Human Institute
Privacy Policy
Dear User,
Your privacy is extremely important to us. We constantly put much thought, effort, tools, resources, and procedures in place to protect and safeguard your privacy. This document is our “Privacy Policy,” and it contains details on issues related to your privacy when using our services.
Human Institute LLC owns and operates the website at https://humaninstitute.co and may now or in the future own and/or operate a Human Institute mobile application, hereby referred to as the “Platform.” Your access and use of the Platform, including its content, any services provided through the Platform or otherwise by the Human Institute, and any affiliated website, software, or application owned or operated by Human Institute, are collectively subject to this Privacy Policy unless specifically stated otherwise. Capitalized terms not otherwise defined in this Privacy Policy have the same meaning as outlined in the Human Institute Terms of Service, at this moment referred to as “Terms.”
We created this Human Institute Privacy Policy to tell you how Human Institute collects, uses, and discloses information to provide you with our Service, which can be any service provided by the Human Institute’s Platform or content. Our goal here with this Privacy Policy is to be transparent so that you can make a fully informed choice regarding how your data is used or disclosed by Human Institute.
If you use our Service, you agree to this Privacy Policy. As with our Terms, you automatically accept and acknowledge the most recent version of this Privacy Policy by creating, registering, logging into an account through the Service, or otherwise accessing or using the Service. If we make any changes to our Privacy Policy, we will post the revised Privacy Policy with the most recent “Last updated” date.
Suppose you are using the Service on behalf of an individual other than yourself. In that case, you represent that that individual authorizes you to act on their behalf and that this individual acknowledges the practices and policies outlined in this Privacy Policy.
Protected Health Information
As a part of our relationship with you, we will collect a broad range of information. Some will be health-related (covered by laws protecting medical/health information), and some will not. When you set up an account with Human Institute, you are creating a direct customer relationship with Human Institute that enables you to access and/or utilize the various functions of the Service as a user. As part of that relationship, you provide information to Human Institute, including but not limited to your name, email address, shipping address, and phone number, that we may collect, use, and disclose by our Privacy Policy and that we do not consider to be “health” or “medical” information. We make this distinction because specific requirements are imposed on us for health and medical information that may not apply to other contexts.
However, in using specific components of the Service, Human Institute may receive certain medical information that may be protected under applicable laws, including the Health Insurance Portability and Accountability Act of 1996 as amended and its implementing regulations (known as “HIPAA”). Certain information provided to Human Institute by the Providers may be protected under HIPAA, and this information is called “PHI.” Your health information may also be protected under state law. We agree to comply with applicable law, and we strive to do so in ways that protect the privacy of that information. To the extent Human Institute receives PHI that is protected by HIPAA or information that is protected by state law, this information will be used and disclosed only as permitted by HIPAA and applicable state law. PHI does not include information that has been de-identified in accordance with HIPAA, or information that has had all identifiers, such as your name, address, email address, etc., removed.
Each Provider has its own HIPAA Notice of Privacy Practices that describe how that Provider uses and discloses PHI. Human Institute encourages you to review any applicable Notices of Privacy Practices to understand the Providers’ uses and disclosures as well as your rights regarding your PHI.
Collection of Information
What information do we collect? We collect any information you provide when you use the Service, including, but not limited to:
Personally identifying information such as your name and contact data, including your email address, phone number, and billing and physical addresses.
Your login and password and other Account registration details
Demographic data (such as your gender, date of birth, and zip code)
Computer, mobile device, and/or browser information (e.g., IP address, mobile device ID information, operating system, connection speed, bandwidth, browser type, referring/existing web pages, web page requests, cookie information, hardware attributes, software attributes)
Third-party website, network, Platform, server, and/or application information (e.g., Facebook, Twitter, Instagram)
Usage activity concerning your interactions with the Service and/or third-party websites, networks or applications accessed through the Service (e.g., viewing habits, viewing preferences, viewing history, number of clicks on a page or feature, amount of time spent on a page or feature, identify of third-party websites, networks, etc.)
