Privacy Policy

Pure IV 

Effective Date: March 26, 2026 | Last Updated: March 26, 2026 

1. Introduction

Pure IV (“we,” “our,” or “us”) is a physician-owned mobile IV therapy company that provides intravenous hydration and vitamin infusion services. We are committed to protecting your privacy and ensuring the security of your personal information, including any Protected Health Information (“PHI”) we collect, use, or maintain.


This Privacy Policy outlines how we collect, use, disclose, and safeguard your information when you visit our website (www.pureiv.com), utilize our mobile IV therapy services, or interact with us in any way. 



Pure IV currently operates across multiple states, including Arizona, Utah, Nevada, Colorado, Tennessee, New Mexico, Texas, Idaho, and Montana. This Privacy Policy applies to all services we provide in every jurisdiction we serve. 


By accessing our website, scheduling an appointment, or using our services, you acknowledge and agree to the practices described in this Privacy Policy. If you do not agree, please do not use our website or services. 

2. HIPAA Compliance and Protected Health Information (PHI)

As a healthcare provider that collects, stores, and transmits Protected Health Information, Pure IV is committed to full compliance with the Health Insurance Portability and Accountability Act of 1996 (HIPAA), the HITECH Act, and all applicable federal and state privacy laws governing PHI. This includes compliance with the HIPAA Privacy Rule, Security Rule, and Breach Notification Rule. 


2.1 What is Protected Health Information (PHI)? 



PHI is individually identifiable health information that is created, received, maintained, or transmitted in connection with the provision of healthcare services. This includes, but is not limited to: 

  • Your name, address, date of birth, phone number, and email address when associated with health information 
  • Medical history, current medications, allergies, and health conditions disclosed during your intake assessment 
  • Information collected during your Good Faith Exam (GFE) and pre-treatment medical screening 
  • Details about IV therapy treatments administered, including treatment type, date, and clinical notes 
  • Billing and payment information associated with your treatment 


2.2 How We Use PHI 


We may use and disclose your PHI for the following purposes without your written authorization, as permitted by HIPAA: 

  • Treatment: To provide, coordinate, and manage your IV therapy services, including conducting your Good Faith Exam, coordinating care with our licensed Nurse Practitioners (NPs) and Medical Directors (MDs), and administering treatments. 
  • Payment: To process payments, submit claims, and manage billing for services rendered. 
  • Healthcare Operations: To conduct quality assessments, staff training, compliance audits, and improve service delivery. 
  • As Required by Law: To comply with federal, state, or local laws, regulations, court orders, or legal proceedings. 
  • Public Health Activities: To report to public health authorities for preventing or controlling disease, injury, or disability as permitted by law. 
  • Health and Safety: To prevent or lessen a serious and imminent threat to the health or safety of a person or the public. 


2.3 Uses and Disclosures Requiring Your Written Authorization 


For uses and disclosures of your PHI not described above, we will obtain your written authorization before using or disclosing your PHI. You have the right to revoke your authorization at any time by submitting a written request to us, except to the extent that we have already taken action in reliance on your authorization. 

3. Information We Collect 

3.1 Personal Information 


We collect personal information that you voluntarily provide when you: 

  • Schedule an Appointment: Your name, contact details (phone number, email address), date of birth, service location address, and relevant medical history. 
  • Complete a Health Intake Form: Medical history, current medications, allergies, health conditions, pregnancy status, and other health-related details necessary for safe IV therapy administration. 
  • Undergo a Good Faith Exam (GFE): Clinical information collected during your 5-minute Good Faith Exam, which is conducted by a licensed Nurse Practitioner or Medical Director and is valid for one year. A $5 medical review fee applies. 
  • Contact Us: Your name, email address, phone number, and any information you include in your communication. 
  • Subscribe to Our Newsletter: Your email address for marketing communications. 


