you wish to opt-out of receiving such communications, you may do so at any time by clicking unsubscribe at the bottom of these communications.

3.3 Data retention

We will retain your personal information for as long as necessary to fulfill the purposes for which we have collected it, including for your use of our Services and for a reasonable period of time afterward. We may also retain your personal information during the period of time needed for us to pursue our legitimate business interests, conduct audits, comply with our legal obligations, resolve disputes, and enforce our agreements.

There may be technical or other operational reasons where we are unable to delete your information. Where this is the case, we will take reasonable measures to prevent further processing your information.

4. MINORS

Our Site and Services are not intended for children and adolescents under 18 years of age. No one under age 18 may provide any information to us through the Site. We do not knowingly collect Personally Identifiable Information from individuals under 18. If you are under 18, do not access, use, or provide any information on the Site or on or through any of its features. If we learn we have collected or received Personally Identifiable Information from an individual under 18 without verification of parental consent, we will delete that information. If you believe we might have any information from or about an individual under 18, please contact us.

5. THIRD-PARTY SITES

Our Site may contain links to other third-party sites. When you click on one of these links you are visiting a website operated by someone other than Elektra Health, and the operator of that website may have different privacy policies than we do. Elektra Health is not responsible for the individual privacy practices of those sites. We encourage you to investigate the privacy policies of these third-party operators.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

6. SECURITY

We may employ procedural and technological security measures, consistent with industry practice. Such measures are reasonably designed to protect your personal information from loss, unauthorized access, disclosure, alteration or destruction. We may use encryption, password protection, secure socket layers, internal restrictions and other security measures to help prevent unauthorized access to your personal information. However, you provide your information to us at your own risk. We cannot guarantee that your data will not be lost, accessed without authorization, disclosed, altered, or destroyed.

7. PRIVACY NOTICE FOR RESIDENTS OF CONNECTICUT AND NEW JERSEY

This Privacy Policy contains additional information for residents of Connecticut and New Jersey about personal data that we collect, how we use it, what sources it is derived from, and who we disclose it to, and provides information regarding your rights, and our responsibilities, under applicable laws and regulations. For the purposes of this section, “personal data” means information that is linked or reasonably linkable to an identified or identifiable individual. Personal data does not include de-identified data or publicly available information. This section does not apply to certain personal data that is already subject to certain federal and state regulations, such as protected health information.  

The provisions contained within this section are intended to provide notices in compliance with the Connecticut Data Privacy Act (CTDPA) and the New Jersey Privacy Act (NJPA) (collectively, the “State Privacy Laws”). 

7.1 Our Personal Data Practices

The State Privacy Laws provide rights to residents of those states to receive certain disclosures and access regarding collection, use, sale, and sharing of personal data.  Detail about what kinds of personal data we may collect or have collected, how we collect it, why we collect it, and who we may disclose it to is found in the “Personal Information We Collect;” “How We Collect Personal Information;” and “How We May Use Personal Information” sections of this Privacy Policy.  

We do not and have not sold Personal Information to third parties for any monetary value.  We do gather Personal Information via Cookies for the purposes of targeted advertising; however, we do not sell or share your information without your express, affirmative consent.

7.2 Your Privacy Rights 

If you are a resident of Connecticut or New Jersey, you have the following rights under applicable law in relation to your personal data, subject to certain exceptions: 

  • Right to know and access. You have the right to know what personal data we collect, use, disclose, and/or sell or share as those terms are defined under applicable law. You may ask us to provide you a portable copy of this information up to two times in a rolling 12-month period.
  • Right to delete and erase.You have the right to request under certain circumstances that we, as well as our service providers and contractors, delete the personal data that we collect about you.
  • Right to correct inaccurate personal data. You have the right to request the correction of inaccurate personal data.
  • Right to non-discrimination. You have the right not to receive discriminatory treatment for the exercise of the privacy rights described above.
  • Right to opt out. You have the right to opt-out of targeted advertising, the sale of your personal data, and profiling decisions that could produce legal or similarly significant effects concerning the consumer.
  • Rights concerning sensitive personal data.If you are a Connecticut or New Jersey resident, we cannot and will not process your sensitive data (as defined by applicable law) or your sensitive data inferences, or use your personal data for certain purposes without your affirmative consent. 

The CTDPA provides Connecticut residents with specific rights to receive certain disclosures and access regarding the collection, use, sale, and sharing of Consumer Health Data, as detailed in the CTDPA Consumer Health Data Privacy Notice below.

