Privacy Policy
Last Updated: 02/12/2025
Our Commitment to Privacy
Your privacy is important to us at Heartful Sprout Inc. ("Company," "we," "us," or "our"), and we are committed to safeguarding, preserving, and respecting your privacy rights. This online privacy statement (the "Statement" or "Notice") describes how we collect, use, disclose, and secure the personal information we gather about healthcare providers, clinicians, and medical practices ("Providers," "you," or "your") through our website and related applications (collectively, the "Platform") or otherwise. It also describes the choices available to you regarding our use of your personal information and how you can access and update this information.
For purposes of this Statement, personal information means data that classifies as personal information, personal data, personally identifiable information, or similar terms under applicable data privacy and security laws and regulations. It does not include data excluded or exempted from those laws and regulations, such as deidentified, anonymized, or aggregated data. Nothing in this Statement will constitute an admission or evidence that any particular data privacy or information security law or regulation applies to the Company generally or in any specific context.
Provider Responsibilities and HIPAA Compliance
As a Provider using our Platform to deliver services to your patients, you acknowledge and agree that you are solely responsible for complying with all applicable laws, regulations, and requirements relating to the privacy and security of protected health information ("PHI"), including but not limited to the Health Insurance Portability and Accountability Act of 1996 ("HIPAA") and its implementing regulations.
The Company provides the Platform as a tool to assist Providers in delivering nutrition and dietary services to their patients. While we implement reasonable security measures to protect data processed through our Platform, we are not responsible for your compliance with HIPAA or other applicable healthcare privacy laws and regulations. You must ensure that your use of the Platform complies with all applicable privacy and security requirements, including:
Obtaining necessary patient authorizations and consents
Maintaining appropriate administrative, physical, and technical safeguards
Implementing policies and procedures for the proper handling of PHI
Training your workforce on privacy and security requirements
Executing appropriate Business Associate Agreements where required
Reporting and responding to security incidents and breaches
Maintaining documentation of privacy and security practices
You Consent to This Statement
You should read this Statement carefully. We recommend printing and retaining a copy for your future reference. By accessing, browsing, or otherwise using the Platform, you confirm that you have read, understood, and agreed with this Statement. If you do not agree to this Statement, you may not use this Platform.
This Statement applies regardless of how the Platform is accessed and will cover any technologies or devices by which the Company makes the Platform available to you.
If you have any questions or concerns about our personal information policies or practices, you can contact us via the methods described in the “How to Contact Us” section below.
The Information We Collect and How
We collect the information you voluntarily provide directly to us, such as when you complete a form or submit information to us. We also collect information when you interact with the Platform, for example, through our use of cookies. We may collect the following information that you provide to us:
Provider Information When you register for and use our Platform, we collect information about you and your medical practice, including:
Practice name and contact information
Provider names and credentials
National Provider Identifier (NPI) numbers
Medical license information
Billing and payment information
Practice specialties and services offered
Staff member information and access credentials
Patient Information Through your use of the Platform, you may input or upload information about your patients, including:
Demographic information
Medical history
Nutritional assessments
Dietary preferences and restrictions
Treatment plans and progress notes
Height, weight, and other biometric data
You represent and warrant that you have obtained all necessary authorizations and consents from your patients before sharing their information through the Platform.
Information We Collect as You Navigate Our Platform
We automatically collect certain information as you use the Platform, such as the following:
Usage Information. We may collect information automatically through your use of the Platform, such as which of the pages on the Platform you access, the frequency of access, and how long you spend on our Platform.
Device Information. We may collect information about the device you are using, such as hardware model, operating system, application version number, browser, and IP addresses.
Mobile Device Information. In addition to the Device Information listed above, when you access our Platform via a browser on your mobile device, we may collect mobile network information, including telephone number, the unique device identifier assigned to that device, mobile carrier, operating system, and other device attributes.
Location Information. We may collect information about your actual location, which may be determined from GPS and other sensors that may reveal information on or nearby devices, Wi-Fi access points, and cell towers.
How Do We Use “Cookies” and Other Tracking Technologies?
We may send one or more Cookies to your computer or other device. We may also use other similar technologies such as tracking pixels, tags, or similar tools when you visit our Services.
Cookies are small files created by websites, including our Services, that reside on your computer’s hard drive and that store information about your use of a particular website. When you access our Services, we use Cookies and other tracking technologies to:
Estimate our audience size and usage patterns;
Store information about your preferences, allowing us to customize our Services according to your individual needs;
Contact you to provide you with information or services that you request from us;
Advertise new content, events, and services that relate to your interests;
Provide you with more personalized content that is most relevant to your interest areas; and
Recognize when you return to our Services.
