Your use of Clear Health Pass is voluntary. You may deactivate your account anytime from within the Service and direct us to delete your personal information.
HOW WE COLLECT YOUR PERSONAL INFORMATION
When you use the Service, we will ask you to share certain personal information. We will also receive information from U.S. local, state, and federal government organizations, as well as other entities you authorize, and collect specific technical, device, and usage information from your device.
Information You Provide to Us. The personal information you may provide to us through the Service or otherwise includes:
Registration and Profile Information. You may provide certain personal information when you register to use Healthy Together, including, among other things, your full name, zip code, phone number, email address, billing and mailing address, date of birth, biographical details, username and password that you may set to establish an online account, and other information that you add to your account profile.
User-Generated Information. You may provide information regarding your non-medical needs and other content or information you generate, transmit, or otherwise make available on the Service.
Health-Related Information. You may submit personal information about yourself through your use of the Service, such as your age, reported height and weight, your pre-existing conditions, and other health-related information.
Vaccination Records and Health Test Results. You may choose to upload a photo of your vaccination records and health test results (including for COVID-19), as well as details such as the type of test, test date, and location so that they can be stored and easily accessed from your account. Clear Health Pass cannot access your camera or stored photos without permission. We will never access or upload stored photos from your device unless you have selected them for upload.
Demographic Information. You may provide information regarding your race, ethnicity, preferred language, and state and county of residency.
Relationship Information. You may provide information about your family members or other third parties.
Transactional Information. You may provide the information needed to complete your orders on or through the Service, including order numbers and transaction history.
Financial and Related Information. You may provide information regarding your finances, such as your stated income and economic standing, as well as your EBT information.
Identification Number Information. You may share your identification number information, such as national identification number (e.g., Social Security Number, tax identification number, passport number), state or local identification number (e.g., driver’s license or state ID number), student ID number, employee ID number, or other forms of identification, and an image of the relevant identification card.
Communications Data. We may collect communications data from our exchanges with you, including when you contact customer support personnel through the Service, social media, or otherwise.
Scans of QR Codes. You may use your device camera to scan a Bar or QR code to connect test results to your account or verify symptom information to a third-party entity, such as a school, employer, or another party. We cannot access your camera without your permission.
Information about Selected Contacts. With your consent, we may receive the name and phone number of individuals from your device’s contact list for case interview purposes if you test positive for a local, state, or nationally notifiable disease. We only receive the specific contacts you choose to share with us whom you believe may have been exposed to a communicable disease (“Selected Contact”). If you choose to share a Selected Contact, we may share this information with U.S. state and local government organizations to assist them with case interview activities.
Third-Party Sources. We may combine personal information we receive from you with personal information we obtain from other sources, such as:
Public Sources. We may receive information about you from our government or school partners to offer health or benefits-related services. For example, suppose we partner with your state of residency to administer public benefits applications or display your medical test results through the Service. In that case, we may receive your contact information and related information to provide these services. You may also connect your Clear Health Pass account with your government or school accounts.
Marketing Partners. We may receive information about you from joint marketing partners.
Third-Party Services. We may combine personal information we receive from you with personal information from third-party services that you use to log into or otherwise link to your Service account. This data may include your username and other information associated with your account on that third-party service made available to us based on your account settings.
Automatic data collection. We, our service providers, and our business partners may automatically log information about you, your computer or mobile device, and your interaction over time with the Service, our communications, and other online services, such as:
The device, Technical, and Usage Information. When you access the Service, we collect information about your mobile device or computer system, including MAC address, IP address, and mobile device ID. We also generate usage statistics about your interactions with the Service. This information is typically collected through the use of server log files or web log files, mobile device software development kits, and tracking technologies like browser cookies to analyze certain types of technical information. Some cookies the Service places on your computer are linked to your user ID number. When you respond to communications we send you, we may use automated technology to understand how you interact with the contacts. You can usually remove or reject browser cookies through the settings on your browser or device. Currently, we do not recognize automated browser signals regarding tracking mechanisms, which may include “do not track” instructions. We may also use local storage technologies, like HTML5, that provide cookie-equivalent functionality but can store more significant amounts of data on your device outside your browser in connection with specific applications. We may also use web beacons, also known as pixel tags or clear GIFs, to demonstrate that a webpage or email was accessed or opened or that certain content was viewed or clicked.
HOW WE USE YOUR PERSONAL INFORMATION
We may use your personal information for the following purposes or as otherwise described at the time of collection:
Service delivery and business operations. We may use your personal information to:
- Provide, operate and improve the Service and our business;
- Establish and maintain your user profile on the Service;
- Facilitate your invitations to friends whom you want to invite to join the Service;
- Facilitate features of the Service, such as by providing chat or messaging functionality
- Enable security features of the Service, such as by sending you security codes via email or SMS and remembering devices from which you have previously logged in;
- Communicate with you about the Service, including by sending announcements, updates, security alerts, and support and administrative messages.