7.3 How to exercise your rights.You may exercise any of the rights described in this section by emailing [email protected].

7.4 How to appeal decisions about your rights. Connecticut and New Jersey residents can appeal our decisions concerning privacy rights requests, as follows:

a.) Connecticut residents. If you are a Connecticut resident and want to appeal our decision with regard to a request that you have made, please Contact Us, as described below. Within sixty (60) days of receipt of an appeal, we will inform you in writing of any action taken or not taken, including an explanation of our reasons in reaching the decision. If the appeal is denied, you may contact Connecticut’s Office of the Attorney General by phone at (860) 808-5420 or by submitting a form here (https://portal.ct.gov/AG/Common/Complaint-Form-Landing-page).

b.) New Jersey residents. If you are a New Jersey resident and want to appeal our decision with regard to a request that you have made, please Contact Us, as described below (Section 10). Within forty-five (45) days of receipt of an appeal, we will inform you in writing of any action taken or not taken, including an explanation of our reasons in reaching the decision. If the appeal is denied, you may contact New Jersey’s Office of the Attorney General by phone at (800) 242-5846 or by submitting a form here (https://www.njconsumeraffairs.gov/Pages/Consumer-Complaints.aspx).

8. CTDPA CONSUMER HEALTH DATA PRIVACY NOTICE 

This Consumer Health Data Privacy Notice provides additional information regarding the consumer health data that we collect, how we use it, what sources it is derived from, and to whom we disclose it, and provides information regarding rights of individuals who are residents of Connecticut. The provisions contained within this section are intended to provide notices in compliance with the Connecticut Data Privacy Act. 

For the purposes of this section, “consumer health data” means personal information that is linked or reasonably linkable to you and that identifies your past, present, or future health status or mental health status, as may be applicable.  

8.1 Consumer Health Data We May Collect

We may collect, or have collected, the  following categories of consumer health data about you:

  • Individual health treatments, conditions, treatment, diseases, or diagnosis
  • Social, psychological, behavioral, or medical interventions
  • Health-related surgeries or procedures
  • Use or purchase of prescribed medication
  • Diagnosis or diagnostic testing, treatment, or medication
  • Gender-affirming care information
  • Reproductive or sexual health information
  • Bodily functions
  • Biometric data
  • Vital signs, symptoms, or measurements of the above categories
  • Precise location information that could reasonably indicate your attempt to acquire or receive health services or supplies<
  • Data that identifies you seeking health care services
  • Any information that we or our service providers process to associate or identify you with the above information that is derived from non-health information (such as inferred data).

8.2 Sources of Consumer Health Data 

We may collect consumer health data from the following categories of sources:

  • Directly from you, through your interactions with us, such as when you use our Site or Services, complete electronic forms, or otherwise contact us via chat, email, or phone.
  • From third-party service providers, in accordance with applicable law and the context in which you provided the data.   
  • From the Practice and/or Practitioners who provide treatment and other services to you in connection with the Services.

8.3 How We Use Consumer Health Data

We use the consumer health data we collect about you to provide customer service; provide and maintain our Services; market our products and Services; market the products and services of others; internal business purposes, including general business administration; Targeted Advertising; Profiling; and for any purpose consistent with your preferences. 

8.4 To Whom We Disclose Consumer Health Data 

We will only disclose your consumer health data with your consent.  Under certain circumstances, we may disclose your data if required to do so by law or in response to valid requests by public authorities.

8.5 Your Consumer Health Data Privacy Rights

Connecticut residents have the same rights in relation to consumer health data, subject to certain exceptions, as set forth above in Section 7.

You may exercise any of the rights described in Section 7 above by emailing [email protected]

9. CHANGES TO THIS PRIVACY POLICY

We may change this Privacy Policy from time to time to reflect new services or changes in our data practices or relevant laws.  We will let you know via email and/or a prominent notice on our Sites, prior to the change becoming effective, and update “effective date” at the top of this Privacy Policy.  We recommend periodically reviewing this Privacy Policy for any changes; changes are effective when they are posted on this page.

10. CONTACTING US

To exercise your privacy rights, or if you have any questions about this Privacy Policy, email us at [email protected].

11. REVISIONS TO THIS PRIVACY POLICY:

We reserve the right to change this Privacy Policy at any time whereby relevant changes take effect for the future. The applicable version of this Privacy Policy is available on the Site.

Date last modified: March 7, 2025