Privacy Policy

Effective Date: May 2026

1. Overview

InpharmD, INC (“InpharmD,” “we,” “our,” or “us”) is committed to protecting your privacy and safeguarding your personal information. This Privacy Policy explains how we collect, use, disclose, and protect information when you visit our website (www.inpharmd.com), use our mobile application, or otherwise interact with our services (collectively, the “Services”).

This Privacy Policy should be read together with our Terms of Use. By using the Services, you acknowledge the practices described in this Policy.

2. Scope and HIPAA Notice

The Services are intended for healthcare professionals and other authorized users for informational and professional purposes only.

InpharmD is not a HIPAA-covered entity or business associate platform for the storage or processing of Protected Health Information (PHI). You agree not to submit PHI, financial information, or other sensitive personal information about yourself or any third party through the Services. If PHI is inadvertently submitted, InpharmD assumes no responsibility for its handling under HIPAA, and you are solely responsible for ensuring your use of the Services complies with HIPAA, state privacy laws, and your organization’s policies.

3. Information We Collect

We collect only the information necessary to provide and improve our Services.

a. Information You Provide

  • Name, email address, organization, professional credentials, and contact details
  • Account registration and authentication information
  • Queries, prompts, and inputs you submit to the InpharmD services
  • Communications, inquiries, and support requests

b. Automatically Collected Information

When you access the Services, we may collect:

  • Internet Protocol (IP) address
  • Browser type, operating system, and device information
  • Pages visited, features used, and interactions with the Services
  • Referring URLs and clickstream data
  • Date and time of access

Information collected through optional analytics or support tools is gathered only after you provide consent for those categories, where required by law, unless your organization has enabled Microsoft Clarity analytics for authenticated team members as described in our Cookie Policy.

c. Consolidated Information

If you register with us more than once or use multiple Services, we may combine the information you provide with other information we have collected about you in order to maintain a single, accurate record of your preferences and interactions.

4. How We Use Your Information

We use your information to:

  • Provide, operate, maintain, and improve the Services
  • Respond to inquiries, support requests, and communications
  • Authenticate users and manage accounts
  • Personalize content and features based on your interests
  • Monitor and improve performance, reliability, and security
  • Detect, prevent, and address fraud, abuse, and security incidents
  • Comply with legal, regulatory, and reporting obligations, including pharmacovigilance reporting where applicable
  • Send service-related notifications and, with your consent, marketing communications

We do not sell your personal information.

5. Cookies and Tracking Technologies

We use cookies and similar technologies on the Services to keep the site secure, remember your preferences, understand how the Services are used, and provide optional support features when you allow them.

We group cookies into:

  • Strictly necessary cookies — required for sign-in, security, and core functionality (always on)
  • Analytics cookies — help us measure site usage and improve the Services (your choice, where required by law)
  • Support cookies — enable optional help or chat tools such as Zendesk (your choice)

We do not offer a separate advertising or marketing cookie category in our preferences tool. Some analytics or support providers may set browser identifiers as part of their embedded services. For full details, including third-party providers and how to change your settings, see our Cookie Policy.

When you visit the Services, you can accept all non-essential cookies, reject them, or manage preferences by category. You may change your choices at any time. If you access the Services through a healthcare organization, organization-level Microsoft Clarity settings may also apply to authenticated team members as described in our Cookie Policy.

Some browsers offer a “Do Not Track” (DNT) signal. Because no consistent industry standard applies to DNT, we do not respond to DNT signals; you may still control optional cookies through our cookie preferences.

6. Legal Basis for Processing

Where applicable (including for users in the European Economic Area and United Kingdom), we process personal information based on one or more of the following legal bases:

  • Your consent
  • Performance of a contract with you
  • Compliance with legal obligations
  • Our legitimate business interests, with appropriate safeguards and balancing of your rights

7. Data Sharing and Disclosure

We do not share personal information with third parties for their independent marketing purposes without your opt-in consent.

