Last updated: October 28, 2024
At Bone Health Technologies, Inc. (“Bone Health Technologies”) your privacy is important to us. Our Privacy Policy describes the information we collect, how we collect information, and the reasons we collect information. This Privacy Policy also describes the choices you have with the information we collect, including how you can manage, update, or request to delete information.
Please take a moment to review this Privacy Policy. You may scroll through this Privacy Policy or use the links below to navigate to specific sections. It is important that you understand this Privacy Policy. By using our website, mobile app, software, and/or services, you are agreeing to the terms of this Privacy Policy. If you have any questions or concerns about this Privacy Policy, you may Contact Us at any time.
Bone Health Technologies
At Bone Health Technologies, we develop breakthrough solutions to help people defend against osteoporosis and osteopenia. Our mission is simple: to empower people to lead longer, stronger, and more active lives by safeguarding bone density from the effects of menopause, aging, cancer, and other degenerative causes of bone loss. We develop and provide osteoporosis and osteopenia and related applications.
Bone Health Technologies is not a medical group or a health care provider, and we do not prescribe medical treatments. Bone Health Technologies provides its users with the ability to obtain a telemedicine consultation provided by independent medical practitioners through Affiliated Covered Entities (as defined below) including, but not limited to, Beluga Health, an independent medical group based in Houston, TX with a network of United States-based health care providers (each, a “Provider”). Affiliated Covered Entities (or your own medical provider if you do not use Beluga Health) are each responsible for providing you with a notice describing their respective collection and use of your health information. Bone Health Technologies is not responsible for the policies or practices of Beluga Health, or any other healthcare providers you choose to use, including any Providers you access through Affiliated Covered Entities, and you will be bound by such notices and policies that you accept in connection with your use of such services. Bone Health Technologies is entirely independent from the Affiliated Covered Entities and each Provider, including Beluga Health and any use thereof by you is at least sole discretion and responsibility. If you use our Services to obtain a consultation with a Provider as described in this paragraph, we may also facilitate the provision of your Personal Information to such Provider as requested by you, and you consent to the transfer of your Personal Information for this purpose.
Bone Health Technologies fulfills our Devices through Fulfillment Partners (as defined below), including, but not limited to, Healthwarehouse, Inc., a pharmacy group located in Florence, KY. Their Privacy Policies are located in Partner Privacy Policies (below).
Key Terms & Definitions and Our Privacy Policy
It is helpful to start by explaining some of our key terms and definitions used in this Privacy Policy.
Key Term | Definition |
---|---|
“Affiliated Covered Entities” | Is a group of independent medical practices providing licensed medical services, including telemedicine consultation as made available to our users as described above. |
“Fulfillment Partners” | Is a group of licensed pharmacies providing prescription fulfillment, patient education, record maintenance, communication with other healthcare providers, and compliance with state, local, and federal regulations. |
our “App(s)” | Osteoboost™ App |
our “Devices” | Osteoboost™ |
Osteoboost™ Services | Any services related to our devices that we may offer, including access to devices or services on a monthly or other subscription basis, as well as services to coordinate the use of our devices with care received from Providers. |
Personal Information | Any information relating to an identified or identifiable individual and any information listed here. |
Privacy Policy | This privacy policy. |
our “Services” | Our Website, our App, our Software and any services provided through our Website, our App, or our Software. Services also includes membership in the Osteoboost™ Services. |
our “Software” | Our Software supporting and facilitating our Website(s), the App and our Devices and related services |
our “Terms of Service” | Our terms of service located here. |
our “Website(s)” | Our websites, including: www.bonehealthtech.com www.osteoboost.com www.getwellen.com |
Bone Health Technologies | we, us |
When does our Privacy Policy apply?
This Privacy Policy describes the types of information we may collect from you when:
- You visit or use our Websites.
- You visit or use our Apps, including your use, subscription to or membership in Osteoboost™ Services.
- You use our Software.
- You use our Devices and connect them to a mobile device running our App.
