preloader

Privacy Policy

Effective Date: December 7, 2025.

Curis Diagnostic Solutions, LLC

Phone: 618-207-4568

Email: care@curisdiagnosticsolutions.com

1. Introduction

This Privacy Policy explains how Curis Diagnostic Solutions, LLC (“Curis Diagnostic Solutions”, “we”, “our”, or “us”) collects, uses, shares, and protects information when you use CurisDiagnosticSolutions.com, schedule services, participate in our affiliate or facility partnership programs, or interact with us in any capacity.

We provide mobile diagnostics and phlebotomy, DNA testing, drug and alcohol testing, DOT services, fingerprinting, mobile notary, specimen transport, temporary-location services, onboarding tools for partners, and an affiliates program. Some of these services involve sensitive information, including health-related data.

This Privacy Policy covers general website and business data practices. When we handle Protected Health Information (PHI) as part of health or diagnostic services, we do so under HIPAA. A full HIPAA Notice of Privacy Practices is included in Section 12.

2. Information We Collect

We collect information directly from users, automatically from our website, and from service partners.

2.1 Information You Provide

This may include:

  • Name, phone, email, mailing address
  • Booking and service details
  • Information in inquiry forms, partnership forms, affiliate applications, and employment applications
  • Identity verification details (for fingerprinting, notary, drug testing, DNA testing, and compliance-based services)
  • Payment information (processed by secure third-party processors)
  • Sensitive or regulated information tied to testing or diagnostic services

When this information qualifies as PHI, we handle it under HIPAA rules noted in Section 12.

2.2 Information Collected Automatically

When you use our website, we may collect:

  • IP address
  • Browser and device type
  • Pages viewed, click paths, and time spent
  • Referring URLs
  • General performance and usage analytics

2.3 Information from Third Parties

We may receive information from:

  • Laboratories
  • Identity verification vendors
  • Payment processors
  • Analytics tools (Google Analytics 4, Meta Pixel, hosting providers)
  • Facility partners or affiliates

3. How We Use Information

We use information to:

  • Provide requested services
  • Schedule appointments and handle service communications
  • Maintain chain-of-custody for regulated testing
  • Complete DNA, drug/alcohol, DOT, compliance, and identity verification services
  • Support facility partnerships and affiliates
  • Improve website functionality and user experience
  • Process employment applications
  • Meet legal, regulatory, and reporting obligations
  • Conduct fraud prevention and security monitoring

PHI is used only as allowed by HIPAA, detailed in Section 12.

4. Cookies and Tracking Technologies

(Updated for GA4, Meta Pixel, and similar tools)

Our website uses cookies and tracking tools to operate the site, understand user behavior, and improve our services.

Types of tools may include:

4.1 Essential Cookies

Required for site operation, such as maintaining sessions or enabling form functionality.

4.2 Analytics Cookies

Tools like Google Analytics 4 measure:

  • Website performance
  • Usage patterns
  • Device and interaction data

Analytics data is typically aggregated or pseudonymized.

4.3 Marketing and Advertising Tools

Tools such as Meta Pixel, Google Ads tags, or similar platforms may track:

  • Page views
  • Conversions
  • User interactions that support marketing efforts

We do not use this information to identify individuals but platforms may combine data with their own systems based on their policies.

4.4 User Controls

You can:

  • Adjust cookie settings in your browser
  • Use platform opt-outs (Google Ads, Meta Ads preferences)
  • Use Do Not Track settings (where supported)

Some site features may not function if cookies are disabled.

5. How We Share Information

We may share information with:

  • Laboratories and medical partners
  • Compliance authorities for DOT or court-ordered testing
  • Background, identity, or fingerprinting partners
  • Payment processors
  • IT, hosting, and analytics providers
  • Facility partners or affiliates
  • Government agencies when required
  • Successor organizations in the event of a merger or acquisition

We do not sell personal information.

PHI sharing follows HIPAA rules listed in Section 12.

6. Data Security

We use administrative, physical, and technical safeguards to protect personal data. PHI is stored and transmitted through HIPAA-compliant systems.

