Last revised: January 2023
INTRODUCTION
Purpose. The purpose of this Privacy Policy is to describe how Mend VIP, Inc. (“Mend”) collects, uses and shares information about you through our U.S. online interfaces (e.g., websites and mobile applications) owned and controlled by us, including the websites located at mend.com, portal.mend.com, and portal.mendfamily.com (collectively referred to herein as the “Site”). Please read this Privacy Policy carefully to understand what we do. If you do not understand any aspects of our Privacy Policy, please feel free to contact us using the methods described at the end of this Policy.
Information You Submit to Your Healthcare Provider.
Mend is a technology company. Mend is not a healthcare provider. Mend is not affiliated with any healthcare provider. Mend does not provide any healthcare services, medical advice, diagnosis, treatment or endorsements, or recommendations with respect to any healthcare providers, services, products, or treatments.
When you use Mend’s Site to interact with your healthcare provider, the information you provide is subject to confidentiality obligations contained in the agreement between Mend and the healthcare provider, which includes or incorporates confidentiality obligations imposed by applicable law. All such information is used by Mend strictly in the manner authorized by your healthcare provider and solely for the purpose of permitting you to interact with your healthcare provider. Nothing contained in this Privacy Policy shall permit Mend to make use of such information in any other way. Your communications with your healthcare provider through the Site are kept secure by Mend using measures designed to comply with applicable privacy regulations.
This Privacy Policy is the privacy policy of Mend and not the privacy policy of any healthcare provider or other third party. Mend is not responsible for the privacy policies or privacy practices of healthcare providers that you interact with using our Site. Please consult the separate privacy policies and/or notices of privacy practices provided to you by those healthcare providers for a description of how they use your information.
Other Information Mend Collects. This Privacy Policy applies to information Mend collects at and through the Site that is not collected for purposes of your interactions with healthcare providers (including information collected when you use the Site before or after your interaction with a healthcare provider, create or modify your Mend account, register to use Mend Services, purchase products or services from Mend, request information from Mend, contact Mend customer support, or otherwise communicate with Mend). This Privacy Policy may permit the collection or use of your personal information in ways not permitted under the confidentiality obligations contained in agreements between Mend and health care providers or the protections provided under laws and regulations with respect to health care records.
Third-Party Sites. Our Site also contains links to third-party sites that are not owned or controlled by Mend. Please be aware that we are not responsible for the privacy practices of such other sites. We encourage you to be aware when you leave our Site and to read the privacy statements of each and every website that collects personal information.
Terms of Use. Please note that your use of our Site is also subject to our Terms of Use.
INFORMATION THAT WE COLLECT
Information You Provide to Us
When you use our Site for purposes other than interacting with a healthcare provider, we may collect the following information:
Information We Collect Through Your Use of our Site
Payment Information
Payments to healthcare providers may be facilitated through the Site. In addition, products and services may be offered for purchase within the Site. We use a third-party service for payment processing. Currently, payments are processed through the Site using the Authorize.Net payments platform. We will not store or collect your payment card details. That information is provided directly to our third-party payment processor whose use of your personal information is governed by its privacy policy. Payment processors are required to adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express, and Discover. PCI-DSS requirements help ensure the secure handling of payment information.
Google Analytics
We use Google Analytics, a web analytics service provided by Google, Inc. (“Google”) to collect certain information relating to your use of the Site. Google Analytics is not used in those portions of the Site dedicated to your interaction with healthcare providers. Google Analytics uses “cookies”, which are text files placed on your computer, to help the Site analyze how users use the site. You can find out more about how Google uses data when you visit our Site by visiting “How Google uses data when you use our partners’ sites or apps”, (located at www.google.com/policies/privacy/partners/). We may also use Google Analytics Advertising Features to provide you with interest-based advertising based on your online activity. For more information regarding Google Analytics please visit Google’s website and pages that describe Google Analytics, such as www.google.com/analytics/learn/privacy.html. To learn more about interest-based advertisements and your opt-out rights and options, visit the Digital Advertising Alliance and the Network Advertising Initiative websites (www.aboutads.info and www.networkadvertising.org). Please note that if you choose to opt-out, you will continue to see ads on our Site, but they will not be based on how you browse.
Information Collected Through Cookies and Similar Technologies
We, our service providers, and our advertising partners use cookies, web beacons, and other technologies to receive and store certain types of information whenever you interact with our Site through your computer or mobile device. A cookie is a small file containing a string of characters that is sent to your computer when you visit a website. When you visit the Site again, the cookie allows the Site to recognize your browser. Cookies may store unique identifiers, user preferences, and other information. You can reset your browser to refuse all cookies or to indicate when a cookie is being sent. However, some Site features or services may not function properly without cookies. We use cookies to improve the quality of our service, including storing user preferences, tracking user trends, and providing relevant advertising to you. (See, “Advertising” below.) Cookies related to marketing and advertising purposes are not used in those portions of the Site dedicated to your interaction with healthcare providers.
No Information from Children Under Age 13
If you are under the age of 13, please do not attempt to register with us at this Site or provide any personal information about yourself to us. If we learn that we have collected personal information from a child under the age of 13, we will promptly delete that information. If you believe we have collected personal information from a child under the age of 13, please Contact Us or call us at 866-934-2618. Interactions between a healthcare provider and a child under the age of 13 using the Site are subject to the policies of the healthcare provider.