3.2 Automatically Collected Information 


When you visit our website, we may automatically collect certain technical information, including: 

  • IP address 
  • Browser type and version 
  • Device type and operating system 
  • Pages visited, time spent on pages, and navigation patterns 
  • Referring website or search terms 
  • Date and time of your visit 


This information is used to analyze website performance, improve user experience, and ensure security. This automatically collected data does not constitute PHI unless it is combined with individually identifiable health information. 

4. How We Protect Your Information 

4.1 Administrative Safeguards 


We maintain policies and procedures designed to protect the privacy and security of your information. Our workforce members receive training on privacy and security practices, and access to PHI is limited to authorized personnel who require it to perform their job functions. 



4.2 Technical Safeguards 

We implement technical measures to protect electronic PHI (ePHI), including encryption of data in transit and at rest, secure user authentication, access controls, and audit logging of system activity. 


4.3 Physical Safeguards 


As a mobile healthcare provider, we implement physical safeguards to protect PHI during treatment, including secure handling and disposal of any physical materials containing patient information. 

5. HIPAA-Compliant Platforms and Business Associate Agreements (BAAs)

Pure IV uses HIPAA-compliant technology platforms to collect, store, process, and transmit PHI. We have executed Business Associate Agreements (BAAs) with each of these vendors to ensure they are contractually obligated to safeguard your PHI in accordance with HIPAA requirements. These platforms include: 



  • Acuity Scheduling: Used for appointment scheduling. A signed BAA is in place to protect any personal and health-related information collected during the booking process. 
  • IntakeQ: Used for patient intake forms and health assessments. IntakeQ is a HIPAA-compliant platform with a signed BAA, ensuring all medical history, health questionnaires, and consent forms are securely collected, encrypted, and stored. 
  • Microsoft Teams: Used for internal team communication and coordination of patient care. A signed BAA is in place to protect any PHI discussed or shared through the platform. 
  • Spruce Health: Used for secure patient-provider communication, including text messaging and telehealth interactions. Spruce Health is a HIPAA-compliant platform with a signed BAA to protect all patient communications. 


We regularly evaluate our technology vendors to ensure they maintain HIPAA compliance. Any third-party service provider with access to PHI is required to enter into a BAA with Pure IV before being granted access to any patient information. 

6. Sharing Your Information 

We do not sell, rent, or trade your personal information or PHI to third parties. We may share your information only under the following circumstances: 



  • Service Providers with BAAs: Third-party vendors who perform services on our behalf and have executed Business Associate Agreements, as described in Section 5. 
  • Payment Processors: To facilitate secure payment transactions for services rendered. Payment processors handle only payment-related data and are subject to PCI-DSS compliance standards. 
  • Legal Requirements: When required by law, regulation, court order, subpoena, or government investigation, we may disclose your information as necessary. 
  • Public Health and Safety: To public health authorities or other entities as required or permitted by law for public health activities, reporting adverse events, or preventing serious threats to health or safety. 
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the transaction. We will notify you of any such change and ensure your information remains protected under terms consistent with this Privacy Policy. 

7. Your Rights Under HIPAA

As a patient, you have the following rights regarding your PHI under HIPAA: 



  • Right to Access: You have the right to inspect and obtain a copy of your PHI that we maintain in our records. We will respond to your request within 30 days (or as required by applicable state law). 
  • Right to Amend: You may request that we amend your PHI if you believe it is inaccurate or incomplete. We may deny your request under certain circumstances as permitted by HIPAA, and we will provide a written explanation if we do so. 
  • Right to an Accounting of Disclosures: You may request a list of certain disclosures we have made of your PHI for purposes other than treatment, payment, or healthcare operations. 
  • Right to Request Restrictions: You may request restrictions on how we use or disclose your PHI for treatment, payment, or healthcare operations. While we will consider your request, we are not required to agree to all restrictions except where disclosure is to a health plan for payment purposes and you have paid for the service in full out of pocket. 
  • Right to Request Confidential Communications: You may request that we communicate with you about your health information through alternative means or at alternative locations (for example, by requesting we contact you only at a specific phone number or mailing address). 
  • Right to a Copy of This Privacy Policy: You may request a paper copy of this Privacy Policy at any time. 
  • Right to File a Complaint: If you believe your privacy rights have been violated, you may file a complaint with us directly or with the U.S. Department of Health and Human Services Office for Civil Rights (OCR). We will not retaliate against you for filing a complaint. 