We may share data:

  • With authorized service providers (such as hosting, analytics, customer support, and payment processors) who process data only on our behalf, under contractual confidentiality and security obligations, and are prohibited from using your data for their own independent purposes
  • With health authorities, regulatory agencies, or product manufacturers, where required, to report possible adverse drug experiences, product complaints, or other pharmacovigilance matters
  • When required by law, subpoena, court order, or governmental request
  • During inspections, audits, or investigations by regulators
  • To protect the rights, property, safety, or security of InpharmD, our users, or the public
  • In connection with a corporate transaction, such as a merger, acquisition, financing, or sale of assets, subject to confidentiality protections

8. International Data Transfers

InpharmD operates in the United States. If you access the Services from outside the United States, your information may be transferred to, stored, and processed in the United States or other countries where data protection laws may differ from those in your jurisdiction.

Where required, we use appropriate safeguards (such as Standard Contractual Clauses) to protect personal information transferred internationally.

9. Your Privacy Rights

Depending on your jurisdiction (including California, the EEA, and the UK), you may have the right to:

  • Access the personal information we hold about you
  • Request correction of inaccurate or incomplete information
  • Request deletion of your personal information
  • Withdraw consent at any time, where processing is based on consent
  • Object to or restrict certain processing
  • Request data portability
  • Opt out of the sale or sharing of personal information (we do not sell personal information)
  • Lodge a complaint with your local data protection authority

California residents have specific rights under the California Consumer Privacy Act (CCPA), including the right to know the categories and specific pieces of personal information collected, the categories of sources, the business purposes for collection, and the categories of third parties with whom information is shared.

To exercise your rights, contact support@inpharmd.com. To protect your information, all requests are subject to verification of the identity of the requesting individual. Certain rights may be limited where permitted by law.

10. Data Integrity and Accuracy

InpharmD takes reasonable steps to ensure that personal data we collect and process is reliable for its intended use, accurate, complete, and current. We encourage you to update your information (such as a new email address, organization, or name change) so that we can continue to provide Services that best meet your needs.

11. Data Security

We implement industry-standard technical, administrative, and physical safeguards designed to protect personal information from loss, misuse, unauthorized access, disclosure, or alteration, including:

  • Encryption in transit and at rest
  • Access controls, authentication, and monitoring
  • Regular security reviews and vulnerability testing
  • Employee training on data protection

InpharmD maintains a SOC 2 Type II compliant environment and undergoes periodic independent audits to validate the effectiveness of its security controls.

No organization can guarantee the absolute security of personal information, and Internet transmissions are never 100% secure or error-free. You are responsible for safeguarding your account credentials and for any activity that occurs under your account.

12. Data Breach Notification

In the event of a data breach affecting your personal information, we will notify affected users and applicable regulatory authorities in accordance with applicable law, without undue delay.

13. Data Retention

We retain personal information only as long as necessary to:

  • Provide the Services and maintain your account
  • Comply with legal, regulatory, tax, accounting, and audit obligations
  • Resolve disputes and enforce our agreements
  • Support legitimate business purposes, such as security and fraud prevention

When personal information is no longer needed, we will delete, anonymize, or aggregate it in accordance with our retention schedules and applicable law.

14. Children’s Privacy

The Services are intended for users who are at least 18 years of age and are not directed to children. InpharmD does not knowingly collect personal information from children under the age of 13, in accordance with the Children’s Online Privacy Protection Act (COPPA) and similar laws.

If we learn that a child under 13 has provided us with personal information, we will use that information only to respond directly to the child to inform him or her that parental consent is required, and we will promptly delete the information from our records. If you believe a child has provided us with personal information, please contact us at support@inpharmd.com.

15. Third-Party Links and Services

The Services may contain links to, or integrations with, third-party websites and services. We are not responsible for the privacy practices or content of these third parties. We encourage you to review the privacy policies of any third-party services you access.

16. Accountability

Our privacy practices are periodically reviewed to verify compliance with this Privacy Policy and applicable laws. Inquiries or concerns regarding our privacy practices may be directed to the contact information below.

17. Updates to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will post the updated Policy with a revised Effective Date and, where appropriate, provide additional notice. We encourage you to review this Policy periodically.

18. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact:

InpharmD, INC

Email: support@inpharmd.com

Website: www.inpharmd.com