Scanwell Health Privacy Policy
Last Updated: March 28th, 2022
1. Introduction
Scanwell Health, Inc. (“Scanwell” or “We”) respects your privacy and is committed to protecting it through our compliance with this policy. Except as explicitly stated herein, this privacy policy (“Privacy Policy”) describes: (i) the types of information we may collect from you when you interact with us or use our services (“Services”), (ii) our practices for storing, safeguarding, and using that information, and (iii) circumstances under which we may share that information with third parties. This Privacy Policy does not apply to situations in which Scanwell processes data as a service provider solely on behalf of another organization or entity.
Please read this Privacy Policy carefully to understand our policies and practices regarding your information and how we will treat it. If you do not agree with our policies and practices, please do not use our Website or our App and please don’t purchase our products or Services. By accessing or using our Website and/or App (or purchasing our products and/or Services), you agree to the terms in this Privacy Policy. This policy may change from time to time (see Changes to Our Privacy Policy in Section 14 below). Your continued use of our Website, App and/or products/Services after we make changes is deemed to be acceptance of those changes, so please check this Privacy Policy periodically for updates.
2. Information We Collect About You
A. This policy applies to all information we collect about you, including:
• via
www.scanwellhealth.com (our “Website”) and the Scanwell mobile application (our “App”);
• via email, text, and other electronic messages between you and Us (or our Website and App);
• when you interact with our advertising and applications on third-party websites and services;
• and/or from healthcare providers or other third parties who send us information about you (e.g., related to test results).
B. The specific types of information we collect depend upon the products and Services you use, how you use them, and the information you choose to provide via our Website, the App, or otherwise. The types of data we collect from or about you (“Personal Data”) may include the following:
• Name, address, telephone number, date of birth, email address, nickname, preferred pronouns, and/or photos you send us or upload to our App;
• Log-in credentials, if you create an account;
• Billing information, such as shipping address, credit or debit card number, verification number, expiration date, and identity verification information, collected by our payment processors on our behalf;
• Information about purchases or other transactions with us; Information about your medical history and your test results when you use one of our diagnostic tests;
• Information about your customer service and maintenance interactions with us;
• Demographic information such as your gender, age, race, legal sex, and ethnicity; and Any other information you choose to directly provide to us in connection with your use of the Services, via surveys or otherwise.
C. Information We Collect Through Automated Means
In addition to the above information, we may collect certain information about your use of the Services and the devices you use to access the Services, as described in this Section. As discussed further below, we and third party companies that work on our behalf may use a variety of technologies, including cookies and similar tools, to assist in collecting this information.
i.
Our Website. When you use our Website, we collect and analyze information such as your IP address, browser type, browser language, operating system, the state or country from which you accessed the Services, software and hardware attributes (including device IDs), referring and exit pages and URLs, platform type, the number of clicks, files you download, domain names, landing pages, pages viewed and the order of those pages, the amount of time spent on particular pages, the terms you use in searches on our sites, the date and time you use the Services, error logs, and other similar information.
ii.
Our App. When you use our App, we automatically receive certain information about the mobile phone, tablet, or computer used to access the App, including a mobile device identifier, IP address, operating system, version, Internet service provider, browser type, domain name and other similar information, whether and when you update the App, date and time of use, and how you use the App, including time spent in different portions of the App.
iii.
Location Information. When you use the Services, we and our service providers may automatically collect general location information (e.g., IP address, city/state and or postal code associated with an IP address) from your computer or mobile device. This information allows us to do things such as the following: enable access to content that varies based on a user’s general location (e.g., to provide you with accurate sales tax information and to deliver content customized to your location), analyze the use of our products and Services, etc. We will ask your permission before collecting your precise GPS location information. If you no longer wish for us and our service providers to collect and use GPS location information, you may disable the location features on your device by going to your device manufacturer settings.
iv.
Our Use of Cookies and Similar Online Tools. To collect the information discussed in this Section, we and our service providers use web server logs, cookies, tags, SDKs, tracking pixels, and other similar tracking technologies. We use these technologies to offer you a more tailored online experience.
