NEXUS MEDICAL LABS, LLC 

PRIVACY POLICY 

Last Updated: March 14, 2025 

Nexus Medical Labs, LLC and its subsidiaries and affiliates (“Nexus”, “us”, “our”, or “we”), values your privacy and the privacy of our other customers and visitors (“you(r)” or “User(s)”) that access and utilize our website that directly links to this privacy statement (collectively, the “Site”).  

 

This privacy statement (“Privacy Policy”) describes what information we gather from you via accessing the Site (the “Information”), how we use that Information, and what we do to protect it. Your Information may include what we refer to as “Medical Information”, which is defined in more detail below and involves certain health-related information necessary for the Site, and “Personal Information”, which is a limited set of identifying information that allows for communication between you and Nexus.  

 

When referred to in this Privacy Policy, the term Personal Information includes any information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular individual or household, including any information that is subject to applicable data protection laws.  Any Personal Information that is collected is limited to use in the ways that are disclosed in this Privacy Policy.  

 

Nexus is subject to, and operates in compliance with, the Health Insurance Portability and Accountability Act of 1996, as amended and implemented (“HIPAA”), which is addressed in our HIPAA Notice of Privacy Practices posted on the Site.  To the extent applicable, Nexus will comply with Section 4004 of the 21st Century Cures Act, which defines practices that constitute information blocking and the identified reasonable and necessary activities that do not constitute information blocking. Nexus meets the ISO 27001 international standards to ensure the confidentiality, integrity, and availability of Personal Information and will identify and meet requirements regarding the preservation of privacy and protection of Personal Information according to applicable laws, regulations, and contractual requirements.  

 

By using the Site, you expressly consent to the Information handling described herein, including that your use of the Site, and any Information you provide on the Site, are subject to the terms of this Privacy Policy and Nexus’s Terms of Use, which is incorporated herein. This Privacy Policy applies only to information collected on the Site. It does not apply to information collected on any third-party site that may link to or be accessible to the Site over which we have no influence or control. The use of other sites, or the submission of information to other third-party sites is at your own risk and is subject to their privacy statements and policies. 

 

Your Choices. 

You may decline to share your Information with Nexus; in that case, Nexus will not be able to provide you with some of the features and functionality found on the Site. By using the Site, however, you hereby consent to our Terms of Use and this Privacy Policy. We have the right to disable any user access information, whether chosen by you or allocated by us, at any time to safeguard your account and data. 

Our Commitment to Data Security. 

Nexus uses certain physical, organizational, and technical measures designed to improve the integrity and security of your Information. However, we cannot guarantee that such Information may not be accessed, disclosed, altered, or destroyed by unauthorized breach of any of our physical, organizational, or technical measures. The transmission of information over the internet is not completely secure, and therefore you provide Information at your own risk.  

Nexus works with authorized service providers that furnish Site hosting and maintenance as well as other services. To the extent it is necessary for these service providers to complete their contractual obligations to Nexus, these third parties may have access to or process your Information. Nexus generally limits their use of your Information to the purpose for which it was shared. Such service providers shall be bound by obligations of confidentiality at least as protective of you and your Information as those contained herein. Nexus may use all the Information that we collect to understand and analyze the usage trends and preferences of visitors to the Site, to improve the way the Site functions and appears, and to create new features and functionality. If Nexus learns of a security systems incident, then we will attempt to notify you electronically so that you can take appropriate protective steps, if the event rises to the level of a breach. Nexus will also post a notice on the Site. Depending on where you live, you may have a legal right to receive notice of a security breach in writing.  

Personal Information. 

Nexus attempts to limit the Personal Information you provide to: an email address for communication, your name, mobile phone number, and related information derivative thereof. Nexus uses the Information you provide or that we collect to operate, maintain, enhance, and provide all of the features, Information and services found on the Site. We will use your email address, without further consent, for administrative purposes, for customer service purposes, and to address intellectual property infringement, rights of privacy, breach notices, or defamation or other legal issues. Nexus will not use your email address or other Personal Information to send promotional messages unless you have opted in or otherwise requested that Nexus contact you about the Nexus products and services or other information. Nexus does not sell, trade, rent or share your Personal Information with other organizations for their marketing or promotional uses without your express consent.  

How we Use Your Information. 

