Privacy Policy

How DPCFinder collects, uses, and protects your information

Last updated: March 2026

DPCFinder ("we," "us," or "our") operates the DPCFinder website and related services. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services.

1. Information We Collect

We collect information in the following ways:

Information You Provide

  • Email addresses— when you subscribe to our newsletter ("The Direct Care Guide") or create an account.
  • Contact form submissions — when you submit an inquiry or contact a DPC practice through our lead forms, including your name, email, phone number, and message.
  • Practice account information — when doctors claim or create a practice listing, including practice name, address, contact details, services, and pricing.

Information Collected Automatically

  • Analytics data — page views, click events, search queries, referral sources, and general usage patterns.
  • Device information — browser type, operating system, screen resolution, and general location (city/state level, not precise).
  • Cookies— small data files stored on your device to maintain session state and preferences. See the Cookies & Tracking section below.

2. How We Use Your Information

  • Newsletter delivery — to send you our monthly newsletter with DPC tips, new practice listings, and healthcare savings strategies.
  • Lead forwarding — when you contact a practice through our site, we forward your inquiry to that practice so they can respond to you directly.
  • Site improvement — to analyze how visitors use our site, identify popular content and searches, and improve the user experience.
  • Practice management — to enable DPC practices to manage their directory listings, respond to patient inquiries, and process subscription payments.
  • Communications — to send transactional emails such as account confirmations, billing receipts, and important service updates.

3. Third-Party Services

We use the following third-party services to operate DPCFinder. Each has its own privacy policy governing their use of your data:

Supabase

Database & Authentication

Stores user accounts, practice listings, newsletter subscriptions, and contact form submissions.

Stripe

Payment Processing

Handles all payment transactions for premium practice listings. We do not store credit card numbers on our servers — Stripe processes and secures all payment data.

Resend

Email Delivery

Sends our newsletter, transactional emails, and practice notification emails on our behalf.

Vercel

Hosting & Infrastructure

Hosts our website and may collect standard server logs including IP addresses and request metadata.

4. Cookies & Tracking

We use cookies and similar technologies to:

  • Maintain your session and authentication state.
  • Remember your preferences (such as location settings).
  • Collect anonymous analytics data to understand how visitors use our site.

You can control cookies through your browser settings. Disabling cookies may affect some site functionality, such as staying logged in to a practice account.

5. Data Retention

  • Newsletter subscriptions — we retain your email address until you unsubscribe. Upon unsubscribing, your email is removed from our mailing list within 30 days.
  • Contact form leads — we retain lead data for up to 12 months, after which it is automatically deleted unless the associated practice requests earlier removal.
  • Practice accounts — account data is retained for the duration of the account. If a practice cancels their subscription, we retain their basic listing data (name, address) for the public directory but remove premium features and contact details within 30 days.
  • Analytics data — aggregated analytics data is retained indefinitely. Individual session data is retained for up to 24 months.

6. Your Rights

You have the right to:

  • Unsubscribe — opt out of our newsletter at any time using the unsubscribe link in any email.
  • Request your data — ask us for a copy of the personal data we hold about you.
  • Request deletion — ask us to delete your personal data from our systems.
  • Correct your data — request corrections to any inaccurate personal data we hold.
  • Data portability — request your data in a common, machine-readable format.

To exercise any of these rights, contact us at privacy@dpcfinder.com. We will respond to your request within 30 days.

7. Data Security

We implement industry-standard security measures to protect your personal information, including encryption in transit (TLS/SSL), encrypted storage, and access controls. However, no method of electronic transmission or storage is 100% secure. While we strive to protect your data, we cannot guarantee its absolute security.

8. Children's Privacy

DPCFinder is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe we have inadvertently collected such information, please contact us and we will promptly delete it.

9. Changes to This Policy

We may update this Privacy Policy from time to time. When we make changes, we will update the "Last updated" date at the top of this page. For significant changes, we will notify newsletter subscribers via email. We encourage you to review this policy periodically.

10. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us at:

DPCFinder

Email: privacy@dpcfinder.com

← Back to DPCFinder