• A web server log is a file where website activity is stored.
• An SDK is a set of tools and/or code that we embed in our App and software to allow third parties to collect information about how users interact with the Services.
• A cookie is a small text file that is placed on your computer or mobile device when you visit a site, that enables us to: (i) recognize your computer/device; (ii) store your preferences and settings; (iii) understand the parts of the Services you have visited and used; (iv) enhance your user experience by delivering and measuring the effectiveness of content and advertising tailored to your interests; (v) perform searches and analytics; and (vi) assist with security and administrative functions.
• Tracking pixels (sometimes referred to as web beacons or clear GIFs) are tiny electronic tags with a unique identifier embedded in websites, online ads and/or email that are designed to: (1) collect usage information like ad impressions or clicks and email open rates; (2) measure popularity of the Services and associated advertising; and (3) access user cookies.
• Pages of our Website, screens of our App, and our emails may contain small electronic files known as web beacons (also referred to as clear gifs, pixel tags, and single-pixel gifs) that permit Scanwell, for example, to count users who have visited those pages, used those screens, or opened an email and for other related Website and App statistics (for example, recording the popularity of certain Website or App content and verifying system and server integrity). As we adopt additional technologies, we may also gather information through other methods. Please note that you can change your settings to notify you when a cookie is being set or updated, or to block cookies altogether. Please note that by blocking, disabling, or managing any or all cookies, you may not have access to certain features or offerings of the Services.
v. We may use Hotjar in order to better understand our users’ needs and to optimize this service and experience. Hotjar is a technology service that helps us better understand our users’ experience (e.g. how much time they spend on which pages, which links they choose to click, what users do and don’t like, etc.) and this enables us to build and maintain our service with user feedback. Hotjar uses cookies and other technologies to collect data on our users’ behavior and their devices. This includes a device's IP address (processed during your session and stored in a de-identified form), device screen size, device type (unique device identifiers), browser information, geographic location (country only), and the preferred language used to display our website. Hotjar stores this information on our behalf in a pseudonymized user profile. Hotjar is contractually forbidden to sell any of the data collected on our behalf. Through Hotjar, we may collect on a real-time basis information on how you use and navigate the Website. This may include mouse movements and how you scroll through the Website, but we do not collect keystroke data. For further details, please see the ‘about Hotjar’ section of
Hotjar’s support site.
vi.
Information We Collect From Social Media and Other Content Platforms. When you “like” or “follow” us on Facebook, Instagram, Twitter, LinkedIn, or other social media sites, we may collect some information from (or about) you including your name, email address, and any comments or content you post relevant to us. We also collect your information if you sign up for one of our promotions or submit information to us through social media sites.
vii.
Information We Receive From Other Sources. We work closely with third parties (including, for example, third party intermediaries, such as the physicians, medical professionals, and pharmacies with whom we partner to provide you with the Services and their health care services, sub-contractors in technical, advertising networks, analytics providers, and search information providers). Such third parties will sometimes provide us with additional information about you.
D. The information we collect automatically may include Personal Data or we may maintain it or associate it with Personal Data we collect in other ways or receive from third parties. This information helps us to improve our Website and App and to deliver a better and more personalized service by, for example, enabling us to: estimate our audience size and usage patterns; verify your location to ensure we can provide you with our Services; store information about your preferences, allowing us to customize our Website and our App according to your individual interests; or recognize you when you return to our Website and our App.
E. Camera and Photos
The App requires you to capture and upload photos to Scanwell’s servers using the camera on your mobile phone. To take and upload these photos, you will be prompted for camera permissions when using the App. Access to your camera is required when scanning the Scanwell scan card or QR code and again when scanning the completed test. After scanning, the App will discontinue use of your mobile phone’s camera. This is required to identify and validate your test, perform quality checks before capturing a photo, and interpret your test to provide you a result.
