Privacy policy

General Privacy Policy Last Updated: February 16, 2026 PharmAdva, LLC (MedaCube) Website:www.medacube.com

PharmAdva, LLC (“we,” “us,” or “our”) is dedicated to protecting your privacy and handling your personal information responsibly. This General Privacy Policy describes our practices for collecting, using, sharing, and securing non-health personal information (often referred to as “personal information”, “personal identifying information”, or “PII”) when you visit our public website (www.medacube.com), make purchases, submit inquiries, or engage with our non-patient-facing services.

Key Distinction: This policy focuses exclusively on non-health personal information — such as your name, email address, shipping or billing details, phone number, or other data collected during general website interactions or sales.

Any Protected Health Information (PHI) or medical data (e.g., medication adherence records, dispensing logs, or prescription details) from the MedaCube device or patient portal is handled under strict HIPAA guidelines and is covered by our separate Notice of Privacy Practices, available on this website and within the portal. PHI is managed through our Business Associate Agreements with covered entities, such as your healthcare provider or pharmacy.

1. Children's Privacy

Our website and public services are not designed or directed to children under the age of 13, and we do not knowingly collect, use, or disclose personal information from children under 13 in a manner that violates the Children's Online Privacy Protection Act (COPPA) or other applicable laws.

  • The MedaCube device is purchased exclusively by adults (including institutional buyers like VA entities) and is intended for use by adults who are capable of acting as their own caregiver or individuals of any age only under the direct supervision of an adult caregiver (such as a parent, legal guardian, or authorized responsible adult). This supervision helps ensure safe and appropriate use, including for minors who may benefit from the device's medication management features.
  • If we discover that we have inadvertently collected personal information from a child under 13 without verifiable parental or guardian consent, we will promptly delete that information and take steps to prevent future occurrences.
  • Parents or guardians who believe their child has provided us with personal information (e.g., through a contact form or accidental submission) should contact us immediately at policy@medacube.com for assistance in reviewing or removing it.

For minors aged 13–17: We comply with all relevant state and federal laws, including New York’s Child Data Protection Act (effective 2025), which prohibits the processing of minors' personal information for targeted advertising, profiling, geolocation tracking, or sale without informed consent from a parent or guardian. We do not engage in these activities for minors without such consent. We strongly encourage minors and their parents or guardians to review this policy together to understand how we handle data. Parents or guardians may request access to, correction of, or deletion of a minor’s personal information at any time by contacting our Privacy Officer.

2. Personal Information We Collect

We collect only the personal information reasonably necessary to operate our website, process transactions, and provide our services. This collection occurs in two main ways:

Information you provide directly:

  • When purchasing a MedaCube device: Your full name, email address, shipping address, billing address, phone number, and payment information (such as credit card details or other financial data). Payment information is processed securely by third-party payment gateways that adhere to Payment Card Industry Data Security Standard (PCI DSS) requirements, and we do not store full payment card details ourselves.
  • When using contact forms, submitting inquiries, requesting support, signing up for updates, or otherwise communicating with us: Your name, email address, phone number, and the content of your message or request.

Information collected automatically:

  • Technical and usage data: IP address (which may indicate general location), browser type and version, device type and operating system, referring website or source, pages visited on our site, time and duration of visits, clickstream data, and other similar metrics.
  • Cookies and similar technologies: We use cookies, web beacons, pixel tags, and related tools to enable essential site functionality (e.g., remembering your preferences or cart items), analyze performance (e.g., tracking site traffic and user behavior), and support limited marketing (e.g., personalized content recommendations). For details, including how to manage these, see Section 5 below.

We do not collect health or medical information through the public website or sales process. All data collection is limited to what is needed for the purposes described in this policy, and we apply the minimum necessary principle to avoid over-collection.

3. How We Use Your Personal Information

We use your personal information only for legitimate business purposes and in ways consistent with this policy. These include:

  • To process, fulfill, and ship your MedaCube orders, including coordinating with shipping carriers and handling any related customer support or returns.
  • To communicate with you about your transaction, order status, account details, or inquiries (e.g., sending confirmation emails or responding to support tickets).
  • With your explicit consent (where required by law), to send promotional materials, newsletters, product updates, or invitations to participate in surveys or feedback about your experience with our products and services. We may filter these lists using non-health device metadata (such as whether the device is online or has recently synced) to ensure messages are relevant. You can opt out of marketing emails at any time via the unsubscribe link in any promotional email.
  • To improve our website, services, and products by analyzing usage patterns, identifying trends, detecting technical issues, and enhancing user experience.
  • To prevent and detect fraud, unauthorized access, or other security threats, including monitoring for suspicious activity.
  • To comply with legal obligations, such as tax reporting, record-keeping, or responding to valid legal requests from authorities.
  • To contact you regarding your use or experience with our products and services (e.g., optional follow-up emails for tips on device setup or optimization).

We do not use your personal information for automated decision-making that produces legal or similarly significant effects on you without human oversight or your consent, where required by law.

4. How We Share Your Personal Information

We share personal information only when necessary and with appropriate protections in place:

  • Service providers and vendors: With carefully selected third parties who assist us in operating our website and business, such as payment processors (e.g., for secure transactions), shipping carriers (e.g., for delivery), cloud hosting providers (e.g., for data storage), and email service providers (e.g., for communications). These partners are bound by contracts that require them to protect your information, use it only for the services they provide to us, and comply with applicable privacy laws.
  • Legal and regulatory requirements: When required by law, court order, subpoena, or government request; to enforce our terms of service; to protect the rights, property, or safety of PharmAdva, our users, or the public; or to respond to emergencies.
  • Business transfers: In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or part of our assets, where personal information may be transferred as a business asset. We will provide notice and, where feasible, seek your consent for any material changes in how your information is handled.

