top of page

Privacy Policy

1. Purpose of This Policy

This Privacy Policy describes how Simply Lose collects, uses, discloses, and protects your information when you visit www.simplylose.com or use our services through the patient portal at https://patients.simplylose. Your privacy is important to us. This Policy is designed to comply with the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and other applicable U.S. privacy laws. By using our website and services, you consent to the practices described in this Policy.

2. Scope

This Privacy Policy applies to:

  • Visitors and users of www.simplylose.com

  • Individuals registering for or receiving care through our patient portal at https://patients.simplylose.com, which is securely powered and hosted by Portrait, a HIPAA-compliant platform under a Business Associate Agreement (BAA) with Simply Lose.

  • All information submitted through digital intake forms, chats, video consultations, and secure messaging with our medical providers.

3. Types of Information We Collect

a. Personal Information

​

  • Full name, date of birth, contact information

  • State and location (for licensure compliance)

  • Billing and payment details (via secure processor)

​

b. Protected Health Information (PHI)

​

  • Symptoms, medical history, medications, allergies

  • Photos, documents, or chat responses you submit

  • Clinical notes, diagnoses, and prescriptions issued

​​

c. Technical Information

​

  • IP address and device information

  • Site usage patterns (via cookies and analytics)

  • Browser type and referral URLs

  • We collect this data directly from you, from your use of the Site, and through the Portrait platform when you engage with your provider.

4. How We Use Your Information

We use your data to:

​

  • Deliver secure telemedicine consultations

  • Identify you and confirm your eligibility for care

  • Facilitate prescriptions, if clinically appropriate

  • Communicate with you via secure messaging or email

  • Provide customer support and follow-ups

  • Process payments for services rendered

  • Maintain accurate medical records

  • Comply with legal, regulatory, and security obligations

  • Improve our services and technology infrastructure

​

We do not sell your information to third parties.

5. Patient Portal and Secure Communication

simplylose.com delivers care via a secure, HIPAA-compliant patient portal, operated by our technology partner Portrait. This white-labeled platform is accessible at https://patients.simplylose.com and supports:


​

  • Encrypted chat-based consultations

  • Intake forms and prescription workflows

  • Clinical messaging with your provider

  • Secure storage of health records

​​

Portrait is bound by a signed BAA and may access your data only for technical administration under HIPAA regulations. All data entered into the portal is encrypted and audit-logged.

6. How We Share Your Information

We may share your data only as permitted by HIPAA and other applicable laws:


​

  • With your assigned or requested healthcare provider

  • With Portrait, our patient portal provider, for secure platform operations

  • With pharmacies or labs to fulfill care plans

  • With regulatory authorities when legally required

  • With payment processors (e.g. Stripe, Square) for transaction processing

  • With technology vendors who support secure infrastructure (under signed BAAs)

​

Your data is never sold or shared for advertising purposes.

7. Payment Information and Cash-Pay Model

Simply Lose operates on a 100% cash-pay model. We do not accept insurance, Medicare, Medicaid, or any third-party payers. All services must be paid in full at the time of booking.


​

  • We use Stripe, a PCI-DSS compliant payment processor.

  • No financial information is stored on our servers.*******

  • Refunds may only be issued before a consultation begins, or if a provider determines your case is not appropriate for telehealth.

8. Your Rights Under HIPAA

If you are a patient receiving care through our platform, you have the right to:

​

  • Access your medical records Request amendments to your records

  • Receive an accounting of disclosures

  • Request restrictions on certain uses or disclosures

  • Request confidential communications

  • File a complaint with the U.S. Department of Health & Human Services

​

To exercise these rights, email us at success@simplylose.com

9. Data Retention

We retain PHI and user data in accordance with federal and state medical record retention laws. If you no longer wish to use our services and would like your account or data removed (where allowable), please submit a request in writing.

10. Data Security

We take extensive precautions to safeguard your information:

​

  • All communications are encrypted (TLS/SSL)

  • PHI is stored securely using HIPAA-compliant cloud infrastructure

  • Access is limited to authorized personnel only

  • Audit trails, automatic logouts, and breach monitoring are in place

​

Despite best efforts, no system is 100% immune to cyber threats. We encourage users to protect their own login credentials.

11. Cookies and Website Analytics

Our main website uses cookies and Google Analytics to measure site

usage and improve functionality. These tools may collect:

​

  • Non-identifiable browsing data

  • Referring website URLs

  • Device type and region

​

You can opt out by adjusting your browser settings. No PHI is shared with analytics providers.

12. Children’s Privacy

Simply Lose is committed to protecting the privacy of all users, including minors. Our services are primarily intended for individuals aged 18 and older. However, we also provide care to minors under 18 years of age with documented parental or legal guardian consent, in accordance with applicable federal and state laws.

 

We do not knowingly collect personal information from children under the age of 13 without verified parental consent, in compliance with the Children’s Online Privacy Protection Act (COPPA) and HIPAA.

​

When a minor engages with our services under a parent or guardian’s supervision:

​

  • We require a signed Parental Consent Form for Medical Treatment

  • The minor’s personal and health information is treated as Protected Health Information (PHI) and safeguarded under HIPAA

  • Only authorized individuals, such as the parent/guardian or healthcare provider, may access or request updates to the minor’s records

​

If we discover that a child under 13 has submitted information without proper consent, we will delete that information promptly and take steps to ensure compliance. If you are a parent or guardian and believe that your child’s information has been collected in error or without your authorization, please contact us immediately at clinicalsupport@simplylose.com

13. Third-Party Websites

Our site may contain links to external websites or platforms (e.g., LinkedIn, pharmacies, social media). This Privacy Policy does not govern those third-party platforms. You should review their privacy policies before interacting with them.

14. International Users

Our services are available only to users physically located in the United States. If you are accessing the Site from outside the U.S., you do so at your own risk and consent to data transfer to the United States.

15. Updates to This Policy

We reserve the right to update this Privacy Policy at any time. All changes will be posted here, and your continued use of the Site will indicate your acceptance of those changes.

16. Contact Us

If you have any questions, concerns, or requests about this Privacy Policy or your data, please contact:

​

Simply Lose

500 Buford Hwy

Suite 1001-211

Suwanee, GA  30024

(404)664-1298

success@simplylose.com

Simply Lose Tirzepatide

500 Buford Highway

Suite 1001-211

Suwanee, GA  30024

404-664-1298

Privacy Policy

©2025 Simply Lose. All rights reserved.

  • Instagram
  • Facebook
bottom of page