- Connect you with specific U.S. state and local government organizations within your state, county, or city.
- Understand your needs and interests, personalize your experience with the Service and our communications, and;
- Provide support for the Service, and respond to your requests, questions, and feedback.
Research and development. We may use your personal information for research and development purposes to analyze and improve the Service and our business. As part of these activities, we may create aggregated, de-identified, and anonymized data from the personal information we collect. We make personal information into de-identified or anonymized data by removing information that makes the data personally identifiable to you. We may use this aggregated, de-identified, or otherwise anonymized data and share it with third parties for our lawful business purposes to analyze and improve the Service and promote our business.
Marketing. We may collect and use your personal information for marketing purposes. We may send you direct marketing communications. You may opt out of our marketing communications as described in the Opt-out of marketing section below.
Compliance and protection. We may use your personal information to:
- comply with applicable laws, lawful requests, and legal processes, such as responding to subpoenas or requests from government authorities.
- protect our, your, or others’ rights, privacy, safety, or property (including by making and defending legal claims).
- Audit our internal processes for compliance with legal and contractual requirements or our internal policies.
- enforce the terms and conditions that govern the Service; and
- Prevent, identify, investigate, and deter fraudulent, harmful, unauthorized, unethical, or illegal activity, including cyberattacks and identity theft.
With your consent. In some cases, we may ask for your consent to collect, use, or share your personal information, such as when required by law.
To create aggregated, de-identified, and anonymized data. We may create aggregated, de-identified, and anonymized data from your personal information and other individuals whose personal information we collect. We make personal information into de-identified and anonymized data by removing information that makes the data identifiable to you. We may use this aggregated, de-identified, and anonymized data and share it with third parties for our lawful business purposes to analyze and improve the Service and promote our business. We may also share de-identified information with public interest organizations, healthcare organizations, and researchers. We will prohibit these organizations from attempting to re-identify the information we share with them to the extent practical.
Cookies and similar technologies. In addition to the other uses included in this section, we may use the cookies and similar technologies described above for the following purposes:
Technical operation. To allow the technical operation of the Service, such as by remembering your selections and preferences as you navigate the site and whether you are logged in when you visit password-protected areas of the Service.
Functionality. To enhance the performance and functionality of our services.
Analytics. To help us understand user activity on the Service, including which pages are most and least visited, how visitors move around the Service and user interactions with our emails. For example, we may use Google Analytics for this purpose. You can learn more about Google Analytics and how to prevent the use of Google Analytics relating to your use of our sites here: https://tools.google.com/dlpage/gaoptout?hl=en.
How We Share Your Personal Information
We may share personal information with third-party service providers that perform services on our behalf, including lab services, quality assurance testing; facilitating the creation of accounts, optimizing the platform performance, providing technical support; and provide other related services. We may also share your personal information with professional advisors, such as lawyers, auditors, bankers, and insurers, where necessary in the course of the professional services that they render to us.
We may share personal information with the government, law enforcement officials, or private parties as required by law, when we believe such disclosure is necessary or appropriate (a) to comply with legal obligations, law enforcement requests, or legal directives such as a court order or subpoena; (b) enforce the terms and conditions that govern the platform; (c) protect our rights, privacy, safety or property, and that of you or others; and (d) protect, investigate and deter against fraudulent, harmful, unauthorized, unethical or illegal activity.
We may share your personal information with acquirers and other relevant participants in business transactions (or negotiations of or due diligence for such transactions) such as a merger, consolidation, acquisition, spinoff, reorganization, or sale of assets or in the event of bankruptcy. We will notify you of any change in ownership that affects your personal information so that you may decide whether to keep your account active or delete your account.
Please note that we do not sell personal information.
Protection of Your
We may make features available on the Service, or link, that allow you to share information with third parties. Please be careful when sharing your personal information with third parties, and only share sensitive personal information with those whom you trust. We have no control over the use of your data by third parties with whom you choose to share your information.
RETENTION OF YOUR INFORMATION
We generally retain personal information to fulfill the purposes for which we collected it, including to satisfy any legal, accounting, or reporting requirements, establish or defend legal claims, or prevent fraud. To determine the appropriate retention period for personal information, we may consider factors such as the amount, nature, and sensitivity of the personal information, the potential risk of harm from unauthorized use or disclosure of your personal information, the purposes for which we process your data and whether we can achieve those purposes through other means, and the applicable legal requirements.
When we no longer require the personal information we have collected about you, we may either delete it, anonymize it, or isolate it from further processing. You may also delete your personal information and deactivate your account, as described below under Your Choices.