In addition to the purposes and uses described above, we use information in the following ways:  

  • To identify you when you visit our Site.  

  • To provide our products, services, information, or to process returns. 

  • To improve our Site and product offerings. 

  • To perform or streamline the payment process. 

  • To conduct testing, research, and analysis. 

  • To communicate with you, such as to respond to and/or follow-up on your requests, inquiries, issues, or feedback.  

  • To send marketing and promotional materials including information relating to our products, services, sales, or promotions, or those of our business partners. 

  • To detect and protect against malicious, deceptive, fraudulent, or illegal activity, including violation of our policies and terms and conditions, security incidents, and harm to the rights, property, or safety of our company and our users, employees, or others. 

  • To debug, identify, and repair errors that impair the existing intended functionality of our Site. 

  • To comply with our legal or regulatory obligations, to establish or exercise our rights, and to defend against a legal claim. 

  • For internal administrative purposes, as well as to manage our relationships. 

  • As necessary or appropriate to protect the rights, property or safety of us or others. 

  • To respond to law enforcement requests and as required by applicable law, court order, or governmental regulations. 

  • As described to you when collecting your information directly or as otherwise set forth under applicable law, including for such other purposes as you may consent (from time to time). 

 

Although the sections above describe our primary purpose in collecting your information, in many situations, we have more than one purpose. When we use your contact information to communicate to you about new services and products that may be of interest to you, you will be given the option of receiving periodic informational/promotional mail or email from us. You choose whether to receive correspondence when you provide this information or by following the instructions provided in the email at any time. 

If you do not want us to use your information in this way, please contact us at the details below. 

Information Nexus Collects. 

Nexus may use “cookies”, or small text files that are stored on your computer’s hard drive that most Sites collect. Cookies ensure that our content is presented in the most effective manner for you and your computer. 

Strictly Necessary Cookies 

These cookies are essential to enable you to move around the Site and use its features. Without these cookies, services you have requested, such as remembering your submitted Information, cannot be provided. 

Performance Cookies 

These cookies collect anonymous information on how people use the Site. For example, we may use Google Analytics cookies to help us understand how individuals arrive at our Site, browse or use the Site, and highlight areas where we can improve such as navigation and marketing. The data stored by these cookies never shows personal details from which your individual identity can be established. 

Functionality Cookies 

These cookies remember choices you make such as the country from which you visit the Site, language, and search parameters. These can then be used to provide you with an experience more appropriate to your selections and to make the visits more tailored. The information these cookies collect may be anonymized, and these cookies cannot track your browsing activity on other Sites. 

Targeting Cookies or Advertising Cookies 

These cookies collect information about your browsing habits to make advertising more relevant to you and your interests. They are also used to limit the number of times you see an advertisement as well as to help measure the effectiveness of an advertising campaign. The cookies are usually placed by third-party advertising networks. They remember the Sites you visit, and that information is shared with other parties such as advertisers. 

We may use different kinds of cookies, including session ID cookies and persistent cookies. Session ID cookies are used to personalize your user experience, and to determine ways to improve our Site and the other products and services we offer. These cookies are deleted when you close your browser session. Persistent cookies are used to collect information such as IP addresses, browser type, Internet Service Provider (ISP), referring/exit pages, platform type, date/time stamp, and number of clicks. 

You can refuse or accept cookies from our Site at any time by activating the settings on your browser. You are always free to decline our cookies if your browser permits, but some parts of the Site may not work properly if you do. Check the “Help” menu of your browser to learn how to change your cookie preferences. To find out more about cookies, visit www.aboutcookies.org. 

Many web browsers allow for the use of a “Do Not Track” function to inform Sites that you do not want your online activities tracked. Currently, we do not track your or any other users’ Personal Information over time and across third-party Sites. We, therefore, do not respond to browser “Do Not Track” signals. 

Disclosure of Information. 

We may disclose your information if required to do so by law or in the good-faith belief that such action is necessary to comply with state and federal laws (such as U.S. Copyright law), respond to a court order, judicial or other government subpoena or warrant, or cooperate with law enforcement activity. We also reserves the right to disclose your information that we believe, in good faith, is appropriate or necessary to take precautions against liability; to protect Nexus and others from fraudulent, abusive, or unlawful uses or activity; to investigate and defend ourselves against any fraud, third party claims or allegations; to assist government enforcement agencies; to protect the security or integrity of the Service; or to protect the rights, property, or personal safety of Nexus, our users, or others. 