3. How We Use Your Information
A. We use information that we collect about you or that you provide to us, including your Personal Data:
• to carry out, improve, and manage the Services (including presenting our Website and App to you and sharing your diagnostic test results with you);
• to facilitate the provision of health care services to you by providing physicians or other health care providers, including telehealth providers, with your data;
• to provide diagnostic test results obtained as part of the Services to your health care provider(s) and/or to companies collaborating with Scanwell to offer diagnostic tests and/or to federal, state, and local public health authorities and/or other governmental authorities (if required by law) and/or research institutions (in the case of provider-initiated tests in the context of research studies);
• to provide you with information, products, and/or Services that you request from us or that we think might be of interest to you;
• to engage in research and data analysis to understand the effectiveness of our products and Services, to improve our products and Services, and to better understand our customer base (in some cases we may share your data with service providers such as Mixpanel in order to facilitate this analysis);
• to communicate with you about our products and/or Services, your use of our products and/or Services, or your inquiries related to products and/or Services and send you communications on behalf of physicians or other health care providers in connection with our Services;
• to communicate with you by email, postal mail, or phone about surveys, promotions, special events or our products and Services and those of our subsidiaries, affiliates, and parent companies and any of their related businesses and those of our third-party partners;
• to provide you with technical support and customer service;
• to verify your identity and administer your account, including processing your payments and fulfilling your orders;
• to measure or understand the effectiveness of advertising and content we serve to you and others, and to deliver and customize relevant advertising and content to you;
• to help us better understand your interests and needs, such as by engaging in analysis and research regarding use of our products and/or Services;
• to comply with applicable laws, regulations, court orders, subpoenas and/or governmental requests, where we believe it is necessary to do so;
• to protect the rights, property, or safety of Scanwell, our customers, or others;
• to establish, exercise, or defend our legal rights;
• to fulfill any other purpose for which you provide it;
• to carry out our obligations and enforce our rights arising from any contracts entered into between you and us, including for billing and collection purposes;
• to notify you about changes to our Website, our App, or our products / Services;
• in any other way we may describe when you provide the information; and
• for any other purpose with your consent.
B.
Aggregate/De-Identified Data. We may aggregate and/or de-identify any information collected about you so that such information can no longer be linked to you or your device (“Aggregate/De-Identified Information”). We may use Aggregate/De-Identified Information for any purpose, including for research and marketing purposes, and may also share such data with any third parties, including advertisers, promotional partners, and sponsors.
4. How We Share Your Information
A.
Affiliates and Other Third Parties. We may share your information with our affiliates as well as with third parties who provide certain services to us related to billing, sales, marketing, advertising, analytics, research, customer service, shipping and fulfillment, data storage, IT and security, fraud prevention, payment processing, and auditing and legal services.
B.
Business Transfers. In connection with any possible business transaction or corporate restructuring, we may transfer customer data to a buyer (or potential buyer) or other successor in the event of a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of our assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which Personal Data held by Scanwell about our customers is among the assets transferred.
C.
Public Forums. Certain features of our Services make it possible for you to share comments publicly with other users. Any information that you submit through such features is not confidential, and we may use it for any purpose (including in testimonials or other marketing materials). For example, if you submit a product review via our Website or App, we may display your review (along with the name provided, if any) on our online properties as well as on third-party websites. Any information you post openly in these ways will be available to the public at large and potentially accessible through third-party search engines. Accordingly, please take care when using these features.
D.
Legal Rights. We may share your information when we believe in good faith that doing so is necessary to protect, enforce, or defend the legal rights, privacy, safety, or property of Scanwell, our affiliates, employees, agents, licensors, users, or any third party, or to comply with applicable law or legal process, including responding to requests from public and government authorities.
E.
Consent/At Your Direction. We may share your information with your consent or at your direction, such as if you direct us to disclose your information to a healthcare provider or to a company collaborating with Scanwell to offer a diagnostic test.
