We don’t track you or snoop on you to make money or otherwise.
Our apps and website are intended for a general audience, and we do not knowingly market to or solicit information from children under 13.
We do not sell your personal information.
We have never sold and will never sell any personal or health information.
We will post a notice on this page when our policy is updated with log of the previous policies
We will notify you of changes by posting the modified version on our website. We will indicate the date it was last modified below with an update message on top.
We respect and support your legal privacy rights.
HelloHealth believes that you should be in complete control of your Personal and Health data. It is your right to have absolute control of who sees and contributes to your health information.
THIS SITE IS OFFERED FROM THE UNITED STATES (“US”), IN PARTICULAR, IT IS NOT INTENDED FOR USE IN THE EUROPEAN UNION (“EU”), INDIA OR OTHER PARTS OF THE WORLD. For individuals located outside of the US, please note that we are a US based company. If you use the Site, all information, including personal information, will be transferred to us in the US and used as described in this Notice.
How we use your personal or non-medical information
We use personal non-medical information in the file we maintain about you, and other information we obtain from your current and past activities on the Site. We do that in order to:
- Provide to you the services offered by the Site
- Resolve service and billing problems
- Troubleshoot problems
- Bill any amounts due from you
- Deliver information to you that, in some cases, is relevant to your interests, such as product news
- Customize your experience
- Detect and protect us against error, fraud and other criminal activity
- Provide you with system or administrative messages, and as otherwise described to you at the time of collection
Sometimes we’ll use email address or other contact information —but not your personal records— in order to:
- Get your feedback on our services
- Analyze our site usage
- Improve our content and product offerings
- Customize the site’s content, layout, and services
How we use your medical information
You are in control of your medical information. You choose the Health Professionals with whom you’d like to share your medical information. It’s as simple as that. No Health Professionals you have not chosen can view or contribute to your personally identifiable medical records.
Health Professionals with whom you have chosen to share your medical records use this information to:
- Obtain facts about your health
- Make decisions about your health
- Contribute to your medical records
What information do we collect?
The main reason we collect personal information from you is to give you a safe, smooth, efficient, and customized experience. That way you get the services and features that most likely meet your needs, safely and easily. We only collect personal data that we consider absolutely necessary to achieve that goal. Remember, you always have the option not to provide information by either choosing not to become a User, or by skipping the particular feature of the Site for which the information is being collected.
You can browse our site anonymously, but once you join up, we’ll ask you to provide:
- Various contact and identity information
- Billing information
- Medical information
- Other personal information as indicated (our forms indicate what info is required, and what info is optional.)
In addition, as you use the Site, you can enter or send us personal information.
Info on Third Parties
As you use the Site you can also, from time to time, enter personal information about third parties. For example, if you are a Member, you can enter personal information about your desired pharmacy.
Our Web Sites may contain links to other sites. Please be aware that HelloHealth is not responsible for the privacy practices of such other sites, and this Web Site Privacy Statement does not apply to such sites. We encourage our users to be aware when they leave our site and to read the privacy statements of each and every web site that collects personally identifiable information.
If you are a Member, we collect your credit card information for billing purposes. And if you are a Member who wishes to pay amounts to your Health Professionals on a recurring basis, we collect and store your credit card information for payment purposes.
We don’t track you through cookies or any other electronic methods.
We use anonymous cookies for local storage of certain processes.
Related, the anonymous experiments described in the section above sometimes require us to use browser storage too, but we never store any information that could identify you or your searches. For example, we might use storage to make sure a design we’re testing doesn’t frequently change on you. Finally, if you use optional features, such as staying signed in to our Email Protection, we use only locally store the minimum number of processes to allow that feature to perform.
When you use our Site, we may record unique identifiers associated with your device (such as the device ID and IP address), your activity within the Site, and your network location. We use aggregated information (such as anonymous user usage information, cookies, IP addresses, browser type, clickstream information, etc.) to improve the quality and design of the site and to create new features, promotions, functionality, and sites by storing, tracking, and analyzing user preferences and trends. Specifically, we may automatically collect the following information about your use of Site through cookies, web beacons, and other technologies:
- domain name;
- browser type and operating system;
- web pages you view;
- links you click;
- IP address;
- the length of time you visit the Sites, Portals, and/or Sites;
- the referring URL or the webpage that led you to the Sites.
