Legal

Compliance at Revive

Marketing to patients carries real obligations. Revive is designed consent-first for US healthcare communication.

Consent-first by default

Every patient record carries a consent status: opted in, pending or opted out. Patients without confirmed consent are excluded from campaigns by default, and the AI decision queue surfaces consent gaps before any send. Unsubscribe links are included in every email and processed automatically and permanently.

CAN-SPAM

All emails sent through Revive include the sending Clinic's identity, a functioning unsubscribe mechanism, and honest subject lines generated from the patient's actual record. Unsubscribes take effect immediately across all future campaigns.

Health information

Emails that reference a patient's treatment can constitute protected health information under HIPAA when the Clinic is a covered entity. Revive is architected to minimize the health data processed and stored, and we work with Clinics on appropriate safeguards, including data minimization settings and, where required, appropriate agreements with infrastructure providers. Clinics remain responsible for determining their regulatory status and obligations.

AI guardrails

Data handling

Patient data is used solely to operate the Clinic's own campaigns. It is never sold, never shared across clinics, and never used to train AI models. See our Privacy Policy for details on retention and deletion.

Questions

Compliance requirements vary by clinic and state. If you have specific questions about your setup, contact us via the contact page or hello@ninexrevive.com and consult your own counsel for legal advice specific to your practice.