For your benefit we collect a range of information from you during your use of our websites or apps.
- Anonymous information to better understand your use of our websites and serve you better.
- Contact information, when you subscribe to email lists or certain specific website services.
- Financial information, when you make purchases from our websites.
- If you use our HeartCloud service, we store physiological practice information to analyze sessions for results like awards, to synchronize between your devices and to back up your data.
We use great care in storing and protecting this information. You have the right to access your personal data and to delete it. You must be 16 years of age or older to use our websites and services, otherwise you will need parental consent. Should you have trouble or have any questions about this, please contact HeartMath Support with detailed information.
Information Collection and Usage
Right to Access and Data Portability
You have the right to access your data. HeartCloud services store all practice session data for your personal use. This consists of the Heart Rate data of your practice sessions and derived statistics like Coherence. You may download the free emWave2 software at https://www.heartmath.com/downloads/ where you can sync all of your raw data to inspect and/or export your data. Alternatively, login to your HeartCloud account, go to the Profile -> Data tab to request a download of your HeartCloud data. If you have questions about this or other data stored by HeartMath, you can contact HeartMath support at: firstname.lastname@example.org or (800) 450-9111.
Right to be Forgotten
You can control your subscriptions at: https://www.heartmath.com/subscription/
If you would like to completely remove your data from our marketing systems, please send your request to email@example.com with "Remove" in subject line.
In HeartCloud you can log into your account, go to the Profile page select Data and request to delete your account. All your session data and account info will be deleted that is stored on HeartCloud. The data stored on your desktop or mobile devices will be retained on those devices and requires deletion from those devices and client software separately. The following Sections provide more Detail on the Data we retain:
- Registration and Ordering
- Email Newsletters
- Surveys and Contests
- Interactive Features
- Messaging Services
- Communications to Us
- Communications from Us
- Automatic Data Collection
During registration, for our websites and events, you are required to give your contact information (such as name, email address, mailing address and phone number). We also may collect demographic information (such as job title and purchasing responsibilities, company information and professional certification). For internal purposes, we use this information to communicate with you and provide requested services, and, on our websites, provide a more personalized experience. We use aggregate demographic information about our visitors including you to improve our service for marketing purposes and industry reporting.
For our offerings that require payment (such as certain events, products and subscriptions), we also collect your credit card information (such as account name, number and expiration date), which is used by us and our credit card processors for billing purposes only and is not otherwise shared.
If you wish to subscribe to our email newsletters, we ask for your contact information (such as name, email address and, occasionally, demographic information). We use this information in the same manner as we use contact information in the registration and ordering process described above. Recipients of our newsletters can unsubscribe using the instructions listed at the end of the email newsletter or by sending an email to firstname.lastname@example.org with the email address used to subscribe. You can also visit the subscription page mentioned above.
From time to time we may invite you to provide information via surveys or contests. Participation in these surveys or contests is completely voluntary and you therefore have a choice as to whether or not to disclose requested contact information (such as name, email and mailing address) and demographic information (such as zip code or job title). In addition to other uses set forth in this policy, contact information collected in connection with surveys and contests is used to notify the winners and award prizes, to monitor or improve the use of our promotions and offerings, and may be shared with sponsors of such surveys or contests.
Some of our websites offer interactive and community features such as postings, status updates and feeds, discussion boards, webcasts and profiles. Accordingly, HeartMath, Inc collects content submitted by you such as data, text, software, music, audio, photographs, graphics, video, messages, links, tags, comments, status updates and other materials. Note that all personal information sent or posted via such features becomes public information for which HeartMath, Inc is not responsible and cannot be held accountable. Some of these features automatically make certain information public (e.g., username, avatar photograph or image, profile information, Licensed HeartMath Provider status). If you choose to make available any of your personally identifiable information, you do so at your own risk.
Some of our websites offer messaging services. Accordingly, HeartMath, Inc collects and transmits content submitted by you for such messaging. By using these services, you are consenting to receive comments or messages from others. If you feel something is misleading, not relevant, inappropriate or offensive please contact support.
If you elect to use any of our referral services, we may ask you for contact information (such as name, email and mailing address) and demographic information (such as zip code or job title). HeartMath, Inc will store and use this information to send to send messages. This information may also be used to provide information about our company and related products and offerings.
Information you submit to us such as feedback, letters to the editor and similar submissions may be made public. Requests for service, support or information may be forwarded internally and to our contractors, business affiliates and advertisers as needed to best respond to a specific request. We may retain email addresses and other information sent to us for our internal administrative purposes and to help us to serve you better.
In order to best serve you, we may send updates that contain important information about our websites and offerings. For example, we send new members a welcome message and various verification messages. We may also communicate with you to provide requested services and for account-related issues via email, phone or regular mail. Such communications are not subject to opt out while your account is active, e.g., for a current subscription.
We offer you the option to receive information about our company, related products, offerings and special deals. You can choose not to receive these communications as described above.
Our websites have features that automatically collect information from you to deliver content specific to your interests and to honor your preferences. This information assists us in creating websites that will serve your needs. One of the most common tools is the “cookie.”