Billing, payment, and shipping information
Electronic signature
Photographic or video images submitted for identification or non-diagnosis or treatment purposes Information about third parties that you refer to us (e.g., name, email, and/or other contact information, relationship)
Statements or content (e.g., comments, videos, photographs, images) and information about such statements or content, which you submit or publish on or through the Service or which are accessed via your public or linked social media pages (e.g., Facebook, Twitter, Instagram)
Any other information you provide when you contact or communicate with us
If you use your mobile device to visit, access, or use the Service, then additional categories of information that we collect may include:
The name associated with your mobile device
The telephone number associated with your mobile device
Geolocation of your mobile device
Your mobile device ID information
With your express consent, your contacts and/or contact information (e.g., names, telephone numbers, physical addresses, email addresses, and photos) will be stored on your mobile device.
With your express consent, information about third-party software applications on your mobile device (including, without limitation, general software apps, downloadable software apps, and social media apps)
We also collect certain medical information on behalf of the Providers, which may include, but is not limited to:
Health and medical data you submit for diagnosis or treatment purposes, including information in any questionnaires or surveys you complete for these purposes
Previous doctors or other healthcare providers you visited
Date of visit
Images or videos you share for diagnosis or treatment purposes.
Communications with Providers
How Information Is Collected
Human Institute might collect personal and non-personal information directly from you when you:
Visit, access, or use the Service.
Register with or subscribe to the Service or any services available through the Service
“Sign in,” “login,” or the like to the Service.
Allow the Service to access, upload, download, import, or export content found on or through, or to otherwise interact with, your computer or mobile device (or any other device you may use to visit, access, or use the Service) or online accounts with third-party websites, networks, platforms, servers, or applications (e.g., your online social media accounts, your cloud drives, and servers, your mobile device service provider)
Or whenever Human Institute asks you for such information, for instance, when you process a payment through the Service or answer an online survey or questionnaire.
Additionally, suppose you or a third party sends Human Institute a comment, message, or other communication (including email, letter, fax, phone call, or voice message) about you or your activities on or through the Site and/or the App. In that case, Human Institute may collect any personal or non-personal information provided therein or in addition.
In addition to the information we collect directly from you, we may also collect certain information from the Providers who provide treatment or other services to you in connection with our Service. This information may include, but is not limited to, diagnoses, treatment plans (including prescription details), and notes and is accessible and visible through certain components of the Service. Your consent to our HIPAA Authorization explicitly allows sharing certain PHI in limited circumstances, including, without limitation, with the Providers to facilitate the provision of Services to you.
We may also receive information from third parties that pay for your care or provide you with treatment, laboratory care, or prescription medication, including your prescription history, insurance policy, insurance eligibility and coverage, and laboratory test results.
Finally, Human Institute might use various tracking, data aggregation and/or data analysis technologies, including the following:
Cookies are small data files (e.g., text files) stored on the browser or device you use to view a website or message. They may help store user preferences and activity and may allow a website to recognize a particular browser or device. There are several types of cookies, including, for example, browser cookies, session cookies, and persistent cookies. Cookies may record information you access on one page of a website to simplify subsequent interaction with that website or to help streamline your transactions on related pages of that website. Most major browsers are set up so that they will initially accept cookies, but you might be able to adjust your browsers’ or devices’ preferences to issue you an alert when a cookie is downloaded or to block, reject, disable, delete or manage the use of some or all cookies on your browser or device. Cookies can be set by the website owner (i.e., us), or third parties can set them (e.g., Facebook, Google, etc.) Cookies are used to help us speed up your future activities or to improve your experience by remembering the information that you have already provided to us. Third-party cookies may also be used to enable analytics (e.g. Google Analytics) or advertising functionality (e.g., ad retargeting on third-party websites) that enables more customized services and advertising by tracking your interaction with our Service and collecting information about how you use the Service.
