Privacy Policy

This Privacy Policy was last updated on June 6th, 2023.

Empirical Health, Inc.

PRIVACY POLICY

At Empirical Health, Inc. (“Empirical Health”) your privacy is important to us. Our Privacy Policy describes the information we collect, how we collect the information, the reasons we collect information, and how we share or use the information we collect. This Privacy Policy also describes the choices you have with the information we collect, including how you can manage, update, or request to delete information.

Please take a moment to review this Privacy Policy. You may scroll through this Privacy Policy or use the headings below. It is important that you understand this Privacy Policy. By using our Platform, you are agreeing to the terms of this Privacy Policy. If you have any questions or concerns about this Privacy Policy, you may Contact Us at any time.

Table of Contents

  1. Who is Empirical Health?
  2. Key Terms & Definitions and Our Privacy Policy

When does our Privacy Policy apply?

When does our Privacy Policy not apply?

Our Privacy Policy and Terms of Use.

  1. Personal Information

What is Personal Information?

What types of Personal Information do we collect?

Health Information

How do we collect your Personal Information?

How do we use your Personal Information?

How do we share your Personal Information?

How do I access and correct my Personal Information?

  1. Who may use the Services?
  2. Children’s Privacy
  3. Does Empirical Health respond to Do Not Track signals?
  4. Data Security
  5. California’s Shine the Light Law.
  6. Changes to our Privacy Policy
  7. Contact Us

I. Who is Empirical Health?

Empirical Health is a mobile app and website whose mission is to reinvent primary care based on consumer health sensors.

Empirical Health is not a medical group or a health care provider. Empirical Health provides its users with the ability to obtain a telemedicine consultation provided by independent medical practitioners including, but not limited to, 525 Medical Group, P.A. and the members of its affiliated covered entity (“Medical Group”), a group of independent medical groups with a network of United States based health care providers (each, a “Provider”). Medical Group (or your own medical provider if you do not use a Medical Group Provider) is responsible for providing you with a Notice of Privacy Practices describing its collection and use of your health information, not Empirical Health.

  1. Key Terms & Definitions and Our Privacy Policy

It is helpful to start by explaining some of our key terms and definitions used in this Privacy Policy.

Key Term

Definition

our “App”

Empirical Sleep, our mobile application

our “Devices”

Empirical Health devices, [for example, Insert Proprietary Name, if any]

“Personal Information”

Any information relating to an identified or identifiable individual and any information listed here.

our “Platform”

Our Website, App, and/or Devices.

“Privacy Policy”

This privacy policy.

“Products”

Any products available for purchase on our Platform.

our “Services”

Any services provided through our Platform.

our “Terms of Use”

Our terms of use located here.

our “Website(s)”

Our websites, including:

“Empirical Health,” “we,” “us,” or “our”

Empirical Health, Inc.

When does our Privacy Policy apply?

This Privacy Policy describes the types of information we may collect from you when:

When does our Privacy Policy not apply?

This Privacy Policy does not apply to information collected by any other website operated either by us or by a third party, unless the website is listed above or links to this Privacy Policy. It also does not apply to any website that we may provide a link to or that is accessible from our Platform.

This Privacy Policy does not apply to information collected from users who log-in to the password-protected and secure portions of our Platform (“Secure Platform”). The Secure Platform allows users who obtain the Services (“Customers”) to perform certain functions or obtain the Services (such as telehealth visits from Medical Group or Providers). All information collected and stored by us or added by Customers into such Secure Platforms is considered Protected Health Information (“PHI”) and/or medical information and is governed by applicable state and federal laws that apply to that information, for example the Health Insurance Portability and Accountability Act (“HIPAA”). How we use and disclose such PHI is in accordance with the applicable Notice of Privacy Practices provided to you by the Medical Group. We will not use or disclose information collected from the Secure Platform or received from Medical Group or your Provider for advertising, marketing, or other use-based data mining purposes except as otherwise permitted by HIPAA and other applicable law. We will not sell any PHI in violation of HIPAA.

Our Privacy Policy and Terms of Use.

This Privacy Policy is incorporated into our Terms of Use, which also apply when you use our Platform.

