Privacy Policy

Last Updated: May 19, 2025

INTRODUCTION

Connected Health LLC ("Connected Health," "we," "us," or "our") respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website, membership services, and related offerings (collectively, our "Services").

Please read this Privacy Policy carefully. By accessing or using our Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with our policies and practices, please do not use our Services.

INFORMATION WE COLLECT

We collect several types of information from and about users of our Services:

Personal Information

Personal information is data that can be used to identify you individually. We collect the following categories of personal information:

  • Identity Information: Name, date of birth, gender
  • Contact Information: Email address, mailing address, phone number
  • Health Information: Self-reported health history, symptoms, health goals, biometrics (height, weight), lab test results, wellness assessments
  • Account Information: Username, password, account preferences
  • Payment Information: Credit card details, billing address (processed by Stripe)
  • Communications: Records of your interactions with our customer service team, AI coach, and community forum

Non-Personal Information

We also collect information that does not directly identify you, including:

  • Usage Data: Information about how you interact with our Services, such as pages visited, features used, time spent, and referring websites
  • Device Information: IP address, browser type, operating system, and device identifiers
  • Location Information: General location derived from IP address

HOW WE COLLECT YOUR INFORMATION

Information You Provide to Us

You provide information directly to us when you:

  • Create an account
  • Complete health assessments and questionnaires
  • Order lab tests
  • Interact with our AI coach
  • Participate in our community forum
  • Contact our customer support
  • Subscribe to our newsletter
  • Purchase a membership

Automatic Data Collection

We automatically collect certain information when you visit our website or use our Services, including:

  • Cookies and similar tracking technologies
  • Log files
  • Web beacons
  • Analytics tools

Information From Third Parties

We may receive information about you from third parties, including:

  • Lab testing results from Quest Diagnostics via Fullscript
  • Payment processors (Stripe)
  • Identity verification services

HOW WE USE YOUR INFORMATION

Providing Our Services

  • Creating and managing your account
  • Coordinating lab testing through Quest Diagnostics and Fullscript
  • Delivering personalized health insights and recommendations
  • Facilitating AI coaching interactions
  • Maintaining our community forum

Communication

  • Responding to your inquiries and support requests
  • Sending administrative messages and updates about your account or Services
  • Providing information about new features, offerings, or educational content
  • Marketing our Services (subject to your marketing preferences)

Improvement and Analysis

  • Enhancing and personalizing our Services
  • Analyzing usage patterns and trends
  • Conducting research and development
  • Training and improving our AI systems

Legal and Safety Purposes

  • Complying with legal obligations
  • Protecting our rights, privacy, safety, or property
  • Detecting and preventing fraud or security incidents

DISCLOSURE OF YOUR INFORMATION

Service Providers

We share information with third-party vendors who provide services on our behalf, including:

  • Fullscript (lab testing coordination)
  • Quest Diagnostics (laboratory services)
  • Stripe (payment processing)
  • Membership.io (membership management)
  • Google services (analytics and business operations)
  • Cloud hosting and storage providers
  • Customer support tools

Legal Requirements

We may disclose information if required to do so by law or in response to valid requests by public authorities (e.g., court order or government request).

Business Transfers

If Connected Health is involved in a merger, acquisition, or sale of all or a portion of its assets, your information may be transferred as part of that transaction.

With Your Consent

We may share your information with third parties when you explicitly consent to such sharing.

Important Clarifications

We do not:

  • Sell your personal information to third parties
  • Share your health data with marketing partners
  • Allow third parties to use your data for their own purposes beyond providing services on our behalf

DATA SECURITY

We have implemented measures designed to secure your personal information from accidental loss and unauthorized access, use, alteration, and disclosure. The Fullscript portal, which houses lab results and health information, is HIPAA compliant. All other membership services use encryption to protect sensitive data.

However, no method of electronic transmission or storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.

YOUR PRIVACY CHOICES

Account Information

You can review and update your account information at any time by logging into your account.

Communication Preferences

You can opt out of marketing communications by following the unsubscribe instructions in our emails or contacting us directly. Note that you may continue to receive service-related communications.

Cookies

Most web browsers allow you to control cookies through browser settings. You may set your browser to refuse all or some browser cookies or to alert you when cookies are being sent.

