Privacy page for Epocrates | Learn how Epocrates handles privacy

Contact information

Privacy policy

The privacy policy by is a legal document or statement that discloses how Epocrates gathers, uses, discloses, and manges their customers' data.

View privacy policy for Epocrates

Privacy contact information

Get the contact information for Epocrates privacy team or DPO.

Privacy contact information for Epocrates

Data transfers

The basis for athenahealth sharing, adding, uploading, hosting, accessing or sending personal data out of Europe. Vendors can also add a description of their own impact assessment for data transfers.

View Epocrates' data transfers information

Security information & certifications

Documentation of the security measures and practices athenahealth has in place when handling personal data.

View Epocrates' security information

Personal data

A description of the personal data that athenahealth is handling.

Sensitive and ordinary information being collected by Epocrates'

Data processing agreements

A DPA is a contract that defines clear roles and obligations for the sharing of personal data.

Get Epocrates' data processing agreement(s)

Data retention & deletion

Information about how long the data is kept for and when it's deleted.

Get Epocrates' data retention information

Subprocessors

Subprocessors are companies that provide a service for athenahealth and who has or potentially will get access to personal data of their customers.

Get Epocrates' list of subprocessors

Processing locations

Where personal data is processed by athenahealth

Get Epocrates' full list of data processing locations

Processing locations of athenahealth's subprocessors

Where personal data is processed by the subprocessors of athenahealth

Get full list of data processing locations of Epocrates' subprocessors