Privacy Policy

Last Updated: February 26, 2025

Introduction

Defiant Direct Primary Care, PLLC (“we,” “us,” or “our”) is committed to protecting your privacy in accordance with the Health Insurance Portability and Accountability Act (HIPAA), the Virginia Consumer Data Protection Act (VCDPA), and other applicable laws.

This Privacy Policy describes how we collect, use, and disclose information when you visit our website or use our services. By accessing our website, you consent to this policy.

Information We Collect

We may collect the following types of information:

  • Personal Information: Name, contact details, date of birth, and other identifiers provided through online forms or appointment requests.

  • Health Information (PHI): Medical history, treatment details, and payment information if you use patient portals, telehealth services, or our practice.

  • Financial Information: If you make payments online, we may collect billing details (though transactions are processed by third-party payment providers).

  • Automatically Collected Data: IP address, device type, browser information, website interaction details, and cookies.

How We Use Your Information

We use your information to:

  • Provide and coordinate medical care.

  • Process payments and insurance claims.

  • Schedule appointments and send confirmations.

  • Improve website functionality and security.

  • Comply with legal obligations and regulatory requirements.

We do not sell your personal or medical information.

How We Share Your Information

We only share information when legally permitted, including:

  • With Healthcare Providers: To coordinate care and treatment.

  • With Business Associates: Third-party vendors who assist with billing, IT services, or administrative functions, under strict confidentiality agreements.

  • For Legal Compliance: In response to subpoenas, court orders, or regulatory requirements.

  • With Third-Party Services (if applicable): If our website integrates with third-party services (e.g., scheduling, messaging), your information may be shared accordingly.

Your Rights

Under HIPAA and Virginia law, you have the right to:

  • Request access, amendments, or copies of your medical records.

  • Opt-out of certain data collection practices.

  • Request a list of certain disclosures of your PHI.

  • Withdraw consent for certain uses of your information.

To exercise your rights, contact us at info@defiantdpc.com.

Security Measures

We implement technical and administrative safeguards, including encryption and access controls, to protect your data. However, no system is entirely secure, and we cannot guarantee absolute protection.

Use of Cookies & Tracking Technologies

We use cookies and analytics tools to improve website functionality and understand user behavior. You may disable cookies in your browser settings, though this may affect your experience.

Data Retention

We retain your personal and health information for as long as necessary to fulfill legal, contractual, or operational requirements.

Changes to This Privacy Policy

We may update this policy at any time. Continued use of our website constitutes acceptance of the revised policy.

Contact Information

For questions or privacy concerns, contact us at info@defiantdpc.com