Do Not Track

We do not currently respond to "Do Not Track" signals from web browsers.

Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

When you cancel your membership, we will retain your health information for a period of seven years (consistent with medical records retention standards) to allow for potential reactivation of services and to comply with applicable laws. After this period, your information will be securely deleted or anonymized.

CHILDREN'S PRIVACY

Our Services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us, and we will delete such information.

CHANGES TO OUR PRIVACY POLICY

We may update this Privacy Policy from time to time. The date at the top of this Privacy Policy indicates when it was last revised. If we make material changes, we will notify you through the Services or by sending you an email or other communication prior to the changes becoming effective.

CALIFORNIA PRIVACY RIGHTS

California residents may have additional rights regarding their personal information under the California Consumer Privacy Act (CCPA) and other state laws. Please see our California Privacy Notice for more information.

HEALTH DATA PRIVACY

Connected Health is not a covered entity under the Health Insurance Portability and Accountability Act (HIPAA). However, we partner with HIPAA-compliant service providers (Fullscript and Quest Diagnostics) for handling laboratory testing and results.

While not legally required to comply with HIPAA, we voluntarily implement many similar protections for your health information:

  1. We limit access to your health information to employees and contractors who need it to provide services to you.
  2. We use administrative, physical, and technical safeguards to protect your health information.
  3. We require our service providers to protect your health information and use it only to provide services to you.

INTERNATIONAL USERS

Our Services are intended for users located in the United States. If you access our Services from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States, where our servers are located. By using our Services, you consent to the transfer of your information to the United States.

CONTACT INFORMATION

If you have questions about this Privacy Policy or our privacy practices, please contact us at:

Connected Health LLC
1 Park West Circle, Suite 301B, Midlothian, VA 23114
[email protected]

CALIFORNIA PRIVACY NOTICE

This California Privacy Notice supplements the information contained in our Privacy Policy and applies solely to California residents. We adopt this notice to comply with the California Consumer Privacy Act (CCPA) and other California privacy laws.

Information We Collect

We collect the following categories of personal information:

  • Identifiers (name, email address, IP address)
  • Personal information categories listed in the California Customer Records statute
  • Protected classification characteristics under California or federal law (age, gender)
  • Commercial information (products or services purchased)
  • Internet or other electronic network activity information
  • Geolocation data
  • Professional or employment-related information
  • Health information (when you provide it to us)

Your Rights Under the CCPA

California residents have the right to:

  • Request disclosure of the personal information we collect, use, disclose, and sell
  • Request deletion of personal information we have collected from you
  • Opt-out of the sale of personal information (note that we do not sell personal information)
  • Non-discrimination for exercising your CCPA rights

Exercising Your Rights

To exercise your rights under the CCPA, please submit a request by:

  • Emailing us at [Email Address]
  • Calling us at [Phone Number]

We will verify your request using information associated with your account. We will respond to verified requests within 45 days.

Authorized Agent

You may designate an authorized agent to make a request on your behalf. Your agent must provide proof of your written permission and verify their own identity with us.

HEALTH DATA PRIVACY NOTICE

While Connected Health is not a covered entity under HIPAA, we recognize the sensitive nature of health information and are committed to protecting it. This section explains how we handle health-related information.

Health Information We Collect

We collect health information when you:

  • Complete health assessments
  • Order lab tests through our platform
  • Report symptoms or health goals
  • Interact with our AI coach about health topics
  • Upload health-related documents

How We Use Health Information

We use health information to:

  • Coordinate lab testing through our partners
  • Generate insights and recommendations for your wellness journey
  • Provide personalized guidance through our AI coach
  • Improve our Services by analyzing anonymized data patterns

How We Protect Health Information

We protect your health information by:

  • Storing it on secure, encrypted servers
  • Limiting access to authorized personnel
  • Using HIPAA-compliant partners for lab testing and results
  • Training our staff on proper handling of sensitive information
  • Implementing security measures appropriate to the sensitivity of the information

Sharing Health Information

We share your health information with:

  • Quest Diagnostics and Fullscript to coordinate and deliver lab testing services
  • Our service providers who need the information to provide services and are bound by confidentiality obligations
  • Regulatory authorities when required by law

We do not sell or rent your health information to third parties for marketing purposes.