No method of transmission or storage is perfectly secure, but we take steps to reduce risk and prevent unauthorized access.

7. Data Retention

We retain data as long as necessary to:

  • Provide services
  • Comply with legal, regulatory, or DOT chain-of-custody requirements
  • Resolve disputes
  • Support operational or financial recordkeeping

Certain health or testing records have mandatory retention periods.

8. Your Rights (General U.S. Rights)

You may:

  • Request access to your information
  • Request correction of inaccurate information
  • Request deletion where allowed
  • Opt out of marketing communications
  • Request limits on certain data uses

Contact us at care@curisdiagnosticsolutions.com to submit a request.

9. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you may have additional rights:

9.1 Right to Know

You may request:

  • Categories of personal data collected
  • Sources of data
  • Business purposes for collection
  • Categories of third parties with whom data is shared
  • Specific pieces of personal information collected

9.2 Right to Delete

You may request deletion of personal information, subject to legal exceptions.

9.3 Right to Correct

You may request corrections of inaccurate information.

9.4 Right to Opt Out of Data Sharing for Cross-Context Behavioral Advertising

If we use advertising cookies or Meta/Google tracking, you may opt out.

9.5 No Sale of Personal Information

We do not sell personal data.

9.6 Non-Discrimination

You will not be penalized for exercising privacy rights.

To submit California-specific requests, email: care@curisdiagnosticsolutions.com.

10. GDPR Notice for International Visitors

Our services are intended for U.S. customers and compliance systems. However, visitors from the European Economic Area (EEA), UK, or Switzerland may have rights under the GDPR.

We may process personal data on the following legal bases:

  • Consent
  • Contract performance
  • Legal obligation
  • Legitimate interests like security, operations, and fraud prevention

GDPR rights may include:

  • Access
  • Correction
  • Deletion
  • Restriction
  • Objection
  • Data portability

If you are in the EEA or UK and wish to exercise these rights, contact us at care@curisdiagnosticsolutions.com.

We do not intentionally market services to EEA residents, and PHI processing is governed by U.S. law and HIPAA.

11. Children’s Privacy

We do not knowingly collect personal information from children under 13 without proper consent. If you believe a child has provided information, contact us and we will remove it.

12. HIPAA Notice of Privacy Practices (NPP)

(Applies only to Protected Health Information in connection with diagnostic or healthcare-related services)

When we provide services involving health information, we act as a Covered Entity or Business Associate under the Health Insurance Portability and Accountability Act (HIPAA). This Notice describes how we may use or disclose Protected Health Information (PHI).

12.1 How We Use and Disclose PHI Without Authorization

We may use or disclose PHI for:

  • Treatmentsuch as diagnostic coordination or lab processing
  • Paymentsuch as billing or verifying service eligibility
  • Healthcare operationssuch as quality control or compliance
  • DOT, OSHA, court-ordered, or legal testing requirements
  • Public health and safety needs
  • Reporting to government agencies

12.2 Uses Requiring Authorization

You must authorize:

  • Most uses of PHI for marketing
  • Disclosure of PHI for non-required third-party uses
  • Sharing PHI beyond the scope of permitted activities

You may revoke authorization at any time.

12.3 Your HIPAA Rights

You have the right to:

  • Access and obtain copies of your PHI
  • Request corrections to inaccurate PHI
  • Request restrictions on certain disclosures
  • Request confidential communications
  • Receive an accounting of disclosures
  • Receive a paper copy of this Notice

To exercise HIPAA rights, email care@curisdiagnosticsolutions.com.

12.4 Our Duties Under HIPAA

We must:

  • Keep PHI private
  • Provide this Notice
  • Inform you of breaches involving unsecured PHI
  • Follow the terms described here unless changed with an updated Notice

13. Changes to This Privacy Policy

We may update this Privacy Policy and HIPAA Notice as needed. The effective date will reflect the most recent update. Material changes may be posted on the website or communicated through email.

14. Contact Us

For privacy or HIPAA questions, contact:

Curis Diagnostic Solutions, LLC
Phone: 618-207-4568
Email: care@curisdiagnosticsolutions.com