Med+Proctor Privacy Policy

Thank you for choosing Med+Proctor!

  • We value your privacy and respect your desire to keep your Personal Information private.
  • We are committed to providing our Services through a secure, user-controlled environment.
  • We only collect and handle Personal Information as described in our Privacy Policy.

At the same time, you share responsibility for maintaining your privacy and security – for example, by safeguarding your password.

Our Privacy Policy

This is the Privacy Policy of MedProctor, LLC, located at 2126 21st Avenue South, Nashville, TN 37212. You agree that by accessing our website, downloading our mobile application, or signing up for our Services you allow us to use your Personal Information according to this Privacy Policy. This Privacy Policy applies to all of our products, software, services, mobile applications, and websites as accessed from time to time by you, regardless if the use is in connection with an account or not (collectively, our “Services”).

If you have questions, suggestions or complaints regarding our Privacy Policy or practices, please contact us via email at or mail your comments to us at 2126 21st Avenue South, Nashville, TN 37212. 

Your Personal Information

In the course of your relationship with us, we collect several types of Personal Information. “Personal Information” is information that can be used to identify you, either alone or in combination with other information. By way of example, we may collect and store the following types of Personal Information: 1) information you provide about yourself when registering for and/or purchasing our Services (e.g. name, school information, email, phone number, address, user ID, password, and payment information), 2) emergency contact information you provide when registering for and/or purchasing our Services (e.g. name, school information, email, phone number, address, user ID, password, and payment information), 3) your vaccination records and other data you provide to or receive from our Services, and 4) all information or other materials that you provide.

How We Use Your Personal Information

  • We use your Personal Information to communicate with you to authenticate your account usage.
  • We use your Personal Information as required to ensure the regular operation of our Services and to improve your overall experience (e.g., enabling your purchase; providing information, services, and products that you have requested; managing and improving our website, mobile applications, software, and Services, providing customer support).
  • We may share your identifiable Information with third parties and as necessary to provide you our Services (e.g. credit card processing, universities) or as required by law.
  • We do not monetize, sell, or share data for any purposes outside the scope of this privacy policy. Your personally identifiable information remains only accessible by your designated educational institution, MedProctor support staff, yourself or others provided access to your account by your own accords. 
  • If someone, including a parent, has purchased the Services for you, we will not disclose your Personal Information to them by phone, online, or otherwise without your explicit consent. 

Personal Information You Share Through The Services

We give you the ability to connect with other individuals to share information. You must opt-out of some features to avoid notifications. In addition, you may choose to disclose, through other means not associated with MedProctor, any part of your Personal Information to friends and/or family members, counselors, groups of individuals, third-party service providers, employers, educators, and/or other individuals. We recommend that you make such choices carefully.

Personal Information, once released or shared, can be difficult to contain. We have no responsibility or liability for any consequences that may result because you release or share Personal Information with a third party. It is incumbent upon you to share Personal Information only with people you know and trust.

How We Use Web Behavior Information

“Web Behavior Information” is information on how you use our Services (e.g. browser type, domains, page views) collected through log files, cookies, and web beacon technology. We collect Web Behavior Information we use through log files, cookies, and web beacon technology during your use of the Services. We use Web Behavior Information to improve our Services and your overall experience and to track and monitor aggregate usage of our Services and/or to target advertising for our products and services. We may also use your Web Behavior Information the same as other non-personal information (described below), so long as it is de-identified.

  • Log Files: When you visit our website or use our mobile application, we gather certain information automatically and store it in log files. This information includes your Internet Protocol (IP) addresses, browser type, Internet Service Provider, referring/exit pages, operating system, date/time stamp, and clickstream data (i.e. a list of pages or URLs visited). We may link this information to your user ID or account. We use this information to analyze trends, administer the site, track movements around the site, identify and resolve issues, and gather demographic information about our user base as a whole.
  • Cookies: Our website uses cookies. Cookies are pieces of information that a website transfers to your browser for record-keeping purposes about your use of a website. These cookies will be placed as a text file in your browser.
  • Web Beacons: A web beacon is a clear graphic image that is loaded by your web browser when it accesses a website and that records your visit to a particular web page. We, or third parties that work for us, may place cookies and web beacons on our website, in emails, and in advertisements on other websites. The purpose of our web beacons is to support our Services and to promote our products and services through targeted advertisements. If you wish to disable web beacons, you may configure your browser to prevent loading them.

We May Use De-Identified Information

We may use data and information about you that has been “de-identified” (data from which your name or any personally identifying information has been removed, or the data has been combined with other people’s data in such a way that it is no longer associated with you) for any purpose — it is no longer Personal Information.

Your Choices Regarding Your Information

You can opt-out of receiving certain messages or notifications from us by logging into your account and changing your settings or by contacting us at You can also click the “unsubscribe” button at the bottom of promotional email communications. Please note that you may not opt-out of receiving non-promotional messages regarding your account, such as technical notices, purchase confirmations, or Service-related emails. You can configure your browser to enable, disable or delete cookies. Please note that if you set your browser to disable cookies, you may not be able to access secure areas of the website and other parts of the website may also not work properly.

