Product Privacy Policy

1. Applicability

This Privacy Policy will explain how GetWellNetwork, Inc. (“Get Well”) uses the personal data collected from a consumer of Get Well’s Inpatient, Rounds+, Loop, and Navigate software products/mobile applications and associated services (“you”). It is important to note that Get Well generally does not make its software products/mobile applications and services available directly to consumers, but rather Get Well’s software products/mobile applications and services are made available to specific consumers on behalf of a given consumer’s healthcare provider(s) and/or health plan(s). 

Please also note that Get Well’s Privacy Policy for visitors of its corporate website, the Get Well Connection Hub client user community, and other business-to-business interactions is separately available here. 

“Personal data” means information that relates to an identified or identifiable individual, excluding any publicly available information, de-identified or aggregate consumer information, and Protected Health Information (PHI).  

“Sensitive personal data” means Sensitive Personal Information Category as set forth in Cal. Civ. Code § 1798.140, as further described below in Section 2.

2. What personal data does Get Well collect?

Within the last twelve months and moving forward, Get Well may collect various types of personal data from you by virtue of your use of our software products and services, as set forth below. This does not mean that all examples of that category of personal data were in fact collected by us, but reflects our good faith belief to the best of our knowledge that some of that information from the applicable category may be and may have been collected. For example, certain categories of personal data would only be collected if you or your healthcare provider/plan provided such personal information directly to us, and depends on the context of your relationship to us.

Categories of Personal Data	Definition	Collected
Identifiers	Personal identifiers, including email address, postal address, phone number, first and last name, Internet Protocol (IP) address, unique online identifier, or other similar identifiers.	Yes
Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e))	A name, signature, Social Security number, physical characteristics or description, address, telephone number, passport number, driver’s license or state identification card number, insurance policy number, education, employment, employment history, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information. Some personal information included in this category may overlap with other categories.	Yes
Protected classification characteristics under California or federal law	Age (40 years or older), race, color, ancestry, national origin, citizenship, religion or creed, marital status, medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, pregnancy or childbirth and related medical conditions), sexual orientation, veteran or military status, genetic information (including familial genetic information).	Yes
Commercial information	Records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.	No
Biometric information	Genetic, physiological, behavioral, and biological characteristics, or activity patterns used to extract a template or other identifier or identifying information, such as, fingerprints, faceprints, and voiceprints, iris or retina scans, keystroke, gait, or other physical patterns, and sleep, health, or exercise data.	No
Internet or other electronic network activity information	Browsing history, search history, information on a consumer’s interaction with a website, application, or advertisement, including information regarding your interaction with the software, log files, cookie data.	Yes
Geolocation data	Physical location or movements. Internet Protocol (IP) address may provide related information such as geographic location.	Yes
Sensory data	Audio, electronic, visual, thermal, olfactory, or similar information.	No
Professional or employment-related information	Current or past job history or performance evaluations.	No
Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99))	Education records directly related to a student maintained by an educational institution or party acting on its behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial information, or student disciplinary records.	Yes
Inferences drawn from other personal information	Education records directly related to a student maintained by an educational institution or party acting on its behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial information, or student disciplinary records.	Yes
Inferences drawn from other personal information	Profile reflecting a person’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.	No
Sensitive Personal Information Category as set forth in Cal. Civ. Code § 1798.140	Social security number, driver’s license number, state identification card, or passport number; account access credentials (user names, account numbers, or card numbers combined with required access code, security code or password to access an account); Precise geolocation (location within a geographical area of a circle with a radius of 1850 feet or less); Racial or ethnic origin; Religious or philosophical beliefs; Union membership, Genetic data; Mail, email, or text messages where the content is not directed to us; Unique identifying biometric information; Personal information collected and analyzed concerning health; Personal information collected and analyzed concerning sex life, or sexual orientation.	No

3. How does Get Well collect personal data? 

Most personal data collected by Get Well is provided to Get Well directly by you and/or your healthcare provider. 

Get Well may also collect personal data indirectly from you via tools such as Google Analytics, or via Get Well-managed first party cookies. Cookies are text files placed on your computer to collect standard Internet log information and visitor behavior information. 

