Who We Are
DocSearch Health Solutions LLC ("DocSearch," "we," "us," or "our") is a healthcare technology platform operating at docsearch.com, working in partnership with TelegraMD to deliver telehealth treatment services. We provide two primary services: (1) telehealth treatment programs connecting patients with independent licensed physicians, and (2) a free physician search directory.
This Notice applies to DocSearch Health Solutions LLC and to its telehealth partnership with TelegraMD (telegramd.com) and to the licensed healthcare professionals who provide treatment services through our platform, collectively referred to as our "Covered Health Care Component." This Notice covers our activities as a Covered Entity or Business Associate under HIPAA where applicable.
This Notice does not apply to the independently operated physicians and medical practices that you may access through our platform. Those providers have their own HIPAA Notice of Privacy Practices that they are required to provide to you separately.
Your Protected Health Information
Protected Health Information ("PHI") is any individually identifiable health information we create, receive, maintain, or transmit about you — including information about your health status, treatment, or payment — that can be used to identify you.
PHI includes, but is not limited to:
- Information you provide in health intake questionnaires and symptom assessments
- Medical history, current medications, and health conditions you disclose
- Diagnoses and treatment plans created by physicians through our platform
- Prescription information and pharmacy dispensing records
- Lab results or other diagnostic information reviewed as part of your care
- Payment and billing information when linked to your health care
- Communications between you and your treating physician through our platform
- Your name, address, date of birth, or other identifiers when combined with health information
How We May Use & Share Your PHI
HIPAA permits us to use and disclose your PHI without your written authorization for the following purposes. We use the minimum necessary information for each purpose.
| Purpose | Description | Type |
|---|---|---|
| Treatment | Sharing your health information with the licensed physician evaluating and treating you through our platform and TelegraMD, and with the pharmacy dispensing your prescription medications. | Permitted |
| Payment | Using your health information to process payment for your treatment program, verify eligibility, and conduct billing activities with our payment processors. | Permitted |
| Health Care Operations | Internal activities such as quality assessment, training, compliance reviews, licensing, and platform improvement — all using de-identified or aggregated data where possible. | Permitted |
| Business Associates | Sharing with third-party vendors (e.g., cloud storage, payment processors, pharmacies) who have signed a HIPAA Business Associate Agreement with us and are contractually required to protect your PHI. | Permitted |
| Appointment & Treatment Reminders | Contacting you regarding prescription refills, dosage reminders, and follow-up care related to your active treatment program. | Permitted |
| Health Oversight Activities | Disclosures to government health oversight agencies such as HHS, state medical boards, or the DEA for legally authorized activities including audits, investigations, and licensure. | Permitted |
| Serious Threat to Safety | When necessary to prevent or lessen a serious and imminent threat to your health or safety, or the health or safety of another person or the public. | Permitted |
| Research | De-identified or aggregated data only. We do not share individually identifiable PHI for research without your specific written authorization. | Permitted |
Disclosures We Are Required to Make
In certain situations, federal or state law requires us to disclose your PHI even without your authorization. These include:
- To You: You have the right to access your own PHI, and we are required by law to provide it to you upon request.
- To the Department of Health and Human Services (HHS): We must disclose your PHI if required by HHS to investigate a complaint or determine our compliance with HIPAA.
- As Required by Law: Disclosures mandated by federal, state, or local laws, including court orders, subpoenas, warrants, or other legal process where we are legally compelled to produce records.
- Public Health Reporting: Reporting communicable diseases, injuries, birth or death information, or product safety issues to public health authorities as required by applicable law.
- Law Enforcement: In limited circumstances required by law, such as to report certain types of wounds or injuries, or in response to a valid court order or subpoena.
- Coroners and Medical Examiners: To identify a deceased person or determine the cause of death as permitted or required by law.
- Correctional Institutions: If you are an inmate, we may release your PHI to a correctional institution as necessary for your health and safety or the safety of others.
- Victims of Abuse or Neglect: As authorized by law, we may disclose PHI to government authorities regarding suspected abuse or neglect.
Your Privacy Rights — Overview
You have the following rights regarding your protected health information. To exercise any of these rights, please submit a written request to our Privacy Officer using the contact information at the end of this Notice.