- We communicate in e-mail, text message, and other electronic messages between you and us, and
- We communicate in person, such as on the phone for customer service purposes.
What types of Personal Information do we collect?
We may collect and use the following personal information (hereinafter, collectively referred to as “Personal Information”)
Categories of Personal Information | Specific Types of Personal Information Collected |
---|---|
Personal Identifiers | a real name, birth date, e-mail address, shipping address, billing address, phone number, or Patient ID. |
Information that identifies, relates to, describes, or is capable of being associated with a particular individual | name, username or online identifier, physical characteristics or description, shipping address, telephone number, credit card number, debit card number, or any other financial information, health or medical information, medical conditions, family medical history, medications currently taking or prescribed, fitness level, fitness preferences |
Characteristics of protected classifications under California or federal law. | Race, Color, Age, National origin, or Disability |
Biometric information | Photos, video, and voice |
Internet or other electronic network activity information | IP address, device mode, device ID, OS version, device language, operating system, browser type, browsing history, search history, and information regarding a consumer’s interaction with an Internet Web site, application, or advertisement. |
Geolocation data | Physical location or movements, local time, and local time zone. |
User Generated Content | You may use your mobile device to add notes, tags, or nutritional supplement information to Osteoboost™ recordings you make with our Devices. |
Patient Information from healthcare providers | Name, e-mail address, telephone number, birthdate, gender, medical record number, and any notes, tags, or voice memos submitted by the applicable healthcare professional and results of your clinical analysis and deliver those results to you through the App or other approved communication. |
How do we collect your Personal Information?
We collect most of this Personal Information directly from you. For example, when you set up an account through the App or sign up for Services, we may speak to you by phone, text message, and e-mail. Additionally, we will collect information from you when you visit our Website or App and fill out forms, use our Software or our Devices, or purchase or use our Services.
We may also collect Personal Information in the following ways:
- From your mobile device.
- From third-party apps you choose to connect your mobile device to, such as Apple Health or Google Fit, if you choose to authorize the transfer of your information between such apps and our App or other services.
- When You Use A Premium Feature. When you choose to participate in a premium service from Bone Health Technologies (e.g., Osteoboost™ Services), we collect additional information from you related to those services. Some premium features are paid services.
- When you make payments through the Service. We do not collect or store financial account information, though we may receive transaction identifiers and summary information that does not include credit card or bank account numbers.
- When You Contact Us. When you contact Bone Health Technologies directly, such as when you contact our Customer Support team, we will receive the contents of your message or any attachments you may send to us, as well as any additional information you choose to provide, including Personal Information. That information is managed in Intercom, a service provided by Intercom, Inc. For more information on Intercom policies, please visit Intercom’s Privacy Policy at https://www.intercom.com/legal/privacy. Users may remove Personal Information from Intercom by contacting our customer service team (Contact Us).
We will also collect information automatically as you navigate through our Website and App. We use the following technologies to automatically collect data:
- Cookies. We and our service providers may use cookies, web beacons, and other technologies to receive and store certain types of information whenever you interact with our Services through your computer or mobile device. A “cookie” is a small file or piece of data sent from a website and stored on the hard drive of your computer or mobile device. Some of the cookies we use are “session” cookies, meaning that they are automatically deleted from your hard drive after you close your browser at the end of your session. Session cookies are used to optimize performance of the Website and to limit the amount of redundant data that is downloaded during a single session. We also may use “persistent” cookies, which remain on your computer or device unless deleted by you (or by your browser settings). We may use persistent cookies for various purposes, such as statistical analysis of performance to ensure the ongoing quality of our services. We and third parties may use session and persistent cookies for analytics and advertising purposes, as described herein. On your computer, you may refuse to accept browser cookies by activating the appropriate setting on your browser, and you may have similar capabilities on your mobile device in the preferences for your operating system or browser. However, if you select this setting you may be unable to access or use certain parts of our Services. Unless you have adjusted your browser or operating system setting so that it will refuse cookies, our system will issue cookies when you direct your browser to our Website or use our App.
