Case Study: Direct-to-Consumer Health Retailer Restores Google Ads Access via Healthcare Merchant Accreditation

Last Updated: April 2026 | Client identity anonymized per IHS confidentiality policy

Situation Overview

A direct-to-consumer health products company operating an e-commerce platform selling FDA-cleared OTC health monitoring devices and telehealth-connected wellness products had its Google Ads account suspended after Google's platform policy team classified it as a healthcare advertiser requiring accreditation verification. The company was not a pharmacy and did not sell prescription products, but its product category — remote patient monitoring devices used in conjunction with a telehealth connectivity service — triggered Google's pharmacy and healthcare advertiser policy. The suspension cost the company its primary customer acquisition channel while it scrambled to understand its options. The company engaged IHS after discovering that NABP Healthcare Merchant Accreditation was one of the accepted credentials that could restore its advertising access.

Challenges

  • Non-pharmacy business unfamiliar with NABP: The company had no prior experience with NABP or pharmacy regulatory frameworks. Its legal and compliance team had pharmacy law expertise and needed guidance on how to interpret NABP's standards in the context of a non-pharmacy health e-commerce business.
  • Domain transparency issue: The company's domain registration used WHOIS privacy protection — which is explicitly prohibited under NABP's domain transparency requirement. Correcting this required coordination with the domain registrar and acceptance that the company's registration details would become publicly visible.
  • Health claims review: NABP's accreditation standards require that health claims on the website be accurate and not misleading. The company's marketing copy had several claims about its devices' health benefits that, while not FDA-violating, were written in a way that NABP's reviewers might flag as unsubstantiated. A website content audit was needed before application.
  • Urgent timeline: Every week without Google Ads access translated directly to lost revenue. The company needed the fastest possible path to accreditation without creating compliance issues that would result in rejection or delays.

IHS Approach

IHS conducted an initial eligibility assessment confirming that the company's business model qualified for Healthcare Merchant Accreditation and identifying no disqualifying conditions. Thomas G. Goddard, JD, PhD — IHS's principal consultant and former Chief Operating Officer and General Counsel of URAC — led the engagement with a focus on the fastest compliant path to application submission.

Domain and Technical Compliance

IHS worked with the company's IT team to remove WHOIS privacy protection from the domain registration and verify that the registrant information was accurate and current. HTTPS enforcement across the entire site was verified. The company's privacy policy was reviewed and updated to clearly describe how consumer health data collected by connected devices was handled — a gap identified during the gap assessment.

Website Content Audit

IHS conducted a systematic review of the company's website content against NABP's health claims standards. Eleven specific claims were identified as potentially problematic — not because they were false, but because they were phrased in ways that could be read as making drug-like efficacy claims for a device product. IHS provided specific rewrite guidance for each claim that preserved the marketing intent while aligning with FDA device marketing standards and NABP's accuracy requirements. All revisions were implemented within two weeks.

Privacy and HIPAA Assessment

Because the company's telehealth connectivity service collected data that could constitute PHI in some use cases, IHS assessed the company's HIPAA status. IHS determined that the company functioned as a business associate — not a covered entity — in most of its data handling workflows, but that its privacy policy needed to accurately reflect this status and provide appropriate disclosures. Updated privacy documentation was developed and published.

Application Preparation

IHS prepared the Healthcare Merchant Accreditation application including all required documentation — licensure evidence, privacy policy, website compliance attestations, and domain registration verification. The application was submitted 31 days after engagement start.

NABP Review and Response

NABP's reviewer requested clarification on two items: the scope of the telehealth connectivity service and the regulatory classification of one product category. IHS prepared written responses with supporting documentation for both clarification requests within 5 business days. NABP granted accreditation 18 days after the clarification responses were submitted.

Outcomes

  • NABP Healthcare Merchant Accreditation granted 49 days after engagement start
  • Google Ads account restored within one week of accreditation confirmation
  • Domain transparency issue resolved; WHOIS registration accurate and public
  • Eleven website health claims revised to comply with NABP standards and FDA device marketing guidelines
  • Privacy policy updated to accurately reflect HIPAA business associate status
  • Company also submitted a .pharmacy domain registration request as an ancillary benefit of accreditation

Key Lessons

Platform advertising policies affect non-pharmacy health businesses. This company was not a pharmacy and did not sell prescription products. Nevertheless, Google's healthcare advertiser policies captured it based on product category. Health e-commerce companies should monitor platform policy changes that may affect their advertising eligibility, regardless of whether they consider themselves to be in the "pharmacy" space.

WHOIS privacy protection is a quick fix — but it requires coordination. Removing WHOIS privacy protection is a simple registrar configuration change. The challenge is that many companies have used WHOIS privacy protection for years and are not aware of the registrant information that will become public. IHS recommends reviewing your domain registration information for accuracy before removing privacy protection — not just flipping the switch.

Health claims require precision, not just intention. Marketing teams routinely write health-related claims without intending to make drug or medical device efficacy claims. But the line between compelling marketing and regulatory non-compliance is blurry, especially for connected health devices at the intersection of consumer wellness and medical technology. A content review against both FDA and accreditor standards before submitting for accreditation saves time and avoids rejection.

Lost Advertising Access or Need Health Merchant Credentialing?

IHS helps health e-commerce businesses, telehealth platforms, and digital health companies achieve NABP Healthcare Merchant Accreditation efficiently. Schedule a Free Discovery Session with Thomas G. Goddard, JD, PhD — former Chief Operating Officer and General Counsel of URAC.