Privacy Policy

Privacy Policy · Effective April 24, 2026

This Privacy Policy explains what information Immunization Record collects when you visit this website, how we use it, who we share it with, and the rights you have over your personal data — including rights granted under the California Consumer Privacy Act (CCPA), the EU General Data Protection Regulation (GDPR), and other US state privacy laws.

Effective: April 24, 2026
Reviewed: Quarterly
Applies to: immunizationrecord.org/

Scope & Operator

This Privacy Policy applies to the website located at https://immunizationrecord.org/ (“the Site,” “we,” “us,” or “our”). It does not apply to any third-party website you may navigate to from this Site, including any state government immunization registry, pharmacy chain portal, healthcare provider site, or other linked resource. Each of those sites operates under its own privacy policy, which you should review separately.

This Site is operated as an independent informational publisher. The operator’s contact details for privacy purposes are provided in the contact section below.

Plain-English Summary

The Short Version

  • We do not require accounts. You can read every guide on this site without logging in or providing any personal information.
  • We do not collect, store, or transmit any health information about you. Do not email us your vaccination records or other personal health data.
  • We use standard website analytics to understand which guides are useful, what searches lead readers to us, and how to improve our content. This data is aggregated and does not identify you.
  • We use display advertising to fund the site. Ad networks may use cookies to show you relevant ads.
  • You can opt out of advertising cookies through standard browser controls and ad-industry tools.
  • We do not sell your data. We do not share your data with anyone except the limited service providers listed below who help us run the site.
  • You have rights to access, delete, and opt out under California, EU, and other jurisdictions’ laws — see the relevant section below.

Information We Collect

Information you provide directly

The only personal information we collect from you is information you choose to send us. This includes:

  • Email correspondence — When you email any of the addresses listed on our Contact page, we receive your email address and the contents of your message. We use this to respond to your inquiry. We do not add you to any mailing list and do not send marketing emails.
  • Form submissions — If we add a contact form to the Site in the future, the fields on that form will explicitly tell you what information we collect and why. We do not currently operate any contact forms; all communication is by direct email.

Information collected automatically

Like every standard website, this Site automatically collects certain technical information when you visit:

  • IP address (truncated to /24 for IPv4 or /48 for IPv6 in our analytics processing).
  • Browser and device information — browser name and version, operating system, screen size, language settings.
  • Pages visited and time spent — which guides you read, how long you stayed, what you clicked.
  • Referrer information — the URL you came from, which often includes the search engine and the search query that brought you to us.
  • General location — country and approximate region (state level), inferred from IP address. We do not collect precise geolocation.

This information is used for analytics, security, and general site operation. It is not used to build a personal profile of any individual reader.

How We Use Information

We use the information described above only for the following limited purposes:

  • To respond to your inquiries — when you email us, we use your email address to reply.
  • To operate and improve the Site — analytics tells us which guides are useful, where readers get stuck, what topics need more coverage, and what technical issues need fixing.
  • To prevent abuse and maintain security — IP addresses and request patterns are used to detect and block scraping, attack traffic, and similar abuse.
  • To deliver advertising — through third-party ad networks described in the Advertising section below.
  • To comply with legal obligations — for example, responding to lawful subpoenas or other binding legal process.

We do not use your information for any other purpose. We do not perform behavioral profiling for advertising. We do not build personal profiles. We do not enable inference about your health, identity, or activity beyond aggregate analytics.

Cookies & Tracking Technologies

The Site uses a small number of cookies and similar technologies. They fall into three categories:

Strictly necessary cookies

Required for the Site to function — for example, cookies that remember your cookie preferences themselves. These are set automatically and cannot be disabled if you wish to use the Site.

Analytics cookies

Used to count visits and understand how readers move through the Site. These cookies help us measure the popularity and usefulness of guides. The data is aggregated and does not identify individual visitors. You can opt out of analytics cookies by adjusting your browser settings or using your browser’s “Do Not Track” feature.

Advertising cookies

Set by third-party ad networks (see Advertising section) to show ads relevant to your inferred interests. You can opt out of advertising cookies through standard ad-industry tools — see the Your Privacy Rights section.

You can also use your browser’s standard cookie controls to block all cookies, view stored cookies, and delete cookies. Major browsers all provide these controls in their settings or preferences menus.

