Privacy Policy

Peony Health Privacy Policy

Effective Date: November 8, 2024

Introduction

Peony Health, Inc. ("Peony Health," "we," "us," or "our") respects and values your privacy. This Privacy Policy outlines our practices regarding the collection, use, disclosure, and protection of your information when you use our wellness platform and services ("Service"). By using our Service, you consent to the terms of this Privacy Policy.

Information We Collect

We collect information to provide you with a personalized wellness experience.

Information You Provide

  • Account Information: Including your name, email address, password, and other profile details.
  • Health and Wellness Data:
    • Physical metrics (e.g., height, weight, activity levels)
    • Meal planning preferences, dietary restrictions, and wellness goals
    • Entries in food, mood, and progress journals
  • Usage Information: Meal plans, saved recipes, and your platform preferences
  • Communication Data: Records of interactions with our support team and our AI assistant

Information Automatically Collected

  • Device Information: Browser type, IP address, device type, and operating system
  • Usage Data: Patterns of interaction with our platform, including features used and time spent
  • Location Data: Approximate location (if permitted) for restaurant and service recommendations
  • Cookies and Similar Technologies: To improve user experience, enhance functionality, and analyze platform performance

How We Use Your Information

We process your data to provide, maintain, and improve our Service.

Primary Purposes

  • To personalize meal plans and wellness recommendations
  • To help you track your health progress and wellness goals
  • To generate insights about your patterns and habits
  • To facilitate customer support and enhance AI-powered interactions

Additional Uses

  • To optimize and improve the platform based on usage analysis
  • To detect, prevent, and address security issues and potential fraud
  • To communicate service updates or important notices
  • For marketing communications (only with your explicit consent)

Data Protection and Security

We are committed to safeguarding your information and employ robust technical and organizational security measures, including:

  • Data encryption in transit and at rest
  • Regular vulnerability assessments and security updates
  • Comprehensive employee training on privacy and data protection
  • Secure data storage and processing protocols
  • Regular data backups and disaster recovery procedures

Information Sharing and Disclosure

Peony Health does not sell your personal information. However, we may share data under specific circumstances:

Service Providers

We share data with trusted third-party providers who assist with services such as:

  • Cloud storage and hosting
  • Analytics and performance monitoring
  • Payment processing
  • Email and communication services

Each provider is contractually obligated to protect your data and use it solely for authorized purposes.

Legal Requirements

We may disclose your data in response to legal obligations or requests, or to protect our rights, safety, and the security of our users or others. This includes compliance with court orders, regulatory requirements, or lawful requests from authorities.

Your Rights and Choices

You may exercise the following rights regarding your personal data:

  • Access: Request a copy of your data
  • Correction: Amend inaccurate information
  • Deletion: Request deletion of your data under applicable laws
  • Data Portability: Obtain a copy of your data in a transferable format
  • Marketing Opt-Out: Unsubscribe from marketing communications at any time
  • Restriction of Processing: Limit specific data processing activities
  • Consent Withdrawal: Withdraw your consent for processing where applicable

If you are in the EU/UK, additional rights under GDPR apply, such as objection to processing and automated decision-making.

International Data Transfers

We may transfer your data to countries outside of your own for processing. When doing so, we implement appropriate safeguards, including:

  • Standard contractual clauses approved by relevant regulatory bodies
  • Data processing agreements with third-party service providers
  • Privacy Shield certification (where applicable)

Children's Privacy

Our Service is not intended for children under 13, and we do not knowingly collect personal data from them. If you believe we have collected such information, please contact us to request deletion.

California Privacy Rights

Under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), California residents have additional rights:

  • Right to Know: Request details about the data we collect
  • Right to Delete: Request deletion of personal data
  • Right to Opt-Out: Decline the sale of personal data
  • Right to Non-Discrimination: Exercise privacy rights without impact on service quality

Health Data Privacy

While Peony Health is not subject to the Health Insurance Portability and Accountability Act (HIPAA), we apply rigorous measures to protect your health data:

  • Limited employee access based on necessity
  • Enhanced data security measures
  • Periodic compliance and privacy assessments

Changes to Our Privacy Policy

We may update this Privacy Policy periodically. Material changes will be communicated through email or via platform notification. Continued use of our Service constitutes acceptance of these updates.

Contact Us

For privacy inquiries or to exercise your rights:

Email: info@heypeony.com

Additional Information

Cookie Policy

For details on how we use cookies, please see our Cookie Policy.

Data Retention

We retain your information only as long as necessary to provide the Service or to meet legal obligations. You may request deletion at any time, subject to legal requirements.

Third-Party Links

Our platform may contain links to external websites. We are not responsible for their privacy practices or content.

Specific Service Features

AI Assistant

  • Data processed by our AI is encrypted and adheres to industry security standards.
  • Training data is anonymized and aggregated.
  • Users may opt-out of AI-enabled features.

Meal Planning and Dietary Information

  • Data such as dietary preferences are strictly used for personalization.
  • Location-based recommendations are approximate and only used with your consent.