The Site is not intended for children under 13 years of age. No one under age 13 may provide any information to the Site. We do not knowingly collect Personal Data from children under 13. If you are under 13, do not use or provide any information on this Site or provide us with your name, address, telephone number, email address, any screen name or user name you may use, or any other information about yourself. If we learn we have collected or received Personal Data from a child under 13 without verification of parental consent, we will delete that information. If you believe we might have any information from or about a child under 13, please contact us as described in the “Contacting Us” section below.
When you access or use the Site, we may send one or more cookies – small files – to your computer or device. We may be able to uniquely identify your browser with such cookies. We may use session cookies and persistent cookies. Session cookies provide information to us while your browser is open. Persistent cookies provide information to us after your browser is closed and later re-opened. If your browser is set to disable cookies, some features of the Site may not function.
We may also record certain information sent or made available by your device when you access the Site. Such information may include your location, your device and its specifications, the referring page or service and URL, IP address, browser type and language, operating system specifications, pages viewed, the time you spend on each page, the order in which you view pages, the date and time of your use or access, the exit page or service and URL, application crashes, and similar information.
We may also use technology such as web beacons and clear gifs to track you, and your use of and access to the Site. We may also use this technology in emails we send to you to track whether you opened the email. Please note that some web browsers and devices permit you to broadcast a preference to websites and online services that they “do not track” your online activities. At this time, we do not modify what information we collect or how we use that information based upon whether such a signal is broadcast or received.
We use collected information, and share collected information with our affiliates, other businesses, suppliers, vendors, licensors, and agents, to operate, maintain and provide the features and functionality of the Site, including to:
We may also disclose collected information if we believe disclosure is required to comply with applicable law, or to protect us or the Site.
In the event that we are involved in a merger, acquisition, sale, bankruptcy, insolvency, reorganization, receivership, assignment for the benefit of creditors, or the application of laws or equitable principles affecting creditors’ rights generally, or a change of control, there may be a disclosure of your personal data to another entity related to such event.
We may share your information in response to lawful requests by public authorities, including to meet national security or other lawful enforcement requirements.
Please note that you may withdraw your consent to use and/or disclose your Personal Data at any time, subject to certain restrictions prescribed by applicable law. If you do so, we may not be able provide certain services to you.
You have the right to exercise certain controls and choices regarding our collection, use and sharing of your information. Your controls and choices include the following:
- you may access, correct, update, and delete your information as described in the “How can you delete or correct collected information?” below;
- you may change your choices for newsletters, emails, and alerts as described in the applicable newsletter, email, or alert;
- you may obtain from us information regarding our policies and practices as they relate to the collection, use and disclosure of your information, including those with respect to the transfer and storage of your information outside of your jurisdiction of residence by contacting us as described in the “Contacting Us” section below; and
- if applicable, you may request a list of all third parties to which we have disclosed your Personal Data during the preceding year for direct marketing purposes and a disclosure of the shared information, as described in the “Your California Privacy Rights” section below.
You may, of course, decline to submit Personal Data to us, in which case we may not be able to provide certain services to you.
We reserve the right to take reasonable steps (such as requesting your password) to verify your identity before making corrections or deletions.
If you have questions regarding the information about you that we process or retain, please contact us as described in the “Contacting Us” section below.
At your request, we will delete from our active databases your Personal Data in our possession. We may retain such information, however, to the extent required by law, to comply with our other agreements with you (if any), or if copies are kept in archival backups, provided that, except to the extent required by applicable law, in no circumstances will we retain your personal data longer than is necessary for the fulfillment of the purposes for which it was collected.
At your request, we will also use reasonable efforts to correct your Personal Data contained in our active databases.
To request the removal or correction of your Personal Data, please contact us as described in the “Contacting Us” section below. We will respond to your request within 45 days.
We take the protection of your Personal Data seriously. We protect such information against loss and theft as well as unauthorized access, disclosure, copying, use, and modification using security safeguards, including physical, organizational, and technological measures, commensurate with the sensitivity of such information. Our employees who have access to your information are made aware of the importance of keeping it confidential.