Advertising & Analytics

This Site is supported by display advertising. Ads on the Site are served through third-party ad networks, which may include Google AdSense, Mediavine, Ezoic, or similar services. These networks may use cookies and similar technologies to show ads they believe will be relevant to you, based on your visits to this and other websites.

You can opt out of personalized advertising by visiting:

For analytics, we use a privacy-respecting analytics service that aggregates data and does not enable individual identification. If we change analytics providers in the future, this policy will be updated to reflect the change.

Third-Party Services

The following categories of third-party services may receive limited data when you visit the Site:

Service Type Purpose Data Received
Web hosting provider Serves website content IP address, request headers, requested URLs
Content delivery network Speeds up content delivery IP address, browser info, requested files
Analytics provider Aggregate usage statistics Truncated IP, browser info, pages visited
Ad networks Display advertising Cookie ID, IP address, page context
Email service Receive your inquiries Your email address and message content

Information Sharing

We do not sell, rent, or trade personal information. We do not share personal information with third parties for their independent marketing purposes. We share limited information only in these specific cases:

  • With service providers — the limited categories listed in the table above, who process data on our behalf under contractual obligations limiting their use.
  • For legal compliance — when required by valid legal process such as a court order, subpoena, or law enforcement request that satisfies applicable due process.
  • To protect rights and safety — when necessary to investigate or prevent fraud, abuse, security incidents, or harm to people.
  • In a business transfer — if the Site is acquired or merged with another organization, your data would transfer to the successor under terms no less protective than this policy. We would notify readers in advance of any such transfer.

Data Retention

We keep different categories of data for different periods, all aligned to the minimum needed for the purpose:

  • Email correspondence — kept for the duration of the inquiry plus 12 months in case you reply or follow up. Then deleted unless retention is required for a legal purpose.
  • Aggregated analytics data — kept indefinitely as anonymized statistics. Personal identifiers (IPs, etc.) are truncated within 30 days.
  • Server logs — kept for 30 days for security and debugging, then deleted.
  • Privacy/legal request records — kept for as long as legally required (typically 24 months) to demonstrate compliance.

Security Measures

We use standard industry security practices to protect data, including HTTPS encryption for all traffic, secure infrastructure managed by reputable hosting providers, restricted access to email and admin systems via two-factor authentication, and regular software updates. No website can guarantee absolute security against all attacks; we use the level of protection appropriate for an editorial publisher that does not store sensitive personal data.

Your Privacy Rights

Depending on where you live, you may have specific privacy rights under your local law. The most common rights and how to exercise them:

  • Right to access — request a copy of any personal information we hold about you.
  • Right to deletion — request that we delete personal information we hold about you.
  • Right to correction — request that we correct inaccurate personal information.
  • Right to opt out of sale or sharing — for jurisdictions that grant this right (notably California).
  • Right to opt out of targeted advertising — through the ad-industry tools listed above.
  • Right to non-discrimination — we will not deny service or charge a different price for exercising these rights.

To exercise any of these rights, email privacy@immunizationrecord.org with the specific right you are exercising. We will acknowledge your request within 10 business days and respond substantively within 45 days (or 30 days for GDPR), as required by applicable law.

California Residents (CCPA / CPRA)

If you are a California resident, the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), grants you specific rights regarding your personal information.

Categories of personal information collected (last 12 months)

  • Identifiers — IP address, online identifiers, email address (when you contact us).
  • Internet/network activity — pages visited, time on site, browser/device info, referrer URLs.
  • Geolocation data — country and approximate region only (IP-based; not precise).
  • Inferences — none drawn for personalization. Aggregated only.

Sources of information

  • Directly from you (when you email us).
  • Automatically from your device when you visit the Site.
  • From third-party analytics and advertising partners.

Purposes of use

  • Operating, improving, and securing the Site.
  • Responding to your inquiries.
  • Showing advertising.
  • Complying with law.

Recipients

Service providers as described in the Third-Party Services table above. We do not “sell” personal information for monetary consideration in the traditional sense. To the extent that the use of cookies for advertising is considered a “sale” or “share” under CCPA/CPRA, you can opt out by emailing privacy@immunizationrecord.org with the subject line “Do Not Sell or Share.”

