Peptide-powered wellness.
Direct-pay telehealth, 48 states + DC.
TelePeptide Health
Effective Date: April 3, 2026 · Last Revised: June 20, 2026
This policy governs personal data collected through our website and marketing communications. For Protected Health Information collected during clinical intake, see our Notice of Privacy Practices.
TelePeptide Health ("TelePeptide," "we," "us," or "our") is a New Jersey-based, non-clinical telehealth technology and marketing platform headquartered in Fort Lee, NJ. This Privacy Policy governs the non-clinical personal information we collect through our website, intake pre-qualifier, waitlist forms, and marketing communications. IMPORTANT: TelePeptide does not collect, receive, or store Protected Health Information ("PHI"). All clinical and medical information is collected directly by the contracted medical group on its own secure, HIPAA-covered platform, where that group — not TelePeptide — is the covered entity and the sole intended recipient of your PHI. For how your clinical information is handled, see that medical group's Notice of Privacy Practices (provided on its platform) and our Terms § 10; our /privacy-practices page explains this no-PHI structure.
Because TelePeptide is not your clinical provider and is not a HIPAA covered entity, you should never send Protected Health Information or clinical details — medical history, conditions, medications, body metrics, symptoms, lab results, or clinical photographs — to TelePeptide through email, SMS, chat, support tickets, website forms, or any other TelePeptide channel. Enter health information only into the contracted medical group's HIPAA-covered platform. If you voluntarily or inadvertently transmit PHI to TelePeptide outside that platform, you do so on your own initiative and at your own risk: such transmission is unsolicited, does not create a covered-entity, business-associate, or treatment relationship with TelePeptide, and you are solely responsible for the disclosure. To the fullest extent permitted by law, TelePeptide disclaims any and all liability arising from PHI you send it outside the medical group's platform, and may delete, disregard, or redirect that information to the medical group without retaining it.
We collect only NON-CLINICAL personal information: (a) Contact and identity data — name, email address, phone number, and state of residence; (b) Visit-setup identifiers — date of birth, biological sex, and mailing address. These are ordinary demographic identifiers (PII), not clinical data, used solely to create your record with the contracted medical group so its hosted intake can pre-fill; they transit to that medical group and we retain only the non-clinical relationship reference (e.g., a patient or voucher identifier), not a clinical record; (c) Payment data — billing name, address, and payment card details processed and stored by our PCI-DSS-compliant third-party payment processor (we do not store card numbers); (d) Marketing interaction data — email open events, link clicks, unsubscribe status, and campaign history; (e) Technical data — IP address, browser type, device type, and pages visited; (f) Apollo.io / Origami-sourced prospect data — for individuals in our marketing database, name, professional title, employer, business email, LinkedIn URL, and location from publicly available professional directories. We do NOT collect medical history, conditions, medications, body metrics, symptoms, lab results, or any other PHI — that information is collected only by the contracted medical group on its own HIPAA-covered platform.
We use your information to: (a) respond to intake submissions and waitlist sign-ups; (b) coordinate care with licensed clinicians and compounding pharmacies; (c) process payments and manage subscriptions; (d) send marketing emails about our programs, health content, and updates — only where you have consented or where permitted by law; (e) honor unsubscribe requests and maintain suppression lists; (f) analyze campaign performance and improve our services; (g) comply with legal obligations including HIPAA, CAN-SPAM, and applicable state telehealth regulations; and (h) prevent fraud, abuse, and security incidents.
If you submitted your email address through our waitlist, intake form, or any other form on this site, you consent to receive marketing emails from TelePeptide Health. All marketing emails comply with the CAN-SPAM Act (15 U.S.C. § 7701 et seq.): they clearly identify TelePeptide as the sender, include our physical mailing address, and include a functional one-click unsubscribe link. We honor opt-out requests within 10 business days. You can unsubscribe at any time by clicking the link in any email or emailing help@telepeptide.org. If we source your contact information from a third-party directory (e.g., Apollo.io), we treat it as a cold outreach and include all required CAN-SPAM disclosures in the first message. We do not send emails to individuals who have previously opted out or whose email has hard-bounced.
If you provide your mobile number and opt in, you may receive account, appointment, and delivery-related text messages (SMS) from TelePeptide and the contracted medical group — for example, intake reminders and shipment tracking. These messages may be sent using automated technology. Consent to text messages is not a condition of purchasing any service. Message and data rates may apply and message frequency varies. You can opt out at any time by replying STOP to any message, and reply HELP for help; carriers are not liable for delayed or undelivered messages. We do not sell or share your mobile number or SMS opt-in with third parties for their own marketing; your opt-in is used only to deliver the messages described here.
We share your data only with the following categories of trusted processors, each under written data-processing agreements: (a) A PCI-DSS-compliant third-party payment processor that serves as TelePeptide's merchant of record — payment processing and subscription management; (b) Resend — transactional and marketing email delivery; (c) Supabase — cloud database and backend infrastructure; (d) Apollo.io — business contact data platform used to source prospect information (name, professional title, employer, and business email) from publicly available professional directories for marketing outreach purposes; (e) Origami — a contact intelligence and data enrichment service used to verify, supplement, and score prospect records in our marketing database, including appending professional attributes such as industry, title, and employer from aggregated public sources; (f) A contracted telehealth infrastructure provider — we work with a third-party telehealth enablement network that provides the licensed physician network, clinical workflow infrastructure, and credentialing services that allow TelePeptide to connect patients with qualified providers. this contracted medical group collects and holds all clinical data directly on its own HIPAA-covered platform; TelePeptide shares with it only the non-clinical setup identifiers in Section 2 and does not route PHI to it; (g) Licensed compounding pharmacies — for prescription fulfillment; (h) Vercel — cloud hosting and edge delivery. We do not sell your personal information to any third party, ever.
