Legal Information & Notices


Welcome to 2nd.MD’s web and mobile experience.  Innovation Specialists, LLC d/b/a 2nd.MD (“2nd.MD” or “Company”) is committed to maintaining robust privacy protections for its users.  Your privacy is important to us.  This Privacy Policy is designed to help you understand how we collect, use, and safeguard the information you provide.

This Privacy Policy applies to any online service location (e.g. website or application) that posts a link to this Privacy Policy, and applies to your use of interactive features, widgets, plug-ins, applications, content, downloads and/or other services (collectively, the “Services”) that 2nd.MD owns and controls and makes available through an online service, regardless of how you access or use the Service.  Please note that by using our Services, you are accepting the practices described in this Privacy Policy and our Terms of Use, and you consent to our collection, storage, use and disclosure of your Personal and Non-Personal Information as defined in this Privacy Policy.

Please review this Privacy Policy carefully.  If you do not agree to this Privacy Policy, please do not use 2nd.MD’s Services.


We do not knowingly or intentionally collect or maintain personally identifiable information from persons under 13 years old, and no part of our website or application is directed to persons under 13.  IF YOU ARE UNDER 13 YEARS OF AGE, PLEASE DO NOT USE OR ACCESS OUR SERVICES AT ANY TIME OR IN ANY MANNER.  If 2nd.MD learns that personally identifiable information of persons less than 13 years old has been collected without verifiable parental consent, then we will take appropriate steps to delete this information.  If you are a parent or guardian and discover that your child under the age of 13 has obtained a 2nd.MD account, then please alert us at legal@2nd.MD and request that we delete that child’s personal information from our systems.


We collect information to provide the best service to each of our users.  You have choices about the information we collect.  When you are asked to provide personal information, you may decline.  But if you choose not to provide information that is necessary for our services, you may not be able to use our services.

We collect two basic types of information: “Personal Information” and “Non-Personal Information”.

“Personal Information”

means data that allows someone to identify or contact you, including, for example, your name, address, telephone number, e-mail address, driver’s license, Social Security Number, as well as any other non-public information about you that is associated with or linked to any of the foregoing data.  Personal Information does not include publicly available information that is lawfully made available to the general public from federal, state or local government records or widely distributed media.

“Non-Personal Information”

includes information that cannot be used to identify you personally, but can provide us with usage data, either individually or in the aggregate.  This may include but is not limited to anonymous usage data, general demographic information, referring/exit pages and URLs, platform types, preferences you submit and preferences that are generated based on the data you submit and number of clicks.



Personal Information

We acquire Personal Information when you voluntarily register or create a personal profile with us, or request products, services, or information from us.  This may include your first and last name, e-mail and mailing address, phone, and other similar contact data.  We may collect data about you such as your age, gender, country, and preferred language.

In some cases, we acquire Personal Information from your employer.

We collect passwords, password hints, and similar security information when you create an account to log in to our network.

Protected Health Information (“PHI”)
When using our Services, we collect health information that you provide us, which may include information or records relating to your medical or health history, health status and laboratory testing results, diagnostic images, and other health information.  Your health record contains personal information about you and your health.  We may also collect health information about you prepared by your healthcare providers who provide medical records, treatment and examination notes, and other health related information.  This information about you may identify you and/or relate to your past, present or future physical or mental health or condition and related health care services is referred to as Protected Health Information (“PHI”).  2nd.MD is required by law to maintain the privacy of PHI and to provide you with notice of our legal duties and privacy practices with respect to PHI.  We are required to abide by the terms of this Privacy Policy.


Non-Personal Information

In an effort to improve the quality of the Service, we track information provided to us by your browser or by our software application when you view or use the Service, such as the website you came from (known as the referring URL), the type of browser you use, the device from which you connected to the Service, the time and date of access, and other information that does not personally identify you.

We track this information using cookies, or small text files which include an anonymous unique identifier.  Cookies are sent to a user’s browser from our servers and are stored on the user’s computer hard drive.  Sending a cookie to a user’s browser enables us to collect Non-Personal Information about that user and keep a record of the user’s preferences when utilizing our services, both on an individual and aggregate basis.  Most internet browsers automatically accept cookies, but you can set your browser to refuse them or to alert you when they are being sent.

Certain pages on our websites or applications contain “web beacons” (also known as Internet tags, pixel tags and clear GIFs).  These web beacons allow third parties to obtain information such as the IP address of the computer that downloaded the page on which the beacon appears, the URL of the page on which the beacon appears, the time the page containing the beacon was viewed, the type of browser used to view the page, and the information in cookies set by the third party.

We may also use third party analytics services such as Google Analytics or Google Adsense to collect information about how you use and interact with our Services.  Such third party analytics services may use cookies to gather information such as the pages you visited, your IP address, a date/time stamp for your visit and which site referred you to our Services.



