top of page

Confidential Testing

​

Privacy Policy 

(HIPAA-Compliant)

 

Effective Date: 10/01/2025

Company: Pureline

Location: Massachusetts, USA

 

Pureline (“we,” “us,” or “our”) is committed to protecting the privacy and security of all personal information and protected health information (“PHI”) that we collect through our DNA testing, mobile phlebotomy, specimen collection, and related laboratory services. We follow all applicable federal, state, and local privacy laws, including the Health Insurance Portability and Accountability Act (HIPAA).

 

This Privacy Policy explains the type of information we collect, how we use it, how we protect it, and the rights you have regarding your information.

 

⸻

 

1. Information We Collect

 

We collect information directly from you, your healthcare provider, or through our website and communication platforms.

 

A. Personal Information

• Full name

• Date of birth

• Contact information (address, phone, email)

• Government or identity verification documents

• Insurance information (if applicable)

 

B. Protected Health Information (PHI)

 

This includes any health or medical information related to:

• DNA test orders

• Provider requisitions

• Specimen collection details

• Phlebotomy records

• Test results from partnering laboratories

• Medical history relevant to testing

• Chain-of-custody documentation

• Any other information required for clinical, diagnostic, or legal DNA collections

 

C. Payment Information

• Billing details

• Invoices or receipts

(No credit card information is stored by Pureline.)

 

D. Technical Information

 

Collected automatically through our website:

• IP address

• Device type

• Browser type

• Cookie and browsing data

 

⸻

 

2. How We Use Your Information

 

Pureline uses personal and health information to:

• Provide DNA testing, phlebotomy, and mobile lab collection services

• Verify identity for legal or clinical DNA testing

• Complete chain-of-custody forms (when required by law)

• Submit specimens to certified laboratories

• Communicate results to authorized individuals

• Coordinate with your healthcare provider for ordered testing

• Bill for services

• Maintain accurate records

• Improve service delivery and customer experience

• Meet all legal, regulatory, and compliance requirements

 

We will not use your information for marketing without your written permission.

 

⸻

 

3. HIPAA Compliance

 

As a healthcare-related service provider handling PHI, Pureline follows HIPAA rules including:

• Privacy Rule

• Security Rule

• Breach Notification Rule

 

Pureline maintains administrative, technical, and physical safeguards to keep all PHI secure.

 

You may request a copy of our full HIPAA Notice of Privacy Practices at any time.

 

⸻

 

4. Sharing & Disclosure of Information

 

Your information is only shared when necessary and only with authorized parties, such as:

 

A. Partner Laboratories

 

For processing DNA, blood, toxicology, wellness, or diagnostic tests.

 

B. Ordering Healthcare Providers

 

Providers who submit an order on your behalf may receive results and documentation.

 

C. Legal or Government Agencies

 

Only when legally required, such as:

• Court orders

• Law enforcement requests

• Child support or paternity orders

• Required public health reporting

 

D. Business Associates

 

This includes secure systems for:

• Scheduling

• Billing

• Data storage

• Secure messaging

 

All partners are required to follow HIPAA Business Associate Agreements.

 

E. Authorized Individuals

 

Only individuals you formally authorize in writing may receive your results.

 

We never sell or share personal or health information for advertising.

 

⸻

 

5. Data Storage & Security

 

Pureline follows strict security protocols including:

• HIPAA-compliant data systems

• Encrypted electronic storage

• Secure communication channels

• Limited employee access based on role

• Staff training on confidentiality and privacy

• Secure disposal of records

• Firewall and intrusion detection systems

 

Although we take all required measures, no method of electronic transmission is 100% risk-free.

 

⸻

 

6. Your Rights Under HIPAA

 

You have the right to:

• Request copies of your records

• Request corrections or amendments

• Request restrictions on how your PHI is used

• Request an accounting of disclosures

• Request confidential communication

• Revoke consent at any time (unless already processed)

• File a HIPAA complaint if you believe your privacy rights were violated

 

Requests may be submitted to:

Phone: (774) 625-3953

 

⸻

 

7. Cookies & Website Tracking

 

Our website may use cookies or analytics tools to:

• Improve performance

• Track site usage

• Remember preferences

 

You may disable cookies at any time.

 

We do not track users for advertising or behavioral profiling.

 

⸻

 

8. Data Retention Policy

 

We retain records for the period required by:

• HIPAA

• CLIA-certified laboratory regulations

• State and federal laws

 

After the required retention period, records are securely destroyed.

 

⸻

 

9. Children’s Privacy

 

We do not knowingly collect information from children under age 13 without parent or guardian consent.

 

All minor DNA or lab testing requires parental authorization.

 

⸻

 

10. Third-Party Links

 

If our website includes external links, Pureline is not responsible for the privacy practices of those third-party sites.

 

⸻

 

11. Updates to This Policy

 

Pureline may update this Privacy Policy when necessary. Updates will be posted with a new effective date.

 

⸻

 

12. Contact Information

 

For questions, requests, or privacy concerns:

 

Pureline

(774) 625-3953

© 2025 Pureline 

bottom of page