Previvor Care, Inc. (“Previvor,” “we,” “us,” or “our”) has prepared this Privacy Policy to explain what personal information we collect, how we use and share that information, and your choices concerning our information practices in connection with the Services we offer (as such term is defined in our Terms and Conditions. This Privacy Policy explains what personal information we collect, how we use and share that information, and your choices concerning our information practices.

Before using the Services or submitting any personal information to Previvor, please review this Privacy Policy carefully and contact us if you have any questions.

PERSONAL INFORMATION WE COLLECT

We collect personal information as follows:

Personal Information You Provide: We collect personal information directly from you when you provide it to us, such as:

•            information that you provide by filling in forms on the Services;

•            records and copies of your correspondence (including email addresses), if you contact us; and

•            details of transactions you carry out through the Services and of the fulfillment of your requests (you may be required to provide financial information before placing a request through the Services).

In certain circumstances providing personal information is optional. However, if you choose not to provide personal information that is needed to use some features of our Services, you may be unable to use those features. You can also contact us to request updates or corrections to your personal information.

Internet Activity Information: When you visit, use, and interact with the Services, we may receive certain information about your visit, use, or interactions, such as internet log information, and cookies or other internet trackers, and webpage and Services usage information.  

Protected Health Information: Some of the personal information processed by Previvor in connection with providing the Services to you may be subject to laws and regulations, such as rules issued under the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and Health Information Technology for Economic and Clinical Health Act of 2009 (HITECH), that govern providers’ use and disclosure of certain individually identifiable health-related personal information (“Protected Health Information”). When Previvor receives Protected Health Information, it does so as a “business associate” of certain health care providers, including the Medical Group, under an agreement that, among other things, prohibits us from using or disclosing the Protected Health Information in ways that are not permissible by the health care provider itself, and requires us to implement certain measures to safeguard the confidentiality, integrity, and availability of the Protected Health Information. When we act as a business associate, we may be subject to certain laws and regulations, including certain HIPAA rules, that govern our use and disclosure of Protected Health Information and that may be more restrictive than otherwise provided in this Privacy Policy. Protected Health Information does not include information that has been de-identified in accordance with applicable laws.

Please see the Medical Groups’ Notice of Privacy Practices to understand how we protect, use and disclose your Protected Health Information. Previvor will treat any Protected Health Information in accordance with HIPAA and the Notice of Privacy Practices. To the extent this Privacy Policy conflicts with our HIPAA obligations or the Notice of Privacy Practices, we comply with HIPAA obligations or the Notice of Privacy Practices.

HOW WE USE PERSONAL INFORMATION

We may use personal information for the following purposes:

·      To provide our Services;

·      To support your care from the Medical Groups, their Providers, the Labs or the Pharmacies;

·      To respond to your inquiries, comments, feedback, or questions;

·      To send administrative information to you, for example, information regarding the Services and changes to our terms, conditions, and policies;

·      To analyze how you interact with our Service;

·      To maintain and improve the Service;

·      To develop new products and services;

·      To promote our Site and Service to you;

·      To fulfill any other purpose for which you provide us personal information;

·      For any purpose for which you give us authorization;

·      To prevent fraud, criminal activity, or misuses of our Services, and to ensure the security of our IT systems, architecture, and networks; and

·      To comply with legal obligations and legal process and to protect our rights, privacy, safety, or property, and/or that of our affiliates, you, or other third parties.

Aggregated Information. We may aggregate personal information and use the aggregated information to analyze the effectiveness of our Services, to improve and add features to our Services, and for other similar purposes. In addition, from time to time, we may analyze the general behavior and characteristics of users of our Service and share aggregated information like general user statistics with prospective business partners. We may collect aggregated information through the Services, through cookies, and through other means described in this Privacy Policy.

De-Identified Information. We may create and use de-identified information, in which information is removed from your personal information so that you cannot be identified (“De-identified Information”), without restriction.

