Meadow Biosciences – Detailed Privacy Policy

This Privacy Policy explains how Meadow Biosciences collects, uses, shares, and safeguards your personal information and Protected Health Information (“PHI”). Meadow complies with HIPAA, CCPA/CPRA, and applicable federal/state privacy regulations.

We collect identifiers (name, DOB, contact info), medical history, biomarker data, clinician notes, diagnostic orders/results, payment information, device identifiers, IP address, cookies, and caregiver‑provided information for minors.

Information is collected directly from users, during telehealth visits, via diagnostic labs, from pharmacy partners, through device/browser technologies, and from optional research participation.

Information is used to deliver care, coordinate with clinicians and labs, fulfill prescriptions, provide customer support, ensure regulatory compliance, and improve clinical systems and analytics. PHI is never sold.

Information may be shared with clinicians, diagnostic labs, compounding pharmacies, service providers, analytics vendors, legal authorities when required, and corporate successors under confidentiality protections.

Your HIPAA rights include: accessing your PHI, requesting corrections, restricting certain uses, receiving disclosures accounting, requesting confidential communication channels, and filing complaints without retaliation.

Users may request access, deletion, correction, portability, opt‑out of data uses, or exercise nondiscrimination rights where applicable under state law.

Cookies enable authentication, session management, analytics, and user experience optimization. Users may disable cookies via browser settings, though some features may not function properly.

Medical data is retained according to state medical record retention laws and CLIA requirements. Research data may be retained in de‑identified form indefinitely.

Meadow employs encryption, role‑based access, audit trails, secure hosting, and breach‑response protocols. In the event of a PHI breach, Meadow will notify affected individuals as required by HIPAA.

Parents or guardians must authorize care for minors. Meadow complies with COPPA and additional pediatric privacy protections.

Data may be transferred to and stored in the United States. GDPR‑style protections apply to international users where required.

External sites linked within the platform are not controlled by Meadow. Meadow is not responsible for external privacy practices.

Policy revisions will be posted with a new “Last Updated” date. Continued use constitutes acceptance.

Meadow Biosciences Privacy Office | Email: privacy@meadowbiosciences.com | Address: 100 Alfred Drowne Rd. Barrington, RI 02806