Last updated: February 1, 2026
Precision Radiance Inc., d/b/a Dermlink (“Dermlink,” “we,” “our”) is committed to protecting your privacy and the security of your personal and health information. This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you use our telehealth platform and related services (collectively, the “Services”).
When you create an account or use our Services, we collect information you provide directly, including: name, email address, date of birth, phone number, mailing address, payment information, and health insurance details (if provided).
As a healthcare platform, we collect Protected Health Information ("PHI") as defined under HIPAA, including: medical history, current medications, allergies, photographs of skin conditions, clinical notes from consultations, prescriptions, diagnoses, and treatment plans.
We automatically collect certain technical information when you use our Services, including: device type, operating system, browser type, IP address, usage patterns, and session duration. We use this data to improve our platform and ensure security.
We use your information for the following purposes:
Providing telehealth services. We use your personal and health information to facilitate consultations with board-certified dermatologists, manage prescriptions, and coordinate your care.
Platform operations. We use technical data to operate, maintain, and improve the Dermlink platform, including optimizing performance, troubleshooting issues, and developing new features.
Communications. We may send you appointment reminders, care follow-ups, platform updates, and, with your consent, educational health content. You can opt out of non-essential communications at any time.
Legal compliance. We use information as necessary to comply with applicable laws, including HIPAA, state telehealth regulations, and prescription drug monitoring programs.
We share your health information with the dermatologists providing your care through our platform. This is necessary for treatment and is permitted under HIPAA without separate authorization.
We engage third-party service providers who assist in operating our platform (e.g., cloud hosting, payment processing, pharmacy fulfillment). These providers are bound by Business Associate Agreements (BAAs) and are required to protect your information in accordance with HIPAA.
We may disclose information when required by law, regulation, legal process, or governmental request, including public health reporting, fraud prevention, and law enforcement requests supported by valid legal process.
Dermlink does not sell, rent, or trade your personal information or health data to third parties for marketing or advertising purposes. We never have and never will.
Dermlink is a covered entity under the Health Insurance Portability and Accountability Act (HIPAA). We maintain comprehensive administrative, physical, and technical safeguards to protect your PHI. For detailed information about our HIPAA compliance program, please see our HIPAA Compliance page.
We maintain Business Associate Agreements (BAAs) with all third-party service providers who handle PHI on our behalf. Our workforce members receive regular HIPAA training and are bound by confidentiality obligations.
We implement industry-standard security measures to protect your information, including: encryption of data in transit (TLS 1.3) and at rest (AES-256), regular security audits and penetration testing, role-based access controls with multi-factor authentication, automated monitoring and anomaly detection, and regular employee security training.
While no system is completely immune to security threats, we are committed to protecting your information and promptly addressing any security incidents in accordance with applicable breach notification laws.
Under HIPAA, you have the right to: access and obtain a copy of your health records, request amendments to your health information, receive an accounting of certain disclosures of your PHI, request restrictions on certain uses of your PHI, and receive a copy of this privacy notice.
Depending on your state of residence, you may have additional rights including: the right to delete your personal information (subject to HIPAA retention requirements), the right to opt out of certain data processing activities, and the right to data portability.
To exercise any of these rights, contact our Privacy Officer at privacy@dermlink.ai or through the Contact page. We will respond to requests within 30 days, or as otherwise required by applicable law.
We retain your health records for the minimum period required by applicable state and federal law, which is typically 7–10 years after your last interaction. Technical and usage data is retained for up to 2 years. You may request deletion of non-health personal data at any time, subject to our legal retention obligations.
Dermlink Services are available to individuals aged 18 and older. For patients under 18, a parent or legal guardian must create the account and consent to treatment. We do not knowingly collect information from children under 13 without verifiable parental consent.
We may update this Privacy Policy from time to time. Material changes will be communicated via email notification and a prominent notice on our platform at least 30 days before taking effect. Your continued use of the Services after changes take effect constitutes acceptance of the updated policy.
If you have questions about this Privacy Policy or our data practices, contact our Privacy Officer: privacy@dermlink.ai | Precision Radiance Inc., d/b/a Dermlink, 548 Market St, Suite 36879, San Francisco, CA 94104.