Posted publicly. Linked from the footer, sign-up, and checkout.
The rules every user accepts at sign-up — accounts, marketplace orders, acceptable use, disputes.
Accepted at sign-up · linked in the footerHow MedGrid collects, uses, discloses, and protects personal information (non-PHI).
Linked wherever data is collectedThe separate policy Washington's My Health My Data Act requires for consumer health data.
Linked on the homepage footerWhy compounded drugs and biologics generally cannot be returned, and how refunds work.
Linked at checkoutThe HIPAA notice describing how protected health information may be used and disclosed.
Provided to patients (HIPAA)Signed during onboarding — before platform access and before any patient information moves through MedGrid.
The main contract for an individual physician joining the platform.
Signed before access · doctor sign-upRequired by HIPAA before any patient information moves through MedGrid.
Signed before PHI flowsA patient signs this to allow identifiable data to feed outcomes capture.
Collected before identifiable data is usedThe paid per-seat plan for clinics and groups. Always paired with a BAA.
Signed per clinic / groupSigned before a partner lists products, fulfills orders, or represents MedGrid in the field.
For companies that list products on the marketplace.
Signed before listing productsCommits the pharmacy to patient-specific 503A compounding and to proving its licenses.
Signed per pharmacy partnerFor 1099 reps, including the California-specific provisions.
Signed before territory activationAccepted in-app at the point the feature is used.
For patients using telehealth and ordering through the platform.
Accepted before a telehealth visitFor the doctor-to-doctor consult feature.
Accepted before booking a consultFor CME, webinars, and sponsored education. Accepted by hosts and sponsors.
Accepted by hosts & sponsors