Privacy Policy

CoreMD Clinic

Effective Date: December 21, 2025

CoreMD Clinic (“CoreMD,” “we,” “our,” or “us”) is committed to protecting the privacy, confidentiality, and security of personal and personal health information in accordance with applicable Canadian privacy legislation, professional medical standards, and regulatory requirements.

This Privacy Policy outlines how we collect, use, disclose, store, and protect personal information, including personal health information, in compliance with the Personal Information Protection and Electronic Documents Act (PIPEDA), Ontario privacy laws, and standards set by the College of Physicians and Surgeons of Ontario (CPSO).

1. Scope of This Policy

This Privacy Policy applies to:

  • Patients and prospective patients of CoreMD Clinic
  • Users of our website and digital platforms
  • Participants in virtual care, educational programs, and clinical services

2. Information We Collect

We collect only the information necessary to provide safe, ethical, and effective medical care.

a) Personal Information

  • Name, date of birth, contact details
  • Government-issued identification (where legally required)
  • Billing and payment information

b) Personal Health Information

  • Medical history and clinical assessments
  • Laboratory results and diagnostic reports
  • Medication history and prescriptions
  • Consultation notes and care plans

c) Technical & Website Data

  • IP address, browser type, device information
  • Website usage data and analytics (non-clinical)

3. Purpose of Collection

Your information is collected and used for:

  • Delivering physician-led medical care
  • Clinical decision-making and continuity of care
  • Communication regarding appointments, follow-ups, and care plans
  • Legal, regulatory, and professional obligations
  • Billing and administrative purposes

We do not sell, trade, or commercially exploit personal health information.

4. Consent

By engaging with CoreMD Clinic and using our services, you provide informed consent for the collection, use, and disclosure of your information as described in this policy.

You may withdraw consent at any time, subject to legal, regulatory, and clinical obligations that may require retention of certain records.

5. Disclosure of Information

Your information may be disclosed only when necessary and permitted, including:

  • To healthcare professionals directly involved in your care
  • To laboratories, pharmacies, or diagnostic services (with consent)
  • To regulatory bodies when legally required
  • In situations involving risk of serious harm, as permitted by law

All disclosures follow minimum necessary and need-to-know principles.

6. Data Storage & Security

CoreMD Clinic employs administrative, technical, and physical safeguards to protect information, including:

  • Secure Canadian-based servers (where applicable)
  • Encrypted data transmission
  • Role-based access controls
  • Regular system audits and updates

Access to personal health information is limited to authorized personnel only.

7. Virtual Care & Digital Platforms

CoreMD Clinic provides care through secure telemedicine platforms that comply with Canadian privacy and medical standards.

While no system is completely risk-free, we take all reasonable steps to mitigate privacy risks associated with virtual care.

8. Retention of Records

Medical records are retained in accordance with:

  • CPSO requirements
  • Ontario regulations
  • Professional and legal standards

Records are securely destroyed when retention is no longer required.

9. Your Rights

You have the right to:

  • Access your personal and health information
  • Request corrections to inaccurate information
  • Receive information about how your data is used

Requests must be submitted in writing and may be subject to identity verification.

10. Cookies & Website Analytics

Our website may use cookies and analytics tools to improve functionality and user experience. These tools do not access or store personal health information.

You may adjust your browser settings to disable cookies.

11. Privacy Breaches

In the event of a privacy breach involving personal health information, CoreMD Clinic will:

  • Investigate promptly
  • Notify affected individuals as required by law
  • Report to regulatory authorities when mandated

12. Changes to This Policy

This Privacy Policy may be updated periodically to reflect changes in law, technology, or clinical practice. The most current version will always be available on our website.

13. Contact Information

For privacy-related questions, concerns, or requests:

Privacy Officer
CoreMD Clinic
📧 Email: hello@coreMDclinic.ca
📍 Ontario, Canada

CoreMD Clinic
Physician-led. Evidence-based. Privacy-first.

Scroll to Top