iOrderTrackToday's specialsRecommendedShop all
CartSign in

Consumer Health Data Privacy Notice

How we handle health-related data (e.g. browsing in health and pharmacy categories) under Washington My Health My Data Act and similar laws.

Last updated: May 18, 2026

About this notice

This Consumer Health Data Privacy Notice supplements our Privacy Notice and describes how iOrdertrack LLC (iOrderTrack) handles consumer health data. It is designed to meet the requirements of laws such as the Washington My Health My Data Act (MHMDA), the Nevada SB 370, and similar consumer health-data statutes. iOrderTrack is not a HIPAA-covered entity for its core marketplace activities; this notice does not create a covered-entity relationship.

What counts as consumer health data

Information that identifies you (or is reasonably linkable to you) and that reveals your past, present, or future physical or mental health status. On iOrderTrack this may include:

  • Products you browse or buy in health-related categories — vitamins, supplements, medical supplies, baby formula, pet medications, etc.
  • Search queries that imply a health condition (e.g. "diabetes monitor").
  • Questions and reviews you post about health products.
  • Shipping addresses associated with pharmacy or medical-supply orders.
  • Inferences drawn from the above (for example, that you may have an interest in a specific condition).

We do not intentionally collect genetic data, biometric data, or precise geolocation in connection with health-data categories.

How we collect and use it

  • Operate the marketplace — show you products relevant to your browsing, take your order, route it to a seller for fulfillment.
  • Safety and recalls — match products you have purchased against manufacturer recalls so we can warn you.
  • Trust and safety — enforce banned-content rules (organs, controlled substances, counterfeit drugs, restricted medical devices, etc.).
  • Service communications — order updates, recall notices, and replies to questions you send us.

We do not use consumer health data for targeted advertising or sell it for advertising purposes. We do not share it with anyone except the parties listed below, and only as needed to deliver the service.

Who we share it with

  • Sellers who fulfill your order receive the items ordered and your shipping address.
  • Carriers (USPS, UPS, FedEx) receive the shipping label data necessary to deliver your order.
  • Service providers (cloud hosting, email, customer-support tooling) operate under contracts requiring confidentiality and limiting use to the purposes we direct.
  • Legal authorities when compelled by valid legal process, with prior notice to you unless prohibited.

Your rights under MHMDA and similar laws

  • Right to know — what specific consumer health data we hold about you, the categories of sources, and any third party we have shared it with.
  • Right to delete — request deletion of your consumer health data. We will delete it from our systems and tell our service providers to do the same, subject to legal retention requirements.
  • Right to withdraw consent — if we are processing data based on your consent, you can withdraw at any time.
  • Right against discrimination — we will not deny service, charge a different price, or reduce service quality because you exercise these rights.
  • Right to appeal — if we decline a request, you can appeal in writing and we will respond within 45 days.

To exercise these rights, email privacy@iordertrack.com with "Consumer Health Data Request" in the subject line. We will verify your identity before acting — typically by confirming an email address on file or asking for additional account details.

Authorizations

We will not sell or share consumer health data with a third party for that party's own use unless you give us a written authorization that meets the requirements of MHMDA. We will not condition the service on you granting such an authorization. You can revoke an authorization at any time by emailing the address above; the revocation does not affect anything we did before we received it.

Security

The protections in our Privacy Notice apply to consumer health data — encrypted transport (TLS), encrypted storage of sensitive fields, access logging, and least-privilege role-based controls.

Children

iOrderTrack is not directed to children. We do not knowingly collect consumer health data about anyone under 13. Parents who believe their child has provided us such data should email privacy@iordertrack.com and we will delete it.

Contact

Email privacy@iordertrack.com or write to iOrdertrack LLC, Attn: Privacy Officer, 1901 Ulmerton Rd, Suite 625 PMB 1046, Clearwater, FL 33762.

Consumer Health Data Privacy Notice — iOrderTrack | iOrderTrack