We may share your Personal Information with agents, contractors, partners or third party service providers in connection with services that these individuals or entities perform for, or with, us. We may, for example, provide your Information to agents, contractors, or partners for hosting our databases, for data processing services, or so that they can provide you with information you requested. 

Third-Party Site. 

The Site may contain features or links to third-party Sites and services. Any personally identifiable information you provide on third-party sites or services is provided directly to such third party and is subject to that third party’s policies, if any, governing privacy and security, even if accessed through the Site. You acknowledge and agree by using the Site that Nexus is not responsible for the content or privacy and security policies of third-party sites or services to which links or access are provided through the Site. Nexus encourages you to learn about third parties’ privacy and security policies before providing them with personally identifiable information. 

Privacy Settings. 

Although Nexus may allow you to adjust your privacy settings to limit access to your Information, please be aware that no security measures are perfect or impenetrable. We cannot control the actions of other Users or third parties that you may choose to share your Information. Therefore, if you choose to post Information using social media, we cannot and do not guarantee that Information you post on the Site will not be viewed by unauthorized persons or become public. We are not responsible for circumvention of any privacy settings or security measures contained on our Site. You understand and acknowledge that, even after removal, copies of Information that you have provided may remain viewable in cached and archived pages or if other Users (including those you have given access to the Site, actually or inadvertently by leaving open a web browser) have copied or stored such provided Information. 

Storage of Information. 

Information collected on the Site may be stored and processed in the United States or any other country in which Nexus or its affiliates, subsidiaries or agents maintain facilities, and by using the Site you consent to any such transfer of Information outside of your country. Except as prohibited by law, we will retain and use your Personal Information for as long as necessary to provide you with the Site or to document our business relationship or otherwise as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements. 

International Visitors. 

The Site is hosted in the United States and is intended solely for visitors located within the United States. If you choose to use the Site from the European Union or other regions of the world with laws governing data collection and use that may differ from U.S. law, then please note that you are transferring your personally identifiable information outside of those regions to the United States for storage and processing, and by providing your personally identifiable information on the Site you consent to that transfer, storage, and processing. 

In the Event of Merger or Sale. 

In the event that Nexus is acquired by or merged with a third-party entity, by using the Site you consent, in any of these circumstances, to the transfer or assigning of the Information that we have collected from you as a User as part of such merger, acquisition, sale, or other change of control. 

Changes and Updates to this Privacy Policy. 

This Privacy Policy may be revised periodically without further notice to you, and this will be reflected by a 'last updated' date above. Please revisit this page to stay aware of any changes. In general, we only use your personal Information in the manner described in the Privacy Policy in effect when we received that personal Information. Your continued use of the Site constitutes your agreement to this Privacy Policy and any future revisions. For revisions to this Privacy Policy that may be materially less restrictive on our use or disclosure of personal Information you have provided to us, we will make reasonable efforts to notify you and obtain your consent before implementing such revisions with respect to such Information. 

Certain State Laws. 

California, Colorado, Connecticut, Virginia, and Utah Residents 

If you are a resident of the above states, you may have the right, subject to certain exceptions defined in the laws and regulations applicable to you, to request that a company: 

  • Disclose certain information to you about its collection and use of your Personal Information. This right includes information about: 

  • The categories of Personal Information we collected about you; 

  • The categories of sources for the Personal Information we collected about you; 

  • Our business or commercial purpose for collecting that Personal Information; 

  • The categories of third parties with whom we disclosed, shared, or sold that Personal Information and the right to limit the use or disclosure of certain sensitive Personal Information (California only); 

  • The categories of Personal Information that each recipient received; 

  • The specific pieces of Personal Information we collected about you; 

  • Provide the Personal Information it has about you in a readily useable format that allows you to transmit the information to another entity without hindrance; 

  • Delete any of your Personal Information that it has collected from you and retained; 

  • Stop selling your Personal Information and refrain from doing so in the future; however, we do not sell your Personal Information; 

  • Correct inaccurate Personal Information it has about you; or 

  • Stop sharing your Personal Information for purposes of cross-context behavioral advertising, targeted advertising, and/or profiling in furtherance of decisions that produce legal or similarly significant effects concerning you; however, we do not share your Personal Information for these purposes; 

You may also have the right not to receive discriminatory treatment if you exercise the rights listed herein that are provided to you by your state of residence. 

