top of page

Privacy Policy

Last revised: November 11, 2025

 

1. Introduction
We at Nunez Medical Services P.C. (“we,” “us,” “our”) respect your privacy and are committed to protecting your personal and health‐related information. This Privacy Policy explains how we collect, use, disclose, and protect your information when you access our website at https://drrandy.com (the “Site”) or use our telehealth Services (the “Services”).

 

2. What Information We Collect
We may collect the following types of information:

  • Personal identifiers (e.g., name, address, email, phone number)
     

  • Health and wellness information, medical history, weight, lifestyle habits, treatment plans (Protected Health Information, PHI) when you use our Services
     

  • Usage data from the Site (e.g., IP address, browser type, device), where applicable
     

  • Communications preferences and consent choices
     

3. How We Use Your Information
We use your information for the following purposes:

  • To provide telehealth services (medical weight loss, lifestyle/habit‐formation, wellness guidance)
     

  • To manage and maintain your account
     

  • To send you email, SMS/text messages, and phone calls as described in our Terms of Use (appointment scheduling, wellness/service updates)
     

  • For internal operations, security, and compliance
     

  • To comply with legal, regulatory or professional requirements

4. Legal & Regulatory Compliance
We are a “covered health care provider” under the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) and we apply the HIPAA Privacy Rule and Security Rule to your PHI. telehealth.hhs.gov We follow federal and applicable New Jersey and New York laws regarding telehealth and data protection.
You have the right to access, amend and obtain a copy of your PHI, and we apply the “minimum necessary” standard in disclosures. AAAAI+1

 

5. Telehealth & Remote Communications
When you use our Services remotely:

  • We implement reasonable safeguards to protect your privacy during audio/video or messaging sessions. hhs.gov+1
     

  • You should use a private, secure location and personal device when possible. hhs.gov+1
     

  • We use secure platforms and business‐associate agreements for technology vendors, as required by HIPAA.
     

6. Communications & Marketing
By consenting (via form or intake) you allow us to send you SMS texts, emails and phone calls as outlined in our Terms of Use. You may opt out of SMS by replying “STOP”, unsubscribe from emails via the link provided, and request cessation of phone calls by contacting us. Consent is not conditioned on receiving care.

 

7. Disclosure of Your Information
We may disclose your information:

  • To your healthcare provider(s) involved in your care
     

  • To service vendors (e.g., telehealth platform) under business‐associate agreements
     

  • When required by law (e.g., public health reporting, court order)
     

  • With your explicit authorization
     

We do not sell your PHI or misuse it for marketing in violation of applicable laws.

 

8. Security of Your Information
We deploy administrative, physical and technical safeguards to protect your information (encryption, access controls, audit logs). However no system is 100% secure; transmission of information is at your own risk.

 

9. Data Retention
We retain your health information as required by law and our internal policies. After retention period we may securely dispose of or de‐identify data.

 

10. Your Rights
You may have rights under federal or state law, including:

  • To access your PHI
     

  • To correct or amend your information
     

  • To request restriction of certain uses/disclosures
     

  • To receive an accounting of disclosures
     

  • To withdraw consent for communications (SMS, email, calls)
    State laws may grant further rights (e.g., deletion or portability) depending on your location.

11.Information Sharing

We do not sell, rent, or license your personal information. We may share information with trusted service providers who support our operations (such as telehealth platforms, billing partners, or technical vendors), but only to the extent necessary to deliver our services and in compliance with HIPAA.

Mobile opt-in, SMS consent, and phone numbers collected for SMS communication purposes will not be shared with any third party or affiliates for marketing purposes.

We may disclose information if required by law, regulation, court order, or to protect the rights and safety of our patients and practice.

12. Children’s Privacy
Our Services are intended for adults or minors under guardianship. If you are a legal guardian for a minor you must provide consent accordingly. We do not knowingly collect personal information from children under age 13 without parental consent.

 

13. International Users
If you access the Site or Services from outside the United States you do so at your own risk. U.S. laws may not provide protections outside the U.S.

 

14. Changes to This Privacy Policy
We may change this Privacy Policy at any time by posting the revised version on our Site. Your continued use of the Site or Services after changes constitutes your acceptance of the new policy.

 

15. Contact Us
If you have questions about this Privacy Policy or wish to exercise your rights, please contact us at:
Address: 15 W Railroad Ave, Tenafly, NJ 07670
Phone: 646-290-6735
Email: admin@drrandy.com

© 2025 Nunez Medical Services P.C. All rights reserved.

bottom of page