- Google Analytics. We use Google Analytics, a web analytics service provided by Google, Inc. (“Google”) to collect certain information relating to your use of our Website. Google Analytics uses cookies to help our Website analyze how users use the site. You can find out more about how Google uses data when you visit our Website by visiting “How Google uses data when you use our partners’ sites or apps”, (located at www.google.com/policies/privacy/partners/). For more information, please visit Google and pages that describe Google Analytics, such as www.google.com/analytics/learn/privacy.html.
- Customer.io. Customer.io is provided by Peaberry Software Inc. (“Customer.io”). We use Customer.io to analyze your use of our Website, including to allow us to communicate with you regarding our products and services, including Personal Identifiers. For more information on Customer.io policies, please visit Customer.io’s Privacy Policy at https://customer.io/legal/privacy-policy. Users may remove Personal Information from Customer.io by contacting our customer service team (Contact Us).
- Segment. Segment is provided by Twilio Inc. to analyze the use and utility of our Website and apps. Information transmitted to Segment is without Personal Identifiers and queried to provide insights to Bone Health Technologies. For more information on what type of information Segment collects, please visit Twilio’s Privacy Policy at https://www.twilio.com/en-us/legal/privacy.
- Meta Pixel. The Meta Pixel is a piece of code on our website provided by Meta, Inc. that helps us better understand the effectiveness of our advertising and the actions people take on our site. Information provided to Meta Pixel without Personal Identifiers. For more information on what type of information Meta Pixel collects, please visit Meta’s privacy policy at https://www.facebook.com/privacy/policy/.
- Mixpanel. Mixpanel is provided by Mixpanel Inc. (“Mixpanel”) to analyze the use and utility of our website and apps. Information transmitted to Mixpanel without Personal Identifiers and queried to provide insights to Bone Health Technologies. For more information on what type of information Mixpanel collects, please visit Mixpanel’s Privacy Policy: https://mixpanel.com/legal/privacy-policy/.
How do we use your Personal Information?
We may use your Personal Information for the following purposes:
- Operate, maintain, supervise, administer, and enhance our Website, our App, and our Software, including monitoring and analyzing the effectiveness of content of the Services, aggregate site usage data, and other usage of the Services such as assisting you in completing the registration process.
- Provide our products and services to you, in a custom and user-friendly way.
- Provide you with information, products, or services that you request from us or that may be of interest to you.
- Promote and market our Services to you. For example, we may use your Personal Information, such as your e-mail address, to send you news and newsletters, special offers, and promotions, or to otherwise contact you about products or information we think may interest you. We also may use the information that we learn about you to assist us in advertising our services on third party websites. You can opt-out of receiving these e-mails at any time as described below.
- To provide you notices or about your account.
- Contact you in response to a request.
- To notify you about changes to our Services or any products or services we offer or provide through them.
- Fulfill any other purpose for which you provide consent.
- To carry out our obligations and enforce our rights arising from any contracts entered into between you and us, including for billing and collection.
- Anonymize and aggregate information for analytics and reporting.
- To respond to law enforcement requests, court orders, and subpoenas and to carry out our legal and contractual obligations.
- Authenticate use, detect fraudulent use, and otherwise maintain the security of our Website, our App, our Software, and the safety of others.
- To administer surveys and questionnaires.
- To provide you information about goods and services that may be of interest to you, including through newsletters.
- Any other purpose with your consent.
How do we share your Personal Information?
We may share Personal Information with third parties in certain circumstances or for certain purposes we do not sell your Personal Information, including:
- Our business purposes. We may share your Personal Information with our affiliates, vendors, service providers, and business partners, including our data hosting and data storage partners, analytics and advertising providers, technology services and support, and data security advisors. We may also share your Personal Information with professional advisors, such as auditors, law firms, and accounting firms.
- Your healthcare providers or family. With your consent, we may share your information, including information collected from your use of our Devices, with your health care providers and/or family members (e.g., immediate family or friends) that you designate to receive your information.
