Privacy Policy

Effective date: June 10, 2026. This Privacy Policy applies to information collected through revalonmd.com (the “Site”), operated by RevalonMD LLC, a Wyoming LLC. By using this Site you agree to the collection and use of information as described here. For the rules governing your access to and use of this Site, see our Terms of Service.

Information We Collect

Information You Provide Directly

When you submit a contact or consultation-request form on this Site, we collect the practice-level information you enter: your name, work email address, phone number, practice name, specialty, EHR system, claim-volume range, and any message you choose to include. We do not request protected health information (PHI), and our forms state this requirement explicitly. Do not submit patient names, dates of service, diagnoses, insurance member IDs, or any other individually identifiable health information through any form, email address, or channel on this website.

Information Collected Automatically

When you visit this Site, our analytics platform collects standard technical data: browser type and version, approximate geographic region (not precise street address), pages visited, time-on-page, referral source, and device type. This data is collected in aggregate and is not linked to your name or email address. We do not use advertising trackers, behavioral retargeting pixels, third-party data brokers, or session-recording tools that capture keystrokes or form input on this Site.

How We Use Your Information

We use the contact and practice information you submit to respond to your inquiry, schedule and conduct the complimentary revenue-leakage audit you request, discuss our service offering with your practice, and communicate updates relevant to your inquiry. We use aggregate analytics data solely to improve the Site’s content and performance. We do not sell, rent, or license personal information to third parties. We do not use your contact information for unsolicited marketing beyond the inquiry you initiated. We do not use personal information to train machine-learning models.

Protected Health Information (PHI) and Our HIPAA Obligations

RevalonMD LLC acts as a Business Associate under HIPAA and executes a signed Business Associate Agreement (BAA) with every healthcare provider client before processing or transmitting Protected Health Information. PHI is governed by 45 CFR Parts 160 and 164 — not by this website privacy policy. Under each BAA, PHI is encrypted in transit and at rest, access is role-based and audit-logged, and handling is limited to the minimum necessary standard. Workforce members complete annual HIPAA training, and our security practices are reviewed on a recurring schedule by the RevalonMD Compliance & HIPAA Office. For full HIPAA compliance documentation, see our HIPAA compliance information and Business Associate Agreement pages (available Sprint 2).

How We Share Your Information

We share contact and practice information only with subprocessors who process it on our behalf under written confidentiality obligations — for example, the platforms that deliver form submissions, host this website, and provide analytics. These subprocessors are prohibited from using your information for any purpose other than providing services to us. We do not sell or rent personal information. We may disclose information when required by law, court order, or a lawful government request, or to protect the rights, property, or safety of RevalonMD, our clients, or others. In the event of a merger or acquisition, personal information may transfer to the successor entity under equivalent protections.

Cookies and Tracking Technologies

This Site uses a minimal set of first-party cookies required for analytics and site functionality. We do not deploy third-party advertising cookies, behavioral tracking pixels, or cross-site tracking technologies. Our analytics platform is configured to anonymize IP addresses and not to store personally identifiable data. You may disable cookies in your browser settings; doing so will not prevent you from using this Site. We do not respond to Do Not Track (DNT) browser signals, as no accepted standard for their interpretation exists. For full details on the cookies this Site uses, see our Cookie Policy.

Data Retention

Contact and practice information you submit through this Site is retained only as long as reasonably necessary to evaluate your inquiry, respond to your questions, and maintain records of completed or prospective service relationships. Aggregate analytics data is retained according to our analytics platform’s standard retention schedule. You may request deletion of your contact information at any time by writing to us at the address below.

Data Security

We apply administrative, technical, and physical safeguards appropriate to the sensitivity of the information we hold, including TLS encryption for data in transit and access controls on stored data. No method of transmission over the internet or electronic storage is completely secure. If you believe personal information has been submitted to this Site in error — or that you have experienced a security incident — contact us immediately at support@revalonmd.com so we can respond promptly. For our full security and compliance framework, visit our security and compliance overview (available Sprint 2). For information on the FTC’s Health Breach Notification Rule applicable to health data, see FTC Health Privacy guidance.

Your Privacy Rights

Depending on your jurisdiction, you may have the right to access, correct, or delete the personal information we hold about you, or to request a portable copy of that data. To exercise any of these rights, contact our Compliance & HIPAA Office at support@revalonmd.com. We will verify your identity and respond within the time frame required by applicable law. We will not discriminate against you for exercising your privacy rights.

California Residents — Your Rights Under the CCPA

California residents have additional rights under the California Consumer Privacy Act (CCPA) and its amendment, the CPRA. You have the right to know what personal information we have collected about you in the preceding 12 months and from where; the right to delete personal information we hold about you (subject to legal exceptions); the right to correct inaccurate personal information; and the right to opt out of the sale or sharing of personal information. RevalonMD does not sell or share personal information as those terms are defined by the CCPA/CPRA. To submit a verified consumer request, contact us at support@revalonmd.comor by mail at the address below — we will respond within 45 days of receipt. We will not discriminate against you for exercising your California privacy rights. Note: Protected Health Information (PHI) handled by RevalonMD under a Business Associate Agreement is exempt from CCPA obligations per Cal. Civ. Code § 1798.145(c). For the official CCPA text, visit the California Attorney General’s CCPA page.

Children’s Privacy

This Site is directed to healthcare providers and practice administrators — not to individuals under the age of 13. We do not knowingly collect personal information from children under 13. If we learn that we have inadvertently collected such information, we will delete it promptly. If you believe a child has submitted information through this Site, contact us at support@revalonmd.com.

Changes to This Policy

We review and update this Privacy Policy at least annually — or sooner when there are material changes to our practices, applicable law, or regulatory requirements. When we make material changes, we will post the revised policy at revalonmd.com/privacy-policy/ with an updated “Effective date” and “Last reviewed” line. Continued use of this Site after a revision constitutes your acceptance of the updated policy.

Contact Us / Compliance Officer

Privacy inquiries, data-access requests, and HIPAA-related questions are handled by the RevalonMD Compliance & HIPAA Office. To reach us:

For HIPAA privacy complaints or breach notification, you may also contact the HHS Office for Civil Rights at hhs.gov/ocr. The applicable regulations are published at HHS HIPAA Privacy Rule and 45 CFR Part 164.

Related: Terms of Service · Disclaimer · Accessibility Statement · About RevalonMD · Contact