LAST UPDATED July 16, 2021
- e-mail and other electronic messages between you and the Company.
Together, we refer to these activities as the “Services.”
WHAT INFORMATION WE COLLECT
Information We Collect Directly from You
We collect certain information directly from you, including your:
- account information, such as your first and last name, mailing address, telephone number, and email address when you create an account;
- health-related information, such as information you upload related to your health and medical history, as well as information uploaded by your provider to the Platform; and
- location data, when you use the Services from your mobile device, if you give us permission to do so.
Information that We Collect Automatically
If you do not want a cookie placed on your hard drive or mobile device, you may be able to turn that feature off on your computer or mobile device. Please consult your Internet browser’s documentation for information on how to do this. However, if you decide not to accept cookies from us, the Website, Platform and/or Services may not function properly.
HOW WE USE YOUR INFORMATION
We may use your personal information for various purposes, including:
- To provide, maintain, and improve our Services, including to facilitate your use of the Services.
- To notify you about changes to our Services.
- To allow you to participate in interactive features of our Services when you choose to do so.
- To provide customer support.
- To monitor usage of the Services.
- To detect, prevent, and address technical issues.
- To provide you with news, special offers, and general information about other goods, services, and events that we offer that are similar to the Services.
- To help us deliver targeted advertising including to consumers directly and through unaffiliated advertising partners, to measure the effectiveness of advertising on behalf of our advertising partners, and to identify the audience most likely to respond to an advertisement.
- To comply with legal and/or regulatory requirements and cooperate with regulators and law enforcement bodies.
- To protect our rights, your rights, and the rights of others, and to meet our own high standards of business practice.
HOW WE SHARE YOUR INFORMATION
We share your personal information that we have collected with the following persons/entities and in the following circumstances:
- Legal Compliance and the Protection of Our Rights. We will share information with regulators, government authorities, and third parties where we believe it is necessary to comply with a court order, subpoena, or regulatory request. We may disclose information when we believe in good faith that such disclosures will support our detection of, prevention of, or response to fraud or intellectual property infringement; help protect your safety or security; or protect the safety and security of the Website, the Platform, the Services, or any individual.
SECURITY AND DATA RETENTION
We have implemented safeguards to help secure your personal information. Despite these protections, however, we cannot guarantee that your data will never be compromised. You should take measures to protect your personal information. If you have reason to believe that your interaction with us is no longer secure, please immediately notify us in accordance with the “Contacting Us” section below. Please note that it is the responsibility of account holders to ensure that their passwords are sufficiently complex and are kept secure.
CHOICES AND ACCESS
If you do not want to receive marketing-related emails or other types of messages from us on a going-forward basis, you may opt-out by following the instructions in the relevant electronic communication. We will try to comply with your request(s) as soon as reasonably practicable. Please note that if you opt-out of receiving marketing-related emails from us, we may still send you important administrative and Service or transaction-related messages, which you cannot opt-out of.
The Services are not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If you are under 16, do not use or provide any information on this Platform or provide any information about yourself to us through the Services. If we learn we have collected or received personal information from a child under 16 without verification of parental consent, we will delete that information. If you believe we might have any information from or about a child under 16, please contact us at email@example.com.
IMPORTANT NOTICE TO NON-U.S. RESIDENTS
The Website, the Platform and the Services are operated in the United States. If you are located outside of the United States, please be aware that any information you provide to us will be transferred to the United States. By accessing the Website and/or the Platform and using the Services, and/or providing us with any information, you consent to this transfer.
HGE Health Care Solutions, LLC
1301 Virginia Drive, Suite 100
Fort Washington, PA 19034
Attn: Customer Care
Phone: (888) 410-6230, option 6
CALIFORNIA CONSUMER PROTECTION ACT OF 2018
The following information applies solely to our customers, potential customers and end users of our products and services and others who reside in the State of California (here referred to as “Consumers”). We have adopted this Policy to comply with the California Consumer Protection Act of 2018 (“CCPA”) and other California privacy laws. Any terms defined in the CCPA will hold the same meaning when used in this notice.