- Other health-focused mobile apps. With your consent, we may share your profile information and data collected from your connected devices with other health-focused mobile applications installed on your mobile device to help you track your health and wellness information. If you share your information with these apps, your Personal Information, including your health information, will be used in accordance with privacy policies for those separate apps.
- With your consent. We may share your Personal Information if you request or direct us to do so.
- Compliance with law. We may share your Personal Information to comply with applicable law or any obligations thereunder, including cooperation with law enforcement, judicial orders, and regulatory inquiries.
- Business Transfer. We may share your Personal Information to a buyer or other successor in the event of a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of our assets, whether as a going concern or as part of a bankruptcy, liquidation, or similar proceeding, in which Personal Information held by us about our users are among the assets transferred.
- To enforce our rights. We may share your Personal Information to enforce any applicable terms and conditions and Terms of Use, and to ensure the safety and security of our Services and our users.
- De-identified information. We may also disclose de-identified information (information that cannot be reasonably used to identify any individual) with third parties for marketing, advertising, research, or similar purposes. For example, we may share information such as your gender, height, weight, information about medications you have provided, and data from your connected devices, but we will not share your name or other information that could identify you.
- To market our products and services. We may share your Personal Information with affiliates and third parties to market our products and services.
- To market third party products and services. We may share your Personal Information with affiliates and third parties to market their products or services to you if you have not opted out of these disclosures. For more information on opting out, see below under the heading “Your choices about how we share your Personal Information.”
- Third Party Analytics. We use Google Analytics, Segment, Mixpanel, Meta Pixel, and Customer.io to understand and evaluate how visitors interact with our Services. These tools help us improve our Services, performance, and your experience. Users may remove Personal Information from Customer.io by contacting our customer service team (Contact Us).
Your choices about how we share your Personal Information
This section of our Privacy Policy provides details and explains how to exercise your choices. We offer you choices on how you can opt out of our use of tracking technology, disclosure of your Personal Information for our advertising to you, and other targeted advertising. We do not control the collection and use of your information collected by third parties. These third parties may aggregate the information they collect with information from their other customers for their own purposes. You can opt out of certain third parties collecting your Personal Information for targeted advertising purposes in the United States by visiting the National Advertising Initiative’s (NAI) opt-out page and the Digital Advertising Alliance’s (DAA) opt-out page.
Each type of web browser provides ways to restrict and delete cookies. Browser manufacturers provide resources to help you with managing cookies. Please consult the documentation that your browser manufacturer provides.
If you do not wish to have your e-mail address used by Bone Health Technologies to promote our own products and services, you can opt-out at any time by clicking the unsubscribe link at the bottom of any e-mail or other marketing communications you receive from us or logging onto your My Account page. This opt-out does not apply to information provided to Bone Health Technologies as a result of a product purchase, or your use of our Services. You may have other options with respect to marketing and communication preferences through our Services.
You may also see certain ads on other websites because we participate in advertising networks. Ad networks allow us to target our messaging to users through demographic, interest-based, and contextual means. These networks track your online activities over time by collecting information through automated means, including through the use of cookies, web server logs, and web beacons. The networks use this information to show you advertisements that may be tailored to your individual interests.
How do I access and correct my Personal Information?
You can review and change your Personal Information by logging into our Services and visiting the My Account section of our Services. You may also notify us through the Contact Us below of any changes or errors in any Personal Information we have about you to ensure that it is complete, accurate, and as current as possible or to delete your account. We may not be able to delete your personal information except by also deleting your account with us. We may also not be able to accommodate your request if we believe it would violate any law or legal requirement or cause the information to be incorrect.
Who may use the Services?