  1. Personal Information

What is Personal Information?

Personal information is information from and about you that may be able to personally identify you. We treat any information that may identify you as personal information. For example, your name and e-mail address are personal information.

What types of Personal Information do we collect?

We may collect and use the following personal information (hereinafter, collectively referred to as “Personal Information”):

Categories of Personal Information

Specific Types of Personal Information Collected

Personal Identifiers

A real name, birth date, e-mail address, unique personal identifier, IP Address, driver’s license number, postal address, or Patient ID.

Information that identifies, relates to, describes, or is capable of being associated with a particular individual

physical characteristics or description, telephone number, driver’s license number, insurance policy number, health insurance information, signature, medical conditions, medications currently taking or prescribed, blood group, physician, emergency contacts, drug testing, and psychological trends.

Characteristics of protected classifications under California or federal law.

Race, Color, Genetic Information (including familial genetic information), Age, Ancestry, Sex, Sexual Orientation (including gender, gender identity, gender expression, pregnancy or childbirth, and related medical conditions) Veteran or Military Status, or Disability.

Biometric information

Photos, video, and voice, voiceprints, gait patterns, sleep data, physiological characteristics (e.g. BMI, heart rate, heart rate variability, oxygen saturation, electrocardiograms, and accelerometer information), behavioral characteristics (e.g. sleep, exercise, and stress), and biological characteristics (e.g. blood test results, imaging results, CT scans, MRIs).

Internet or other electronic network activity information

IP address, OS version, operating system, browser type, log file information, and information regarding a consumer’s interaction with an internet web site, application, or advertisement.

Geolocation data

Physical location or movements, local time, and local time zone.

User Generated Content

Information you provide to be published or displayed (hereinafter, “Posted”) on public areas of our Website or transmitted to other users of the Website or other third parties.

Health Information

Some Personal Information we collect may constitute PHI under HIPAA. As set forth above, your Provider will provide you with a Notice of Privacy Practices describing their collection and use of your PHI, not Empirical Health. We will only collect and use PHI for the purposes of providing the Platform and Services and we only collect the minimum amount necessary to fully perform and provide the Services on our Platform. We may combine your PHI with Personal Information that we have either obtained from you or through a third-party, such as your Provider, health insurer, employee benefits program, or other health care providers. PHI will only be used and disclosed as outlined in the Notice of Privacy Practices and as permitted by HIPAA and other applicable law.

How do we collect your Personal Information?

We collect most of this Personal Information directly from you. For example, when we speak to you by phone, text message, and e-mail. Additionally, we will collect information from you when you visit our Website or App and fill out forms, wear a Device, or purchase our Services.

We may also collect Personal Information in the following ways:

We will also collect information automatically as you navigate through our Platform. We use the following technologies to automatically collect data:

How do we use your Personal Information?

We may use your Personal Information for the following purposes:

How do we share your Personal Information?

We may share Personal Information with third parties in certain circumstances or for certain purposes, including:

Your choices about how we share your Personal Information.

This section of our Privacy Policy provides details and explains how to exercise your choices. We offer you choices on how you can opt out of our use of tracking technology, disclosure of your Personal Information for our advertising to you, and other targeted advertising. We do not control the collection and use of your information collected by third parties. These third parties may aggregate the information they collect with information from their other customers for their own purposes. You can opt out of third parties collecting your Personal Information for targeted advertising purposes in the United States by visiting the National Advertising Initiative’s (NAI) opt-out page and the Digital Advertising Alliance’s (DAA) opt-out page.

Each type of web browser provides ways to restrict and delete cookies. Browser manufacturers provide resources to help you with managing cookies. Please see below for more information.

For other browsers, please consult the documentation that your browser manufacturer provides.

If you do not wish to have your e-mail address used by Empirical Health to promote our own Products and Services, you can opt-out at any time by clicking the unsubscribe link at the bottom of any e-mail or other marketing communications you receive from us or logging onto your Account Preferences page. This opt out does not apply to information provided to Empirical Health as a result of a purchase of products or services, or your use of our Platform and/or the Services. You may have other options with respect to marketing and communication preferences through our Platform.