Categories of Information Collected
We collect Information that identifies, relates to, describes, reference, is capable of being associated with, or could reasonable be linked, directly or indirectly, with a particular consumer or device (“Personal Information”). In particular, we have collected the following categories of Personal Information from Consumers within the last 12 months:
||Real name, alias, postal address, unique personal identifier, online identifier, email address, IP address, account name, Social Security Number, driver’s license number, passport number, or other similar identifiers.||YES|
||Name, signature, address, telephone number, employment, employment history, bank account number, credit card number, debit card number, financial Information||YES|
||Age, race, color, ancestry, national origin, citizenship, religion or creed, marital status, medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, pregnancy or childbirth and related medical conditions), veteran or military status, genetic Information (including familial genetic Information)||NO|
||Products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.||YES|
||Genetic, physiological, behavioral, and biological characteristics, or activity patterns used to extract a template or other identifier or identifying Information, such as fingerprints, faceprints, and voice prints, iris or retina scans, keystroke, gait, or other physical patterns, and sleep, health or exercise data.||NO|
||Browsing history, search history, Information on a consumer’s interaction with a Website application or advertisement.||YES|
||Audio files of recorded calls to Customer & Technical Support.||YES|
||Physical Location or movements.||NO|
||Current or past job history or performance evaluations.||NO|
||Education records directly related to a student maintained by an educational institution or party acting on behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial Information, or student disciplinary records.||NO|
||Profile reflecting a person’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.||YES|
Personal Information does not include publicly available information for government records, de-identified or aggregated consumer data, or information excluded from the CCPA’s scope (such as medical data or clinical trial data).
Disclosure of Information
In the preceding twelve (12) months, we have disclosed the following categories of Personal Information for a business purpose:
- Category A: Identifiers.
- Category B: California Customer Records Personal Information categories.
- Category C: Legally protected classification characteristics under California or federal law.
- Category D: Internet or other similar network activity.
- Category E: Sensory Data.
- Category G: Profile reflecting persons preferences.
Vapotherm does not sell, rent, or lease Personal Data. When we disclose personal information for a business purpose, we enter a contract that describes the purpose and requires the recipient to both keep that Personal Information confidential and not use it for any purpose except performing the contract.
Your Rights & Choices as a California Consumer
The CCPA provides Consumers with specific rights regarding their Personal Information. The rights including the right to request access to, and rectification, or erasure of your Personal Information, or to restrict or object to such disclosure of Personal Information.
- Access: A Consumer can request access to or copies of the Consumer’s Personal Information that we have collected and/or used over the past 12 months for personal use including knowledge on the categories of data we hold, how we obtained it, how it was used. A Consumer can also request information about the categories of service providers who may have received the Consumer’s Personal Information to provide services to us.
- Deletion: A Consumer may request in certain circumstances that we erase or delete the Consumer’s Personal Information unless we have a legal obligation to continue to hold it or otherwise are permitted by applicable law to retain it. However, we may deny the deletion request if retain the information is necessary to:
- Complete the transaction for which We collected the information, provide a good or service the Consumer requested, take actions reasonably anticipated within the context of our on-going business relationship to the Consumer, or otherwise perform our contract with the Consumer.
- Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity or prosecute those responsible for such activities.
- Debug products to identify and repair errors that impair existing intended functionality.
- “Shine the Light”: California’s “Shine the Light” law (Civil Code Section § 1798.83) permits users of our Website that are California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes. To make such a request, please contact us at the below information.
Exercising Consumer Rights
A Consumer can exercise rights to access, portability, deletion, and restriction of processing, by submitting a verifiable Consumer request to us by either:
- Calling us at (883)-234-1699
- By sending an email to firstname.lastname@example.org.
Please note that once a Consumer contacts us by email, we will request additional information and documents from the Consumer, including certain Personal Information, in order to authenticate and validate the Consumer’s identity and process your request. Such additional information will be then retrained by us for legal purposes. Vapotherm cannot respond to a Consumer request or provide a Consumer with any Personal Information if we cannot verify the Consumer’s identity or authority to make such request.
Please note that only the Consumer or a person registered with the California Secretary of State that the Consumer has authorized to act on the Consumer’s behalf, may make a Consumer request related to the Consumer’s Personal Information. A Consumer may also make a verifiable Consumer request on behalf of a minor child for which the Consumer has appropriate parental or guardianship rights.
Response and Timing
Vapotherm will acknowledge the receipt of a verifiable Consumer request within ten (10) days after receipt of request. Vapotherm will endeavor to respond to a verifiable Consumer request within thirty 30 days after its receipt. If we require more time to properly respond to the request (not to exceed 90 days), we will inform the Consumer of the reason and extension period in writing, by mail or email. Any disclosures provided will only cover a twelve (12) month period preceding the date of the verifiable Consumer request’s receipt.
If Vapotherm cannot respond to a request, we will explain the reasons we cannot comply with the request in writing, by mail or email.
For data portability requests, we will select a format to provide the Personal Information that is usable and should allow the Consumer to transmit the information from one entity to another.
Vapotherm will not discriminate against Consumers for exercising any CCPA rights. Unless permitted by CCPA, we will not deny a Consumer goods or services or provide a Consumer a different level of goods or services.
If you have questions or concerns about this Policy or any matter referred to herein, please contact us by email to: email@example.com or by mail to: HGE Health Care Solutions, LLC, 1301 Virginia Drive, Suite 100, Fort Washington, PA 19034 Attn: Customer Care.