We may also collect information regarding application-level events, such as crash. In some circumstances, we may combine this information with personal information collected from you (and third-party Site providers may do so on behalf of us).
We use essential cookies. These cookies are necessary in order to enable certain base features, such as identifying certain user and remembering that user have logged into his Account. These cookies may store unique user authentication key and are required by the service to operate correctly. Although cookies do not store your password directly, user authentication key is as a password substitute. Please be aware that you shall not let others to copy your cookies.
We improve our product by using anonymous methods and by considering publicly available information.
To improve and promote our product, we develop and use only anonymous methods and data to learn key insights. For example, we design anonymous experiments to test different designs. We also observe what people are saying about our product across social media channels and may search for, review, and share this publicly available information internally for consideration.
Our disclosure of your information
We will never sell or rent your information to third parties. But here are some of the ways your information may be disclosed:
We use credit card and other payment information you submit to us on the site only to process payments you make through the site. Credit card information and other sensitive personal information required to process a credit decision is not used for any other purpose by us or our financial services providers (like Moneris or PayPal,) and will not be kept longer than necessary for providing the services.
Anonymized Aggregated Data
We collect and anonymize medical information including (but not limited to):
- Physical examination findings
- Treatment plans
We do disclose such information in a non-personally identifiable manner to Health Professionals. For example, we show Health Professionals the most common diagnoses in their city in the past week. However, in these situations, we absolutely will not disclose any information that could be used to identify you personally.
Legal Requests and Emergencies
We cooperate with law enforcement inquiries and demands for information that are made under force of law. If it’s what we believe is an emergency situation, we may provide personal information to law enforcement agencies. We may also provide personal information where required by statute, court order, legal process or lawful authority. Lastly, we may provide it to our legal counsel in connection with the foregoing.
Data Security and Integrity
HelloHealth has a global hosting center that stores and processes personal health information in United States. HelloHealth takes reasonable precautions to protect personal health information from loss, misuse and unauthorized access, disclosure, alteration, and destruction. HelloHealth also makes reasonable efforts to keep personal health information reliable for its intended use, accurate, current, and complete security.
HelloHealth takes reasonable technical and organizational measures to protect the security of our users’ Personal Health Information. When a secure form asks users to enter Personal Information or Personal Health Information, that information is encrypted and protected with the encryption software standard in the industry – SSL. While on a secure page, the lock icon on the bottom of Web browsers such as Netscape Navigator and Microsoft Internet Explorer becomes locked, as opposed to un-locked, or open, when you are just ’surfing’. To learn more about SSL, please visit www.digicert.com. While we use SSL encryption to protect certain financial or Health information online, we also take reasonable steps to protect user information off-line. All of our users’ Personal Information, not just the financial information mentioned above, is subject to restricted access in our offices. Only employees who need the information to perform a specific job (for example, a customer service representative or sales representative) are granted access to Personal Information. Our employees must use passwords to gain access to Personal Information. Furthermore, all employees are regularly informed about our security and privacy practices. When new policies are added, our employees are notified and/or reminded about the importance we place on privacy, and what they can do to protect our users’ and customers’ Personal Information. Finally, we maintain reasonable technical and organizational measures to make sure that the servers on which we store Personal Health Information are kept in an access restricted, physically secure, and monitored environment. If you have any questions about the security at our Site, you can send an email to s e c u r i t firstname.lastname@example.org
Users of the Site are responsible for maintaining the security of any password, user ID or other form of authentication involved in obtaining access to password protected or secure areas of the Site. In order to protect you and your information, we may suspend your use of any of the Site, without notice, pending an investigation, if any breach of security is suspected.
Retention of Data
We will retain your personal information unless we receive a request from you to delete such information. We will retain and use personal information to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies.