5. Online Analytics and Tailored Advertising
A. We and our third-party vendors may use device identifiers and other automated technologies (including cookie identifiers on our Website), along with other collected information, to deliver content or tailor ads when you are on other devices, apps or websites. These ads may be based, for instance, on the types of websites that you visit over time, the types of apps you have on your device, or de-identified information about you and your likely interests, based on your activities off of our Service. Sometimes, we (or our service providers) may use the information we collect—for instance, IP addresses and unique mobile device identifiers—to locate or try to locate the same unique users across multiple browsers or devices (such as smartphones, tablets, or computers), or work with providers that do this, to help identify visitors to the Website and serve advertising. If you wish to opt out of cross device tracking for purposes of interest-based advertising, you may do so through your device settings. Partners that we or others work with to do the above may track your activities over time (including across different apps or websites) by collecting information through automated means, and they may use this information, and other information they receive from us or other sources, to deliver advertisements to you.
B. Our Website and App use Facebook ad network and Google Adwords to provide you with advertising based on your use of our Website and App. You can learn how to opt-out of such use by Facebook at
https://www.facebook.com/policies/cookies/ and by Google at
https://policies.google.com/technologies/ads. You can learn more generally about interest-based advertising on the web, or opt out of receiving those ads, by visiting (i) the
Network Advertising Initiative’s Consumer Opt-Out or (ii) the
Digital Advertising Alliance’s Consumer Opt-Out to opt-out of receiving tailored advertising from companies that participate in those programs. To opt out of Google Analytics for display advertising or customize Google display network ads, you can visit the
Google Ads Settings page. As to cross-app advertising, each operating system (e.g., iOS for Apple phones, Android for Android devices, and Windows for Microsoft devices) provides its own instructions on how to prevent the delivery of tailored in-application advertisements. You should view your device or system “Settings” to determine how you can opt out of use of your device identifier for “cross-app” personalized advertising.
C. Please note that to the extent advertising technology is integrated into our Services, you may still receive advertisements even if you opt-out. In that case, the advertising will not be tailored to your interests. Also, we do not control any of the above opt-out links or whether any particular company chooses to participate in these opt-out programs.
6. Choices About How We Use and Disclose Your Information
A. We do not control the collection and use of your information collected by third parties described above in How We Share Your Information. When possible, these organizations are under contractual obligations to use this data only for providing the services to us and to maintain this information as strictly confidential. These third parties may, however, aggregate the information they collect with information from their other customers for their own purposes.
B. In addition, we strive to provide you with choices regarding the Personal Data you provide to us. We have created the following mechanisms to provide you with control over your Personal Data:
•
Tracking Technologies and Advertising. You can set your browser settings to refuse all or some cookies, or to alert you when cookies are being used. If you disable or refuse cookies, please note that some parts of our Website or App may then be inaccessible or not function properly.
•
Promotional Offers from Scanwell. If you do not wish to have your email address used by Scanwell to promote our own products and Services, you can opt-out at any time by clicking the unsubscribe link at the bottom of any email or other marketing communications you receive from us. This opt-out does not apply to information provided to Scanwell as a result of a product purchase or your use of our Services.
7. Your Rights Regarding Your Information and Accessing and Correcting Your Information; Retention of Data
You can review and change most portions of your Personal Data by logging into our App and visiting your account profile screen. You may also notify us through the email address provided in Section 15 below of any changes or errors in any Personal Data we have about you to ensure that it is complete, accurate, and as current as possible or to delete your account. We cannot delete your Personal Data except by also deleting your account. We may also not be able to accommodate your request if we believe it would violate any law or legal requirement or cause the information to be incorrect. Except as otherwise set forth herein and subject to your rights under Section 11 below, Scanwell retains Personal Data, test results and other information collected hereunder in perpetuity. In response to an account owner’s account deletion request, Scanwell will anonymize or otherwise delete personal information associated with the account. Certain information, however, may not be deleted in accordance with applicable exceptions under state or federal law, such as data: contained in backup tapes or archives; kept pursuant to legal obligations; needed to detect security incidents and protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for that activity; needed for debugging to identify and repair errors that impair existing intended functionality; and that must be kept for internal reporting and analysis purposes. Test results and other unidentifiable data regarding tests conducted are retained and associated with an anonymized “dummy” account, so that this information is no longer linked to the original account owner.
