Your privacy and the security of your health data are fundamental to how YupMD operates.
HIPAA Compliance
YupMD is fully HIPAA-compliant. Your Protected Health Information (PHI) — including your medical intake, prescriptions, provider messages, and treatment history — is handled according to strict federal privacy standards. This means:
Your health information is never sold to third parties.
It is never shared with employers, insurers, or anyone outside your care.
You have the right to access, correct, and request deletion of your data.
All staff and providers who access your data are bound by HIPAA privacy obligations.
LegitScript Certified
YupMD is LegitScript certified — independently verified to meet legal and safety standards for online prescribing and medication fulfillment.
Technical Security
All data is encrypted using SSL/TLS in transit and at rest.
Your payment information is processed through Stripe and is never stored on YupMD servers.
Your patient portal is protected by password authentication and optional two-factor authentication (2FA), available in Profile → 2FA.
Who can see my information?
Your assigned YupMD provider — to review your case and prescribe treatment.
Our partner compounding pharmacies — only the information needed to fill your prescription.
YupMD support staff — only when needed to resolve account or order issues.
Nobody else. Your primary care physician does not automatically receive your YupMD records unless you request a transfer.
Privacy Policy
You can read our full Privacy Policy at yupmd.com/privacy-policy. California residents can also review our CCPA Privacy Notice at yupmd.com/ccpa.
If you have any additional questions, please don't hesitate to let us know! Our care team is here for you.
Current and former patients: Log into your account and send us a message through the secure patient dashboard.
Not subscribed to a YupMD plan but have a question: Click the chat bubble on the bottom right of our page, and submit a question.