FixCare Direct Healthcare operates as a discount health membership program and is not a covered entity under HIPAA. We do not collect, store, or process Protected Health Information (PHI).

 

We process membership payments through third-party payment processors (e.g., Stripe). We pass only the information needed to complete the transaction (e.g., name, email, billing details). After payment, we assign a Member ID that may be verified with date of birth (DOB). Neither the Member ID nor DOB is associated with diagnoses, treatment information, or clinical records. Providers independently manage any PHI (Protected Health Information) created in the course of care.

 

Privacy Policy Clauses

 

1) What We Collect

 

We collect basic account and billing information you provide at checkout (e.g., name, email, billing address) via Stripe. We do not collect or store diagnoses, treatment information, lab results, medical notes, or any other data that would constitute Protected Health Information (PHI) under HIPAA.

 

2) Payments

 

Payments are processed by our PCI-compliant processor (currently Stripe). Stripe receives only the information necessary to complete your transaction. We do not transmit PHI to Stripe. Transaction details on your statement will reference your membership (e.g., “FixCare Membership”), not medical services.

 

3) Member ID & DOB

 

After a successful payment, we assign a Member ID. We may verify membership using date of birth (DOB). Member ID and DOB are used only for account lookup and eligibility verification and are not linked to any clinical content. We do not maintain medical records.

 

4) HIPAA Status

 

FixCare is not a “covered entity” or “business associate” under HIPAA with respect to our membership services. Providers who deliver care are responsible for HIPAA compliance within their own practices and systems.

 

5) Security

 

We use industry-standard administrative, technical, and physical safeguards (e.g., encryption in transit and at rest where applicable, access controls, least-privilege permissions, audit logging). While we do not handle PHI, we still protect personal information consistent with applicable laws (e.g., the NY SHIELD Act) and FTC data-security guidance.

 

6) Provider Relationship

 

FixCare is a membership and discount access program. When you receive care from a participating provider, the provider—not FixCare—creates and controls any PHI related to your care. Questions about medical records or HIPAA rights should be directed to your provider.