To allow us to provide you with service, you may be asked to share personal information, including health information. Gordy Health is committed to securing the privacy and security of the information that you provide to us.
Certain health-related information that Gordy Health collects may be considered “protected health information” or “PHI” under the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”). Please make sure to carefully review our HIPAA Notices of Privacy Practices (“HIPAA Notice”) which applies to the protection and use of PHI.
We collect information about you when you sign up for an account, place an order, communicate with us, or otherwise make use of or interact with any of the Services. This information may include your name, address, contact information, birth date, and health plan information. If a family member is using the Services on your behalf, we may also collect information about you through them.
We may gather information about your geographic location, either from your IP address or from your use of the Services, or from location-based information that you elect to provide through your use of a mobile device or Internet-enabled vehicle. We may also receive information through Cookies (as defined below).
We may receive information about you from our service providers or business partners who assist us with, for example, marketing or promotional services, advertisements, or communications. We may use analytics providers to collect and analyze information about how you interact and engage with the Services.
When you use certain Services, you may provide us with PHI. We may also receive PHI and other information from third parties, such as your doctor or health plan, who are permitted under applicable law, like HIPAA, to disclose this information to us.
We don’t sell your information in personally identifiable form to anyone and we have never sold information in personally identifiable form. We may share your information with third parties for the following reasons:
You can correct or update your personal information by updating your account through the Services or by contacting us at [email protected] or (888) 467-3910. Our HIPAA Policy provides details on how to update your PHI.
Gordy Health follows generally accepted industry best practices for protecting your information, including encryption of sensitive data at rest and in transit, anti-malware detection and prevention mechanisms, and real-time monitoring and response for potential security threats to protect sensitive personal information. Although we work to protect the security of your account and information, please be aware that no method of information transfer over the Internet or electronic data storage is completely secure and therefore we can’t guarantee the absolute security of your information during its transmission or its storage in our systems.
Gordy Health may use browser local storage technology to manage your identity, store your preferences, track how you interact with the Services, and make your experience more consistent. You may control how local storage works on your browser settings, however, disabling the local storage functionality on your browser may prevent you from being able to access and use our website.
If you’re under the age of eighteen, please don’t use or access the Services. If you believe that a child under 18 years of age may have directly provided their information to us, please contact us at [email protected]
We retain information about you for as long as you have an active account with us or as otherwise necessary to provide you with our Services. In some cases, we retain information for longer, if doing so is necessary to comply with our legal obligations, resolve disputes or collect fees owed, or is otherwise permitted or required by applicable law, rule, or regulation. We may further retain information in an anonymous or aggregated form where that information would not identify you personally.
If you’ve any questions or concerns regarding privacy using the Services, please contact us at [email protected] or (888) 467-3910.
Your Privacy Rights. You have the following rights under the CCPA with respect to your personal information.
Right to Non-Discrimination. We may not discriminate against you because you’ve exercised any of the privacy rights described above.
Exercising Your Rights. To exercise the rights described above, you (or your authorized agent) must send us a request that (1) provides sufficient information to allow us to verify that you’re the person about whom we’ve collected personal information, and (2) describes your request in sufficient detail to allow us to understand, evaluate and respond to it. Satisfaction of both criteria means your request is a “verifiable consumer request” and we’re not required to respond to requests that don’t meet these criteria. We’ll only use personal information provided in a request to verify your identity and complete your request. You don’t need an account to submit a request.
We’ll work to respond to your request within 45 days of receipt. We’ll not charge you a fee for making a request unless your request(s) is excessive, repetitive, or manifestly unfounded. If we determine that your request warrants a fee, we’ll notify you of the fee and explain that decision before completing your request.
You may submit a request using the following methods:
You may authorize an agent to exercise your rights on your behalf. To do this, you must provide your authorized agent with written permission to exercise your rights on your behalf, and we may request a copy of this written permission from your authorized agent when they make a request on your behalf. If we’ve collected information on your minor child, you may exercise the above rights on behalf of your minor child.
If you’re a California resident, you may request that we provide you with certain information about the entities with which we’ve shared your personal information for the entities’ own direct marketing purposes during the preceding calendar year. To do so, please contact us at [email protected]
If you’re a resident of Nevada, you’ve the right to opt-out of the sale of certain personal information to third parties who intend to license or sell that personal information. You can exercise this right by contacting us at [email protected] with the subject line “Nevada Do Not Sell Request” and providing us with your name and the email address associated with your account. Please note that we don’t currently sell your Personal Data as sales are defined in Nevada Revised Statutes Chapter 603A.