Privacy Policy

Test Catalog

Thyroid & Endocrine
Cardiovascular & Heart Health
Gastrointestinal & Gut Health
Hormonal Health Female
Hormonal Health Male
Metabolic & Diabetes

Order Lab Tests for Your Patients - Anywhere in the World!

Order Lab Tests for Your Patients - Anywhere in the World!

Register Free

Introduction

BiomarkersLabs.com Last Updated: March 31, 2026

 BiomarkersLabs.com (“BiomarkersLabs,” “we,” “us,” or “our”) is an online-based biomarker testing platform exclusively serving licensed healthcare practitioners. We are committed to protecting the privacy and security of all personal and professional information collected through our platform.

This Privacy Policy explains how we collect, use, store, disclose, and protect your information when you access or use our website and services. By using BiomarkersLabs.com, you agree to the terms of this Privacy Policy.

This policy is designed to comply with:

  1. The Health Insurance Portability and Accountability Act (HIPAA) — USA
  2. The General Data Protection Regulation (GDPR) — European Union & UK
  3. The Personal Information Protection and Electronic Documents Act (PIPEDA) — Canada

Who We Are

BiomarkersLabs.com operates as a dual-jurisdiction entity incorporated and operating in both the United States and the European Union. Our platform is exclusively available to licensed healthcare practitioners and is not intended for direct consumer use.

For GDPR purposes, BiomarkersLabs.com acts as the Data Controller for personal data collected through the platform.

For any privacy-related inquiries, contact us at: privacy@biomarkerslabs.com

Information We Collect

We collect only the information necessary to provide our services to licensed healthcare practitioners.

We collect only the information necessary to provide our services to licensed healthcare practitioners.

Professional Information

  • Full name and professional title
  • State/country medical license number and documentation
  • Practice name and business address
  • Professional email address and phone number
  • Billing and payment information

Platform Usage Information

  • Account login credentials
  • Test orders placed through the platform
  • IP address, browser type, and device information
  • Pages visited and time spent on the platform
  • Communication records with our support team

Patient-Related Information (where applicable)

When a practitioner orders tests on behalf of their patients, limited patient identifiers may be collected solely for the purpose of processing and returning laboratory results. This information is treated as Protected Health Information (PHI) under HIPAA and as Special Category Data under GDPR.

We do not collect patient information for marketing purposes under any circumstances.

How We Use Your Information

We use collected information for the following purposes:

  • Service Delivery — Processing lab test orders, delivering results, and managing your practitioner account
  • Compliance & Verification — Verifying professional licensing and regulatory compliance
  • Communication — Sending order confirmations, result notifications, and support responses
  • Platform Improvement — Analyzing usage patterns to improve platform functionality
  • Legal Obligations — Complying with applicable laws and regulatory requirements
  • Billing & Payments — Processing transactions and managing invoices
  • Security — Detecting and preventing unauthorized access or fraudulent activity

We will never use your information or your patients’ information for third-party advertising or sell it to any external party.

HIPAA Compliance (USA)

BiomarkersLabs.com complies fully with the Health Insurance Portability and Accountability Act (HIPAA) and its implementing regulations.

Protected Health Information (PHI)

  • All PHI collected through our platform is stored on HIPAA-compliant, encrypted servers
  • Access to PHI is strictly limited to authorized BiomarkersLabs personnel on a need-to-know basis
  • PHI is never disclosed to third parties without your prior written authorization, except as required by law
  • Clinical test results are accessible only through your secure BiomarkersLabs practitioner account
  • PHI records are retained for a minimum of 6 years in accordance with HIPAA requirements

Business Associate Agreements (BAA)

Where required, BiomarkersLabs.com will enter into a Business Associate Agreement (BAA) with covered entities and their authorized representatives.

Your HIPAA Rights

As a practitioner and/or covered entity, you have the right to:

  • Request access to PHI held by BiomarkersLabs
  • Request corrections to inaccurate PHI
  • Receive an accounting of disclosures of PHI
  • Request restrictions on certain uses or disclosures of PHI
  • File a complaint with the U.S. Department of Health and Human Services (HHS)

To exercise any of these rights, contact us in writing at privacy@biomarkerslabs.com

GDPR Compliance (European Union & UK)

For users located in the European Union or United Kingdom, BiomarkersLabs.com complies with the General Data Protection Regulation (GDPR) and the UK GDPR.