Flash cookies, which are cookies written using Adobe Flash, and which may be permanently stored on your device. Like regular cookies, Flash cookies may help store user preferences and activity and may allow a website to recognize a particular browser or device. Flash cookies are not managed by the same browser settings that are used for regular cookies.
Web beacons are pieces of code embedded in a website or email to monitor your activity on the website or your opening of the email, and which can pass along information such as the IP address of the computer or device you use to view the website or open the email, the URL page on which the web beacon is located, the type of browser that was used to access the website and previously set cookie values. Web beacons are sometimes used to collect advertising data, such as counting page views, promotion views, or advertising responses. Disabling your computers’, devices’ or browsers’ cookies may prevent some web beacons from tracking or recording certain information about your activities.
Scripts are pieces of code embedded in a website to define how the website behaves in response to certain key or click requests sent by the User. Scripts are sometimes used to collect information about the users’ interactions with the website, such as the links the User clicks on. Scripts are often temporarily downloaded to the User’s computer or device from the website server, active only while the User is connected to the Site and/or the App, and deactivated or deleted when the User disconnects from the website.
Analytic tools and services, which are sometimes offered by third parties, and which track, measure, and/or generate information about a website’s or programs’ traffic, sales, audience, and similar information, and which may be used for various reasons, such as statistical research, marketing research, and content rating research, and conversion tracking. Examples of the analytic tools and services that Human Institute might use include Google Analytics. Human Institute may also use other third-party analytical tools and services.
Please be advised that if you choose to block, reject, disable, delete, or change the management settings for any or all of the aforementioned technologies and/or other trackings, data aggregation, and data analysis technologies, then certain areas of the Platform might not function properly.
By visiting, accessing, or using the Service, you acknowledge and agree in each instance that you are giving Human Institute permission to monitor or otherwise track your activities on the Service and that Human Institute may use the previously mentioned technologies and/or another tracking, data aggregation and data analysis technologies, solely for the purposes outlined in this Privacy Policy.
Human Institute does not permit third parties or third-party cookies to access any communications you have with the Providers or medical information that you submit to the Providers for diagnosis and treatment purposes.
Use of Information
That’s a lot of information. What do we use it for? In connection with providing the Service, we and our affiliates and service providers may use your information, subject to the limitations addressed in the Protected Health Information Section above, for several purposes, including, but not limited to:
Verifying your identity
Confirming your location
Administering your Account
Processing your payments
Facilitating your movement through Service
Facilitating your use of the Service and/or services offered through the Service
Communicating with you by letter, email, text, telephone, or other forms of communication
Providing you with information about Human Institute, the Providers, and/or their businesses or services by letter, email, text, telephone, or other forms of communication
Providing you with customer support
Developing, testing, or improving the Service and content, features and/or services offered via the Service.
Identifying or creating new services, marketing and/or promotions for Human Institute or the Service
Promoting and marketing Human Institute, the Service, to the extent permitted by law
Improving user experiences with the Service
Analyzing traffic to and through the Service
Analyzing user behavior and activity on or through the Service to analyze and improve the Service
Conducting research and measurement activities for purposes of service research and development, advertising claim substantiation, market research, and other activities related to Human Institute, the Service or services offered via the Service
Monitoring the activities of you and others on or through the Service to analyze and improve the Service
Protecting or enforcing Human Institute’s rights and properties
Protecting or enforcing the rights and properties of others (which may include you)
And finally, when required by applicable law, court order or other governmental authority (including, without limitation and by way of example only, in response to a subpoena or other legal process); or Human Institute believes in good faith that such use is otherwise necessary or advisable (including, without limitation and by way of example only, to investigate, prevent, or take legal action against someone who may be causing injury to, interfering with, or threatening the rights, obligations or properties of Human Institute, a user of the Service, which may include you, or anyone else who may be harmed by such activities or to further Human Institute’ legitimate business interests).