SECURITY OF YOUR INFORMATION
We have implemented several security measures reasonably designed to protect your personal information. It is essential that you save and maintain the security of your account, and you should immediately notify us of any unauthorized use of your account. No website, mobile application, or Internet transmission is completely secure. Therefore we cannot guarantee that unauthorized access, hacking, data loss, breaches, or other types of misuse will ever occur. Be careful where and how you share personal information—use public WiFi spots wisely and avoid clicking unfamiliar links or using foreign devices.
In the unlikely event that Health Together experiences a security breach affecting your personal information, we will notify you as required by applicable law. This notice will include information about what happened and the data involved, what steps we have taken to address the incident, and what steps you can take to protect yourself further.
Consent to User Communication Choices
You are accessing and Updating Your Information. If you have an account with us, you can access and edit your profile information directly within the profile page of the Service.
You are deactivating Your Account and Deleting Your Information. You may deactivate your account at any time by following the instructions within the Service settings. If you deactivate your account, we will delete all of your personal information within 45 days, except to the extent we are required to retain the information by law or record retention policies of the governmental authority on whose behalf we provided the Service to you.
You are opting Out of Push Notifications. If you opt-in to receive push notifications within our mobile applications, we may send push notifications or alerts to your mobile device from time to time. You can deactivate push notifications and alerts anytime by deleting the mobile app, changing your device settings, or changing the push notification settings within the mobile app.
You are opting Out of SMS Communications. If you opt-in to receive SMS messages by providing your phone numbers, we may send you notifications and other SMS messages from time to time. You may opt out of receiving SMS communications at any time by responding to any SMS with the single-word command “STOP.” In addition, if you have an account, you can opt-out of SMS communications by changing your settings within the Service. You may opt back into SMS communications anytime by adjusting your account settings within the Service. Please note that we may not be able to determine if you deleted or uninstalled the mobile app or blocked the number that delivers the communications. Therefore we may be unable to automatically stop you from receiving SMS communications unless you have specifically opted out of SMS communications by following the instructions above.
Clear Health Pass is not intended for children under 13, and we do not knowingly collect any personal information from children under 13. However, we have certain features where we request information from a parent or guardian about their dependent(s).
If we become aware that an individual under the age of 13 has used the Service, then we will promptly delete their information unless we are prohibited by law from doing so.
ADDITIONAL NOTICE TO CALIFORNIA RESIDENTS
This section describes how we collect, use, and share the Personal Information of California residents in our capacity as a “business” under the California Consumer Privacy Act (“CCPA”) and their rights concerning that Personal Information. For purposes of this section, the term “Personal Information” has the meaning given in the CCPA but does not include information exempted from the scope of the CCPA. In some cases, we may provide an additional privacy notice to specific categories of California residents, such as job applicants. That notice will apply instead of this section.
We collect the types of Personal Information from you as described above (How We Collect Your Personal Information). We use this Personal Information for the business purposes described above (How We Use Your Personal Information). We share personal information under How We Share Your Personal Information.
Your California privacy rights. California residents have the rights listed below under the CCPA. However, these rights are not absolute, and in some instances, we may decline your request as permitted by law. Please note that we do not sell your personal information.
Information. You can request the following information about how we have collected and used your Personal Information during the past 12 months:
- The categories of Personal Information that we have collected.
- The types of sources from which we collected Personal Information.
- The business or commercial purpose for collecting and selling Personal Information.
- The types of third parties with which we share Personal Information.
- The types of Personal Information that we trade or disclose for a business purpose.
- The types of third parties to whom the Personal Information was sold or disclosed for a business purpose.
Access. You can request a copy of the Personal Information we collected about you during the past 12 months.
Deletion. You can ask us to delete the Personal Information we ordered from you.
Nondiscrimination. You are entitled to exercise the rights described above free from discrimination as prohibited by the CCPA.
Exercising your right to information, access, and deletion. You may submit requests to exercise your right to information, access, or deletion by emailing us at firstname.lastname@example.org by mailing your request to:
Twenty Labs, LLC, 382 NE 191st, St PMB 42782, Miami, Florida 33179-3899
We cannot process your request if you do not provide us with sufficient detail to allow us to understand and respond to it.
We will need to verify your identity to process your information, access, and deletion requests and reserve the right to confirm your California residency. We may require government identification, a declaration under penalty of perjury, or other information to verify your identity.
Your authorized agent may request on your behalf upon our verification of the agent’s identity and our receipt of a copy of a valid power of attorney given to your authorized agent under California Probate Code Sections 4000-4465. Suppose you have not provided your agent with such a power of attorney. In that case, you must provide your agent with written and signed permission to exercise your CCPA rights on your behalf, provide the information we request to verify your identity and confirm that you have given the authorized agent permission to submit the request.
Clear Health Pass Holdings, LLC
30 Wall Street, 8th Floor
New York, NY 10005