Personal Information

In general, Personal Information you submit to us is used either to respond to requests that you make, or to aid us in serving you better.  We use your Personal Information in the following ways:

  • Facilitate the creation and securing of your account on our network;
  • Verify your identity so that we can be sure that all our communications with you are confidential, and, for application security, to help prevent fraud and data loss;
  • Send you a welcome e-mail to verify ownership of the e-mail address provided when your account was created;
  • Provide improved administration of our Services;
  • Provide the Services you request;
  • Respond to inquiries or requests from you;
  • Improve the quality of the experience when you interact with our Services;
  • Send administrative e-mail notifications, such as security or support and maintenance advisories;
  • Send newsletters, surveys, offers, and other promotional materials related to our Services and for other marketing purposes including those of third parties; and
  • Perform marketing or data analysis.

Protected Health Information (“PHI”)

2nd.MD will protect PHI in compliance with both state and federal law.  2nd.MD is required to maintain the confidentiality of the PHI of our users, and we have policies and procedures and other safeguards to help protect your PHI from improper use and disclosure such as hosting our platform on Health Insurance Portability and Accountability Act (“HIPAA”) compliant servers.  To the extent required by law, we will make reasonable efforts not to use, disclose, or request more than the minimum amount of PHI necessary to accomplish the intended purpose of the use, disclosure, or request, taking into consideration practical and technological limitations.  Your PHI may be used and disclosed to those who are involved in facilitating your healthcare educational consultation or other related services provided through our Services.


Non-Personal Information

In general, we use Non-Personal Information to help us improve your user experience and the overall quality of our services.  For example, by saving your language preference, we will be able to have our services appear in the language you prefer.  We also aggregate Non-Personal Information to track trends and analyze use patterns on our website and application.  This Privacy Policy does not limit in any way our use or disclosure of Non-Personal Information and we reserve the right to use and disclose such Non-Personal Information to our partners, advertisers, and other third parties at our discretion.



Regardless of any choices you make regarding your Personal Information, 2nd.MD may disclose Personal Information for the following purposes, if it believes in good faith that such disclosure is necessary:

We may also share personal information with other third party companies that we collaborate with or hire to perform services on our behalf, such as service providers, partnering entities, or agents.  For example:

We may also share personal information with other parties when you expressly authorize us to do so.



You have the following rights regarding PHI we maintain about you.  To exercise any of these rights, please submit your request in writing to our Privacy Officer at


Right to Access your PHI

.  You have the right, which may be restricted only in exceptional circumstances, to inspect and copy PHI that is maintained in a “designated record set”.  A designated record set contains mental health/medical and billing records and any other records that are used to make decisions about your care.  Your right to inspect and copy PHI will be restricted only in those situations where there is compelling evidence that access would cause serious harm to you or if the information is contained in separately maintained psychotherapy notes.  We may charge a reasonable, cost-based fee for copies.  If your records are maintained electronically, you may also request an electronic copy of your PHI.  You may also request that a copy of your PHI be provided to another person.


Right to Amend your PHI

If you feel that the PHI we have about you is incorrect or incomplete, you may ask us to amend the information although we are not required to agree to the amendment.  If we deny your request for amendment, you have the right to file a statement of disagreement with us.  We may prepare a rebuttal to your statement and will provide you with a copy.  Please contact the Privacy Officer if you have any questions.


Right to Request Confidential Communication

.  You have the right to request that we communicate with you about health matters in a certain way or at a certain location.  We will accommodate reasonable requests.  We may require specification of an alternative address or other method of contact as a condition for accommodating your request.  We will not ask you for an explanation of why you are making the request.


Right to Restrict Disclosure of Your Personal Information and PHI

.  If you wish to restrict disclosure of personal information or PHI about you or your dependent to another person you identify, please contact the Privacy Officer at 2nd.MD directly to make such request.


Breach Notification

.  If there is a breach of PHI concerning you, we may be required to notify you of this breach, including what happened and what you can do to protect yourself.


Marketing Purposes

.  You have the right at any time to prevent us from contacting you for marketing purposes.  When we send a promotional communication to a user, the user can opt out of further promotional communications by following the unsubscribe instructions provided in each promotional e-mail.  Please note that notwithstanding the promotional preferences you indicate by either unsubscribing or opting out, we may continue to send you administrative e-mails including, for example, periodic updates to our Privacy Policy.