We may de-identify your information and use, create, and sell such de-identified information, or any business or other purpose not prohibited by applicable law.
Disclosure of Information
When might we have to disclose your information to others? Subject to the limitations described in the Protected Health Information section above, we may disclose your information to third parties in connection with the provision of our Service or as otherwise permitted or required by law. For example, we may disclose your information to:
Our third-party and Service providers (collectively “Vendors”) provide services to enable us to provide the Service, such as the hosting of the Service, data analysis, IT services and infrastructure, customer service, email delivery, and other similar services.
The vendors provide services to enable us to run our business and administrative operations, such as legal and financial advisory services, auditing services, analytics, and similar services.
The vendors that provide services to enable us to promote and advertise the Service and the services offered via the Service, such as ad platforms or ad-retargeting services, as well as comply with contact removal requests or requirements, such as mailing list removal services, do not call registries, and similar services.
The Providers to enable them to provide services to you via the Service and to collect payment on their behalf.
Vendors as we believe necessary or appropriate to comply with applicable laws.
To a third party in the event of any reorganization, merger, sale, joint venture, assignment, transfer, liquidation, or other disposition of all or any portion of our business, assets, or stock with such third parties.
Data Retention
Human Institute may retain your information for as long as it believes necessary; as long as necessary to comply with its legal obligations, resolve disputes, and/or enforce its agreements; and/or as long as needed to provide you with telehealth services through the Service. Human Institute may dispose of or delete any such information at any time except as set forth in any other agreement or document executed by Human Institute or as required by law.
Similarly, the Providers may retain your information for as long as they believe necessary; as long as necessary to comply with their respective legal obligations, resolve disputes, and/or enforce its agreements; and/or as long as needed to provide you with the services of the Providers. The Providers may dispose of or delete any such information at any time, except as set forth in any other agreement or document executed by the Providers or as required by law.
Transactions
In connection with any transaction that you conduct through the Service (e.g., the purchase or sale of any services on or through the Service), you may be asked to supply certain information relevant to the transaction, including, without limitation, your credit card number and expiration date, your billing address, your shipping address, your phone number and/or your email address.
By submitting such information, you grant Human Institute, without charge, the right to provide such information to third parties (e.g., payment processing companies, buyers on the Service, and sellers on the Service) to facilitate the transaction.
All credit card, debit card, and other monetary transactions on or through the Service occur through an online payment processing application(s) accessible through the Service. This online payment processing application(s) is provided by Human Institute’s third-party online payment processing vendor, PayPal, hereby referred to as “Processor”. Additional information about Processor, its privacy policy, and its information security measures, hereby referred to as the “Processor Policies,” should be available on the Processor website located at https://www.paypal.com or by contacting Processor directly. Reference is made to the Processor Policies for informational purposes only and is in no way incorporated into or made a part of this Privacy Policy.
Jurisdictional Issues
The Service may only be used within certain states within the United States of America as described in our Terms. Accordingly, this Privacy Policy, and our collection, use, and disclosure of your information, are governed by United States of America law.
Third Parties
This Privacy Policy does not address or apply to, and we are not responsible for, the privacy, information, or other practices of any third parties, including, without limitation, the Providers, the manufacturer of your mobile device, and any other third-party mobile application or website to which our Service may contain a link. These third parties may at times gather information from or about you. We do not control and are not responsible for the privacy practices of these third parties. We encourage you to review the Providers’ Notice of Privacy Practices and the privacy policies of each website and application you visit and use.
New Jersey Residents
If you are a New Jersey resident, you have the right to know what personal information we collect, use, disclose or sell about you under the CCPA. Additionally, you have the right to access and delete your personal information.
To exercise these privacy rights and choices, please follow the instructions below.