This Privacy Policy applies to all personal uses of our Services globally and you should not use the Services if you do not agree to the Privacy Policy. This Privacy Policy applies to EEA (European Economic Area) Data Subjects unless the Data Subject is using the Services under direction from a physician where the physician and the Data Subject/patient have an agreement between them covering the use of the Services. In such a case the physician or his/her institution’s privacy policy will apply, not this Privacy Policy. If you are located in the United States or a country outside the EEA or Brazil, your information is stored in the United States, and by using or downloading the Service you agree that your Personal Information, including any information about your health that you provide directly to us or that we collect through your use of the Service, may be transferred to and stored in the United States. If you are an EEA or Brazilian user, we store your information in the European Union where all such information is processed in compliance with GDPR.
Children’s Privacy
Our Services are not intended for children under 18 years of age. We do not knowingly collect or sell Personal Information from children under the age of 18. If you are under the age of 18, do not use or provide any information on or in these Services or through any of its features. If we learn we have collected or received Personal Information from a child under the age of 18 without verification of parental consent, we will delete it. If you are the parent or guardian of a child under 18 years of age whom you believe might have provided use with their Personal Information, you may use the Contact Information below to request the Personal Information be deleted.
Does Bone Health Technologies respond to Do Not Track signals?
Some web browsers have a “Do Not Track” feature. This feature lets you tell websites you visit that you do not want to have your online activity tracked. These features are not yet uniform across browsers. Our Website and App are not currently set up to respond to those signals.
Data Security
We have taken steps and implemented administrative, technical, and physical safeguards designed to protect against the risk of accidental, intentional, unlawful, or unauthorized access, alteration, destruction, disclosure, or use. The Internet is not 100% secure and we cannot guarantee the security of information transmitted through the Internet. Where you have been given or you have chosen a password, it is your responsibility to keep this password confidential.
The sharing and disclosing of information via the Internet is not completely secure. We strive to use best practices and industry-standard security measures and tools to protect your data. However, we cannot guarantee the security of Personal Information transmitted to, on, or through our Services. Any transmission of Personal Information is at your own risk. We are not responsible for the circumvention of any privacy settings or security measures contained on our Website, our App, our Software, our Device, in your operating system, or mobile device.
California’s Shine the Light Law
California Civil Code Section 1798.83 (California’s “Shine the Light” law) permits users of our Services that are California residents and who provide Personal Information in obtaining products and services for personal, family, or household use to request certain information regarding our disclosure of Personal Information to third parties for their own direct marketing purposes. If applicable, this information would include the categories of Personal Information and the names and addresses of those businesses with which we shared your Personal Information with for the immediately prior calendar year (e.g. requests made in 2021 will receive information regarding such activities in 2020). You may request this information once per calendar year. To make such a request, please Contact Us using the information below.
European Economic Activity Zone Users
For European Economic Activity (“EEA”) Zone users, Bone Health Technologies is the Data Controller of the Personal Information you provide on the Services. However, in some cases, this Privacy Policy may not apply to all EEA users. This Privacy Policy does not apply to EEA users using the Services under the direction of a physician, where the physician and the patient have an agreement between them covering the use of the Services. In such a case, the physician or his/her institution controls the data collected by the Device and App, and the physician’s or his/her institution’s privacy policy will apply, not this Privacy Policy. If you are an EEA user, your Personal Information is stored within the EEA.
Consent to Processing of Personal Information
We rely on your consent as a lawful basis to process your Personal Information for the following purposes:
- Initial collection of Personal Information through the Services, and
- Providing you with marketing or promotional communications. You may opt-out of such communications at any time by clicking the “unsubscribe” link found within the Bone Health Technologies e-mail updates and changing your contact preferences.
We also process Personal Information based on our contractual obligations to provide you the Services as described in How do we share your Personal Information?, including:
- To enable the Service to function as expected.
- To communicate with you in response to customer services inquiries, to deliver non-promotional, service-related e-mails, or to administer surveys and questionnaires.
- To tailor your experience based on your general region.
Bone Health Technologies may also process Personal Information pursuant to a legal obligation or to protect your vital interests or those of another person.
