Privacy Policy

Effective Date: January 1, 2026 · Last Updated: January 1, 2026

SwiftCareMD ("we," "our," or "us") is committed to protecting the privacy and security of your personal information. This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you use our asynchronous telehealth platform and related services (the "Services"). By accessing or using our Services, you agree to the terms of this Privacy Policy.

SwiftCareMD provides telehealth services to patients located in all 50 U.S. states. This policy applies to all users of our platform, regardless of state of residence.

1. Information We Collect

1.1 Personal Information

When you create an account or submit a consultation request, we collect:

  • Full legal name
  • Date of birth
  • Email address
  • Phone number
  • Mailing address and state of residence
  • Gender (for medical evaluation purposes)

1.2 Health Information (Protected Health Information)

To provide medical services, we collect information about your health, including:

  • Symptoms and medical complaints you report
  • Relevant medical history
  • Current medications and known allergies
  • The reason for your absence request (work, school, or other)
  • Employer or school information as needed for your medical note
  • Any clinical notes, assessments, and documentation prepared by our physicians

1.3 Payment Information

We use Stripe, a PCI-DSS Level 1 certified payment processor, to handle all payment transactions. When you make a payment:

  • Your credit or debit card details are collected and processed directly by Stripe
  • SwiftCareMD does not store full credit card numbers on our servers
  • We retain a record of the transaction amount, date, and last four digits of the card used

1.4 Technical Information

When you use our platform, we automatically collect:

  • IP address and approximate geographic location
  • Browser type, device type, and operating system
  • Pages visited and time spent on our platform
  • Referring URLs

2. How We Use Your Information

We use the information we collect for the following purposes:

  • Providing telehealth services: Evaluating your medical consultation request, preparing medical absence documentation, and delivering your note
  • Processing payments: Charging the service fee via Stripe and issuing refunds when applicable
  • Communications: Sending you order confirmations, status updates, delivery of your note, and responding to support inquiries
  • Compliance: Meeting our legal and regulatory obligations, including HIPAA requirements and state telehealth laws
  • Improving our services: Analyzing usage patterns (in aggregate and de-identified form) to improve user experience and platform performance
  • Employer/school verification: Confirming the authenticity of a medical note when an employer or school contacts us with the patient's authorization or as permitted by law

3. How We Protect Your Information

We implement industry-standard administrative, technical, and physical safeguards to protect your information:

  • Encryption: All data is encrypted in transit using TLS 1.2+ and at rest using AES-256 encryption
  • HIPAA-compliant infrastructure: Our systems and hosting providers maintain Business Associate Agreements (BAAs) and comply with HIPAA's Security Rule
  • Access controls: Only authorized healthcare providers and essential personnel have access to Protected Health Information, and access is logged and audited
  • Secure payment processing: All payment data is processed by Stripe under PCI-DSS Level 1 compliance — the highest level of certification
  • Regular assessments: We conduct periodic security assessments and vulnerability scans to identify and remediate potential threats

4. Third-Party Services

We share information with the following third-party service providers as necessary to operate our Services:

  • Stripe: Payment processing. Stripe's privacy policy governs their use of your payment data. See stripe.com/privacy
  • Cloud hosting providers: HIPAA-compliant infrastructure with executed Business Associate Agreements
  • Email delivery services: For transactional emails (order confirmations, note delivery)

We never sell, rent, or trade your personal information or health data to third parties for marketing or advertising purposes.

5. Your Rights

Depending on your state of residence and applicable law, you have the following rights:

  • Right to access: You may request a copy of the personal and health information we maintain about you
  • Right to correction: You may request that we correct inaccurate information in your records
  • Right to deletion: You may request deletion of your personal information, subject to our legal retention obligations and HIPAA requirements
  • Right to restrict processing: You may request that we limit how we use your information in certain circumstances
  • Right to data portability: You may request your data in a commonly used, machine-readable format
  • Right to an accounting of disclosures: Under HIPAA, you may request a list of certain disclosures we have made of your health information

To exercise any of these rights, contact us at

privacy@swiftcaremd.com .

We will respond within 30 days of receiving your request.

6. Data Retention

We retain your information in accordance with the following guidelines:

  • Medical records: Retained for a minimum of 7 years from the date of service, or longer if required by applicable state law (e.g., Florida requires 7 years for adult patients)
  • Payment records: Retained for 7 years for tax and accounting purposes
  • Account information: Retained for as long as your account remains active, plus 3 years after account closure
  • Technical logs: Retained for up to 12 months, then deleted or anonymized

When retention periods expire, data is securely deleted or de-identified so it can no longer be associated with you.

7. Cookies and Tracking Technologies

SwiftCareMD uses a minimal set of cookies strictly necessary for the operation of our platform:

  • Session cookies: To maintain your session while using our platform
  • Security cookies: To prevent fraud and protect your account
  • Preference cookies: To remember your settings and preferences

We do not use advertising cookies or third-party tracking pixels. We do not participate in cross-site tracking or behavioral advertising.

8. Children's Privacy

Our Services are not intended for individuals under the age of 18. We do not knowingly collect personal information from minors. If we learn that we have collected information from a person under 18, we will take steps to delete that information promptly.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or for other operational reasons. When we make material changes, we will notify you by email or by posting a prominent notice on our platform. The "Effective Date" at the top of this policy indicates when it was last revised. Your continued use of our Services after changes are posted constitutes your acceptance of the updated policy.

10. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

SwiftCareMD Privacy Team

Email: privacy@swiftcaremd.com

Mail: SwiftCareMD, Attn: Privacy Officer, 100 S. Ashley Drive, Suite 600, Tampa, FL 33602