How to request access to your personal information:
You may request access to your personal information twice in 12 months. To do so, please email us at [email protected] with the subject heading “New Jersey Privacy Rights.” In response, we will produce an Access Report detailing the personal information we have collected, disclosed, and/or sold about you. This Access Report will be delivered by mail or electronically at your request. Note that we may not always be able to fully address your request, for example, if it would impact the duty of confidentiality we owe to others or if we are legally entitled to deal with the request differently. Please be aware that the New Jersey Privacy Rights requirements not cover all information sharing, and only information on covered sharing will be included in our response.
How to request the deletion of your personal information:
You may request that we delete the personal information it has collected and/or maintained about you. To do so, please email us at [email protected]. Note, we may need to retain certain personal information as permitted by law, such as to complete the transaction for which the personal information was collected, maintain an electronic medical record for a Medical Group or Provider, provide a requested good or Service, detect security incidents, protect against malicious, deceptive, fraudulent or illegal activities, comply with legal obligations or to enable solely internal uses that are reasonably aligned with your expectations or lawful within the context in which you provided the information.
We reserve the right to charge a fee where law permits, for instance, if your request is manifestly unfounded or excessive. If we determine that the proposal warrants a price, we will tell you why we made that decision and provide you with a cost estimate before completing your request.
Verification: Please note we will take steps to verify your identity before fulfilling any of the above requests. If you maintain an account with us, we will verify your identity through existing authentication practices for the Account (e.g., login and password). If you are not a registered member, we will verify your identity by matching two or three data points that you provide with data points that we maintain and have determined to be reliable for verification (e.g., browser or device ID).
Authorized Agents: Only you, or someone legally authorized to act on your behalf, may make a verifiable consumer request related to your or your minor child’s personal information. In order to designate an authorized agent to request on your behalf, you must provide written proof that you have consented to this designation unless the agent has power of attorney according to California Probate Code sections 4000-4465. You must also verify your identity directly with us by providing a copy of your government-issued identification.
Response Timing and Format: If you are a Human Institute customer with an online account, we will deliver our written response to that Account online or via email. If you are not a Human Institute customer or do not have an online account, we will deliver our written response by mail or electronically, at your preference. The response will also explain why we cannot comply with a request, if applicable. Please note that if you submit a request regarding the information provided to a Provider, your request should be directed to that entity.
Anti-Discrimination Right: We will not discriminate against you for exercising any of your CCPA rights. But note that some of the functionality and features available to you may change or no longer be available upon deletion of your personal information or opt-out of the sale of your personal information.
We do not sell your personal information for money but use cookies and similar technologies. Please see the section on cookies above.
We do not and will not sell the personal information of minors under 16 years of age without affirmative Authorization.
Miscellaneous
We strive to use reasonable physical, technical, and administrative measures to protect information under our control. However, you must keep your Account password secure and confidential, and you are responsible for any and all use of your Account. If you have reason to believe that your Account’s security has been compromised, please notify us immediately from the “Contacting Us” section below.
When using the Service, you may choose not to provide us with certain information, but this may limit the features you are able to use or may prevent you from using the Service altogether. You may also choose to opt-out of receiving certain communications (e.g., newsletters, promotions) by emailing us your preference. Please note that even if you opt out, we may send you Service-related communications. We do not currently respond to web browser “do not track” signals or other mechanisms that provide a method to opt out of collecting information across the networks of websites and online services in which we participate. If we do so in the future, we will describe how we do so in this Privacy Policy. Human Institute may supplement, amend, or otherwise modify this Privacy Policy at any time. Such supplements, amendments, and other modifications will be posted on this or a similar page of the Service and shall be deemed effective as of the “Last Updated” date; provided, however, that Human Institute will notify you and/or require you to accept the updated Privacy Policy if the supplemented, amended or otherwise modified Privacy Policy implements material changes from Human Institute’ then-current Privacy Policy. You must carefully review this Privacy Policy each time you visit, access, or use the Service.
Contacting Us
If you have any questions about this Privacy Policy, don’t hesitate to contact us by email at [email protected] Attn: Privacy Officer.
