For any question mail us at [email protected]

888-277-9372
Schedule a Call

Privacy Policy

Your Information. Your Rights. Our Commitments.

RxEPA is a United States–based platform designed to support electronic prior authorization (ePA) and related administrative workflows between pharmacies, providers, payors, and other authorized healthcare stakeholders.

We respect your privacy and take reasonable steps to protect information handled through RxEPA. While RxEPA does not claim formal certification under specific healthcare or privacy regulations, we follow industry-standard practices to responsibly manage data.

This Privacy Policy applies only to users and operations within the United States.

1. Information We Collect

Depending on how RxEPA is used for prior authorization workflows, we may collect:

a. Account and User Information
  • Name, email address
  • Organization details (pharmacy, clinic, payor, or related entity)
  • User roles, permissions, and login credentials
b. Prior Authorization Workflow Data
  • Prior authorization requests and status information
  • Administrative and supporting documents submitted for PA processing
  • Communication logs related to PA workflows
c. System and Usage Data
  • IP address, device type, and browser information
  • Diagnostic and performance data
d. Billing and Subscription Information
  • Billing contact details
  • Payment and transaction records
e. Cookies and Tracking Technologies
  • Cookies used for authentication, security, and performance monitoring

2. How We Use Your Information

Information collected through RxEPA is used to:

  • Operate and manage prior authorization workflows
  • Enable secure, role-based access for authorized users
  • Support communication between participating stakeholders
  • Provide customer support and technical assistance
  • Process billing and subscription payments
  • Improve platform performance, reliability, and security
  • Detect, prevent, and respond to misuse, fraud, or unauthorized activity

We do not sell user, pharmacy, or authorization data for marketing purposes.

3. How We Share Information

We may share information only as necessary for system operation:

a. Service Providers

With trusted U.S.-based vendors supporting hosting, infrastructure, analytics, or payment processing, under confidentiality obligations.

b. Legal and Regulatory Requests

When required by U.S. law, legal process, or government request.

c. Security and System Protection

To investigate, prevent, or respond to security incidents, misuse, or fraud.

d. Business Transactions

In the event of a merger, acquisition, or asset transfer, with reasonable privacy safeguards in place.

We do not share information with third parties for advertising or promotional use without consent.

4. Use of Prior Authorization and Healthcare-Related Information

RxEPA functions as a technology platform for administrative prior authorization workflows only.

RxEPA does not provide medical advice, clinical decision-making, or coverage determinations. All data entered into RxEPA is controlled by the organizations using the platform.

Users are responsible for ensuring their use of RxEPA complies with applicable U.S. laws, regulations, and internal policies.

5. Data Storage and Processing (United States Only)

RxEPA stores and processes data within the United States. We apply reasonable safeguards to protect data throughout storage and transmission.

6. Your Rights and Choices

You may request to:

  • Access your account information and PA workflow data
  • Update or correct inaccurate user information
  • Request deletion of personal data where technically and legally feasible
  • Manage user access and permissions within your organization
  • Raise privacy-related questions or concerns
  • Requests can be submitted to the Privacy Officer and will be handled using reasonable efforts.

7. Data Security

We apply industry-standard security measures, including:

  • Encryption of sensitive and workflow-related data
  • Authentication and role-based access controls
  • Continuous monitoring and system protections

No system is completely secure, but reasonable steps are taken to reduce risk.

8. Data Retention

Information is retained only as long as necessary to support prior authorization workflows, meet operational needs, or resolve disputes. Data is securely deleted or anonymized when no longer required.

9. Cookies and Tracking

  • Cookies support login sessions, security, and performance monitoring
  • You may control cookies through your browser settings
  • Disabling cookies may affect system functionality

Third-party tools integrated with RxEPA may follow their own privacy practices.

10. Changes to This Policy

We may update this Privacy Policy as RxEPA evolves. Updates will be available:

  • On the RxEPA website
  • Within the RxEPA platform
  • Upon request

Continued use of RxEPA indicates acceptance of the updated policy.

11. Contact Information

Privacy Officer
RxEPA
PO Box 600047
Jacksonville, FL 32260
Email: [email protected]

Last Updated: February, 2026