Please be aware that no data security measures can guarantee 100% security. You should also take steps to protect against unauthorized access to information.
The Site collects Personal Data. Personal Data does not include: (i) publicly available information from government records; (ii) deidentified or aggregated consumer information; or (iii) health or medical information covered by the Health Insurance Portability and accountability Act of 1996 and the California Confidentiality of Medical Information Act or clinical trial data.
Information we collect. In particular, the Site has collected the following categories of Personal Data from consumers within the past 12 months:
|A. Identifiers||A real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, or other similar identifiers.||Yes|
|B. Personal Information Categories listed in the California Customer Records statute (Cal. Civ. Code 1798.80(e))||A name, signature, physical characteristics or description, address, telephone number, insurance policy number, education, or any other financial information, medical information, or health insurance information.||Yes|
|C. Protected classification characteristics under California or federal law||Age (40 years or older), race, color, ancestry, national origin, citizenship, religion or creed, marital status, medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, pregnancy or childbirth and related medical conditions), sexual orientation, veteran or military status, genetic information (including familial genetic information).||Yes|
|D. Commercial Information||Records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.||No|
|E. Biometric Information||Genetic, physiological, behavioral, and biological characteristics, or activity patterns used to extract a template or other identifier or identifying information, such as, fingerprints, faceprints, and voiceprints, iris or retina scans, keystroke, gait, or other physical patterns, and sleep, health, or exercise data.||No|
|F. Internet or other similar network activity||Browsing history, search history, information on a consumer's interaction with a website, application, or advertisement.||Yes|
|G. Geolocation Data||Physical location or movements.||Yes|
|H. Sensory Data||Audio, electronic, visual, thermal, olfactory, or similar information.||No|
|I. Professional or Employment related information||Current or past job history or performance evaluations.||No|
|J. Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. 1232g, 34 C.F.R. Part 99))||Education records directly related to a student maintained by an educational institution or party acting on its behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial information, or student disciplinary records.||No|
|K. Inferences drawn from other personal information||Profile reflecting a person's preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.||Yes|
We obtain the Personal Data described in the table above directly from you, for example when you complete forms or answer questions on the Site. The Site also obtains Personal Data indirectly from you, for example by observing your actions on the Site. We may also obtain Personal Data about you from Provider Users.
Use of Personal Data. We may use, sell, or disclose the Personal Data for one or more of the following purposes:
We will not collect additional categories of Personal Data or use the Personal Data we collected for materially different, unrelate, or incompatible purposes without providing you notice. Sharing Personal Data. We may share your Personal Data by disclosing it to a third party for a business purpose. We only make these business purpose disclosures under written contracts that describe the purposes, require the recipient to keep the Personal Data confidential, and prohibit using the disclosed information for any purpose except performing the contract. In the preceding twelve (12) months, Wellbe has disclosed Personal Data for a business purpose to the categories of third parties indicated in the chart below.
We do not sell personal information. In the preceding twelve months, Wellbe has not sold personal information.
|Category||Business Purpose Disclosures||Sales|
|A. Identifiers||To Wellbe’s health care provider partners.||No|
|B. Personal Information Categories listed in the California Customer Records statute (Cal. Civ. Code 1798.80(e))||To Wellbe’s health care provider partners.||No|
|C. Protected classification characteristics under California or federal law||To Wellbe’s health care provider partners.||No|
|D. Commercial Information||None||No|
|E. Biometric Information||None||No|
|F. Internet or other similar network activity||None||No|
|G. Geolocation Data||None||No|
|H. Sensory Data||None||No|
|I. Professional or Employment related information||None||No|
|J. Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. 1232g, 34 C.F.R. Part 99))||None||No|
|K. Inferences drawn from other personal information||None||No|
Rights and choices. The CCPA provides California Patient Users with specific rights regarding their Personal Data. This section describes your CCPA rights and explains how to exercise those rights.
