🇺🇸

UK 🇬🇧

US 🇺🇸

Privacy Policy

Last updated: November 21, 2024

Neu Health

Neuhealth Digital Ltd, a company registered in the United Kingdom (no. 14492037) with a registered address at 10 Fitzroy Square, London, W1T 5HP (referred to as "Neu Health," "we," "us," or "our"), provides this privacy policy to inform users of our practices regarding the collection, use, and protection of their personal information. 

We comply with applicable U.S. data protection laws, including the CCPA, HIPAA, and relevant state privacy laws. 

For privacy-related questions, you can contact our Data Protection Officer at: 

  • By visiting the "Contact Us" page on our website and selecting "Data Protection" as the subject. 

Key Definitions

Personal Data: Any information that identifies, relates to, describes, or can reasonably be linked to an individual.

Data Processing: Any operation on personal data, including collection, storage, use, disclosure, and deletion.

Sensitive Personal Data: Includes health data, financial information, and other categories as defined by laws like HIPAA or state privacy laws.

Neu Health’s Interactions with Personal Data

Data Controller vs. Data Processor

Neu Health acts as a data controller when determining the purposes and means of processing your data and as a data processor when processing on behalf of other organizations (e.g., healthcare providers).

When processing on behalf of healthcare providers under HIPAA, we are a Business Associate and comply with the privacy and security requirements of the law.

Personal Data We Collect and Use

1. Website Visitors

We collect non-identifiable data using analytics tools such as Squarespace. Identifiable data may be collected when submitted via forms.

Cookies: We use cookies to enhance user experience. You can manage cookies through your browser settings. For more details, see Squarespace's Privacy Policy.

2. Neu Health App Users

Personal Data Collected:

  • Contact Information: Name, email, phone number, NHS number (if applicable).

  • Health Information: Diagnoses, symptom data, app activity logs.

Uses:

  • To deliver app functionality and support.

  • For healthcare providers to monitor your condition.

  • To improve our services (anonymized data).

Sensitive Data: We handle your health data under strict security and HIPAA-compliant practices.

3. Clinical Dashboard Users

Personal Data Collected: Name, email address, and place of work.

Uses: To confirm identity and grant dashboard access.

4. Research Participants

We collect data for approved research projects based on informed consent. Withdrawal of consent is honored at any stage.

Your Privacy Rights (U.S. Residents)

If you are a U.S. resident, you may have the following rights:

  1. Right to Know: You can request details about the personal information we collect, use, and share.

  2. Right to Access: Obtain a copy of your personal information.

  3. Right to Delete: Request deletion of your personal information, subject to legal exceptions.

  4. Right to Correct: Request corrections to inaccurate or incomplete information.

  5. Right to Opt-Out: Opt out of the sale of personal data (we do not sell personal data).

  6. Right to Data Portability: Receive a copy of your data in a portable format.

  7. Rights Under HIPAA: Access your medical records and request amendments or restrictions.

  8. Right to Lodge a Complaint: In the event that we refuse your request under the Rights of Access, we will provide you with a reason as to why.

To exercise these rights, contact us via:

Data Security

We implement reasonable safeguards, including encryption and access controls, to protect your data from unauthorized access or disclosure. For health data, we comply with HIPAA's Security Rule requirements.

Data Retention

We will regularly review personal data held by Neu Health, if the personal data is no longer required it will be disposed of accordingly.

Third-Party Processing and Data Transfers

We may share data with trusted third parties (e.g., cloud providers, analytics tools) under binding agreements. If transferring data outside the U.S., we ensure compliance with applicable legal frameworks.

 

Children’s Privacy

Our services are not directed to children under 13, and we do not knowingly collect their data without parental consent, as required by the Children's Online Privacy Protection Act (COPPA).

Changes to this Policy

We may update this policy periodically to reflect changes in practices or laws. Updates will be posted on our website with the "Last Updated" date revised.

©Neuhealth Digital Ltd. 2024

10 Fitzroy Square, London, W1T 5HP, Company no. 14492037