Medcan Privacy Policy
Updated: January 26, 2026
Medcan Health Management Inc. (“Medcan”, “we”, “us”, “our”) is committed to protecting your privacy. This Policy explains how we collect, use, disclose, and safeguard your personal information—including personal health information—when you use the myMedcan Portal, visit our clinics, receive virtual care, interact with our websites, or otherwise engage with us.
1. COLLECTION AND USE OF PERSONAL INFORMATION
We collect and use personal information when you interact with Medcan in the following ways:
Visit a Medcan clinic or use virtual care
We collect details such as your name, date of birth, health card number, contact information, medical and family history, appointment and referral details, and health care documents. For virtual care, we may also collect identity verification details and chat or transcription content from your session to ensure continuity of care. To help mitigate the risk of information being intercepted or unintentionally disclosed during a virtual case session, you should be in a private setting and use your own device.
Create an account on the myMedcan Portal
To set up and manage your account, we collect your name, email address, date of birth, password, and health card number. You may also choose to add optional profile details such as gender, address, emergency contact, marital status, employment status, workplace name, and role. Your profile may update automatically based on your interactions with Medcan.
Book appointments or purchase services
We collect appointment details, including visit type, reason for visit, medical history, and emergency contact information. For purchases, we collect payment and insurance details to process transactions securely.
Chat with us online, by phone, or email
When you contact us, we collect your name, email address, phone number, and the contents of your messages. Calls may be recorded for quality assurance and training purposes.
Electronic Transactional and Marketing Communications
We use your contact information to send you information about your appointments and to notify you when your test results and health related reports are available. We also use your contact information to send you marketing communications about resources, services, offers, events and promotions tailored to your interests and interactions with Medcan. We do not use sensitive personal health information for marketing purposes without your express consent.
Health and Wellness Content
The provision of information and educational content is a core feature of Medcan’s health and wellness service offerings. We use your contact information to send you this content, which is also tailored to you based on your Medcan profile.
Download content, apply for a job or respond to a survey
For downloads, we collect your name, phone number and email address. For job applications, we collect information from your application materials to process and respond to your application. When you respond to a survey, we collect the information you provide to improve the nature and quality of our services.
Contact us for support
We collect your name, email address, phone number, and details related to your inquiry. This information may be retained for future support, documentation, training and quality assurance. Calls may be recorded; if you do not wish to have your call recorded, you have the option to speak with us in person or communicate with us by email.
Visit a Clinic
We may conduct video recording for security purposes in public areas of our clinics. Signs will be posted where recording occurs to notify you.
Operational Purposes
We may use your personal health information to provide your care and to run our services safely and effectively. This includes planning and improving our programs and their delivery, preventing fraud, protecting your identity, and making sure we use our resources responsibly. We may also use your information to address and improve the quality of our care, train our staff, process payments and meet our legal obligations.
Biometric Data
We may collect biometric information, body composition measurements, or data from connected devices (including wearables and health-monitoring technology) when you link them to the myMedcan Portal. This information is used to verify identity, deliver personalized health and wellness services, track progress, and enhance security.
Artificial Intelligence
We use artificial intelligence (AI) technologies to support and enhance our service planning and delivery. AI may be used to transcribe voice interactions, support research and analytics, and improve operational efficiency.
Research, Analytics and Reporting
We may use personal health information for research and analytics through technologies like AI and machine learning to improve our services and support medical research. We only use or share data that could identify you with your consent or when permitted by law. When otherwise sharing information with third parties, for research, analytics and reporting purposes, we use de-identified data without personal details so you cannot be identified. These de-identified reports help Medcan and our partners understand health trends and enhance our offerings.
Children’s Privacy
If you are under the age of majority, a parent or legal guardian must contract for and consent to services on your behalf. Medcan does not knowingly collect personal information directly from children without parental consent. Parents or guardians may request access or correction of a minor’s information as permitted by law.
2. SHARING OF PERSONAL INFORMATION
Medcan does not sell your personal information. We only share it with third parties when you consent, when required or permitted by law, or as described below. When sharing information, we ensure only the minimum necessary data is disclosed and that recipients are subject to appropriate privacy obligations.
Health Care Providers and Facilities
We may share your information with other health care professionals, hospitals, pharmacies, labs, or other services to support your care. This may include using secure electronic systems across Ontario to coordinate timely and effective treatment.