You have the right to requires that we disclose certain information to you about our collection and use of your Personal Data over the past 12 months (the “Right to Know”). Once we receive your request and confirm your identity (see the “Contacting Us” section below), we will disclose to you:
You have the right to request that we delete any of your Personal Data that we collected from you and retained, subject to certain exceptions (the “right to delete”). Once we receive your request and confirm your identity (see the “Contacting Us” section below), we will review your request to see if an exception allowing us to retain the information applies. We may deny your deletion request if retaining the information is necessary for us or our service providers to: 1) complete the transaction for which we collected the Personal Data, provide a good or service that you requested, take actions reasonably anticipated withing the context of our ongoing business relationship with you, fulfill the terms of a written warranty or product recall conducted in accordance with federal law, or otherwise perform our obligations to you; 2) detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities; 3) debug products to identify and repair errors that impar existing intended functionality; 4) exercise free speech, ensure the right of another consumer to exercise their free speech rights, or exercise another right provided for by law; 5) comply with the California Electronic Communications Privacy Act (Cal. Penal Code 1546 et. Seq.); 6) Engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the information's deletion may likely render impossible or seriously impair the research's achievement, if you previously provided informed consent; 7) enable solely internal uses that are reasonably aligned with consumer expectations based on your relationship with us; 8) comply with a legal obligation; 9) make other internal and lawful uses of that information that are compatible with the context in which you provided it. We will delete or deidentify Personal Data not subject to one of these exceptions from our records and will direct our service providers to take similar action. We do not provide these deletion rights for business to business Personal Data. To exercise your rights to know or delete described herein, please submit a request as described in the “Contacting Us” section below. Only you, or someone legally authorized to act on your behalf, may make a Request to Know or Delete related to your Personal Data. You may only submit a Request to Know twice within a 12 month period. Your Request to Know or Delete must provide sufficient information that allows us to reasonably verify you are the person about whom we collected Personal Data or an authorized representative, and describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it.
Response timing and format. We will confirm receipt of your request within ten (10) business days. We endeavor to substantively respond to a verifiable consumer request within forty-five (45) days of its receipt. If we require more time (up to another 45 days), we will inform you of the reason and extension period in writing. If you have an account with us, we will deliver our written response to that account. If you do not have an account with us, we will deliver our written response by mail or electronically, at your option. Any disclosures we provide will only cover the 12-month period preceding our receipt of your request. The response we provide will also explain the reasons we cannot comply with a request, if applicable. For data portability requests, we will select a format to provide your Personal Data that is readily useable and should allow you to transmit the information from one entity to another entity without hindrance. We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request. Personal Data Sales Opt-Out and Opt-In Rights. If you are age 16 or older, you have the right to direct us to not sell your Personal Data at any time (the "right to opt-out"). We do not sell the Personal Data of consumers we actually know are less than 16 years old. Consumers who opt-in to Personal Data sales may opt-out of future sales at any time. To exercise the right to opt-out, you (or your authorized representative) may submit a request to us by contacting Wellbe support: Do Not Sell My Personal Data.
Once you make an opt-out request, we will wait at least twelve (12) months before asking you to reauthorize Personal Data sales. However, you may change your mind and opt back in to Personal Data sales at any time by contacting support with your request: (email@example.com).
You do not need to create an account with us to exercise your opt-out rights. We will only use Personal Data provided in an opt-out request to review and comply with the request.
Non-Discrimination. We will not discriminate against you for exercising any of your CCPA rights. Unless permitted by the CCPA, we will not:
However, we may offer you certain financial incentives permitted by the CCPA that can result in different prices, rates, or quality levels. Any CCPA-permitted financial incentive we offer will reasonably relate to your Personal Data's value and contain written terms that describe the program's material aspects. Participation in a financial incentive program requires your prior opt-in consent, which you may revoke at any time.
You can contact us via email (firstname.lastname@example.org) or at the following address:
8025 Excelsior Dr., Suite 108
Madison, WI 53717
Please include your name, address, and any other information necessary to respond to you.