When you use a Get Well software product, we may collect information from you automatically through first-party cookies or similar non-cookie technology such as beacons, tags, or scripts to collect and track information to improve and analyze our service. 

4. Why does Get Well collect personal data and how does Get Well use it? 

We collect personal data for certain business purposes, including to: 

1. Service our healthcare provider/plan clients and provide you with our service
2. Better understand how users interact and engage with our products and services
3. Compile aggregate information on our user population to gather insights in making business and operational decisions
4. Support internal administrative and auditing purposes
5. Enhance the security of our networks and information systems, including detecting security incidents and protecting against malicious, deceptive, fraudulent or illegal activity
6. Debug websites and products, support and address product issues
7. Respond to your submitted comments and inquiries

Get Well does not collect or disclose your personal data for commercial purposes. 

5. Does Get Well sell, share, or otherwise disclose personal data?

Get Well does not sell personal data or share personal data for the purposes of cross-contextual behavioral advertising. 

During the last twelve months and moving forward, Get Well may disclose or has disclosed elements of the following categories of personal data to its service provider and contractor vendors that fulfill or support a business purpose on behalf of Get Well pursuant to written agreements containing security and confidentiality obligations. Please note that these such disclosures are generally made in support of fulfilling the contract between Get Well and its healthcare provider/plan client:

1. Category A: Identifiers
2. Category B: Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e))
3. Category C: Protected classification characteristics under California or federal law
4. Category F: Internet or other electronic network activity information
5. Category G: Geolocation data 
6. Category J: Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99)) 

Get Well may otherwise disclose personal data when it is legally required to do so (for example, court orders, regulatory compliance, government agencies, or external auditors). 

Get Well may use Google Analytics to better understand your interactions with the software products, in which case Google may receive non-personally identifiable elements of personal data related to software engagement. You may turn off Google Analytics by using the Google Analytics Opt-out Browser Add-on provided by Google. 

6. How does Get Well secure personal data? 

The security of your personal data is important to us. We follow generally accepted industry standards to protect the personal data submitted to us, both during transmission and after it is received—for example, encryption is used for certain information using TLS (transport layer security) or alternative encryption methodology depending on the sensitivity of information. 

7. How long does Get Well store personal data? 

Get Well securely stores your data collected from our software products in a U.S. based data center (if you are located outside the U.S., your personal data is stored in your local regional data center). To prevent unauthorized access, maintain data accuracy, and ensure the appropriate use of information, we have put in place physical, electronic, and managerial procedures to protect the information we collect online.

Get Well securely stores personal data collected from its software product users for as long as it is necessary to achieve the purpose(s) as described in this Privacy Policy for which it was collected, used, or disclosed, in accordance with the table below or otherwise for as long as may be required by relevant law. 

Category of Personal Data	Retention Period
A. Identifiers	The longer of i) two years or ii) the duration of your healthcare provider/plan’s business relationship with us, plus any legally-required additional retention period for this type of information in the context of your relationship with us
B. Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e))	The longer of i) two years or ii) the duration of your healthcare provider/plan’s business relationship with us, plus any legally-required additional retention period for this type of information in the context of your relationship with us
C. Protected classification characteristics under California or federal law	The longer of i) two years or ii) the duration of your healthcare provider/plan’s business relationship with us, plus any legally-required additional retention period for this type of information in the context of your relationship with us
D. Commercial information	NA
E. Biometric information	NA
F. Internet or other electronic network activity information	The longer of i) two years or ii) the duration of your healthcare provider/plan’s business relationship with us, plus any legally-required additional retention period for this type of information in the context of your relationship with us
G. Geolocation data	The longer of i) two years or ii) the duration of your healthcare provider/plan’s business relationship with us, plus any legally-required additional retention period for this type of information in the context of your relationship with us
H. Sensory data	NA
I. Professional or employment-related information	NA
J. Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99))	The longer of i) two years or ii) the duration of your healthcare provider/plan’s business relationship with us, plus any legally-required additional retention period for this type of information in the context of your relationship with us
K. Inferences drawn from other personal information	NA
L. Sensitive Personal Information Category as set forth in Cal. Civ. Code § 1798.140	NA