8. Do Not Track Signals
We may use automated data collection technologies to collect information about your online activities over time and across third-party websites or other online services (behavioral tracking). Some web browsers permit you to broadcast a signal to websites and online services indicating a preference that they “do not track” your online activities. At this time, we do not honor such signals and we do not modify what information we collect or how we use that information based upon whether such a signal is broadcast or received by us.
9. Information About Children
While we may collect information about children under the age of 13 from such children’s parent(s) or legal guardian(s), and we may allow parents and legal guardians to authorize their children who are 14 - 17 years of age to use a sub-profile created by the applicable parent or legal guardian, the Services are not otherwise designed for minors under the age of 18. We do not knowingly collect or solicit personal information from anyone under the age of 13. If you are under the age of 13, please do not attempt to register for the Services or send any personal information about yourself to us. If we learn that we have collected personal information from a child under the age of 13, we will delete that information as required by law. If you believe that a child under the age of 13 may have provided us personal information, please contact us at
support@scanwellhealth.com.
10. Data Security
We have implemented measures designed to secure your Personal Data from accidental loss and from unauthorized access, use, alteration, and disclosure. We use encryption technology for information sent and received by us.
The safety and security of your information also depends on you. Where you have chosen a password for the use of our App, you are responsible for keeping this password confidential. We ask you not to share your password with anyone.
Unfortunately, the transmission of information via the internet is not always secure. Although we do our best to protect your Personal Data, we cannot guarantee the security of your Personal Data transmitted to our Website or on or through our App. Any transmission of Personal Data is at your own risk. We are not responsible for circumvention of any privacy settings or security measures contained on the Website, in your operating system, or in the App.
11. Privacy Information for California Residents
A. If you are a California resident, California law requires us to provide you with some additional information regarding how we collect, use, and share your “personal information” (as defined in the California Consumer Privacy Act (“CCPA”)).
B.
Categories of personal information we collect and disclose. Throughout this Privacy Policy, we discuss in detail the specific pieces of personal information we collect from and about our users. Under the CCPA, we are also required to provide you with the “categories” of personal information we collect and the categories of third parties to which we disclose personal information. Please note that some of the information we collect through the Services (e.g., medical information), is subject to various health data privacy laws, and is therefore not subject to the CCPA.
C. As described in our Privacy Policy above, in the preceding twelve months, we or our service providers may have collected the below categories of personal information about you for business or commercial purposes:
• Identifiers and contact information (e.g., name, address, email address, account names)
• Commercial and transactional information (e.g., information about your purchases)
• Financial information (e.g., credit card info collected by our payment processors)
• Internet or other network or device activity (e.g., IP address, browsing history, app usage)
• Geolocation information (e.g., general location and precise location, with your permission)
• Demographic and statistical data (e.g., your gender, interests based on products and services you use)
• Physical characteristics (e.g., photos of you)
• User-generated content (e.g., information you choose to post in our online forums)
• Customer service data (e.g., information you provide through a chat or call with Scanwell’s Support Team)
D. We collect the categories of personal information identified above from the following sources: (1) directly from you; (2) through your use of the Services; (3) affiliates; and/or (4) third parties such as social networks and third-party intermediaries such as physicians, medical professionals, and pharmacies.
E. The business purposes for which we use the personal information we collect are: to manage, facilitate, and improve the Services; for research, marketing, and analytics; to communicate with users; for technical support and customer service; for security and fraud prevention; and for legal compliance and defense.
F. In the previous twelve months, we may have shared certain categories of personal information with vendors and third parties for business purposes. We may share your personal information with our service providers, our affiliates, and with other entities for legal and fraud prevention. We may also share certain personal information with health care providers and other third parties at your direction or with your consent, such as (1) identifiers and contact information; (2) diagnostic test results; (3) commercial and transactional information; and (4) customer service data.
G. For more detailed information about how we use and share your personal information, please see the “How We Use Your Information” section of this Privacy Policy above.
H.
Your California Privacy Rights CCPA Rights Disclosure. If you are a California resident, the CCPA allows you to make certain requests about your personal information. Specifically, the CCPA allows you to request us to:
• Inform you about the categories of personal information we collect or disclose about you; the categories of sources of such information; the business or commercial purpose for collecting your personal information; and the categories of third parties with whom we share/disclose personal information.