To exercise any of these rights, please contact us using the information provided in Section 14 of this Privacy Policy. 

8. Additional Rights by Jurisdiction

Depending on the state in which you reside or receive services, you may have additional privacy rights under state law. Pure IV complies with all applicable state privacy laws in every jurisdiction we serve, including but not limited to: 



  • Texas: The Texas Medical Records Privacy Act and the Texas Identity Theft Enforcement and Protection Act provide additional protections for medical records and personal information. 
  • Colorado: The Colorado Privacy Act (CPA) provides Colorado residents with rights to access, correct, delete, and opt out of the sale of personal data and targeted advertising. 
  • Utah: The Utah Consumer Privacy Act (UCPA) provides certain consumer data rights, including the right to access and delete personal data. 
  • Nevada: Nevada law provides residents with the right to opt out of the sale of personal information. 
  • Montana: Montana law provides additional protections for personal information and requires reasonable security measures. 


If you have questions about your specific rights under your state’s privacy laws, please contact us. 

9. Breach Notification 

In the event of a breach of unsecured PHI, Pure IV will comply with all notification requirements under the HIPAA Breach Notification Rule and applicable state breach notification laws. This includes notifying affected individuals without unreasonable delay and no later than 60 days after discovery of the breach, notifying the U.S. Department of Health and Human Services (HHS), and, where required, notifying prominent media outlets if the breach affects 500 or more individuals in a single state or jurisdiction. 

10. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance your browsing experience and analyze website performance. These include: 



  • Essential Cookies: Necessary for basic website functionality, such as page navigation and access to secure areas. 
  • Analytics Cookies: Used to collect anonymous information about how visitors use our website, helping us improve content and user experience. 
  • Marketing Cookies: Used to deliver relevant advertisements and track the effectiveness of marketing campaigns. 


You can control or disable cookies through your browser settings. Please note that disabling cookies may affect the functionality of our website. We do not use tracking technologies to collect PHI through our website. Any health-related information is collected only through our HIPAA-compliant intake platforms (IntakeQ, Spruce Health) and not through website cookies or analytics tools. 


In accordance with recent HHS guidance on online tracking technologies, we do not use third-party tracking technologies (such as Meta Pixel or Google Analytics) on any pages where PHI is collected or transmitted. Any tracking technologies used on informational pages of our website do not have access to PHI. 

11. Third-Party Links

Our website may contain links to third-party websites, including social media platforms, health information resources, and partner sites. We are not responsible for the privacy practices, content, or security of any external websites. We encourage you to review the privacy policies of any third-party sites before sharing personal information. 

12. Children’s Privacy 

Pure IV provides services to minors (children and adolescents) only with the informed consent and authorization of a parent or legal guardian. A parent or legal guardian must be present during treatment, provide accurate medical history, and complete all required consent forms on behalf of the minor. We do not knowingly collect personal information directly from children without parental consent. If we become aware that we have collected information from a minor without proper parental authorization, we will take steps to delete such information promptly. 

13. Changes to This Privacy Policy 

We may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or regulatory guidance. Any changes will be posted on this page with an updated “Effective Date.” We encourage you to review this Privacy Policy regularly to stay informed about how we protect your information. Continued use of our website or services after changes are posted constitutes your acceptance of the revised policy. 

14. Contact Us 

If you have any questions, concerns, or requests regarding this Privacy Policy, your PHI, or your rights under HIPAA or applicable state law, please contact us: 

Pure IV 

Phone: (833) 688-1299 

Email: info@pureiv.com 

Website: www.pureiv.com 

 

To file a complaint with the U.S. Department of Health and Human Services Office for Civil Rights: 

U.S. Department of Health and Human Services 

Office for Civil Rights 

Website: www.hhs.gov/ocr/privacy/hipaa/complaints 

Phone: 1-877-696-6775