Privacy Policy

Effective Date: December 5, 2025
Website: www.doctorchadlarson.com
Owner: The Adapt Lab / Dr. Chad Larson, NMD, DC

This Privacy Policy (“Policy”) describes how we collect, use, disclose, and safeguard personal information obtained through www.doctorchadlarson.com (the “Site”) and through our telemedicine, clinical, educational, and coaching services (collectively, the “Services”).

By accessing or using the Site or Services, you agree to the practices described in this Policy.

1. Scope of This Policy

This Policy applies to:

  • Visitors to our website
  • Patients receiving telemedicine or in-person care
  • Subscribers to our email list
  • Users who register for programs, courses, or services
  • Individuals who contact us through forms, patient portals, or messaging platforms

This Policy complies with applicable U.S. federal and state privacy laws, including HIPAA (if and where applicable), the California Consumer Privacy Act (CCPA/CPRA), and all privacy laws in jurisdictions where we provide telemedicine services.

2. HIPAA Notice

If you become a patient of our clinical practice, some of the information we collect is considered Protected Health Information (“PHI”) under the Health Insurance Portability and Accountability Act (“HIPAA”).

When we act as a healthcare provider or create/maintain medical records, we follow applicable HIPAA Privacy and Security Rules.
Where HIPAA applies, PHI is used and disclosed only as permitted by law.

If you are interacting only with our website, newsletters, or non-clinical programs, HIPAA may not apply, but we still protect your information using HIPAA-level safeguards.

A separate HIPAA Notice of Privacy Practices will be provided to patients upon establishing care.

3. Information We Collect

We may collect the following categories of information:

A. Personal Information

  • Name
  • Email address
  • Phone number
  • Mailing/billing address
  • Date of birth
  • Account login credentials (if applicable)


B. Protected Health Information (PHI) (for patients)

  • Medical history and symptoms
  • Treatment plans
  • Laboratory results
  • Diagnostic information
  • Communications with your provider
  • Prescription history
  • Insurance information (if applicable)


C. Payment Information

  • Credit/debit card numbers
  • Billing address
  • Transaction records
    (Processed through secure, PCI-compliant vendors; we do not store full credit card numbers.)


D. Technical Data

Automatically collected information may include:

  • IP address
  • Browser type
  • Device identifiers
  • Pages visited
  • Cookies and tracking technologies
  • Referring website


E. Communications

  • Emails
  • Contact form submissions
  • Patient portal messages
  • Telemedicine chat logs (if applicable)

4. How We Use Your Information

We use personal and medical information for purposes including:

A. Providing Healthcare and Telemedicine Services

  • Diagnosis and treatment
  • Medical record creation and maintenance
  • Telehealth video visits
  • Secure messaging
  • Scheduling and appointment reminders


B. Administrative Purposes

  • Payment processing
  • Patient portal access
  • Customer service
  • Record retention
  • Compliance with legal, regulatory, or licensing requirements


C. Website and Marketing

  • Email newsletter delivery
  • Providing educational content
  • Improving website functionality
  • Analytics and performance monitoring
  • Showing you information relevant to your interests

You may unsubscribe from marketing emails at any time.

5. How We Share Information

We do not sell, rent, or trade your personal information.
We may share information only as follows:

A. Healthcare Operations (HIPAA-Permitted Sharing)

  • Laboratories
  • Pharmacies
  • Medical consultants
  • Telehealth technology vendors
  • Electronic Health Record (EHR) providers


B. Business Associates

We work with HIPAA-compliant partners when PHI is involved.
These partners are contractually required to:

  • Keep information confidential
  • Use it only to perform requested services
  • Maintain security safeguards


C. Technology and Support Providers

For site hosting, email delivery, analytics, and payment processing.

D. Legal Requirements

We may disclose information if required to:

  • Comply with the law
  • Respond to subpoenas or legal processes
  • Protect the safety of patients or the public
  • Defend our legal rights

6. Telemedicine Privacy and Security

Telemedicine visits are conducted using secure, encrypted platforms that meet applicable legal requirements.
We implement:

  • Password-protected access
  • Encrypted communication channels
  • Secure storage of telehealth records
  • Provider authentication
  • User identity verification where appropriate

We do not record video visits unless legally required and with your explicit consent.

7. Your Privacy Rights

Depending on your state of residence, you may have the right to:

  • Access your personal or medical information
  • Request correction of inaccuracies
  • Request deletion (where allowed by law)
  • Request restriction of certain uses or disclosures
  • Receive an accounting of disclosures (HIPAA)
  • Opt out of marketing communications
  • Limit the use of sensitive personal information (CCPA/CPRA residents)

To exercise these rights, contact: in**@*********ab.com

8. Cookies and Tracking Technologies

We use cookies and similar tools to:

  • Improve user experience
  • Maintain site functionality
  • Remember your preferences
  • Perform analytics

You may disable cookies in your browser, though some features may not function properly.

9. Data Security

We maintain administrative, technical, and physical safeguards to protect personal and health information, including:

  • Encrypted data storage
  • Secure servers and firewalls
  • Access controls and authentication
  • Staff training on privacy and security
  • HIPAA-compliant systems for PHI

Despite our efforts, no system is completely secure; we cannot guarantee absolute security.

10. Data Retention

We retain:

  • Medical records for the period required by state and federal laws
  • Personal and administrative records as long as necessary to fulfill the purposes outlined in this Policy

When information is no longer required, we dispose of it securely.

11. Minors

We do not knowingly collect or maintain information from minors without parental or guardian consent as required by law.
Telemedicine services for minors are provided only with proper authorization.

12. Third-Party Websites

Our Site may contain links to outside websites.
We are not responsible for the privacy practices of those sites.
We recommend reviewing their policies before providing personal information.

13. Changes to This Policy

We may update this Policy periodically.
Updates will be posted on this page with a revised “Effective Date.”
Continued use of the Site or Services means you accept these changes.

14. Contact Information

If you have questions about this Policy, your data, or your privacy rights, please contact us:

Email: in**@*********ab.com
Mail: The Adapt Lab, 215 S Highway 101, Suite 109, Solana Beach, CA 92075
Phone: 858-209-2400

(858) 209-2400

Verify Approval for www.doctorchadlarson.com