Last updated: 2/14/2024


Welcome to DULA Health’s Privacy Notice! Our core mission is to provide Easterm Medicine patient care, groundbreaking research, and comprehensive education. We aim to heal humanity one patient at a time, enhancing wellness, mitigating suffering, and spreading kindness. This document outlines how DULA Health System (“DULA Health”, “we”, “us”, or “our”) manages, utilizes, reveals, and processes personal data in relation to our main website and any other sites we manage that reference this Privacy Notice (“the Sites”), alongside the associated content, platforms, services, products, and functionalities we offer (jointly referred to as the “Services”). Our privacy practices concerning DULA Health’s employees and personnel are not covered here.

As the custodian of your personal information in the context of your utilization of the Services, DULA Health decides on and bears the responsibility for the handling of your personal data.

Note that this section of Privacy Notice does not cover the handling, utilization, and sharing of your protected health information. For details on how we manage, use, and disclose protected health information under the Health Insurance Portability and Accountability Act of 1996 (HIPAA), please see our HIPAA Notice of Privacy Practices.

Global Applicability and Region-Specific Disclosures

This Privacy Notice is designed to apply to our Site visitors and users of our Services. We may choose or be required by law to provide additional disclosures relating to the processing of personal information in certain countries, regions or states. 


When we refer to “personal information” in this Privacy Notice at DULA, it encompasses any data or information that can identify, relate to, describe, be associated with, or could reasonably be linked, directly or indirectly, with a specific individual or household. This term also includes what is commonly referred to as “personal data,” “personal information,” or “personally identifiable information.” It is important to note that this does not cover protected health information under HIPAA.


At DULA, we gather personal information through various methods. You might provide us with your personal information when you reach out to us, send messages, conduct searches on our Sites, sign up for our mailing lists, newsletters, or other marketing communications, apply for a job, participate in surveys, make purchases in our gift shop, or engage with other features of our Service.

We might combine your activities and information collected from our websites and mobile apps with data received from third parties, as well as information automatically gathered through tracking technologies. This approach helps us to offer you a personalized experience across all interactions with us.

Personal Information Collected from You The types of personal information we collect from individuals through our Services include:

  • Contact Information: This includes names, email addresses, your country or region, and your communication preferences. We use this data to respond to your inquiries, communicate directly with you, and send you marketing communications based on your preferences.
  • Payment Information: For purchases made in our gift shop or registrations for events or conferences, we collect payment information to complete transactions. We rely on third-party payment processors for credit card payments, meaning we do not retain any personally identifiable financial information like credit card numbers. This information is directly provided by you to our third-party processors, whose privacy practices govern their use of your information.
  • Inquiry and Communications Information: Information you provide in messages through forms, chat, email, or phone is used to respond to your inquiries, communicate with you, and improve the services we offer to our community.
  • Newsletter and Marketing Emails: We collect email addresses and interests for our communications, sending updates on the latest advancements in medicine, research, and wellness to promote healthy living. You can unsubscribe from these communications at any time through the provided link, except for essential service-related communications.
  • Survey Information: Your responses to surveys or testimonials help us administer services, respond to your input, conduct market research, and guide our marketing and growth strategies.
  • Events and Conferences Registration Information: We may collect information for event registrations, including through continuing medical education programs.
  • Feedback Information: Your feedback on our Services is crucial for communication, market research, and our overall growth.
  • Employment Application Information: If you apply for a job, we collect various personal details, including contact information, educational and work history, and other relevant data.

Information Automatically Collected Similar to many digital platforms, we and our third-party partners automatically collect certain information when you visit or interact with our Services, such as:

  • Log Data: This includes IP addresses, device types, browser types, URLs visited, and time spent on our Services.
  • Analytics Data: We track the paths you take to and through our services, including usage and activity data.
  • Location Data: We derive general location information from your IP address.

Cookies and similar technologies help us collect this information, distinguishing you from other users and enhancing your service experience.

Personal Information from Third Parties We also receive personal information from third parties, combining it with data we collect directly or automatically. This includes information from:

  • Other hospitals or networks within the DULA system.
  • Social media interactions.
  • Service providers like survey and marketing agencies or payment processors.
  • Community partners and other sources, including publicly available data or data from mergers and acquisitions.

Our use of personal information extends to fulfilling requests, managing our operations, providing event access, communication, marketing, service improvement and personalization, user analysis, technology troubleshooting, security, legal compliance, and other lawful purposes or purposes you have consented to.

Our practices align with relevant privacy laws, including the Information Practices Act, the Public Records Act, and others. We do not distribute or sell electronically collected personal information without user consent, except as legally permitted.

Your control over your information includes preferences for email communications, information modification or deletion, and rights under California law for residents, including data access and deletion requests.