We do not sell your personal information to third parties for their own marketing or unrelated purposes. Any sharing is limited to the minimum necessary and subject to confidentiality obligations.

5. Your Choices and Controls

You have control over your personal information:

·      Cookies and Other Similar Technologies. We or our vendors may use cookies and other similar technologies on certain webpages or locations (which may also be tied to certain interactive features) of the websites for various purposes. For example, to provide functionality of the websites or interactive features, improve performance of the websites, support internal investigation into technical issues with the websites, perform analytics to better understand how the websites are being used, and in some cases for marketing purposes. You may be able to use browser settings to change your cookie preferences, but if you do so, the websites may not work as intended. If you use any third-party tools, including browser tools, to set preferences related to cookies, please note that we do not control such third-party tools and how they function.

·      Your Choices: If you receive marketing communications from us, such as via email, you may unsubscribe from such marketing communications by following the instructions provided to you in those communications.

·      Data Security: We implement administrative, technical, and physical safeguards to protect the personal information collected through the websites. However, no Internet transmission is entirely secure and we cannot guarantee the total security of your information collected through the websites.

·      Use of Site Content: PharmAdva, LLC reserves all rights in website content. PharmAdva, LLC does not authorize reposting, reuse, or scraping (including extracting content using automated means) of our website content.

·       Third-Party Links and Features: The websites may include links to third-party websites and services. These links and services are provided for your convenience only. PharmAdva, LLC does not control, endorse, or take responsibility for any content, products, or advertisements found on third-party websites. We make no representations about the accuracy or reliability of the information provided on these sites. Additionally, the websites may have certain interactive features provided by third parties. For example, certain third-party interactive features may allow you to share content on the websites to your social media profile. If you provide your personal information to any third party through its websites or services, your personal information is subject to that third party’s privacy practices. Please note that this Privacy Statement does not apply to any third party’s privacy practices.

6. State-Specific Privacy Rights

Our operations generate a limited volume of non-health personal information, which means we typically fall below the applicability thresholds of most U.S. comprehensive state consumer privacy laws.

If a state law applies and we meet its criteria, you may have rights such as:

  • Confirming whether we process your personal information and requesting access to a copy.
  • Requesting correction of inaccurate information.
  • Requesting deletion of your personal information (subject to legal exceptions, e.g., for compliance or security).
  • Opting out of the sale or sharing of personal information, targeted advertising, or certain profiling/automated decision-making.
  • Additional protections for sensitive personal information (e.g., precise geolocation, racial/ethnic origin, or minors' data), often requiring consent or opt-out.
  • Non-discrimination for exercising these rights (e.g., no denial of services or price increases).

We recognize universal opt-out preference signals (such as Global Privacy Control) in states that mandate it (e.g., California, Colorado, Connecticut, Delaware, Maryland, Minnesota, Montana, New Jersey, New Hampshire, Oregon, Texas).

New York residents: New York does not have a comprehensive consumer privacy law as of this date. We comply with the New York SHIELD Act for data security, reasonable safeguards, and breach notification requirements.

To exercise rights (where applicable): Submit a verifiable request to our Privacy Officer at policy@medacube.com. Include your state of residence, the nature of your request, and details to verify your identity (e.g., email linked to your account). We will respond within the timeframes required by law (e.g., 45 days under CCPA, extendable). Authorized agents may submit requests with proof of authorization. Requests may be denied if unverifiable, excessive, or exempt under law. For state-specific details, visit your state attorney general’s website.

7. Security of Your Personal Information

We implement reasonable administrative, technical, and physical safeguards to protect your personal information from unauthorized access, use, disclosure, alteration, or destruction. These measures include:

  • Encryption for sensitive data in transit (e.g., HTTPS for website communications) and at rest where appropriate.
  • Access controls, firewalls, and role-based permissions to limit who can view or handle information.
  • Regular security training and awareness programs for employees and contractors.
  • Vendor oversight, including security audits and contractual requirements for third parties.
  • Risk assessments, vulnerability scanning, and incident response planning to identify and address potential threats.

These practices are aligned with industry standards and the requirements of the New York SHIELD Act. However, no system or method of transmission over the Internet is 100% secure, and we cannot guarantee absolute protection against all risks (e.g., cyberattacks). In the event of a data breach, we will notify affected individuals and authorities as required by law.

8. International Users and Data Transfers

Our website and services are hosted and primarily operated in the United States. If you access the site or services from outside the U.S., your personal information may be transferred to, stored, and processed in the United States under U.S. laws, which may differ from those in your jurisdiction. By using our website or services, you consent to this transfer, storage, and processing.

9. Changes to This Privacy Policy

We may revise this policy periodically to reflect changes in our practices, technology, legal requirements, or business operations. When we make material changes, we will update the “Last Updated” date at the top of this policy and may provide additional notice (e.g., via email or website banner) if required by law. We encourage you to review this policy regularly. Your continued use of our website or services after any changes take effect constitutes your acceptance of the updated policy.

10. Contact Us

If you have questions about this General Privacy Policy, our data practices, your personal information, or how to exercise your rights, please reach out to our Privacy Officer:

Privacy Officer PharmAdva, LLC Email: policy@medacube.com

We are located in Rochester, New York, and aim to respond to all inquiries promptly and thoroughly. If you are dissatisfied with our response, you may also contact relevant regulatory authorities, such as your state attorney general.