Marketing. We may use your personal information to contact you to tell you about products or services we believe may be of interest to you. If you unsubscribe from our marketing lists, you will no longer receive marketing communications but we will continue to contact you regarding management of your account, other administrative matters, and to respond to your requests.

Additional Consent. We may also use your personal information pursuant to separate consent or authorization forms that you sign.

SHARING AND DISCLOSURE OF PERSONAL INFORMATION

Previvor does not sell your personal information. In certain circumstances we may share the categories of personal information described above without further notice to you, unless required by the law, with the following categories of third parties:

·      Care Providers: To permit the Medical Groups, their Providers, the Labs or the Pharmacies to provide the care or services that you have requested through Previvor.

·      Vendors and Service Providers: To assist us in meeting business operations needs and to perform certain services and functions, we may share personal information with vendors and service providers, including providers of hosting services, cloud services, and other information technology services providers, email communication software and email newsletter services, advertising and marketing services, payment processors, customer relationship management and customer support services, and analytics services. Pursuant to our instructions, these parties will access, process, or store personal information in the course of performing their duties to us.

·      Business Transfers: If we are involved in a merger, acquisition, financing due diligence, reorganization, bankruptcy, receivership, dissolution, sale of all or a portion of our assets, or transition of service to another provider (collectively a “Transaction”), your personal information may be shared in the diligence process with counterparties and others assisting with the Transaction and transferred to a successor or affiliate as part of or following that Transaction along with other assets.

·      Legal Requirements: If required to do so by law or in the good faith belief that such action is necessary to (i) comply with a legal obligation, including to meet national security or law enforcement requirements, (ii) protect and defend our rights or property, (iii) prevent fraud, (iv) act in urgent circumstances to protect the personal safety of users of the Services, or the public, or (v) protect against legal liability.

·      Affiliates: We may share personal information with our current and future affiliates, meaning an entity that controls, is controlled by, or is under common control with Previvor. Our affiliates may use the personal information we share in a manner consistent with this Privacy Policy.

CHILDREN

Our Service is not directed to children who are under the age of 18. Previvor does not knowingly collect personal information from children under the age of 18. If you have reason to believe that a child under the age of 18 has provided personal information to Previvor through the Services please contact us and we will try to delete that information from our databases.

LINKS TO OTHER WEBSITES

The Service may contain links to other websites not operated or controlled by Previvor, including social media services (“Third Party Sites”). The information that you share with Third Party Sites will be governed by the specific privacy policies and terms of service of the Third Party Sites and not by this Privacy Policy. By providing these links we do not imply that we endorse or have reviewed these sites. Please contact the Third Party Sites directly for information on their privacy practices and policies.

SECURITY

You use the Services at your own risk. We implement commercially reasonable technical, administrative, and organizational measures to protect personal information both online and offline from loss, misuse, and unauthorized access, disclosure, alteration, or destruction. However, no Internet or e-mail transmission is ever fully secure or error free. In particular, e-mail sent to or from us may not be secure. Therefore, you should take special care in deciding what information you send to us via the Services or e-mail. Please keep this in mind when disclosing personal information to Previvor via the Internet. In addition, we are not responsible for circumvention of any privacy settings or security measures contained on the Services, or third party websites.

PERSONAL INFORMATION PROCESSING IN THE U.S.

The Service is not intended for use outside the United States. By using our Services, you understand and acknowledge that your personal information will be transferred from your location to our facilities and servers in the United States, where data protection laws may differ from those in your jurisdiction.

CHANGES TO THE PRIVACY POLICY

The Service and our business may change from time to time. As a result we may change this Privacy Policy at any time. When we do we will post an updated version on this page, unless another type of notice is required by the applicable law. By continuing to use our Service or providing us with personal information after we have posted an updated Privacy Policy, or notified you by other means if applicable, you consent to the revised Privacy Policy and practices described in it.