You can manage your Cookies preference as described in the “Managing Your Cookies” section below.
Types of CookiesPurposeWho Serves
EssentialThese Cookies are required for the operation of the Services and enable you to move around the Services and use its features. Disabling these Cookies can negatively impact the performance of Services.· GoogleFunctionalityThese Cookies are used to recognize you when you return to the Site. This enables us to personalize content for you and remember your preferences. These Cookies also enable your interactions with the Services such as emailing us.· GoogleAnalytics, Performance, and ResearchThese Cookies, beacons, and pixels allow us to analyze activities on the Services. They can be used to improve the functioning of the Services. For example, these Cookies recognize and count the number of visitors and see how they move around the Services. Analytics Cookies also help us measure the performance of our advertising campaigns to help us improve them and to optimize the content on the Services for those who engage with our advertising.· GoogleSocial NetworkingThese Cookies are used to enable you to share pages and content that you find interesting on our Services through third-party social networking and other websites. These Cookies may also be used for advertising purposes.· GoogleAdvertisingThese Cookies and pixels are used to deliver relevant ads, track ad campaign performance, or track email marketing.· Google
We do not use any cookies, pixels, or other tracking that discloses to any third party information that identifies a person as having viewed specific video materials.
How Long Do Cookies Stay on My Device?
Some Cookies operate from the time you visit the Services until the end of that particular browsing session. These Cookies, which are called “Session Cookies,” expire and are automatically deleted when you close your Internet browser.
Some Cookies will stay on your device between browsing sessions and will not expire or automatically delete when you close your Internet browser. These Cookies are called “Persistent Cookies” and the length of time they will remain on your device will vary from Cookie to Cookie. Persistent Cookies are used for a number of purposes, such as storing your preferences so that they are available for your next visit and to keep a more accurate account of how often you visit the Services, how your use of the Services may change over time, and the effectiveness of advertising efforts.
Managing Your Cookies
It may be possible to block Cookies by changing your Internet browser settings to refuse all or some Cookies. If you choose to block all Cookies (including Essential Cookies), you may not be able to access all or parts of the Services.
You can find out more about Cookies and how to manage them by visiting www.AboutCookies.org.
Does the Site Respond to “Do Not Track” Signals?
At this time, our Site does not respond differently based on a user.
How We Use Personal Information
We use personal information, including PHI, we collect about you or that you provide to us in the following ways:
To provide and maintain the Platform and its features
To process and complete transactions
To respond to your requests and inquiries
To provide technical and customer support
To send administrative communications
To analyze Platform usage and improve our services
To protect against fraud and unauthorized access
To comply with legal obligations
To enforce our terms of service
To train and improve our artificial intelligence models and algorithms using aggregated, anonymized data
To create de-identified or aggregated data sets for research and development purposes
Data Sharing and Disclosure
We may share your information in the following circumstances:
Service Providers We may share your information with third-party service providers who assist us in operating the Platform, conducting our business, or servicing you.
Business Transfers If we are involved in a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction.
Legal Requirements We may disclose your information if required to do so by law or in response to valid requests from public authorities.
With Your Consent We may share your information with third parties when we have your consent to do so.
Data Security and Retention
We implement reasonable security measures to protect your information from unauthorized access, disclosure, alteration, or destruction. However, no method of transmission over the Internet or electronic storage is 100% secure. Therefore, while we strive to protect your personal information, we cannot guarantee its absolute security.
We retain your information for as long as necessary to provide our services and fulfill the purposes outlined in this Statement, unless a longer retention period is required or permitted by law.
International Data Transfers
Your information may be transferred to and processed in countries other than the country in which you are located. These countries may have data protection laws that are different from the laws of your country. We will take appropriate measures to protect your information in accordance with this Statement and applicable law.
Your Rights and Choices
Depending on your jurisdiction, you may have certain rights regarding your personal information, including:
The right to access your personal information
The right to correct inaccurate information
The right to request deletion of your information
The right to restrict or object to processing
The right to data portability
The right to withdraw consent
To exercise these rights, please contact us using the information provided in the "How to Contact Us" section.
Changes to This Statement
We may update this Statement from time to time. The updated version will be indicated by an updated "Effective Date" and the updated version will be effective as soon as it is accessible. We encourage you to review this Statement frequently to be informed of how we are protecting your information.
How To Contact Us
If you have questions about this Statement or our privacy practices, please contact us at:
Email: hello@heartfulsprout.com
Effective Date
This Privacy Policy is effective as of 02/12/2025.