Platform Privacy Policy
Last Updated: October 3, 2025
1. Introduction
Welcome to DVM League. This Privacy Policy explains how DVM League, LLC ("we," "us," or "our") collects, uses, shares, and protects information in connection with our website, platform, and services (collectively, the "Services").
This policy is designed to be clear and transparent, whether you are a visitor to our site, a General Practitioner (GP) creating an account, or a board-certified Specialist applying to join our network.
2. Information We Collect
We collect information necessary to provide our specialized, professional Services:
A. Information You Provide to Us Directly
- GP Account Information: When you create an account, we collect your full name, clinic name, professional email address, state(s) of licensure, and a password you create.
- Specialist Application Information: When you apply to join our network, we collect your professional contact information, Curriculum Vitae (CV), specialty, states of licensure, and professional credentials for verification purposes.
- Case Data: To facilitate a consult, GPs upload case-specific information, which includes patient medical records, diagnostic images, and other clinical data ("Case Data"). This may incidentally include pet owner information provided by the GP.
- Payment Information: When a GP makes a purchase, payment details are collected and processed directly by our third-party payment processor, Stripe. We do not store your credit card information on our servers.
B. Information We Collect Automatically
When you use our Services, we automatically collect certain technical information from your device, including log and usage data (e.g., IP address, browser type) and use essential cookies to maintain session information and secure your account. We do not use third-party tracking or advertising cookies.
3. How We Use Your Information
Our use of your information is strictly for professional purposes:
- To Provide and Secure the Services: To create and manage accounts, facilitate consultations, process payments, and monitor for security threats.
- To Evaluate Specialist Applicants: To review applications and verify credentials.
- To Communicate With You: To send essential service-related notifications and respond to your inquiries.
- To Improve Our Services: To analyze usage trends internally to improve platform functionality. Case Data may be de-identified and used for internal research and training purposes.
We will never sell your personal or professional information to third parties.
4. How We Share Your Information
We only share information under the following limited circumstances:
- Between GPs and Specialists: The core function of our platform is to share Case Data provided by a GP with the engaged Specialist to facilitate the consultation.
- Service Providers: We use trusted third-party vendors who perform essential services on our behalf. These include Vercel (web hosting), Supabase (database and storage), Stripe (payment and payout processing), and Google Workspace (for Specialist application intake). These providers are contractually obligated to protect your information.
- Legal Compliance and Protection: We may disclose information if required by law or to protect the rights, property, or safety of DVM League, our users, or the public.
5. Data Security and Retention
We employ robust technical and administrative security measures, including database encryption and row-level security, to protect your information. However, no method of transmission over the internet is 100% secure.
We retain your account information for as long as your account is active. Case Data is retained in accordance with professional record-keeping standards. Application data for Specialists who are not onboarded is retained for 24 months for consideration in future opportunities, unless deletion is requested sooner.
6. HIPAA Non-Applicability
The Health Insurance Portability and Accountability Act (HIPAA) applies to human health information. It does not apply to veterinary medical records. While we are not a HIPAA-covered entity, we are committed to upholding a high standard of confidentiality and security for all data on our platform, consistent with our professional and ethical obligations.
7. Your U.S. Privacy Rights
Depending on your state of residence (e.g., California, Colorado, Virginia), you may have certain rights regarding your personal information, such as the right to access, correct, or delete your data, subject to certain exceptions (such as our need to retain records for legal or professional reasons).
To exercise any of these rights, please contact us. We will not discriminate against you for exercising your privacy rights.
8. Children's Privacy
Our Services are intended exclusively for a licensed professional audience and are not directed to children under the age of 16. We do not knowingly collect personal information from children.
9. International Data Transfers
Our Services are hosted and operated in the United States. If you are using the Services from outside the U.S., please be aware that your information will be transferred to, stored, and processed in the United States, where our servers are located and our central database is operated. The data protection laws of the U.S. may differ from those in your country of residence.
10. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. The "Last Updated" date at the top of this policy will indicate when it was last revised. For material changes, we will notify you through the platform or via email.
11. Contact Us
If you have any questions about this Privacy Policy or our data practices, please contact us.