CONTACT US

If you have any questions about our Privacy Policy or information practices, please feel free to contact us at contact@previvor.care (or request a mailing address if you prefer to provide contact us by mail).

STATE SPECIFIC REQUIREMENTS

CALIFORNIA INDIVIDUALS

For individuals in California, you have rights under the California Consumer Privacy Act of 2018. Please see additional information below that is intended to satisfy our obligations under the CCPA to disclose certain information to you.

Your Rights Under the CCPA. You have the right under the California Consumer Privacy Act of 2018 (CCPA), and certain other privacy and data protection laws, as applicable, to exercise free of charge:

You have the right to know, and request disclosure of:

•            The categories of personal information we have collected about you, including sensitive personal information;

•            The categories of sources from which the personal information is collected;

•            Our business or commercial purpose for collecting, selling, or sharing personal information;

•            The categories of third parties to whom we disclose personal information, if any; and

•            The specific pieces of personal information we have collected about you.

Please note that we are not required to:

•            Retain any personal information about you that was collected for a single one-time transaction if, in the ordinary course of business, that information about you is not retained;

•            Reidentify or otherwise link any data that, in the ordinary course of business, is not maintained in a manner that would be considered personal information; or

•            Provide the personal information to you more than twice in a 12-month period.

In connection with any personal information we may sell, share, or disclose to a third party for a business purpose, you have the right to know:

•            The categories of personal information about you that we sold or shared and the categories of third parties to whom the personal information was sold or shared; and

•            The categories of personal information that we disclosed about you for a business purpose and the categories of persons to whom the personal information was disclosed for a business purpose.

You have the right to opt-out of the sale of your personal information or sharing of your personal information for targeted behavioral advertising. If you exercise your right to opt-out of the sale or sharing of your personal information, we will refrain from selling or sharing your personal information, unless you subsequently provide express authorization for the sale or sharing of your personal information.

To opt-out of the sale or sharing of your personal information, contact us at contact@previvor.care (or request a mailing address if you prefer to provide this by mail).

You have the right to limit the use and disclosure of your sensitive personal information to the use which is necessary to:

•            Perform the services or provide the goods reasonably expected by an average consumer who requests those goods or services;

•            To perform the following services: (1) Helping to ensure security and integrity to the extent the use of the consumer’s personal information is reasonably necessary and proportionate for these purposes; (2) Short-term, transient use, including, but not limited to, non-personalized advertising shown as part of a consumer’s current interaction with the business, if the consumer’s personal information is not disclosed to another third party and is not used to build a profile about the consumer or otherwise alter the consumer’s experience outside the current interaction with the business; (3) Performing services on behalf of the business, including maintaining or servicing accounts, providing customer service, processing or fulfilling orders and transactions, verifying customer information, processing payments, providing financing, providing analytic services, providing storage, or providing similar services on behalf of the business; and (4) Undertaking activities to verify or maintain the quality or safety of a service or device that is owned, manufactured, manufactured for, or controlled by the business, and to improve, upgrade, or enhance the service or device that is owned, manufactured, manufactured for, or controlled by the business; and

•            As authorized by further regulations.

You have a right to know if your sensitive personal information may be used, or disclosed to a service provider or contractor, for additional, specified purposes.

Subject to certain exceptions set out below, on receipt of a verifiable request from you, we will:

•            Delete your personal information from our records; and

•            Direct any service providers or contractors to delete your personal information from their records.

•            Direct third parties to whom the business has sold or shared your personal information to delete your personal information unless this proves impossible or involves disproportionate effort.

