MY DR NOW Logo

Schedule

Call

Text

Home
Get Started
Services
Make a Payment
Providers
Locations
About Us

480-677-8282

Privacy Policy

MY DR NOW

Effective Date: April 1, 2007  ·  Last Updated: May 21, 2026  ·  Version 2.3

1. INTRODUCTION

The Good Health Group, LLC dba MY DR NOW ("MY DR NOW," "we," "us," or "our") respects your privacy. This Privacy Policy explains how we collect, use, disclose, and protect information when you:

  • Visit our website at https://www.mydrnow.com (the "Website")

  • Communicate with us by email, SMS, web form, or phone

  • Use our patient portal, telehealth services, or other digital services

  • Interact with us as a patient, prospective patient, family member, or visitor

This policy applies to information collected through the Website and related digital channels.

2. RELATIONSHIP TO HIPAA NOTICE OF PRIVACY PRACTICES

MY DR NOW is a HIPAA-covered entity. Our handling of Protected Health Information (PHI) is governed primarily by our Notice of Privacy Practices (NPP), available at https://www.mydrnow.com/notice-of-privacy-practices and upon request at our clinical locations. Where this Privacy Policy and the NPP overlap regarding PHI, the NPP controls.

This Privacy Policy covers:

  • Information collected through the Website that is not PHI

  • Information you provide outside the treatment context (general inquiries, scheduling, marketing communications)

  • SMS and email communications data

  • Website usage data, cookies, and analytics

  • Other personal information that may not be subject to HIPAA

If you are unsure whether information you have shared is governed by the NPP or this Privacy Policy, contact us using the information in Section 15.

3. INFORMATION WE COLLECT
3.1 Information You Provide

We collect information you provide directly to us, including:

  • Contact information: name, mailing address, email address, phone number

  • Demographic information: date of birth, gender (where collected)

  • Insurance and billing information

  • Communications preferences: SMS opt-in status, email subscription status

  • Inquiry content: messages submitted through contact forms, scheduling requests, feedback

  • Employment-related information: if you apply for a position with MY DR NOW

Patient Portal credentials are not collected or stored by MY DR NOW. The Patient Portal is operated by Epic Systems Corporation, which manages authentication independently. See Section 8.

3.2 Information Collected Automatically

When you use the Website, we and our service providers may automatically collect:

  • Device information: IP address, browser type, operating system, device identifiers

  • Usage information: pages visited, time spent, links clicked, referring URL, date and time of access

  • Cookies and similar technologies: see Section 7

  • Approximate location: derived from IP address

3.3 Information from Third Parties

We may receive information about you from:

  • Insurance companies and health plans: eligibility, coverage, and benefits information

  • Health Information Exchange (HIE) partners: such as Health Current, Arizona's HIE

  • Referring providers

  • Third-party service providers: such as Epic Systems (Patient Portal operator), analytics providers, and SMS delivery providers

4. HOW WE USE INFORMATION

We use the information we collect to:

  • Provide, maintain, and improve the Website and our services

  • Schedule and manage appointments

  • Send appointment reminders, care coordination communications, and preventive care outreach

  • Respond to inquiries and provide customer support

  • Process payments and billing

  • Comply with legal, regulatory, and contractual obligations

  • Detect, prevent, and respond to fraud, security incidents, and other harmful activity

  • Conduct analytics to understand how the Website is used and improve user experience

  • Send service announcements and operational notices

  • For other purposes disclosed at the time of collection or with your consent

PHI is used in accordance with the NPP.

5. HOW WE SHARE INFORMATION

We do NOT sell your personal information. We share information only as described below.

5.1 Service Providers and Business Associates

We share information with vendors, service providers, and business associates who perform services on our behalf, such as:

  • Patient Portal operations (Epic Systems Corporation, as the operator of MyChart)

  • SMS message delivery (telecommunications and messaging providers)

  • Email delivery services

  • Payment processing

  • Cloud storage (Microsoft Azure)

  • Analytics providers

  • IT and security services

These service providers are contractually required to protect your information and use it only for the purposes for which we disclosed it to them. Where applicable, Business Associate Agreements are in place consistent with HIPAA.