You may also see certain ads on other websites because we participate in advertising networks. Ad networks allow us to target our messaging to users through demographic, interest-based, and contextual means. These networks track your online activities over time by collecting information through automated means, including through the use of cookies, web server logs, and web beacons. The networks use this information to show you advertisements that may be tailored to your individual interests.

How do I access and correct my Personal Information?

You can review and change your Personal Information by logging into our Services and communicating with an Empirical Health representative. You may also Contact Us to inform us of any changes or errors in any Personal Information we have about you to ensure that it is complete, accurate, and as current as possible or to delete your account. We cannot delete your personal information except by also deleting your account with us. We may also not be able to accommodate your request if we believe it would violate any law or legal requirement or cause the information to be incorrect.

  1. Who may use the Services?

Empirical Health operates subject to state and federal regulations, and the Platform and/or the Services may not be available in your state. You represent that you are not a person barred from enrolling for or receiving the Services under the laws of the United States or other applicable jurisdictions in which you may be located. Access to and use of the Platform and/or the Services is limited exclusively to users located in states within the United States where the Platform and/or the Services is available. The Platform and/or the Services are not available to users located outside the United States. Accessing the Platform and/or obtaining the Services from jurisdictions where content is illegal, or where we do not offer the Platform and/or the Services, is prohibited.

  1. Children’s Privacy

We do not knowingly collect or sell Personal Information from children under the age of 18. If you are under 18 years of age, you must get permission from your parents or legal guardian before using our Platform. If you are under the age of 18, do not use or provide any information on or to the Platform or through any of its features. If we learn we have collected or received Personal Information from a child under the age of 18 without verification of parental consent, we will delete it. If you are the parent or guardian of a child under 18 years of age whom you believe might have provided use with their Personal Information, you may Contact Us to request the Personal Information be deleted.

  1. Does Empirical Health respond to Do Not Track signals?

Some web browsers have a “Do Not Track” feature. This feature lets you tell websites you visit that you do not want to have your online activity tracked. These features are not yet uniform across browsers. Our Platform is not currently set up to respond to those signals.

  1. Data Security

We have taken steps and implemented administrative, technical, and physical safeguards designed to protect against the risk of accidental, intentional, unlawful, or unauthorized access, alteration, destruction, disclosure, or use. The Internet is not 100% secure and we cannot guarantee the security of information transmitted through the Internet. Where you have been given or you have chosen a password, it is your responsibility to keep this password confidential.

The sharing and disclosing of information via the internet is not completely secure. We strive to use best practices and industry standard security measures and tools to protect your data. However, we cannot guarantee the security of Personal Information transmitted to, on, or through our Services. Any transmission of Personal Information is at your own risk. We are not responsible for the circumvention of any privacy settings or security measures contained on our Platform, in your operating system, or mobile device.

  1. California’s Shine the Light Law.

California Civil Code Section 1798.83 (California’s “Shine the Light” law) permits users of our Platform and/or the Services that are California residents and who provide Personal Information in obtaining products and services for personal, family, or household use to request certain information regarding our disclosure of Personal Information to third parties for their own direct marketing purposes. If applicable, this information would include the categories of Personal Information and the names and addresses of those businesses with which we shared your Personal Information with for the immediately prior calendar year (e.g. requests made in 2023 will receive information regarding such activities in 2022). You may request this information once per calendar year. To make such a request, please Contact Us using the information below.

  1. Changes to our Privacy Policy

We may update our Privacy Policy periodically to reflect changes in our privacy practices, laws, and best practices. We will post any changes we make to our Privacy Policy on this page with a notice that the Privacy Policy has been updated on our Website’s homepage or our App’s home screen. The date this Privacy Policy was last revised is identified at the top of the page. You are responsible for periodically accessing the Platform and reviewing this Privacy Policy to check for any changes.

  1. Contact Us

If you have any questions, concerns, complaints or suggestions regarding our Privacy Policy or otherwise need to contact us, you may contact us at the contact information below or through the “Contact Us” page on the Platform.

How to Contact Us:

Empirical Health, Inc.

44-70 21st St. #3281

Long Island City, NY 11101

Telephone: (917) 694-6752

Email: privacy@empirical.health