Back to Home

Cookie Policy

Last Updated: 09/01/2025

This policy covers cookies used in our HIPAA-compliant healthcare platform

1. Introduction

Welcome to MEDVANE's Cookie Policy. This policy explains how we use cookies and similar technologies on our healthcare management platform at medvane.net.

As a HIPAA-compliant healthcare platform, we take special care to protect Protected Health Information (PHI) and ensure our cookie usage complies with healthcare privacy regulations including HIPAA, GDPR, and other international healthcare data protection laws.

By using MEDVANE, you agree to our use of cookies as described in this policy and our Privacy Policy.

2. What Are Cookies?

Cookies are small text files stored on your device (computer, tablet, or mobile) when you visit our website. They help us provide a better user experience, maintain security, and ensure compliance with healthcare regulations.

We also use similar technologies such as web beacons, local storage, and session storage to enhance functionality and security.

3. Types of Cookies We Use

Strictly Necessary Cookies

These cookies are essential for our healthcare platform to function and cannot be disabled. They ensure security and basic functionality.

  • Authentication Cookies: Keep you logged in securely
  • Session Cookies: Maintain your session while using the platform
  • Security Cookies: Prevent fraudulent access and ensure data protection
  • CSRF Protection: Protect against cross-site request forgery attacks
  • Load Balancing: Direct you to the appropriate server

Legal Basis: Legitimate interest for platform security and functionality

Functional Cookies

These cookies enhance your experience and remember your preferences.

  • User Preferences: Remember your settings and preferences
  • Language Settings: Store your preferred language
  • Theme Preferences: Remember your display preferences
  • Cookie Consent: Remember your cookie preferences
  • Accessibility Settings: Store accessibility preferences

Legal Basis: Legitimate interest for enhanced user experience

Analytics Cookies

These cookies help us understand how our platform is used to improve our services. No PHI is collected through analytics.

  • Google Analytics: Website usage statistics and performance metrics
  • Google Tag Manager: Manage tracking and analytics tags
  • Performance Monitoring: Track application performance and errors
  • User Journey Analytics: Understand user flow (anonymized)
  • Feature Usage: Track which features are most used

Legal Basis: Consent (optional) - You can opt out of these cookies

Marketing Cookies

These cookies are used for advertising and marketing purposes. They do not process any healthcare data.

  • Google Ads: Track conversions and ad performance
  • Facebook Pixel: Track social media advertising effectiveness
  • Remarketing: Show relevant ads to previous visitors
  • Conversion Tracking: Measure marketing campaign success
  • A/B Testing: Test different marketing approaches

Legal Basis: Consent (optional) - You can opt out of these cookies

Healthcare-Specific Cookies

These cookies are essential for HIPAA compliance and healthcare operations.

  • Audit Trail Cookies: Track access to PHI for compliance
  • Role-Based Access: Ensure proper access controls
  • Session Timeout: Automatically log out inactive users
  • Data Encryption Keys: Secure PHI transmission
  • Compliance Monitoring: Track regulatory compliance

Legal Basis: Legal obligation for HIPAA compliance

4. Third-Party Cookies

We work with trusted third-party services that may set their own cookies:

ServicePurposePrivacy Policy
Google AnalyticsWebsite analytics and performanceGoogle Privacy Policy
Google Tag ManagerTag and analytics managementGoogle Privacy Policy
Google AdsAdvertising and conversion trackingGoogle Privacy Policy
Facebook PixelSocial media advertisingFacebook Privacy Policy

5. Healthcare Compliance

HIPAA Compliance

  • • No PHI is stored in cookies or sent to third-party analytics
  • • All healthcare-related cookies are encrypted and secure
  • • Audit trails track all access to PHI through secure cookies
  • • Business Associate Agreements in place with all third-party services

GDPR Compliance

  • • Clear consent mechanisms for non-essential cookies
  • • Right to withdraw consent at any time
  • • Data minimization principles applied to all cookies
  • • Transparent information about data processing

International Compliance

  • • CCPA (California) privacy rights respected
  • • ePrivacy Directive compliance for EU users
  • • Philippines Data Privacy Act compliance
  • • Healthcare-specific regulations worldwide

6. How to Manage Your Cookie Preferences

Cookie Consent Banner

When you first visit MEDVANE, you'll see a cookie consent banner where you can:

  • • Accept all cookies
  • • Reject non-essential cookies
  • • Customize your preferences by category
  • • Learn more about each cookie type

Browser Settings

You can also manage cookies through your browser settings:

Important Notice

Disabling strictly necessary cookies may prevent you from using certain features of our healthcare platform and may compromise security. Healthcare-specific cookies cannot be disabled as they are required for HIPAA compliance.

7. Data Retention

Different cookies have different retention periods:

  • Session Cookies: Deleted when you close your browser
  • Authentication Cookies: 30 days or until logout
  • Preference Cookies: 1 year or until you change preferences
  • Analytics Cookies: 2 years (if consent given)
  • Marketing Cookies: 30-90 days (if consent given)
  • Audit Cookies: 6 years (HIPAA requirement)

8. Your Rights

Under various privacy laws, you have rights regarding cookies and data processing:

GDPR Rights (EU Users)

  • • Right to consent
  • • Right to withdraw consent
  • • Right to data portability
  • • Right to deletion

CCPA Rights (California Users)

  • • Right to know
  • • Right to delete
  • • Right to opt-out
  • • Right to non-discrimination

9. Updates to This Policy

We may update this Cookie Policy from time to time to reflect changes in our practices, technology, or legal requirements. We will notify you of significant changes through:

  • • Email notification to registered users
  • • Platform notification when you log in
  • • Updated "Last Modified" date at the top of this policy
  • • Prominent notice on our website

10. Contact Us

If you have any questions about our Cookie Policy or wish to exercise your rights, please contact us:

General Inquiries

Email: support@medvane.net
Subject: Cookie Policy Inquiry

Privacy Officer

Email: privacy@medvane.net
Subject: Privacy Rights Request

Data Protection Officer (EU Users)

Email: dpo@medvane.net
Subject: GDPR Rights Request

© Copyright 2025. All rights reserved

Powered by MEDVANE