Children under the age of 13 should not provide personal information to us, and we take steps to delete such information if discovered.

Links to third-party websites are provided for convenience, but we are not responsible for their privacy practices.

We may update this Privacy Notice to reflect changes in our practices or legal requirements, notifying you of significant changes as appropriate.

For any questions or concerns about this Privacy Notice or your personal information, please contact us directly.


You have the ability to manage your information in the ways listed below:

  • Email Communications Preferences: You have the option to cease receiving promotional emails from us by using the “unsubscribe” link found in those emails. However, it is not possible to opt out of receiving communications that are essential for the service (e.g., account verification, transactional communications, updates about service changes, technical and security notices)
  • Modifying or Deleting Your Information: Should you wish to review, alter, erase your personal information, or choose to have your personal information discarded without reuse or distribution (in line with California Government Code section 11015.5), please reach out to us directly through the contact details provided in the Contact Us section. It may not always be possible to modify or delete your information under certain circumstances.

DULA’s services do not target and aim not to collect or solicit personal information from individuals under the age of 13. Individuals under 13 are advised not to use our Services or provide any personal information to us directly or indirectly. If a child under 13 has submitted personal information to DULA, we encourage their parent or guardian to contact us to request the removal of the child’s personal information from our systems. Should we discover that any personal information collected is from a child under the age of 16, we will take steps to promptly eliminate such information.

  • Links to Third-Party Websites or Services Our Services might contain links to external websites, plugins, and applications. Unless we directly link to or explicitly adopt this Privacy Notice, it does not extend to, nor are we responsible for, the personal information handling practices of third-party websites and online services or those of other third parties. For information on the privacy practices of third parties, please consult their respective privacy notices.
  • Updates to This Privacy Notice DULA may revise this Privacy Notice periodically. Upon updating this Privacy Notice, we will also update the revision date at the start of the document. Significant changes to this Privacy Notice will be communicated to individuals via email to their registered addresses, by conspicuous posting on our Services, or through other appropriate communication methods. Changes become effective as of the date they are published unless stated otherwise. We encourage you to regularly review this Privacy Notice to stay informed on how we are managing your information.

HIPAA Notice of Privacy Practices

I. Introduction
  • Purpose: The notice should start by explaining its purpose, which is to inform patients about their rights and privacy protections under HIPAA.
  • Commitment to Privacy: It should emphasize the institution’s commitment to maintaining the privacy and security of PHI.
II. Uses and Disclosures of PHI
  • For Treatment: Explain how PHI can be used to provide treatment, including consultation between healthcare providers.
  • For Payment: Describe uses and disclosures for billing and payment purposes.
  • For Healthcare Operations: Clarify how PHI can be used for administrative and improvement activities.
  • Other Uses and Disclosures: Detail scenarios where PHI might be shared without prior authorization, such as for public health purposes, legal requirements, or to avert a serious threat to health or safety.
III. Patient Rights
  • Right to Access: Patients have the right to access and get copies of their health information.
  • Right to Amend: Patients can request amendments to their health information if they believe it is incorrect or incomplete.
  • Right to an Accounting of Disclosures: Patients can request a list of certain disclosures of their health information made by the institution.
  • Right to Request Restrictions: Patients can request restrictions on certain uses and disclosures of their health information.
  • Right to Request Confidential Communications: Patients can request to receive communications of health information by alternative means or at alternative locations.
  • Right to a Paper Copy: Patients have the right to a paper copy of the notice upon request.
IV. DULA’s Responsibilities
  • Maintain Privacy: DULA must maintain the privacy of PHI as required by law.
  • Provide Notice: DULA must provide this notice to its patients and obtain acknowledgments of receipt.
  • Abide by Notice Terms: DULA must abide by the terms of the current notice.
V. Changes to the Notice
  • Detail how and when the notice can be changed, including how patients will be notified of any changes.
VI. Complaints and Contacts
  • Instructions for Filing Complaints: Provide information on how patients can file complaints with the institution or the U.S. Department of Health and Human Services if they believe their privacy rights have been violated.
  • Contact Information: Offer contact details for someone at the institution (e.g., a privacy officer) who can answer questions or provide additional information about the notice.
VII. Effective Date

Each HIPAA Notice of Privacy Practices must be tailored to the specific practices and policies of the institution. It’s crucial for DULA to ensure that its notice accurately reflects how it handles PHI in the context of its clinics and healthcare services, adhering to both federal regulations and the institution’s policies for protecting patient privacy.

VIII. Contact Us

If you have any questions or requests in connection with this Privacy Notice or other privacy-related matters, please Contact Us.

Or call us at (213) 487-0110