By using 2nd.MD’s Services, you consent and authorize 2nd.MD to audio record, video record, and/or still photograph the educational consultation for the purpose of allowing you continued access to the consultation.  You understand that all recordings, videos or images will become part of your electronically stored record.  You understand that the use of technology to store and transmit your recordings introduces additional opportunities for someone to breach the security and privacy protocols that 2nd.MD uses to protect your confidential information.  2nd.MD stores and transmits the recordings in compliance with the HIPAA Security Rule and all other applicable state and federal regulations.



As part of the Service, we may provide links to or compatibility with other websites or applications.  However, we are not responsible for the privacy practices employed by those websites or the information or content they contain.  This Privacy Policy applies solely to information collected by us through the Service.  Therefore, this Privacy Policy does not apply to your use of a third party website accessed by selecting a link through our Services.  To the extent that you access or use the Service through or on another website or application, then the privacy policy of that other website or application will apply to your access or use of that site or application.  We encourage our users to read the privacy statements of other websites before proceeding to use them.

Text Message Policy

2nd.MD Text Messages (SMS) may make available text messaging services in which you can receive messages from us and send messages to us on your mobile phone (the “Text Messaging Services”). By activating your 2nd.MD account and providing your phone number to 2nd.MD, you consent to receiving text messages from 2nd.MD. By using our text message services, you agree to these terms and conditions, which incorporate by reference our Terms of Use. If you do not agree to these terms and conditions, please do not use the text messaging services. You can stop messages at any time by replying “STOP”.


Members can opt-out by replying “STOP” at any time. By enrolling in this subscription program, you consent that following such a request to unsubscribe, you will receive one (1) final message from 2nd.MD confirming that you have been inactivating in our system. Following such confirmation message, no additional text messages will be sent unless you re-activate your subscription.

Text Messaging and Data Rates

2nd.MD does not charge a fee for text messaging service. However, standard messaging and data rates may apply from your mobile carrier, and we are not responsible for any charges from a person’s service provider that may result from us providing this service.


Security of Personal Data

We intend to protect the personal information entrusted to us and treat it securely in accordance with this Privacy Policy.  2nd.MD implements physical, administrative, and technical safeguards designed to protect your personal information from unauthorized access, use, or disclosure.  We protect your information from potential security breaches by implementing certain technological security measures, and periodically subjecting our Services to simulated intrusions tests.  We also contractually require that our suppliers protect such information from unauthorized access, use, and disclosure.  However, the Internet cannot be guaranteed to be 100% secure, and these measures do not guarantee that your information will not be accessed, disclosed, altered or destroyed by breach of our security measures. By using our Service, you acknowledge that you understand and agree to assume these risks.

Protection of Passwords

Your account is protected by your account password, and we urge you to take steps to keep your personal information safe by not disclosing your password and by logging out of your account after each use.  It is your responsibility to control the dissemination and use of your password, and to control access to and use of your user ID and password.  If you need to deactivate your account, promptly inform 2nd.MD.  You agree to promptly notify 2nd.MD of any unauthorized use of your username, password, or any other breach of security that you become aware of.

E-mail Communications

We may use the e-mail address you provide when you create your 2nd.MD account to send you an e-mail requesting that you validate your e-mail address, to send you appointment reminders, and to send you service notifications, such as e-mail notifications that information is available in your member account.

2nd.MD periodically sends newsletters, surveys, contests, sweepstakes or other promotions through e-mail.  2nd.MD may also periodically send you an e-mail summarizing recent account activity.  Subject to your contact preferences, we may also use your e-mail addresses to send you promotional e-mail.  You can unsubscribe from these e-mails at any time.


Members can opt-out by replying “STOP” at any time. By enrolling in this subscription program, you consent that following such a request to unsubscribe, you will receive one (1) final message from 2nd.MD confirming that you have been inactivating in our system. Following such confirmation message, no additional text messages will be sent unless you re-activate your subscription.

Operation in the United States

Our servers are located in the United States, so your information may be transferred to, stored, or processed in the United States.  While the data protection, privacy, and other laws of the United States might not be as comprehensive as those in your country, we take many steps to protect your privacy.  By using our Services, you understand and consent to the collection, storage, processing, and transfer of your information to our facilities in the United States.

Changes to this privacy policy

The policies indicated by this Privacy Policy will remain effective, even if the user’s coverage is terminated, to the extent we retain information about a user.  2nd.MD reserves the right to change the terms of our Privacy Policy at any time.  Any new Privacy Policy will be effective for all PII/PHI we maintain at that time.  We will provide you with a copy of the revised Privacy Policy by posting a copy on our website and applications, or e-mailing you a copy.

Contact Us:  If you would like more information about your privacy rights, please contact 2nd.MD by e-mailing legal@2nd.MD.  If you believe we have violated your privacy rights, you have the right to file a complaint in writing with our Privacy Officer at legal@2nd.MD.  We will not retaliate against you for filing a complaint.


Last Updated:

November 27, 2018