We will also retain usage data for internal analysis purposes as described in the next section. Usage data is generally retained for a shorter period of time, except when this data is used to strengthen the security or to improve the functionality of the Site, or we are legally obligated to retain this data for longer periods.
International Data Transfer
If you are located outside the United States, in particular if you are located in Switzerland, the United Kingdom, or the European Economic Area (“EEA”), please note that we and our servers are located in the United States. We do not market to or solicit customers from outside the US, or do business outside of the US, therefore, users of the Site should not expect to avail themselves of the rights provided under the EU’s General Data Protection Regulation (“GDPR”). If you use the Site, all information, including personal information, will be transferred to us in the US. By using the Site, you unambiguously consent to the transfer of your personal information and other information to the US and elsewhere for the purposes and uses described in this Notice. Further, you acknowledge that we are not subject to the GDPR or similar international privacy laws, and, therefore, you will be unable to claim the privacy rights provided in those laws
California Privacy Rights
Please note that the CCPA is not fully applicable to personal information exchanged in all transactions (for example, CCPA does not fully apply in a business to business transaction). While we treat the personal information of all customers and users of the Site with the same degree of care, you may not be eligible for all the rights described herein depending on the nature of the business relationship and the personal information collected.
If you are a California resident, California law may provide you with certain rights with regard to your personal information under the California Consumer Privacy Act (“CCPA”). Throughout this Privacy Notice you will find information required by CCPA regarding the categories of personal information collected from you; the purposes for which we use personal information, and the categories of third parties your data may be shared with. This information is current as of the date of the Notice and is applicable in the 12 months preceding the effective date of the Notice.
As a California resident, the CCPA provides you the ability to make inquiries regarding to your personal information. Specifically, the degree to which the information is not already provided in this Privacy Notice, you have the right to request disclosure about the collection and use of your personal information over the past 12 months, including:
- The categories of personal information collected about you.
- The categories of sources for the personal information collected about you
- The business or commercial purpose for collecting your personal information.
- The categories of third parties with whom your personal information was shared.
- The specific pieces of personal information collected about you.
- If your personal information was disclosed for a business purpose, the personal information categories disclosed and the categories of third parties to which the information was disclosed.
- If your personal information was sold in the past 12 months, the personal information categories sold and the categories of third parties to which the information was sold (Note: WE DO NOT SELL YOU PERSONAL INFORMATION).
Please note that you may only make the above requests twice in a 12-month period. You also have the right to request that any of your personal information collected and retained be deleted, subject to certain exceptions. Finally, you have the right to not receive discriminatory treatment by us or any business for exercising any of the rights provided under CCPA.
You may submit a request regarding your rights under CCPA by contacting us at one of the following:
If we receive a CCPA request from you, we will first make a determination regarding the applicability of the law, and we will then take steps to verify your identity prior to responding. The steps to verify your identity may vary based on our relationship with you, but, at a minimum, it will take the form of confirming and matching the information submitted in the request with information already held by us and/or contacting you through previously used channels to confirm that you submitted the request (i.e. confirming identity through contact information that we have on file, not the contact information submitted to make the request).
Your rights as stated here can also be exercised by an authorized agent on your behalf. We will follow the standards set by the Attorney General of California regarding designation of an authorized agent to exercise rights under CCPA. You may review information available through the Attorney General Site (https://www.oag.ca.gov/privacy/ccpa) regarding how an individual can be designated as an authorized agent under CCPA.
In addition to CCPA, California Civil Code Section 1798.83 permits users of the Site who are California residents to request certain information regarding its disclosure of personal information to third parties for their direct marketing purposes. To make such a request, please contact us as described here.
To request a copy of your healthcare records, please contact your healthcare provider.
Changes to this Privacy Notice
We reserve the right to modify this Privacy Notice from time to time in order that it accurately reflects the regulatory environment and our data collection principles. When material changes are made to this Privacy Notice, we will post the revised Notice on our Site. This Privacy Notice was last modified as of 26th September, 2023. Please click here to see any previous versions
If you have any questions or comments about this Privacy Notice or the Website provided by us, please contact us at: p r i v a c email@example.com.