Account Closure and Correction of Personal Information

At your written request, we will close your account and will remove Personal Information from your account. See the section below titled “Account Closure and Correction of Personal Information.” If you no longer wish to receive our Services, you may close your account by sending a request to When closing an account, we remove all Personal Information from your account (or profile) within thirty (30) days of our receipt of your request. We may continue to use de-identified Personal Information after you close your account for any lawful purpose.

You may correct or update your registration information via

Commercial Partnerships

We may enter into commercial arrangements to enable partners to provide our Services to their customers and/or to provide you access to their products and services. 

Information Disclosure Required By Law

Under certain circumstances Personal Information may be subject to disclosure pursuant to judicial or other government subpoenas, warrants, or orders, or in coordination with regulatory authorities. You acknowledge and agree that MedProctor is free to preserve and disclose any and all Personal Information to law enforcement agencies or others if required to do so by law or in the good faith belief that such preservation or disclosure is reasonably necessary.

Linked Websites

We provide links to third-party websites operated by organizations that are not affiliated with MedProctor. We do not disclose your Personal Information to these organizations. We do not review or endorse, and we are not responsible for, the privacy practices of these organizations. We encourage you to read their privacy statements. This Privacy Policy applies solely to information collected by MedProctor.

Newsletter and Email Communications

You may choose to stop or start receiving our newsletter or marketing emails by changing your notifications settings in your account (go to or you may contact us at

Children’s Privacy

We are committed to protecting the privacy of children as well as adults. None of our Services are designed or intended to attract children under the age of 13. You, as the parent or guardian assumes full responsibility for ensuring that the information you provide about your child is kept secure and that the information submitted is accurate.


We take security seriously. We use a range of reasonable physical, technical, and administrative measures to safeguard your Personal Information, in accordance with current technological and industry standards. In particular, all connections to and from our website and mobile application are encrypted using Secure Socket Layer (SSL) technology.

Protecting your Personal Information is also your responsibility. You are responsible for safeguarding your password, secret questions and answers, and other authentication information you use to access our Services. You should not disclose your authentication information to any third party, and you should immediately notify us of any unauthorized use of your password. We cannot secure Personal Information that you release or that you request us to release.

Med+Proctor is hosted on the Microsoft Azure Cloud. To learn more about Microsoft's SOC 2 certified and secure data centers, visit the Microsoft Trustcenter Homepage.

Data Controller and Data Processor

Med+Proctor does not own, control or direct the use of any of the Client Data stored or processed by a Client or User via the Service. Only the Client or Users are entitled to access, retrieve and direct the use of such Client Data. Med+Proctor is largely unaware of what Client Data is actually being stored or made available by a Client or User to the Service and does not access Client Data except as authorized by the Client, or as necessary to provide Services to the Client and its Users. 

Because Med+Proctor does not collect or determine the user of any Personal Data contained in the Client Data and because it does not determine the purposes for which such Personal Data is collected, the means of collecting such Personal Data, or the uses of such Personal Data, Med+Proctor is not acting in the capacity of data controller in terms of the European Union's Directive 95/46/EC on data privacy or the European Data Protection Regulation ("EU Law") and does not have the associated responsibilities under EU law. Med+Proctor should be considered only as a processor on behalf of it's Clients and Users as to any Client Data containing Personal Data that is subject to the requirements of EU Law. Except as provided in this Privacy Policy, Med+Proctor does not independently cause Client Data containing Personal Data stored in connection with the Services to be transferred or otherwise made available to third parties, except to third party subcontractors who may process such data on behalf of Med+Proctor in connection with Med+Proctor's provision of Services to Clients. Such actions are performed or authorized only by the applicable Client or User. 

The Client or the User is the data controller under the Directive for any Client Data containing Personal Data, meaning that such party controls the manner such Personal Data is collected and used as well as the determination of the purposes and means of the processing of such Personal Data. .

Med+Proctor is not responsible for the content of the Personal Data contained in the Client Data or other information stored on it's servers (or its subcontractors servers) at the discretion of the Client or User nor is Med+Proctor responsible for the manner in which the Client or User collects, handles disclosure, distributes or otherwise processes such information.  

Data Controller and Data Processor

Med+Proctor has a "Data Protection Officer" who is responsible for matters relating to privacy and data protection. This Data Protection Officer can be reached at the following address. 


Attn: Data Protection Officer

2126 21st Ave S

Nashville, TN 37212

International Privacy Laws

If you are visiting the Services from outside the United States, please be aware that you are sending information (Including Personal Data) to the United States where our servers are located. That information may then be transferred within the United States or back out of the United States to other countries outside of your country of residence, depending on the type of information and how it is stored by us. These countries (including the United States) may not necessarily have data protection laws as comprehensive or protective as those in your country of residence; however, our collection, storage and use of your Personal Data will at all times continue to be governed by this Privacy Policy.  

Business Transitions

In the event that we go through a business transition such as a merger, acquisition by another company, or sale of all or a portion of its assets, your Personal Information will likely be among the assets transferred. In such a case, your information would remain subject to our Privacy Policy.

Changes to This Privacy Policy

This Privacy Policy was last updated May 25, 2018 to comply with The General Data Protection Regulation (GDPR). Whenever this Policy is changed, the changes will become effective when posted. When this Policy is changed in a material way, we will post a notice to your account.