5.2 Treatment, Payment, and Healthcare Operations

PHI may be shared as permitted by HIPAA and as described in the Notice of Privacy Practices at https://www.mydrnow.com/notice-of-privacy-practices.

5.3 Health Information Exchange

We participate in Health Current, Arizona's HIE. Your health information may be securely shared through the HIE unless you opt out. See the Notice of Privacy Practices for details.

5.4 Legal and Safety

We may share information when required by law, court order, subpoena, or other legal process, or when we believe disclosure is necessary to:

  • Comply with applicable law or legal process

  • Protect the rights, property, or safety of MY DR NOW, our patients, or others

  • Investigate or prevent fraud, security incidents, or violations of our policies

  • Respond to a public health or safety emergency

5.5 Business Transfers

If MY DR NOW is involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of assets, your information may be transferred as part of that transaction, subject to applicable law.

5.6 With Your Consent

We may share information with your consent or at your direction.

5.7 Mobile Information and SMS Data (Mandatory Disclosure)

We won't share your information with third parties.

Mobile phone numbers, SMS opt-in data, and consent records collected through our SMS messaging program will not be shared with third parties or affiliates for marketing or promotional purposes. SMS opt-in data and consent records will not be shared with any third parties under any circumstances. This information is not sold.

Mobile information is processed only by service providers necessary to deliver the SMS messages you have requested, such as the telecommunications carrier transmitting the message, and only to the extent necessary to deliver those messages.

6. SMS COMMUNICATIONS PRIVACY

This section describes how we handle data collected through the SMS messaging program. For the full program terms, see Section 8 of our Terms of Service at https://www.mydrnow.com/terms-of-service.

6.1 Data Collected

When you opt in to the SMS program, we collect and maintain:

  • Your mobile phone number

  • Opt-in timestamp, method, and source (intake form, patient portal, care program enrollment)

  • Records of messages sent to you and your responses (such as STOP, HELP, CONFIRM)

  • Carrier information necessary for message delivery

  • Opt-out timestamp, if applicable

6.2 How SMS Data Is Used

SMS data is used solely to:

  • Send the appointment reminders, care coordination, care gap follow-ups, and preventive care outreach you have consented to receive

  • Honor your opt-out and HELP requests

  • Maintain records of consent and message delivery as required by law and industry standards (TCPA, CTIA, carrier requirements)

  • Investigate and respond to message delivery issues

6.3 How SMS Data Is Shared

Consistent with Section 5.7, mobile information and SMS data are not shared with third parties or affiliates for marketing or promotional purposes. SMS data is shared only with:

  • Telecommunications carriers and SMS aggregators necessary to deliver messages

  • Service providers under contract to support the SMS program

  • Authorities when required by law

6.4 Frequency

The SMS program sends up to 6 messages per month based on your individual care needs and appointment activity.

6.5 Opt-Out

You may opt out of the SMS program at any time by replying STOP to any message. See the Terms of Service for full opt-out details.

6.6 Retention

SMS opt-in records and message logs are retained as long as required by applicable law and industry standards, including for the purpose of demonstrating consent.

7. COOKIES AND TRACKING TECHNOLOGIES

The Website uses cookies and similar technologies to operate the site, remember your preferences, analyze usage, and improve services.

7.1 Types of Cookies

  • Strictly necessary: required for the Website to function

  • Functional: remember your preferences and choices

  • Analytics: help us understand how visitors use the Website

  • Performance: measure performance and improve user experience

7.2 Managing Cookies

Most browsers allow you to control cookies through their settings. Disabling cookies may affect the functionality of the Website. We honor "Do Not Track" signals to the extent required by applicable law.

7.3 Analytics

We may use third-party analytics services (such as Google Analytics) to understand how the Website is used. These services collect usage data described in Section 3.2. Refer to the respective provider's privacy practices for more information.

8. THIRD-PARTY SERVICES AND LINKS

The Website may contain links to third-party websites and services, including:

  • The Epic MyChart Patient Portal at https://mydrnow.epicmychart.com, operated by Epic Systems Corporation under Epic's own terms of use and privacy notice

  • Health Current, Arizona's Health Information Exchange

  • Insurance and payment processing providers

We are not responsible for the privacy practices of third-party sites. We encourage you to read their privacy policies before providing information to them.