Legal Basis for Processing

We process your personal data under the following legal bases:

  • Contractual Necessity — To fulfill our service agreement with you as a licensed practitioner
  • Legal Obligation — To comply with applicable laws and regulatory requirements
  • Legitimate Interests — To operate, improve, and secure our platform
  • Explicit Consent — Where required for processing special category data (e.g., patient health data)

Your GDPR Rights

As a data subject under GDPR, you have the right to:

  • Access — Request a copy of the personal data we hold about you
  • Rectification — Request correction of inaccurate or incomplete data
  • Erasure — Request deletion of your personal data (“right to be forgotten”), where applicable
  • Restriction — Request that we limit the processing of your data
  • Data Portability — Receive your data in a structured, machine-readable format
  • Object — Object to processing based on legitimate interests
  • Withdraw Consent — Withdraw consent at any time where processing is consent-based
  • Lodge a Complaint — File a complaint with your national Data Protection Authority (DPA)

To exercise any GDPR right, email us at privacy@biomarkerslabs.com. We will respond within 30 days.

International Data Transfers

Where personal data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) approved by the European Commission.

Data Retention (GDPR)

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by law. Upon account closure, personal data is deleted or anonymized within 90 days, unless retention is legally required.

PIPEDA Compliance (Canada)

For practitioners located in Canada, BiomarkersLabs.com complies with the Personal Information Protection and Electronic Documents Act (PIPEDA).

Principles We Follow

  • Accountability — We are responsible for all personal information under our control
  • Identifying Purposes — We identify the purposes for which information is collected at or before the time of collection
  • Consent — We obtain your knowledge and consent for the collection, use, or disclosure of personal information
  • Limiting Collection — We collect only what is necessary for identified purposes
  • Limiting Use, Disclosure & Retention — Information is used only for stated purposes and retained only as long as necessary
  • Accuracy — We keep your information accurate, complete, and up to date
  • Safeguards — We protect your information with appropriate security measures
  • Openness — We make our privacy practices readily available
  • Individual Access — You may access your information upon written request
  • Challenging Compliance — You may challenge our compliance with PIPEDA

To exercise your PIPEDA rights or submit an inquiry, contact: privacy@biomarkerslabs.com

Cookies & Tracking Technologies

BiomarkersLabs.com uses cookies and similar tracking technologies to:

  • Maintain your secure login session
  • Analyze platform usage and performance
  • Improve user experience

Cookie Types We Use

  • Strictly Necessary Cookies — Required for the platform to function; cannot be disabled
  • Analytics Cookies — Help us understand how practitioners use the platform (e.g., Google Analytics)
  • Preference Cookies — Remember your settings and preferences

You may manage cookie preferences through your browser settings at any time. Disabling non-essential cookies will not affect your access to core platform features.

For EU/UK users, we obtain explicit cookie consent in accordance with GDPR and the ePrivacy Directive.

Data Security

We implement industry-standard technical and organizational measures to protect your information, including:

  • End-to-end SSL/TLS encryption for all data in transit
  • AES-256 encryption for data at rest
  • HIPAA-compliant, access-controlled server infrastructure
  • Regular security audits and vulnerability assessments
  • Multi-factor authentication (MFA) for practitioner accounts
  • Role-based access controls limiting internal data access

In the event of a data breach affecting your personal information, we will notify you and relevant regulatory authorities in accordance with applicable law (within 72 hours under GDPR; as required under HIPAA Breach Notification Rule).

Third-Party Service Providers

We may share your information with trusted third-party service providers who assist in operating our platform, including:

  • Certified Laboratory Partners — For processing and returning test results
  • Payment Processors — For secure billing and transaction handling
  • Cloud & Hosting Providers — For secure data storage and infrastructure
  • Email Service Providers — For account and order communications

All third-party providers are contractually obligated to protect your data and are prohibited from using it for any purpose beyond the services they provide to us. Where required, we execute Data Processing Agreements (DPAs) with all third-party processors in compliance with GDPR.

We do not sell, rent, or trade your personal information to any third party.

Practitioner Responsibilities

As a licensed healthcare practitioner using BiomarkersLabs.com, you are responsible for:

  • Ensuring you hold a valid, current license to order laboratory tests in your jurisdiction
  • Obtaining appropriate consent from your patients before ordering tests on their behalf
  • Maintaining the confidentiality of your account credentials
  • Ensuring the accuracy of all information submitted through the platform
  • Complying with all applicable privacy and healthcare laws in your jurisdiction

Children’s Privacy

BiomarkersLabs.com is a professional platform exclusively for licensed healthcare practitioners aged 18 years or older. We do not knowingly collect personal information from individuals under the age of 18. If we become aware that such information has been collected, it will be deleted immediately.

Changes to This Privacy Policy

We reserve the right to update this Privacy Policy at any time. Any changes will be posted on this page with an updated “Last Updated” date. Where changes are significant, we will notify registered practitioners via email. Your continued use of the platform following any update constitutes acceptance of the revised policy.

Contact Us

For any privacy-related questions, requests, or complaints, please contact our Privacy team:

Email: privacy@biomarkerslabs.com

Website: www.biomarkerslabs.com

Support: support@biomarkerslabs.com