Employers and Third Parties
When you access Medcan services through your employer or another third party, unless you otherwise expressly consent, we may share limited personal details for billing and may provide de-identified, aggregated reports to your employer or the third party for benchmarking and analysis.
Benefits Providers and Provincial Health Plans
We may disclose information to benefits providers and provincial health plans to coordinate payment and billing for services you receive.
Affiliate Clinics
If you’re referred to an affiliate clinic, we may share basic details—such as your name, contact information, employer, appointment type and scheduling preferences —to help coordinate your care, including outside of Ontario.
Service Providers
We work with trusted partners (such as labs, technology vendors, payment processors, and marketing agencies) who only receive the information needed to perform their services and are subject to contractual protections that prohibit them from using that information for their own purposes unrelated to you or Medcan.
Research Partners and Registries
We may share de-identified data with research partners, or as otherwise permitted by law (for example, with the approval of a research ethics board). We may also share information with prescribed health registries to help improve health care delivery and population health.
Legal and Compliance
We may disclose your information as required for legal reasons, such as responding to court orders, investigating fraud, or complying with applicable laws.
3. STORAGE AND LOCATION OF PERSONAL INFORMATION
When you receive services directly from Medcan, your personal health information is stored in Canada. In some cases, personal health information may be transferred outside Canada (for example, to specialists located outside of Canada for your care). There may also be processing outside Canada by service providers (for example, technical support or cloud services). When information is transferred to another jurisdiction, it will be subject to the laws of that jurisdiction, including access by government authorities in that jurisdiction according to those laws.
4. INFORMATION ABOUT OUR WEBSITE
Visiting Our Website
We collect technical details like IP address, pages visited, browser type, and time spent on our sites to help us improve your experience.
Cookies
We use cookies and similar technologies to personalize your experience, remember your device, and promote our products and services to you, including through third-party social media platforms and targeted ads. You can adjust your browser settings to manage cookies, but some website features may not work if cookies are disabled. We may also use third-party cookies to deliver ads and measure their effectiveness.
Analytics
Our websites use tools like Google Analytics to understand how visitors use our sites and to improve your experience. You can learn more or opt out by visiting Google’s privacy resources.
Third Party Links
Our websites may link to other sites we don’t own or control. These sites have their own privacy policies, and we’re not responsible for how they handle your information. We encourage you to review the privacy policy of any site you visit.
Tracer Tags & Web Beacons
We may use tracer tags or web beacons to see which pages on our website are visited, helping us optimize our websites for all users.
5. SAFEGUARDS AND RETENTION
Medcan takes your privacy seriously. We use administrative, technical, and physical safeguards to protect your personal information from theft, loss, and unauthorized access or disclosure. Only Medcan employees and service providers who need your information to do their jobs can access it.
We keep personal information only as long as needed to fulfill the purposes described in this policy or to meet legal and business requirements. Personal health information in your medical record is retained according to provincial and territorial guidelines.
6. YOUR CHOICES
Marketing Communications
You can unsubscribe from our marketing emails anytime by clicking the link at the bottom of the message, updating your preferences in your myMedcan account, or contacting us. Even if you unsubscribe, you’ll still receive important information like appointment reminders.
Withdrawing Consent
You can withdraw your consent for us to collect, use, or share your personal information at any time (unless restricted by law or contract) by contacting us. Please note, withdrawing consent may mean we can’t provide you with certain services.
Closing Your Account
You can close your myMedcan account or request deletion of your profile information by contacting us. Some information, such as your medical record, may be kept as required by law. For details, please see “Safeguards and Retention.”
7. ACCESS TO AND UPDATING OF INFORMATION
You have the right to access, examine, update, and correct your personal information and personal health information in our custody and control, subject to limited exceptions under applicable law. In certain provinces, you may authorize another person to receive a copy of your personal health information. Requests may be made by contacting Medcan, and we may ask for information to verify your identity.
8. UPDATES TO OUR PRIVACY POLICY
We may update this Policy to reflect changes in law, services, or practices. Updates will be posted on our website and/or myMedcan, with the effective date indicated. We encourage you to review this Policy periodically.
9. CONTACT US
If you have questions, concerns, or requests about this Policy or your personal information, please contact:
Privacy Officer
150 York Street, Suite 1500
Toronto, ON M5H 3S5
Email: privacy@medcan.com
You may also contact the Information and Privacy Commissioner of Ontario at http://www.ipc.on.ca/.