California Residents 

If you are a California resident, you have certain rights regarding your Personal Information as defined and covered under the California Consumer Privacy Act, Cal. Civ. Code §§ 1798.100 et. seq., as amended by the California Privacy Rights Act of 2020 (“CCPA”).  Please review each of the rights, below, and the section that follows for more information applicable to these rights. 

  • The Right to Know; 

  • The right to receive/access a copy of your Personal Information; 

  • The Right to Correct; 

  • The right to request deletion of your Personal Information; 

  • The right to opt out of certain disclosures (“sharing”) of your Personal Information; and 

  • The right to limit the use or disclosure of your sensitive Personal Information. 

Note that certain information that is governed by other laws, such as the California Confidentiality of Medical Information Act (CMIA) or HIPAA, may not be subject to the rights noted above. However, additional rights might be available under those laws and standards. Please contact [*] if you would like more information. 

Note that Nexus acts as a “Service Provider” as defined by the CCPA when it collects Personal Information. If we have collected your Personal Information outside of our role as a Service Provider, we will respond to your verified consumer request accordingly. 

Additionally, we are not required to respond to a consumer’s requests for access or disclosure of Personal Information more than twice in a twelve (12) month period. 

California Civil Code Section 1798.83 (California’s, “Shine the Light” law) permits California residents, at no charge once per year, to request a list of all third parties to which we, during the immediately preceding calendar year, have disclosed certain Personal Information for direct marketing purposes; however, we do not share Personal Information with other people or non-affiliated businesses for their direct marketing purposes. 

Virginia and Colorado Residents 

The Virginia Consumer Data Protection Act (VCDPA) and the Colorado Privacy Act (CPA) are laws intended to enhance privacy rights and consumer protection for residents of the States of Virginia and Colorado. The VCDPA applies to certain business entities that do business in Virginia. The following rights apply to all Virginia residents (but not including legal entities, such as companies): 

  • The Right to Know; 

  • The right to receive/access a copy of your Personal Information; 

  • The Right to Correct; 

  • The right to request deletion of your Personal Information; 

  • The right to opt out of certain disclosures of your Personal Information (for more information about your right to opt-out, please contact us at the email below); and 

  • The right to appeal an information controller’s (defined by VCDPA and CPA) refusal to take action regarding a privacy rights request. 

These rights will not apply, however, if Nexus does not collect any Personal Information about you or if all of the information we collect is exempt from the statute (e.g., the VCDPA and CPA do not protect information that is already protected by certain other privacy laws such as HIPAA and does not protect information that is already publicly available). 

To make a request under the VCDPA or CPA you may visit our online request form. You may also call (617) 322-5251. To exercise your right to appeal, you may email us at sales@nexusmedlabs.com and include the identifier from your previous request. 

Nevada Residents 

Although we do not sell Personal Information, Nevada residents have the right to submit a verified request directing us not to sell their Personal Information. If you are a Nevada resident, and would like to submit such a request, please send your request through any of the methods noted below. 

 

Exercising Your Rights 

To exercise any of the rights described above, you can contact us by: 

  • Emailing us at sales@nexusmedlabs.com; or 

  • Calling us at (617) 322-5251. 

When you make a request, we may require that you provide information and follow procedures so that we can verify the request and your jurisdiction before responding to it. The verification steps we take may differ depending on the request you make. We will match the information that you provide in your request to the Information we already have on file to verify your identity. If we are able to verify your request, we will process it. If we cannot verify your request, we may ask you for additional information to help us verify your request.  Please provide as much of the requested information as possible to help us verify the request. We will only use the information received in a request for the purposes of responding to the request. 

Certain states permit their residents to use an authorized agent to make privacy rights requests. We require the authorized agent to provide us with proof of the data subject’s written permission (for example, a power of attorney) that shows the authorized agent has the authority to submit a request for the data subject. An authorized agent must follow the process described above to make a request. The authorized agent must also verify his/her own identity. We will confirm the agent’s authority with the data subject about whom the request was made. 

Contact Information. 

If you have any questions or comments about this Privacy Policy or your consent choices, please email us at: sales@nexusmedlabs.com