Body Tonic Rx®

Legal & Compliance

Policies & Patient Disclosures

Body Tonic RX operates in compliance with applicable state and federal regulations governing telemedicine, online pharmacies, and patient privacy.

Privacy Policy

Effective: January 1, 2026

Body Tonic LLC ("Body Tonic RX," "we," "us," or "our") respects your privacy. This Privacy Policy explains what information we collect through mybodytonic.com (the "Site") and our telehealth services, how we use and disclose it, and the choices you have. Protected Health Information ("PHI") collected as part of telehealth services is also governed by our HIPAA Notice of Privacy Practices.

1. Information we collect

  • Identifying information: name, date of birth, address, phone, email, government-issued ID where required.
  • Health information: medical history, medications, allergies, symptoms, lab results, photographs, and provider notes.
  • Payment information: processed by PCI-compliant third-party processors; we do not store full card numbers.
  • Technical data: IP address, device, browser, and usage analytics, including cookies.

2. How we use information

  • To provide telehealth consultations, prescribe and dispense medications, and manage care.
  • To verify identity, eligibility, and state of residence.
  • To communicate appointment reminders, refills, and clinical updates.
  • To improve the Site and our services and to comply with legal obligations.

3. How we share information

  • Licensed providers and clinical staff treating you.
  • Compounding and 503A/503B pharmacies dispensing medications.
  • Laboratory partners conducting ordered diagnostic testing.
  • Payment processors, shipping carriers, secure messaging, and EHR vendors under signed Business Associate Agreements.
  • Government, law-enforcement, or regulatory authorities when required by law.

We do not sell PHI. We do not use PHI for third-party advertising.

4. Data security

We use administrative, technical, and physical safeguards including TLS encryption in transit, encryption at rest, role-based access controls, and audit logging. No method of transmission over the internet is 100% secure.

5. Your rights (California, Texas & other state residents)

Depending on your state, you may request access, correction, deletion, portability, or a copy of your records, opt out of certain marketing, and lodge complaints. California residents have rights under the CCPA/CPRA, and Texas residents have rights under the Texas Data Privacy and Security Act, including the right to opt out of targeted advertising, the sale of personal information, and certain profiling.

Do Not Sell or Share My Personal Information

We do not sell Protected Health Information, and we do not use PHI for third-party advertising. To submit a request to opt out of any sale or sharing of personal information for cross-context behavioral advertising, or to exercise any other state privacy right, email privacy@mybodytonic.com with the subject line "Privacy Request" and the state in which you reside. We will verify your identity and respond within the timeframe required by applicable law.

6. Children

The Site and telehealth services are not directed to individuals under 18. We do not knowingly collect data from minors.

7. Changes

We will post material changes to this policy on this page with an updated effective date.

Contact

Body Tonic LLC, 300 Beardsley Lane D-102, Austin, TX 78746 · privacy@mybodytonic.com · 512-383-5204

Get in touch

Questions? We'd love to hear from you.

Reach out about treatments, telehealth, or scheduling — a member of our team will be in touch shortly.