Your CCPA/CPRA rights

You have the right to know what personal information we collect, the right to delete personal information, the right to correct inaccurate information, the right to opt out of the sale or sharing of personal information, the right to limit the use of sensitive personal information (we do not collect any), and the right to non-discrimination.

To exercise any of these rights, email privacy@immunizationrecord.org with your specific request and the email address you typically use to contact us, if any. We will verify your identity by requesting confirmation through the email address you provide and may ask additional verification questions where appropriate.

EU/UK Residents (GDPR)

If you are in the European Union, the United Kingdom, or another jurisdiction with similar data protection law, the General Data Protection Regulation (GDPR) and the UK GDPR grant you the following rights:

  • The right to be informed (this Privacy Policy).
  • The right of access.
  • The right to rectification.
  • The right to erasure (“right to be forgotten”).
  • The right to restrict processing.
  • The right to data portability.
  • The right to object to processing.
  • Rights related to automated decision-making and profiling (we do not engage in either).

Legal bases for processing

We rely on the following legal bases under GDPR Article 6:

  • Legitimate interests — operating, securing, and analyzing performance of the Site.
  • Consent — for non-essential cookies and advertising tracking, where required.
  • Legal obligation — when responding to valid legal requests.
  • Contract — for service delivery (e.g., responding to your email inquiry).

To exercise GDPR rights, email privacy@immunizationrecord.org. We will respond within 30 days. If you are unsatisfied with our response, you have the right to lodge a complaint with your local supervisory authority.

Other US State Rights

Residents of Virginia (VCDPA), Colorado (CPA), Connecticut (CTDPA), Utah (UCPA), Texas (TDPSA), Oregon (OCPA), and other US states with comprehensive privacy laws have rights similar to those described above, including the right to access, delete, correct, and opt out of certain processing. To exercise these rights, email privacy@immunizationrecord.org with your state of residence and the right you wish to exercise.

Children’s Privacy (COPPA)

This Site is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you are a parent or guardian and you believe your child under 13 has provided personal information to us, please contact privacy@immunizationrecord.org and we will delete the information promptly.

Many of our guides discuss childhood vaccination records. These guides are written for parents, guardians, and adult caretakers — not for children themselves. We encourage parents to maintain appropriate supervision when minors use the internet.

Health Information Notice

Important: We Are Not a HIPAA Covered Entity

Immunization Record is an editorial publisher, not a healthcare provider, health plan, or healthcare clearinghouse. We are not a “covered entity” under the Health Insurance Portability and Accountability Act (HIPAA), and HIPAA does not apply to information you share with us.

Please do not email us your personal health information, vaccination records, photo identification, insurance information, social security number, or any other sensitive personal information. If you do send this information, we will delete it as soon as practical and we will not store, process, share, or review it. We have no use for your personal health data, and protecting your privacy means we should not have it.

Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices or in applicable law. When we make material changes, we will update the “Effective” date at the top of this page and, where required by law, provide more prominent notice. Your continued use of the Site after a change indicates your acceptance of the updated policy. We encourage you to review this page from time to time to stay informed.

How to Contact Us

For any privacy question, request, or concern, contact us at:

Privacy Inquiries: privacy@immunizationrecord.org

General Editorial Contact: editor@immunizationrecord.org

Mailing Address: Available on request via the email above for verified privacy requests.

For California-specific requests, please put “CCPA Request” in the subject line. For GDPR requests, please put “GDPR Request” in the subject line. Including the relevant law name in the subject helps us route your request to the correct workflow and respond within the legally-required timeframe.

Related Policies

ImmunizationRecord.org

Trusted guide to finding, requesting, and maintaining official immunization records across all 50 U.S. states — verified step-by-step instructions from state health departments, the CDC, and official IIS registries.

Not affiliated with any government agency. Informational guidance only. Always verify with your state health department.

Quick Links

Official Resources

Verified Sources.gov & state health dept links only
Updated RegularlyReviewed for accuracy & changes
HIPAA-AwarePrivacy-conscious guidance
Step-by-StepReal, practical instructions
⚕ Medical Disclaimer: Content is for informational purposes only and is not medical advice. Always consult your doctor, state health department, or the CDC for medical guidance on vaccines and immunization records.
© 2026 ImmunizationRecord.org. All rights reserved.
Privacy Terms Disclaimer Contact