Right to Access Your Records
You have the right to inspect and obtain a copy of your PHI that we maintain in a "designated record set," which generally includes your medical records (held by TelegraMD), billing records, and other records used to make decisions about your care.
How to request access: Submit a written request to our Privacy Officer at info@docsearch.com. Your request should identify the specific records or information you are requesting.
Our response timeline: We will respond to your request within 30 days of receipt. If we need additional time (up to an additional 30 days), we will notify you in writing within the initial 30-day period and explain the reason for the delay.
Format: We will provide your records in the format you request (paper or electronic) if we are reasonably able to do so. If we cannot provide the requested format, we will provide records in an alternative format acceptable to you.
Fees: We may charge a reasonable cost-based fee for copying, postage, and preparing a summary if you request one. We will not charge you for the cost of retrieving or locating your records.
Exceptions: We may deny your request to access certain records in limited circumstances permitted by law, such as psychotherapy notes, information compiled in anticipation of litigation, or records whose disclosure may endanger your life or safety. If we deny your request, we will tell you in writing and explain your right to appeal the denial.
Right to Request an Amendment
If you believe that PHI we maintain about you is incorrect or incomplete, you have the right to ask us to amend that information for as long as we keep the information.
How to request an amendment: Submit a written request to our Privacy Officer. Your request must (1) identify the specific information you want amended and (2) explain why the information is incorrect or incomplete.
Our response: We will act on your request within 60 days. We may extend this period by an additional 30 days if we notify you in writing within the initial 60-day period.
If we agree: We will amend the information and, where appropriate, notify persons who received the incorrect information and any persons you identify who need the amended information.
If we disagree: We may deny your request if we determine that the information: (a) was not created by us; (b) is not part of the records we maintain; (c) is not information you would be permitted to access; or (d) is accurate and complete. If we deny your request, we will provide you a written explanation and inform you of your right to submit a written statement of disagreement, which we will include in your records.
Right to Request Restrictions
You have the right to request that we restrict or limit how we use or disclose your PHI for treatment, payment, or healthcare operations. You also have the right to request that we limit disclosures to family members, friends, or others involved in your care.
We are not required to agree to your requested restriction — except in one specific case: if you request that we not disclose your PHI to a health plan for payment or operations purposes, and you have paid for the services in full out of pocket, we must agree to that restriction.
If we do agree to a restriction, we will honor that restriction going forward, except in emergency situations where the restricted information is needed to treat you.
To request a restriction: Contact our Privacy Officer in writing at info@docsearch.com , specifying (1) the information you want restricted, (2) the type of restriction requested, and (3) the persons to whom the restriction should apply.
Right to an Accounting of Disclosures
You have the right to request a list of certain disclosures we have made of your PHI. This is called an "accounting of disclosures." The accounting covers disclosures made in the six years prior to your request.
Disclosures not included in the accounting: The following types of disclosures are excluded from the accounting by law:
- Disclosures made for treatment, payment, or healthcare operations
- Disclosures made to you about your own PHI
- Disclosures made pursuant to your written authorization
- Disclosures made to persons involved in your care who you identified
- Disclosures for national security or intelligence purposes
- Disclosures to correctional institutions or law enforcement officials under specific circumstances
- Disclosures made as part of a limited data set
Format: We will provide the accounting in writing within 60 days of your request. We may extend this period by 30 days with written notice.
Frequency: The first accounting in any 12-month period is free. We may charge a reasonable fee for additional accountings within the same 12-month period; however, we will notify you of the fee and give you the opportunity to withdraw your request.
Right to a Paper Copy of This Notice
You have the right to receive a paper copy of this Notice at any time, even if you agreed to receive it electronically.
To request a paper copy, contact us at:
- Email: info@docsearch.com
- Phone: +1 (407) 974-6808
- Mail: DocSearch Health Solutions LLC, 8135 NOBT, Orlando FL 32811, Attn: Privacy Officer
We will provide a paper copy of this Notice within a reasonable time at no charge.
The most current version of this Notice is always available on our website at docsearch.com. We will post a notice on our website if we make material changes to our privacy practices.
Right to Request Confidential Communications
You have the right to request that we communicate with you about your health matters in a specific way or at a specific location. For example, you may ask that we contact you only at your work email address, or that we send correspondence to a P.O. box rather than your home address.
