Zeva CareBook a visit
← Back to Zeva Care

Privacy Policy

Effective June 3, 2026

This Privacy Policy explains how Zeva Care, PLLC ("Zeva Care," "we," "us") handles information collected through zevacare.com. Health information you share to book or prepare for a visit is Protected Health Information (PHI) governed by our Notice of Privacy Practices and federal HIPAA rules; this policy describes our broader website data practices.

Information We Collect

We collect only the information necessary to schedule and deliver your care:

  • Booking and Intake Data: Name, date of birth, contact details, address, insurance information, medical/mental health history, screener responses, emergency contact, and parent/guardian details (for minors).
  • Payment Information: We maintain a card on file for billing. Full card numbers are entered directly into our secure payment processor (Stripe) and are never seen, transmitted, or stored by Zeva Care. No charges are made at the time of booking.
  • Technical Audit Logs: A session identifier, device/browser type, and the IP address recorded at the moment you sign a digital consent form (retained exclusively for the consent audit trail). We do not place clinical health information in system logs, URLs, or local browser storage.

How We Use Your Information

We use your website data strictly to:

  • Schedule, confirm, and deliver your telehealth psychiatric care.
  • Verify insurance eligibility and authorize billing methods.
  • Send transactional appointment confirmations, reminders, and secure video links.
  • Maintain legally required audit trails for signed consents and prevent fraud.

We do not sell your information. We do not use your data for advertising, nor do we share it with third-party advertising networks.

Data Retention and Infrastructure

Our systems are designed to minimize data footprint. Information entered during the intake flow is securely and temporarily processed while you complete your booking. Upon confirmation, your clinical and personal data is securely transferred into our Electronic Health Record (EHR) system and removed from the temporary booking layer.

Your permanent medical record is maintained securely in our EHR, as described in our Notice of Privacy Practices.

Service Providers We Work With

We utilize established healthcare and technology vendors to operate our services. Where a vendor handles PHI on our behalf, we maintain a strict HIPAA Business Associate Agreement (BAA). These infrastructure partners include:

  • Our Electronic Health Record (EHR) system (DrChrono), where your full medical record resides.
  • Our payment processor (Stripe) for secure billing.
  • Encrypted, HIPAA-compliant cloud hosting and transactional communications platforms.

Security

Information is encrypted both in transit and at rest. Access is strictly limited to authorized personnel. While no digital system is entirely foolproof, our architecture is intentionally built to minimize how much sensitive information is held on our website servers and for how short a duration.

Your Choices, Rights, and Minors

  • Rights: Your rights to access, correct, or request a copy of your medical records are detailed in our Notice of Privacy Practices.
  • Minors: We provide care to minors only through bookings completed by a parent or legal guardian. We do not knowingly collect information directly from children.
  • Jurisdiction: Zeva Care provides telehealth services exclusively to patients physically located in Pennsylvania.

Changes to This Policy

We may update this Privacy Policy periodically. Material changes will be posted on this page with an updated effective date.

Contact Us

Zeva Care, PLLC
2003 South Easton Road, Doylestown, PA 18901
(Administrative office only, all clinical visits are telehealth)
(267) 996-9382 · hello@zevacare.com
Monday to Friday · 8:00 AM to 5:00 PM ET