TelePeptide's backend stores only the non-clinical data described in Section 2. (a) Supabase — our cloud database — holds contact, marketing, and non-clinical relationship data (such as the patient or voucher identifier returned by the contracted medical group). It does not store your clinical records or PHI; those reside solely on the medical group's own HIPAA-covered platform. (b) Resend — our email provider — sends only non-clinical transactional and marketing messages. As a matter of policy, we never place PHI (medications, doses, labs, diagnoses, intake answers, or other clinical detail) into any email, SMS, or message on any channel. Because TelePeptide does not route PHI through these providers, this Privacy Policy does not depend on their Business Associate Agreement status; any PHI processing occurs on the contracted medical group's platform under that group's own agreements. Direct PHI-related privacy questions to the contracted medical group; for TelePeptide's non-clinical data, contact legal@telepeptide.org.
TelePeptide Health uses AI-assisted tools in limited, non-clinical contexts. Specifically: (a) Marketing content generation — we use AI language models to assist in drafting marketing email copy and campaign content. These tools receive only non-PHI information such as program names and general audience descriptions. No patient health information is ever submitted to AI tools for content generation. (b) Lead research and enrichment — our internal marketing pipeline uses AI to research and score prospective contacts using only publicly available professional information (title, employer, industry). No PHI is processed by these tools. (c) We do not use AI to make clinical decisions, evaluate patient eligibility, or assist in prescribing. All clinical decisions are made solely by licensed physicians. If we introduce AI tools into clinical workflows in the future, we will update this policy and ensure any such tool operates under a HIPAA-compliant Business Associate Agreement.
We use standard server-side analytics and may use first-party cookies to maintain session state in the provider portal. We do not use third-party advertising trackers or cross-site tracking cookies. If we add analytics tools in the future, this policy will be updated and users will be notified.
We retain personal information for as long as necessary to provide services, comply with legal obligations, resolve disputes, and enforce our agreements. Marketing contact data for individuals who have not become patients is retained for up to 2 years from the date of last interaction or until an opt-out is received. Clinical intake records are held and retained by the contracted medical group under the medical-records-retention laws of the patient's state of residence (typically at least 7 years for adult records); TelePeptide does not hold or retain those clinical records. Payment records are retained as required by applicable tax and financial regulations.
Depending on your state of residence, you may have the right to: (a) access a copy of the personal information we hold about you; (b) correct inaccurate information; (c) request deletion of your personal information (subject to legal retention obligations); (d) opt out of marketing communications at any time; (e) data portability where technically feasible. To exercise any of these rights, email legal@telepeptide.org with your full name and email address. We will respond within 30 days. Note: deletion requests for PHI submitted during clinical intake are subject to the medical-records-retention laws of the patient's state of residence and to HIPAA.
Residents of California (CCPA/CPRA) and of other states with comprehensive privacy laws (including Virginia, Colorado, Connecticut, Utah, Texas, Oregon, and Montana) have rights regarding their personal information: to know and access the categories and specific pieces of personal information we have collected, the sources, the business purpose, and the categories of recipients; to correct inaccurate information; to delete personal information (subject to legal retention exceptions); to data portability; and not to receive discriminatory treatment for exercising these rights. We do NOT "sell" personal information and we do NOT "share" it for cross-context behavioral advertising as those terms are defined under the CCPA/CPRA, so there is no "Do Not Sell or Share My Personal Information" process to operate; if that ever changes we will post the required opt-out and honor Global Privacy Control signals. To exercise any right, email legal@telepeptide.org from the address on file or provide enough information to verify your identity; an authorized agent may submit a request with proof of authorization. We respond within the timeframe required by your state's law (generally 45 days). If we deny a request you may appeal by replying to our response, and where your state provides one you may also contact your state Attorney General.
Some information you give us on this website — such as the wellness program you express interest in — may be considered "consumer health data" under the Washington My Health My Data Act, Nevada SB 370, and the Connecticut Data Privacy Act, even though it is not HIPAA Protected Health Information. We collect this limited, non-clinical interest information only with your consent and use it solely to route your inquiry and help set up your visit with the contracted medical group. We do not sell consumer health data, and we do not share it except with the service providers in Section 5 who help us deliver the service, or as required by law. You may request to access or delete the consumer health data we hold, and may withdraw consent, by emailing legal@telepeptide.org. Clinical health information you enter into the medical group's HIPAA-covered platform is governed by HIPAA and that group's Notice of Privacy Practices, not by this section.
We implement industry-standard security measures including TLS encryption in transit, encryption at rest for sensitive data, role-based access controls, audit logging, and HMAC-signed session tokens. However, no system is 100% secure. In the event of a data breach affecting your information, we will notify you as required by applicable law.
Our services are not directed to individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have inadvertently collected data from a minor, contact legal@telepeptide.org immediately and we will delete it.
We may update this Privacy Policy from time to time. Material changes will be communicated by email or a notice on the site at least 15 days before they take effect. The "Last Revised" date at the top of this page reflects the most recent update.
Privacy questions and data requests: legal@telepeptide.org. Unsubscribe requests: help@telepeptide.org. General support: help@telepeptide.org.
TelePeptide Health · 2077 Center Ave, Fort Lee, NJ 07024 · legal@telepeptide.org