We will honor reasonable requests. You do not need to explain the reason for your request. We may require information about how payment will be handled or a specific alternative address or method of contact as a condition of accommodating your request.
To request confidential communications: Contact our Privacy Officer in writing at info@docsearch.com , specifying the alternative communication method or location you prefer.
Our Duties Under HIPAA
DocSearch Health Solutions LLC is required by law to:
- Maintain the privacy of your PHI
- Provide you with this Notice of our legal duties and privacy practices with respect to your PHI
- Follow the terms of the Notice currently in effect
- Notify you if a breach of your unsecured PHI occurs
- Not use or disclose your PHI except as described in this Notice or as otherwise permitted or required by law
- Apply reasonable safeguards to protect your PHI from unauthorized use or disclosure
- Use and disclose only the minimum necessary PHI for each purpose of use or disclosure
- Enter into written Business Associate Agreements with all vendors who access your PHI
Changes to This Notice: We reserve the right to change our privacy practices and the terms of this Notice at any time, to the extent permitted by law. Changes will apply to PHI we already hold, as well as PHI we receive in the future. Before we make a material change to our privacy practices, we will revise this Notice and post the updated version on our website. The revised Notice will include the new effective date.
Breach Notification
Under the HITECH Act, if there is a breach of your unsecured PHI, we are required to notify you. A "breach" is an impermissible use or disclosure that compromises the security or privacy of your PHI.
Individual Notification: If a breach affects your PHI, we will notify you without unreasonable delay and no later than 60 days after we discover the breach. We will notify you by first-class mail (or by email if you have indicated a preference for email). If we cannot reach you directly, we may substitute notice through our website or a prominent media outlet, as permitted by law.
Media Notification: If a breach affects more than 500 residents of a state or jurisdiction, we will notify prominent media outlets in that state or jurisdiction, in addition to individual notices.
HHS Notification: We will notify HHS of all breaches. Breaches affecting 500 or more individuals will be reported immediately; smaller breaches will be reported annually.
Content of Breach Notification: Our breach notification will include: (1) a brief description of what happened and the dates involved; (2) a description of the types of PHI involved; (3) steps you should take to protect yourself; (4) what we are doing to investigate, mitigate harm, and prevent future breaches; and (5) our contact information.
Security Safeguards: We implement administrative, physical, and technical safeguards including:
- End-to-end encryption for all PHI in transit and at rest
- Role-based access controls limiting PHI access to authorized personnel only
- Regular security risk assessments and vulnerability testing
- Employee HIPAA training and confidentiality agreements
- Audit logs of all access to PHI systems
- Business Associate Agreements with all third-party vendors accessing PHI
How to File a Complaint
If you believe we have violated your privacy rights, you have the right to file a complaint. You will not be retaliated against in any way for filing a complaint. We do not penalize or discriminate against individuals who exercise their HIPAA rights or file complaints.
File a complaint with DocSearch: Contact our Privacy Officer in writing:
- Email: info@docsearch.com
- Mail: Privacy Officer, DocSearch Health Solutions LLC, 8135 NOBT, Orlando FL 32811
Please describe the privacy concern in writing, including the date(s) involved and the specific issue. We will acknowledge receipt of your complaint within 5 business days and investigate promptly.
File a complaint with the U.S. Department of Health and Human Services (HHS): You may also file a complaint directly with the federal government:
- Online: www.hhs.gov/ocr/privacy/hipaa/complaints
- Mail: Office for Civil Rights, U.S. Department of Health and Human Services, 200 Independence Avenue SW, Room 509F, HHH Building, Washington, DC 20201
- Fax: (202) 619-3818
- Phone (toll-free): 1-800-368-1019 | TDD: 1-800-537-7697
There is no deadline for filing a complaint with HHS, though they generally investigate complaints within 6 months of filing.
Contact Our Privacy Officer
For any questions, concerns, or requests related to your PHI or this Notice, please contact our Privacy Officer:
8135 NOBT, Orlando FL 32811
Attn: Privacy Officer
Effective Date: April 1, 2026 · Last Revised: April 1, 2026 · Governing Law: HIPAA (45 C.F.R. Parts 160 and 164), HITECH Act, 21st Century Cures Act · © 2026 DocSearch Health Solutions LLC. All rights reserved.
