Varus

Privacy Policy

Last updated: April 5, 2026

1. Information We Collect

We collect the following types of information:

  • Account information: Name, email address, phone number, date of birth, state of residence.
  • Health information: Medical history, questionnaire responses, uploaded lab documents, biomarker summaries, care-plan notes, and photographs submitted as part of your intake.
  • Diagnostics information: Lab-order metadata, collection status, result summaries, uploaded files, and clinician sufficiency-review notes.
  • Payment information: Processed and stored securely by our payment processor, Stripe. We do not store your full credit card number.
  • Usage data: Pages visited, features used, and device information collected through limited product analytics on public and treatment-marketing pages. We disable analytics and replay tooling on authenticated, intake, checkout, and dashboard routes.

2. How We Use Your Information

  • To facilitate telehealth consultations with licensed providers
  • To coordinate lab ordering, collection, uploaded-lab review, results review, and care plans
  • To process diagnostics, treatment, and subscription transactions
  • To send generic transactional notices that prompt you to sign in to view care details securely
  • To improve our Services
  • To comply with legal obligations

3. How We Share Your Information

We share your health information only with the licensed healthcare providers who review your intake, uploaded labs, and results; with laboratory or collection partners involved in clinician-ordered testing; and with licensed pharmacies that fulfill a prescription when one is recommended. We do not sell your personal information.

4. Data Security

We use industry-standard encryption and security measures to protect your information. Sensitive patient flows are designed to minimize telemetry, restrict access, and retain medical-intake submissions and order records with audit support and access controls.

5. Your Rights

Depending on your state of residence, you may have the right to access, correct, export, or delete your personal information, subject to legal and clinical record-retention requirements. Contact us at privacy@varushealth.com to exercise these rights.

6. Email Communications

We send generic transactional notices related to your account, visit status, billing, and order fulfillment. Those notices do not include detailed health content and may direct you to sign in to view care details securely. You may opt out of marketing communications at any time. Required service notices cannot be opted out of while you have an active account.

7. Cookies and Tracking

We use a limited set of analytics and error-monitoring tools to operate and improve the Services. Sensitive patient routes are excluded from product analytics, session replay, and performance-insights collection. We do not use third-party advertising trackers.

8. Retention

We retain account, intake, uploaded-lab, diagnostics, results, care-plan, order, and consent records for as long as needed to operate the Services, satisfy legal obligations, and preserve required healthcare or financial records. When retention periods expire or data is no longer needed, we may archive or delete it according to our internal retention process.

9. Contact

For privacy-related questions, contact our Privacy Officer at privacy@varushealth.com.