8. Your personal data rights 

At Get Well, it is our mission to ensure you are fully aware of all of your data protection rights. Pursuant to applicable state and federal law, you may be entitled to the following:

1. The right to know/access – You have the right to request copies of your personal data from Get Well. We may charge you a small fee for this service.
2. The right to rectification – You have the right to request that Get Well correct any information you believe is inaccurate. You also have the right to request that Get Well complete information you believe is incomplete.
3. The right to deletion – You have the right to request that Get Well erase your personal data, under certain conditions.
4. The right to data portability – You have the right to request that Get Well transfer the data that we have collected to another organization, or directly to you, under certain conditions.
5. The right to opt-out of the sale or sharing of personal data – You have the right to request that Get Well stop selling or sharing your personal data, under certain conditions. Get Well does not sell or share personal data.  
6. The right to limit the use and disclosure of sensitive personal data –  You have the right to limit the use and disclosure of sensitive personal information, under certain conditions. Get Well does not collect, use or disclose sensitive personal data. 
7. The right to opt-out of automated decision-making technology – You have the right to opt-out of automated decision-making technology, under certain conditions. Get Well does not use automated decision-making technology. 
8. The right to non-discrimination – You have the right not to be discriminated against for attempting to exercise a data protection right. 

9. How to exercise your personal data rights

If you would like to exercise a personal data right or if you would like to designate an agent or authorized representative to act on your behalf, you may contact our Chief Privacy Officer using the below information. If you make a request, we have 45 days to respond to you, or up to 90 days if we provide you with notice of the extended period.

Email address: privacy@getwellnetwork.com
Toll free number: 877.633.8496
Local number: 240.482.3200
Mailing address:

GetWellNetwork, Inc
Attn: Office of the Privacy Officer
4th Floor
7700 Old Georgetown Rd
Bethesda, MD 20814

Please note that we may require additional information to verify that you are the person about whom we collected personal information or an authorized representative, which may include your name, email and/or physical address, and phone number. 

10. Minors 

In acting on behalf of and in service to its healthcare provider clients, Get Well may collect personal data from minors under the age of 18 years old with the consent of a parent or legal guardian. 

11. Privacy Policies of other websites

Get Well websites may contain links to other websites. Get Well is not responsible for the privacy practices or the content of other websites. Clients and visitors will need to check the policy statement of these other websites to understand their policies. Clients and visitors who access a linked site may be disclosing their private information. It is the responsibility of the user to keep such information private and confidential.

12. Changes to this Privacy Policy

Get Well keeps its privacy policy under regular review and places any updates on this web page. This privacy policy was last updated on March 20, 2024.

13. How to contact Get Well

If you have any questions or complaints about Get Well’s privacy policy, the data we hold on you, or you would like to exercise one of your data protection rights, please do not hesitate to contact our Privacy Officer at:

Email address: privacy@getwellnetwork.com
Toll free number: 877.633.8496
Local number: 240.482.3200
Mailing address:

GetWellNetwork, Inc
Attn: Office of the Privacy Officer
4th Floor
7700 Old Georgetown Rd
Bethesda, MD 20814

If you have any questions or complaints about Get Well’s security practices, please do not hesitate to contact our Chief Information Security Officer at:

Email address: ciso@getwellnetwork.com
Toll free number: 877.633.8496
Local number: 240.482.3200
Mailing address:

GetWellNetwork, Inc
Attn: Office of the Chief Information Security Officer
4th Floor
7700 Old Georgetown Rd
Bethesda, MD 20814

Contact the Webmaster with any other questions about Get Well or our Solutions, platforms, etc:

Email: webmaster@getwellnetwork.com
Toll free number: 877.633.8496 
Local number: 240.482.3200
Mailing address:

GetWellNetwork, Inc
Attn: Webmaster
4th Floor
7700 Old Georgetown Rd
Bethesda, MD 20814