A cookie is a piece of data stored on your computer containing information about you to help with services such as adding connections to friends or groups, adding certain content, and connecting with applications. Cookies are not stored on our servers. Our websites utilize cookies to facilitate ordering processes.
Our websites contain links to other websites. HeartMath, Inc is not responsible and shall not be held accountable for the privacy practices or content of these other websites. We encourage you to be aware when you leave our websites and to read the privacy policies of each website to which we may link that may collect personally identifiable information.
For our internal purposes, we gather date, time, browser type, navigation history and the IP address of all visitors to our websites. We use this information for our internal security audit log, trend analysis and system administration, and to gather broad demographic information about our customers for aggregate use.
We may combine anonymous demographic information supplied by you during registration with aggregate website usage data to provide general profiles, in aggregate non-personally identifiable form, about you and your preferences in the content of the website. We may share this composite information with our business affiliates to help them better understand our offerings and customer base.
Neither information of a medical/diagnostic nature nor the state of your health is collected, distributed or reported upon. However, in some places you may describe or comment upon your or others' medical or diagnostic issues or health without our control.
With Whom Your Information is Shared
On our websites your user ID and any profile information you submit may be displayed in the public and private areas of such websites. Personal information may be publicly shared through our interactive features (see “Interactive Features” above) and our messaging features (see “Messaging Services” above).
When we have co-branded, customized, private labeled, “powered by,” or sponsored products and offerings, or when we join with other parties to provide specific products or services, we may share (provide and receive) personal information with them. We do not share credit card information with such third parties.
If you are sharing your HeartCloud data with third parties services, you will be specifically asked to authorize such data sharing connections. You will be able to cancel these connections, however, cancelling these connections may not remove data on the servers of other providers.
We may use outside shipping companies to ship orders and a credit card processing company to bill you for goods and services.
Aggregate information also may be shared with our contractors, business affiliates and advertisers only on an anonymous aggregate basis.
Other than as set forth above, we do not share personally identifiable information with other companies, apart from those acting as our agents in providing our promotions, products and services, and which agree to use it only for that purpose and to keep the information secure and confidential. Also, our parent, subsidiary and affiliate companies, entities into which our companies may be merged, or entities to which any of our assets, products, websites or operations may be transferred, will be able to use personally identifiable and aggregate information.
We will also disclose information we maintain when required to do so by law, for example, in response to a court order or a subpoena or other legal obligation, in response to a law enforcement agency’s request, or in special cases when we have reason to believe that disclosing this information is necessary to identify, contact or bring legal action against someone who may be causing injury to or interference with (either intentionally or unintentionally) our rights or property. You should also be aware that U.S. Bankruptcy Courts and other government authorities might have the authority under certain circumstances to permit personal information to be shared or transferred to third parties without permission.
Correcting or Updating Personal Information
If your personally identifiable information changes (such as zip code), or if you no longer desire our products or services, please contact Customer Service.
Privacy by Design
We use all reasonable precautions to protect your personal information and to see that it is stored securely by our contracted data centers. We continuously improve our security and update our systems. Should a breach happen we pledge to notify you, if you are affected.
All credit card transactions occur on secure websites that are tested regularly for potential weaknesses in order to protect you from any loss, misuse or alteration of information collected, so that you can buy with confidence.
When you place an order on our websites, the information you send is protected by Secure Sockets Layer (SSL) technology. SSL encrypts your order using strong encryption to prevent the decoding of that information by anyone other than the recipient as it travels over the Internet. SSL is the industry standard in transferring credit card information to process your orders. The SSL encryption translates your order information into a highly indecipherable code.
If your browser doesn’t support SSL, you’ll be unable to connect to the secure sections of our websites. We offer many other options for placing orders other than our websites. You may place your order by sending it via email to: email@example.com If you choose this option, please DO NOT include credit card information, as email is absolutely not a secure method of sending private financial information over the Internet. Simply include your phone number in the email, and we will call you to complete the order. You may also order by phone at (800) 450-9111. Our business hours are Mon - Fri 9 to 5:30 Pacific Time. Of course, you may also print your completed order and mail it to us at: HeartMath, Inc 14700 West Park Avenue Boulder Creek, CA 95006
If you have further questions, please call us toll-free at (800) 450-9111 or email us, including your name and mailing address, at: firstname.lastname@example.org.
Our websites are hosted and our services are provided in the United States and are intended for and directed to US customers. If you are accessing the websites or services from the European Union, Asia, or any other jurisdiction with laws or regulations governing personal data collection, use, and disclosure, which differ from United States laws, please be advised that through your use of our websites and services, you are transferring your personal information to the United States and you consent to that transfer. Not all European laws may apply to our websites in the US. HeartCloud follows GDPR standards. Data is stored on US servers.
Notification and Changes
Chief Financial Officer
Telephone: (800) 450-9111 (Toll-Free)
Telephone: (831) 338-8700 (International)
Effective Date of This Version: Friday, May 25, 2018