9. CHILDREN'S PRIVACY

The Website is not directed to children under 13. We do not knowingly collect personal information from children under 13 through the Website without parental consent. Where parents or guardians use the Services on behalf of a minor in their care, information about the minor may be collected as part of providing healthcare services and is governed primarily by the Notice of Privacy Practices. If you believe a child has provided us with personal information through the Website without parental consent, contact us using the information in Section 15 and we will take appropriate steps to delete it.

10. YOUR PRIVACY RIGHTS
10.1 HIPAA Rights

For PHI, your rights are described in the Notice of Privacy Practices at https://www.mydrnow.com/notice-of-privacy-practices and include the right to access, amend, request restrictions, request confidential communications, request an accounting of disclosures, and receive a paper copy of the NPP.

10.2 General Rights

You may:

  • Access: Request access to non-PHI personal information we hold about you

  • Correct: Request correction of inaccurate non-PHI personal information

  • Delete: Request deletion of non-PHI personal information, subject to legal retention requirements

  • Opt out of marketing: Unsubscribe from marketing communications at any time

  • Opt out of SMS: Reply STOP to any SMS message

  • Withdraw consent: Where processing is based on consent, withdraw that consent

To exercise these rights, contact us using the information in Section 15. We may need to verify your identity before fulfilling your request.

10.3 State-Specific Rights

Residents of certain states may have additional rights under state law. We honor applicable rights under state privacy laws including:

  • California (CCPA/CPRA): residents may request information about categories of personal information collected, request access, deletion, correction, and opt out of sale or sharing (we do not sell personal information). Authorized agents may submit requests on a resident's behalf.

  • Virginia, Colorado, Connecticut, Utah, Texas, Oregon, and other states: residents may have rights to access, delete, correct, and opt out of certain processing. We honor applicable rights under each state's law.

  • Arizona: Arizona-specific rights, including under the Notice of Privacy Practices, apply to PHI held by MY DR NOW.

To submit a state privacy rights request, use the contact information in Section 15 and identify the state under which you are submitting the request.

10.4 Appeals

If we deny your privacy rights request and your state grants a right of appeal, you may appeal by contacting us at Remedy@MYDRNOW.com.

11. DATA SECURITY

We implement administrative, technical, and physical safeguards designed to protect personal information from unauthorized access, disclosure, alteration, and destruction, including:

  • Encryption of data in transit and at rest where appropriate

  • Access controls and authentication

  • Workforce training on privacy and security

  • Vendor security review and Business Associate Agreements where required by HIPAA

  • Incident response procedures

No method of transmission over the internet or method of electronic storage is 100% secure. We cannot guarantee absolute security.

12. DATA RETENTION

We retain personal information only as long as necessary for the purposes described in this policy, to comply with legal, regulatory, tax, accounting, or reporting requirements, or to resolve disputes and enforce agreements. Medical records are retained in accordance with Arizona law and federal requirements.

13. INTERNATIONAL USERS

The Services are intended for users located in the United States. If you access the Services from outside the United States, you do so at your own risk and consent to the transfer of your information to the United States, which may have different data protection laws than your country.

14. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time. We will post the revised policy on the Website with an updated "Last Updated" date. Material changes will be communicated through a prominent notice on the Website or, where required by law, through direct notice to you. Your continued use of the Services after the effective date of any revision constitutes acceptance of the revised policy.

15. CONTACT US

For questions about this Privacy Policy or to exercise your privacy rights, contact:

MY DR NOW Privacy Officer
The Good Health Group, LLC dba MY DR NOW
261 N Roosevelt Ave
Chandler, AZ 85226
Phone: (480) 677-8282
Email: Remedy@MYDRNOW.com

For PHI-specific privacy matters, see the Notice of Privacy Practices at https://www.mydrnow.com/notice-of-privacy-practices or email MedicalRecords@MYDRNOW.com.

To file a privacy complaint, email Remedy@MYDRNOW.com. You may also file a complaint with the U.S. Department of Health and Human Services Office for Civil Rights for HIPAA-related concerns.