Zocdoc takes your data and privacy very seriously. We want all our users to feel confident that their information is safe and protected.
What data does Zocdoc collect?
At Zocdoc, we collect data you voluntarily provide to book your appointment. We may also include metadata from your mobile app or browser page to help us troubleshoot and improve our products.
To book a doctor’s appointment on Zocdoc, you only need to share basic information, such as your name, email, sex, phone number, and date of birth. You also have the option to enter additional information, such as your insurance carrier, to help you find the right healthcare provider.
How does Zocdoc safeguard data?
At Zocdoc, we are committed to the security and privacy of patients and providers. This means we’re always working hard to safeguard your data and continually earn your trust. We annually undergo industry security standard audits, such as SOC 2 and HITRUST, to maintain high standards. Our website, Zocdoc.com, and our office infrastructure have each earned Certified status (CSF v9) for information security by HITRUST. Keeping your information secure is a top priority for us. Here are some of the ways we protect it:
Privacy and security training: Everyone at Zocdoc receives training to ensure that we stay focused on privacy and security. This includes privacy training that covers HIPAA (the Health Insurance Portability and Accountability Act, which establishes national standards for protecting the identifiable health information of health plan beneficiaries and patients), as well as additional employee training focused on information security to promote security awareness.
Strong encryption: We employ industry standard technology to safeguard data and our technology is evaluated annually by third party auditors. Our site uses AES-256 encryption and Zocdoc data is transmitted over Transport Layer Security (TLS) connections (HTTPS).
Secure storage: Zocdoc leverages Amazon Web Services (a leading cloud computing services provider) to store data in physically and electronically secure facilities.
Expert auditing: Zocdoc works with outside experts to maintain high standards and rigorous security practices. We hire third parties to test our service and processes as part of our recurring penetration test program, as well as conduct HITRUST and SOC 2 Type II audits.
Smart features: We build features that protect data on your end, too. For instance, we automatically sign you out of your account if you’re inactive and we lock your account if the wrong login code or password is entered too many times.
How does Zocdoc use and share data?
When you book an appointment, we share some information with your doctor to schedule your visit. This may include your name, insurance details (if you provide them), date of birth, visit reason, and chosen appointment time.
If you use our Zocdoc Intake feature (filling out your forms online ahead of time, instead of using a clipboard and pen in the doctor’s office), we relay to your doctor, on your behalf, any information you voluntarily provide us. You can also choose to save this information to your Zocdoc account, so that it can be auto-filled in future forms.
In addition to sharing your data with your healthcare providers, we may also use and share your information as described in our Privacy Policy. For example, we may analyze de-identified data (which means data that is individually non-identifiable) or aggregated data to improve our product and deliver a better healthcare experience.
The security of your data is a priority, and we never sell your personal information to third parties.
This article is intended to provide all Zocdoc users a helpful overview of our practices. For a more comprehensive and detailed description of how we collect and use your data, please review our Privacy Policy.
Where can I find more information about how Zocdoc handles data and privacy?
The following links provide specific information about our data and privacy policies:
Privacy Policy: Our agreement with you to protect your data
Terms of Use: Your rights, responsibilities, and your relationship with Zocdoc and our providers
Acceptable Use Policy: Guidelines for the appropriate use of our basic services
If you have any additional questions about our data and privacy policies, you can contact us here.