Data & Privacy

How do we safeguard data?

At Zocdoc, we are committed to the security and privacy of patients and providers. This means we’re always working hard to safeguard your data and continually earn your trust. We undergo industry security standard audits, such as SOC 2 Type II and HITRUST, annually, to maintain high standards. Zocdoc.com, along with Zocdoc Marketplace, Bookable Directory (an enterprise tool from Zocdoc), and our office infrastructure have earned Certified status (CSF v9) for information security by HITRUST. Keeping your information secure is a top priority for us. Here are some of the ways we protect it:

 

-Privacy and security training: Everyone at Zocdoc receives training to ensure that we stay focused on privacy and security. This includes privacy training that covers HIPAA ( the Health Insurance Portability and Accountability Act, which establishes national standards for protecting the identifiable health information of health plan beneficiaries and patients) as well as additional security training administered by a third party.

 

-Strong encryption: We employ industry standard technology to safeguard data and our technology is evaluated annually by third party auditors. Our site uses SHA-256 encryption and Zocdoc data is transmitted over Transport Layer Security (TLS) connections (HTTPS).

 

-Secure storage: Zocdoc leverages Amazon Web Services (a leading cloud computing services provider) to store data in physically and electronically secure facilities.

 

-Expert auditing: Zocdoc works with outside experts to maintain high standards and rigorous security practices. We hire third parties to test our service and processes as part of our recurring penetration test program, as well as conduct HITRUST and SOC 2 Type II audits.

 

-Smart features: We build features that protect data on your end, too. For instance, we automatically sign you out of your account if you’re inactive, we set requirements on your password strength, and we lock your account if the wrong password is entered too many times.

What data do we collect?

To book a doctor’s appointment on Zocdoc, you only need to share basic information, such as your name, email, sex, phone number and date of birth. You also have the option to enter additional information, such as your insurance carrier, to help you find the right healthcare provider.

 

Over the years, patients have asked us to improve more aspects of their healthcare experience by managing additional medical information. In fact, Zocdoc Check-In – an opt-in service which helps you digitally complete your medical paperwork and share it with your healthcare providers – was the most requested feature from patients.

 

To make sure we’re always improving our products, we also analyze use of the service – such as the time of day you schedule an appointment, the specialties that you book most often, and the type of device you use. This data, like the rest of your information, is stored with industry standard security. Please note that Zocdoc does not store credit card information, bank account information, radiological images, laboratory analysis, or diagnostic reports.

How do we use and share data?

When you book an appointment, we securely share your name, insurance details (if you provide them), date of birth, sex, chosen appointment time and certain other relevant information with your doctor. For example, if you choose to use Zocdoc Check-In (instead of a clipboard and pen in the doctor’s office), we relay to your doctor, on your behalf, any information you voluntarily provide. In addition to sharing your data with your healthcare providers, we may also share your information as described in our Privacy Policy.

 

We also analyze aggregated or de-identified data (which means data that is individually non-identifiable) to better understand different uses of Zocdoc and how we can deliver a better healthcare experience. For example, testing different kinds of emails has helped us understand when and how patients prefer to receive Wellness Reminders for preventive care. We may also use this non-identifiable data in other ways, including for projects that can benefit society, such as projects that study disease patterns or contribute to public health initiatives.

 

Like other online businesses, we may use your information to help us or our partners show ads for our services on other websites or platforms. We never sell your personal information to third parties. In all of these cases, the security of your data is a priority.

 

This document is intended to provide a helpful overview of our practices. More details on how we protect and use your data can be found in our Privacy Policy.  If there are any differences or inconsistencies between the information on this webpage and in the Privacy Policy, the Privacy Policy takes priority.

 

Still have questions or comments? Please reach out to service@zocdoc.com or give us a call at (855) 962-3621.

Where can I learn more?

Privacy Policy: Our agreement with you that outlines how we collect, use, and share your data

Terms of Use: Your rights, responsibilities, and your relationship with Zocdoc and our providers

Acceptable Use Policy: Guidelines for the appropriate use of our basic services

Additional Terms: Details about your use of other Zocdoc products