Please note that we may not delete your personal information if it is reasonably necessary to:

•            Complete the transaction for which the personal information was collected, fulfill the terms of a written warranty or product recall conducted in accordance with federal law, provide a good or service requested by you, or reasonably anticipated within the context of our ongoing business relationship with you, or otherwise perform a contract between you and us;

•            Help to ensure security and integrity to the extent the use of the consumer’s personal information is reasonably necessary and proportionate for those purposes;

•            Debug to identify and repair errors that impair existing intended functionality;

•            Exercise free speech, ensure the right of another consumer to exercise their right of free speech, or exercise another right provided for by law;

•            Comply with the California Electronic Communications Privacy Act;

•            Engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when our deletion of the information is likely to render impossible or seriously impair the achievement of such research, provided we have obtained your informed consent;

•            Enable solely internal uses that are reasonably aligned with your expectations based on your relationship with us;

•            Comply with an existing legal obligation; or

•            Otherwise use your personal information, internally, in a lawful manner that is compatible with the context in which you provided the information.

If we maintain inaccurate personal information about you, you have the right to request us to correct that inaccurate personal information. Upon receipt of a verifiable request from you, we will use commercially reasonable efforts to correct the inaccurate personal information.

You have the right to not be retaliated against by us because you exercised any of your rights under the CCPA. This means we cannot, among other things:

•            Deny goods or services to you;

•            Charge different prices or rates for goods or services, including through the use of discounts or other benefits or imposing penalties;

•            Provide a different level or quality of goods or services to you; or

•            Suggest that you will receive a different price or rate for goods or services or a different level or quality of goods or services.

Please note that we may charge a different price or rate or provide a different level or quality of Services to you, if that difference is reasonably related to the value provided to our business by your personal information. We may also offer loyalty, rewards, premium features, or discounts consistent with these rights or payments as compensation, for the collection of personal information, the sale of personal information, or the retention of personal information.

How to Exercise Your Rights

If you would like to exercise any of your rights as described in this Privacy Policy, you can do so by contacting us at contact@previvor.care (or request a mailing address if you prefer to provide this by mail).

Please note that you may only make a CCPA-related data access or data portability disclosure request twice within a 12-month period.

To exercise your rights, you will need to provide us with:

•            Enough information to identify you (e.g., your full name, address, and account information);

•            Proof of your identity and address (e.g., a copy of your driving license or passport and a recent utility or credit card bill); and

•            A description of what right you want to exercise and the information to which your request relates.

We are not obligated to make a data access or data portability disclosure if we cannot verify that the person making the request is the person about whom we collected information or is someone authorized to act on such person’s behalf.

Any personal information we collect from you to verify your identity in connection with you request will be used solely for the purposes of verification.

INDIVIDUALS IN OTHER STATES

You may have rights under other state consumer privacy laws, including Colorado, Connecticut, Oregon, Texas, Utah, and Virginia. Please contact us at contact@previvor.care (or request a mailing address if you prefer to provide this by mail) if you have questions or would like to exercise a right under these laws.

CONSUMER HEALTH DATA PRIVACY POLICY

This notice supplements the Privacy Policy and applies to personal data defined as “consumer health data” subject to the Washington State My Health My Data Act (MHMDA), the Nevada Health Data Privacy Act (NHDPA), or other applicable state consumer health privacy law.

Consumer Health Data We Collect

As described in the Privacy Policy, the data we collect depends on the context of your interactions with us and the choices you make (including your privacy settings), the Services you use, your location, and applicable law. Because consumer health data is defined very broadly, many of the categories of data we collect could also be considered consumer health data.

Examples of consumer health data may include:

·      Information about your health-related conditions, symptoms, status, diagnoses, testing, or treatments (including surgeries, procedures, medications, or other interventions). For example, we may collect such information through surveys or other communication with you for research studies and improving product accessibility.

·      Measurements of bodily functions, vital signs, or characteristics, including photographs, which may also be considered biometric information under the MHMDA, the NHDPA, or other applicable state consumer health privacy law.

·      Precise location information that could reasonably indicate your attempt to acquire or receive health services or supplies.

·      Information that could identify your attempt to seek health care services or information, including services that allow you to assess, measure, improve, or learn about your or another person’s health.

·      Other information that may be used to infer or derive data related to the above or other health information.