We will process your Personal Information as necessary for our legitimate interests. Our legitimate interests are balanced against your rights and freedoms and we do not process your Personal Information if your rights and freedoms outweigh our legitimate interests. Our legitimate interests are to: facilitate communication between Bone Health Technologies and you; detect and correct bugs and to improve our Services; safeguard our IT infrastructure and intellectual property; detect and prevent fraud and other crime; develop our product and services.
What rights do I have?
Individuals located in the EEA have certain rights with respect to their Personal Information. These rights include:
- Access and Update. You can review and change your Personal Information by notifying us through the Contact Information below of any changes or errors in any Personal Information we have about you to ensure that it is complete, accurate, and as current as possible. We may not be able to accommodate your request if we believe it would violate any law or legal requirement or cause the information to be incorrect.
- Restrictions. You have the right to restrict our processing of your Personal Information under certain circumstances. In particular, you can request we restrict our use of it if you contest its accuracy, if the processing of your Personal Information is determined to be unlawful, or if we no longer need your Personal Information for processing but we have retained it as permitted by law.
- Portability. To the extent the Personal Information you provide Bone Health Technologies is processed based on your consent or that we process it through automated means, you have the right to request that we provide you a copy of, or access to, all or part of such Personal Information in structured, commonly used and machine-readable format. You also have the right to request that we transmit this Personal Information to another controller, when technically feasible.
- Withdrawal of Consent. To the extent that our processing of your Personal Information is based on your consent, you may withdraw your consent at any time by closing your account. Withdrawing your consent will not, however, affect the lawfulness of the processing based on your consent before its withdrawal, and will not affect the lawfulness of our continued processing that is based on any other lawful basis for processing your Personal Information.
- Right to be Forgotten. You have the right to request that we delete all of your Personal Information. We cannot delete your Personal Information except by also deleting your user account, and we will only delete your account when we no longer have a lawful basis for processing your Personal Information or after a final determination that your Personal Information was unlawfully processed. We may not accommodate a request to erase information if we believe the deletion would violate any law or legal requirement or cause the information to be incorrect. In all other cases, we will retain your Personal Information as set forth in this policy. In addition, we cannot completely delete your Personal Information as some data may rest in previous backups. These will be retained for the periods set forth in our disaster recovery policies.
- Complaints. You have the right to lodge a complaint with the applicable supervisory authority in the country you live in, the country you work in, or the country where you believe your rights under applicable data protection laws have been violated. However, before doing so, we request that you contact us directly in order to give us an opportunity to work directly with you to resolve any concerns about your privacy.
- How You May Exercise Your Rights. You may exercise any of the above rights by contacting us through any of the methods listed under Contact Us below. If you contact us to exercise any of the foregoing rights, we may ask you for additional information to verify your identity. We reserve the right to limit or deny your request if you have failed to provide sufficient information to verify your identity or to satisfy our legal and business requirements. Please note that if you make unfounded, repetitive, or excessive requests (as determined in our reasonable discretion) to access your Personal Information, you may be charged a fee subject to a maximum set by applicable law.
Automated Decision Making
Our processing of Personal Information may include automated decision making, including profiling, which may produce a legal effect concerning you or similarly significantly affect you. The algorithms used for our automated decision making process classifies and categorizes your health based on data collected by the Devices and Personal Information collected by the Services.
Changes to our Privacy Policy
We may update our Privacy Policy periodically to reflect changes in our privacy practices, laws, and best practices. We will post any changes we make to our Privacy Policy on this page with a notice that the Privacy Policy has been updated on our Website’s homepage or our App’s home screen. If we make material changes to our practices with regards to the Personal Information we collect from you, we will notify you by e-mail to the e-mail address specified in your account and/or through a notice on the Website’s home page or the App’s home screen. The date this Privacy Policy was last revised is identified at the top of the page. You are responsible for ensuring we have an up-to-date active and deliverable e-mail address for you, and for periodically accessing the App or visiting our Website and reviewing this Privacy Policy to check for any changes.
Contact Us
Mail: 370 Convention Way Suite 218, Redwood City, CA 94063
Phone: 1-833-GO-OSTEO
Email: support@osteoboost.com