• Provide access to and/or a copy of certain information we hold about you.
• Delete certain information we have about you.
The CCPA further provides you with the right to not be discriminated against (as provided for in applicable law) for exercising your rights. Please note that certain information may be exempt from such requests under California law. For example, we need certain information in order to provide the Services to you. We also will take reasonable steps to verify your identity before responding to a request.
I. If you are a California resident and you would like to exercise any of your data rights under California law, please email us at
support@scanwellhealth.com or visit our request portal at
https://www.scanwellhealth.com/legal/ccpa. Please include your full name, email address and residential address associated with your use of our Services, along with the rights you would like to exercise, so that we can process your request in an efficient manner. If you would like to receive a copy of your medical record in connection with your request, please indicate that in your email message. By requesting your medical record in this way, you are agreeing to receive your medical record in an unencrypted email message.
J.
Sale of Personal Information. Scanwell is not in the business of selling your personal information such as your name, email address, phone number, or postal address. Like many companies with an internet presence, we do work with third parties that provide marketing and advertising services to us, including interest-based advertising services, and these third parties may place tags, pixels, cookies, beacons, and other similar tracking mechanisms on our Website and App and collect your online identifiers. While we do not believe use of these vendors constitutes a “sale,” we do provide mechanisms for you to opt out of such tracking. To opt out of sharing your information with participating third parties for interest-based advertising, please visit the Network Advertising Initiative’s Consumer Opt-Out link, the Digital Advertising Alliance’s Consumer Opt-Out link, and Your Online Choices provided above in Section 5. Please note that these opt-outs are device and browser based, so you will need to opt out on each of your devices and browsers.
K.
Shine the Light Disclosure. The California “Shine the Light” law gives residents of California the right under certain circumstances to request information from us regarding the manner in which we share certain categories of personal information (as defined in the Shine the Light law) with third parties for their direct marketing purposes. We do not share your personal information with third parties for their own direct marketing purposes without your explicit consent.
12. Privacy Information for Nevada Residents
Under Nevada law, certain Nevada consumers may opt out of the sale of “personally identifiable information” for monetary consideration (as such terms are defined under Nevada law) to a person for that person to license or sell such information to additional persons. We do not engage in such activity; however, if you are a Nevada resident who has purchased services from us, you may submit a request to opt out of any potential future sales under Nevada law by sending an email to
nevada@scanwellhealth.com. Please note we will take reasonable steps to verify your identity and the authenticity of the request. Once verified, we will maintain your request in the event our practices change.
13. Third Party Privacy Practices
This Privacy Policy does not address, and Scanwell is not responsible for, the privacy, information, or other practices, including data privacy and security process and standards of any third parties, including physicians and other health care providers using the Services (or otherwise affiliated with Scanwell), the manufacturer of your mobile device and other IT hardware and software, and any other third party mobile application, website, or service to which our Services may contain a link. These third parties may at times gather information from or about you. We have no control over the privacy practices of these third parties. The collection, use, and disclosure of your information will be subject to the privacy policies of the third-party websites or services, and not this Privacy Policy. We urge you to read the privacy and security policies of these third parties.
14. Changes to Our Privacy Policy
We may change this Privacy Policy at any time. It is our policy to post any changes we make to our Privacy Policy on this page with a notice that the Privacy Policy has been updated on our Website’s home page. If we make material changes to how we treat our users’ Personal Data, we will notify you by email to the email address specified in your account and/or through a notice on the Website’s home page. The date this Privacy Policy was last revised is identified at the top of this policy. You are responsible for ensuring we have an up-to-date active and deliverable email address for you, and for periodically visiting our Website and reviewing this Privacy Policy to check for any changes.
15. Contact Information
If you have any questions, concerns, complaints or suggestions regarding our Privacy Policy or otherwise need to contact us, you may contact us at:
Scanwell Health, Inc.
1268 N Lakeview Ave.
Anaheim, CA 92807
USA
support@scanwellhealth.com.svg)