Sources of Consumer Health Data

As described further in the Privacy Policy, we collect personal data (which may include consumer health data) directly from you, from your interactions with our Services, from third parties, and from publicly available sources.

Why We Collect and Use Consumer Health Data

We collect and use consumer health data for the purposes described in the Privacy Policy. Primarily, we collect and use consumer health data as reasonably necessary to provide you with the Services you have requested or authorized. This may include delivering and operating the Services and their features, personalization of certain Service features, ensuring the secure and reliable operation of the Services and the systems that support them, troubleshooting and improving the Services, and other essential business operations that support the provision of the Services (such as analyzing our performance, meeting our legal obligations, developing our workforce, and conducting research and development).

We may use consumer health data for other purposes for which we give you choices and/or obtain your consent as required by law – for example, for advertising or marketing purposes.

Our Sharing of Consumer Health Data

We may share each of the categories of consumer health data described above for the purposes described in the Privacy Policy. In particular, we may share personal data, including consumer health data, with your consent or as reasonably necessary to complete any transaction or provide any Service you have requested or authorized, as described above.

For example, we share your content with third parties when you tell us to do so. And we may disclose data when we believe that doing so is necessary to comply with applicable law or respond to valid legal process.

Third Parties With Which We Share Consumer Health Data

As necessary for the purposes described above, we share consumer health data with the following categories of third parties:

·      Service providers. Vendors or agents (“processors”) working on our behalf may access consumer health data for the purposes described above. For example, companies we’ve hired to provide customer service support or assist in protecting and securing our systems and Services may need access to data to provide those functions.

·      Business partners. We may share consumer health data with other companies, for example, where you use a Service that is cobranded and jointly operated with another company, or where you use our Services to interact with another company.

·      Financial institutions & payment processors. When you make a purchase or enter into a financial transaction, we will disclose payment and transactional data to banks and other entities as necessary for payment processing, fraud prevention, credit risk reduction, analytics, or other related financial services.

·      Parties to a corporate transaction. We may disclose consumer health data as part of a corporate transaction or proceeding such as a merger, financing, acquisition, bankruptcy, dissolution, or a transfer, divestiture, or sale of all or a portion of our business or assets.

·      Affiliates. We enable access to data across our subsidiaries, affiliates, and related companies, for example, where we share common data systems or where access helps us to provide our Services and operate our business.

·      Government agencies. As described in our Privacy Policy, we disclose data to law enforcement or other government agencies when we believe doing so is necessary to comply with applicable law or respond to valid legal process.

·      Other third parties. In certain circumstances, it may be necessary to provide data to other third parties, for example, to comply with the law or to protect our rights or those of our customers.

·      Other users and individuals. If you use our Services to interact with other Users of the Services or other recipients of communications, we will share data, including consumer health data, as directed by you and your interactions.

·      The public. You may select options available through our Services to publicly display and disclose certain information, such as your profile, demographic data, content and files, or geolocation data, which may include consumer health data.

How to Exercise Your Rights

If you are covered by the MHMDA, the NHDPA, or other applicable consumer health privacy law then you may have certain rights with respect to consumer health data, including rights to access, delete, or withdraw consent relating to such data, subject to certain exceptions. You can request to exercise such rights using the various tools and mechanisms described in the Privacy Policy. For example, depending on the Services you use, you can access and make choices about your data through product controls. You can also access and clear some of your data through your web browser. And if you want to access or control consumer health data processed by us that is not available via those tools or directly through the Services you use, you can always contact us at contact@previvor.care.

If your request to exercise a right is denied, you may appeal that decision by contacting our support team at contact@previvor.care. If your appeal is unsuccessful, you can raise a concern or lodge a complaint with the Washington State Attorney General at www.atg.wa.gov/file-complaint, the Nevada State Attorney General at https://ag.nv.gov/complaints/file_complaint/, or other regulatory authority as applicable.

Last updated April 29, 2025

‍