Last Updated: November 1, 2025
Welcome to Reverse Disease Rx (“we,” “us,” or “our”). We are committed to protecting your privacy and handling your personal information responsibly.
This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you engage with our wellness education, lifestyle coaching, and holistic self-care support services (collectively, the “Services”), including through our website, platform, email communications, coaching sessions, and digital materials.
By accessing or using our Services, you acknowledge that you have read, understood, and agree to the practices described in this Privacy Policy.
Reverse Disease Rx is not a licensed medical provider and does not offer diagnosis, treatment, or medical advice.
We do not collect, store, or transmit Protected Health Information (PHI) as defined under the U.S. Health Insurance Portability and Accountability Act (HIPAA). We are not a HIPAA-covered entity, and our platform is not intended for use by healthcare providers.
Any health-related information you voluntarily share (e.g., symptoms, medications, lab results) is provided at your own risk and does not create a clinician-patient relationship. We recommend avoiding the sharing of sensitive medical records unless necessary for your coaching goals.
We collect information to provide and improve our Services. The types of information include:
A. Personal Information You Provide
When you sign up, book a session, or communicate with us, you may provide:
Full name
Email address
Mailing address
Phone number
Payment details (processed securely via third-party processors like Stripe or PayPal)
Wellness goals, lifestyle habits, dietary preferences, sleep patterns, stress levels
Feedback or questions about the program
B. Health-Related Information (Voluntary)
You may choose to share non-clinical wellness details such as:
Energy levels
Mood patterns
Digestive health
Exercise routines
Food sensitivities
Note: While helpful for personalized coaching, we urge caution. We do not maintain medical records, and this data is not stored with the same protections as clinical health data.
When you visit our website or use our digital platform, we may collect:
IP address
Device type and browser
Operating system
Pages visited and time spent
Referral source
Cookie and tracking data (see Section 9)
We use tools like Google Analytics (with IP anonymization enabled) and platform log files to understand usage and improve our site.
We may retain records of emails, chat logs, or session notes for service continuity and quality improvement—unless you request deletion.
We use your information only for the following purposes:
To deliver and personalize your coaching experience
To communicate with you about your account, sessions, or updates
To process payments and manage billing
To improve our programs, content, and platform
To respond to your inquiries and support needs
To comply with legal obligations
To protect our rights, safety, and systems
We do not use your data for:
Selling to third parties
Targeted advertising (we do not run behavioral ad campaigns)
Profiling for automated decision-making
If you are located in the European Economic Area (EEA), UK, or other regions with data privacy laws, our processing is based on:
Consent: When you sign our Service Agreement, you consent to data use as described.
Contractual Necessity: To provide the coaching services you’ve purchased.
Legitimate Interests: For customer support, service improvement, and fraud prevention.
You may withdraw consent at any time (see Section 8), though this may affect your ability to continue using the Services.
We do not sell, rent, or monetize your personal information.
We may share data only in the following limited circumstances:
A. Trusted Service Providers
We use third-party tools that may access your data, including:
Payment processors (e.g., Stripe, PayPal)
Email marketing platforms (e.g., Mailchimp)
Hosting and cloud storage services
Coaching and scheduling platforms
All vendors are contractually obligated to protect your data and use it only as directed.
B. Legal Compliance
We may disclose information if required by law, court order, or government request.
C. Safety and Protection
We may share information to:
Prevent fraud or security threats
Protect our rights or property
Respond to emergencies involving danger of harm
D. Aggregated or De-Identified Data
We may use and share non-personal, anonymized data for research, program development, or publishing insights (e.g., “80% of participants reported better sleep”). This data cannot identify you.
We retain your personal information only as long as necessary:
For active customers: During and up to 3 years after service completion
For deactivated accounts: Up to 2 years, unless deletion is requested
For marketing contacts: Until you unsubscribe or 3 years of inactivity
We may retain certain data longer if required by law, audit needs, or legitimate business purposes.
Upon deletion request, we will remove your data from active systems, though backups may persist briefly due to technical processes.
Depending on your location, you may have the right to:
Right Applies To
Access – Request a copy of your data GDPR, CCPA, PIPEDA
Correction – Update inaccurate information GDPR, CCPA
Deletion – Ask us to erase your data GDPR, CCPA
Restriction – Limit how we use your data GDPR
Portability – Receive your data in a usable format GDPR
Withdraw Consent – Opt out of processing GDPR
Opt-Out of Sales/Sharing – Request no sharing for advertising CCPA
To exercise any of these rights, please email us at [email protected]
We will respond within:
30 days (GDPR)
45 days (CCPA)
Or as required by your local law
We may verify your identity before fulfilling requests.
We use cookies and similar technologies to:
Remember your preferences
Analyze traffic and site usage
Enhance user experience
We do not use third-party behavioral advertising cookies (e.g., Facebook Pixel for retargeting).
You can manage cookies via your browser settings. Disabling cookies may affect site functionality.
Our Cookie Policy is part of this Privacy Policy. We use:
Essential Cookies: Always active (e.g., login, security)
Performance Cookies: Anonymous analytics (e.g., Google Analytics)
We implement reasonable administrative, technical, and physical safeguards to protect your data, including:
SSL/TLS encryption for website and forms
Secure password practices
Limited staff access to personal data
Regular software updates
Note: No internet transmission or storage system is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.
Your data may be transferred to and processed in countries outside your home jurisdiction, including the United States, where privacy laws may differ.
We ensure appropriate safeguards are in place:
For EU/UK: We comply with GDPR transfer mechanisms (e.g., Standard Contractual Clauses)
For Canada: Data remains subject to PIPEDA; we limit U.S. transfers to necessary operations
For all: We use trusted providers with strong privacy commitments
By using our Services, you consent to cross-border data transfer as described
Our website may contain links to external sites (e.g., educational blogs, research articles). We are not responsible for their privacy practices. Please review their policies independently.
We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements.
We will:
Post the revised policy on our website
Update the “Effective Date” at the top
Notify active customers via email if changes are material
Your continued use of our Services after updates constitutes acceptance.
If you have questions, requests, or concerns about this Privacy Policy or your data, please contact us:
Email: [email protected]
Mailing Address: 251 Webster Street, Palo Alto, CA
For GDPR-related concerns, you may also contact your local Data Protection Authority (DPA), such as:
Ireland (EU): Data Protection Commission (dpc.ie)
UK: Information Commissioner’s Office (ico.org.uk)
Canada: Office of the Privacy Commissioner (priv.gc.ca)
United States
This Service is based in Delaware, USA. We comply with federal and state privacy laws, including CCPA. California residents may request disclosure of data sharing practices and opt out of “sales” (none occur).
European Union (GDPR)
We comply with GDPR as a data controller. You have the right to lodge a complaint with your local DPA under Article 77.
Canada (PIPEDA)
We follow PIPEDA principles. Customers may request access or correction of personal information.
Australia (Privacy Act)
We respect Australian privacy rights. Complaints may be made to the Office of the Australian Information Commissioner (OAIC).
Rest of World
Customers are responsible for ensuring local compliance. In certain jurisdictions (e.g., India, Saudi Arabia), sharing health content may be restricted. Use is at your own discretion.
Reverse Disease Rx is not a medical device and has not been approved, cleared, or licensed by the FDA, Health Canada, MHRA, TGA, EMA, or any other regulatory authority. Our services are for wellness education only.