HOW WE USE AND SHARE YOUR INFORMATION
To Provide Products, Services, and Information. When you visit the Site for purposes other than interacting with your healthcare provider, we may collect information from you in order to provide products and services that you access or purchase using the Site and to provide information that you request from us. We use such personal information to contact you about your orders, process credit card and debit card transactions, and ship products to you. We may send you promotional materials or advertisements about our products and services, as well as new features and offerings.
Sharing with Third Parties. We may provide information to third-party service providers that help us operate and manage our Site. These service providers will have access to your personal information in order to provide these services, but when this occurs we implement reasonable contractual and technical protections to limit their use of that information to help us provide the service.
No mobile information will be shared with third parties/affiliates for marketing/promotional purposes. All the above categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties.
Disclosure of De-identified Data. Mend may use or disclose de-identified data in some instances. Mend either maintains such data without attempting to re-identify it or treats such data as personal information subject to applicable law.
Advertising. We may use how you browse and use the parts of our Site that are not used for your interactions with healthcare providers in order to show you ads for Mend or our advertising partners that are more relevant to your interests. We may use cookies and other information to provide relevant interest-based advertising to you. Interest-based ads are ads presented to you based on your browsing behavior in order to provide you with ads more tailored to your interests. These interest-based ads may be presented to you while you are browsing our site or third-party sites not owned by Mend.
We belong to ad networks that may use your browsing history across participating websites to show you interest-based advertisements on those websites. Currently, our Site does not recognize if your browser sends a “do not track” signal or a similar mechanism to indicate you do not wish to be tracked or receive interest-based ads. To learn more about interest-based advertisements and your opt-out rights and options, visit the Digital Advertising Alliance and the Network Advertising Initiative websites (www.aboutads.info and www.networkadvertising.org). Please note that if you choose to opt-out, you will continue to see ads on our Site, but they will not be based on how you browse.
No Sale of Personal Information. Mend does not sell any personal information.
Your Consent. In addition to the sharing described elsewhere in this Policy, we will share personal information with companies, organizations or individuals outside of Mend when we have your consent to do so.
Legal Proceedings. Subject to the confidentiality obligations in place with your healthcare provider and applicable laws protecting the privacy of healthcare information, we will share personal information with third-party companies, organizations, or individuals outside of Mend if we have a good-faith belief that access, use, preservation or disclosure of the information is reasonably necessary to:
Transfer in the Event of Sale or Change of Control. If the ownership of all or substantially all of our business changes or we otherwise transfer assets relating to our business or the Site to a third party, such as by merger, acquisition, bankruptcy proceeding, or otherwise, we may transfer or sell your personal information to the new owner. In such a case, unless permitted otherwise by applicable law, your information would remain subject to the promises made in the applicable privacy policy unless you agree differently.
ACCESS TO YOUR INFORMATION AND CHOICES
You can access and update certain information we have relating to your online account by signing into your account and going to the Mend Portal section of our Site. If you have questions about the personal information we have about you or need to update your information, you can Contact Us or call us at 866-934-2618. You can opt out of receiving marketing and promotional e-mails from Mend by using the opt-out or unsubscribe feature contained in the e-mails.
You can close your online account by Contacting Us. If you close your account, we will no longer use your online account information or share it with third parties. We may, however, retain a copy of the information for archival purposes, and to avoid identity theft or fraud.
SECURITY OF YOUR INFORMATION
We use industry-standard physical, technical, and administrative security measures and safeguards to protect the confidentiality and security of your personal information. These measures include encryption of information transmitted while using the Site to interact with your healthcare provider. Please note that, while communications with your healthcare provider using the Site are encrypted, e-mails and other communications you send to us through our Site may not be encrypted, and we strongly advise you not to communicate any confidential information through these means. It is your responsibility to protect the security of your login information.
CONSENT TO PROCESSING OF PERSONAL DATA IN THE UNITED STATES
Mend has its headquarters in the United States. Information we collect from you will be processed in the United States. The United States has not received an “adequacy” finding from the European Union under Article 45 of the GDPR. We limit the transfer of personal information from the European Economic Area (EEA) to specific situations set forth in Article 49 of the GDPR. Specifically, we collect and transfer your personal data to the U.S. only with your consent, to perform a contract with you, or to fulfill a compelling legitimate interest in a manner that does not outweigh your rights and freedoms. By providing personal information to us, you are consenting to its transfer, storage, and use in the U.S. as described herein. We apply suitable safeguards to protect the privacy and security of personal data and to use it only as described in this privacy policy.
STATE PRIVACY LAWS
If you are a resident of California or Virginia, the collection and use of your personal information may be subject to the provisions of the California Privacy Rights Act (“CCPA”) or the Virginia Consumer Data Protection Act (“VCDPA”). However, the CCPA and the VCDPA do not apply to information collected for purposes of your interactions with healthcare providers.
If the CCPA or the VCDPA is applicable to your use of the Site, you may request the following information about our collection, use, and disclosure of your personal information during the 12-month period preceding the request:
The CCPA and the VCDPA also allow you, as a resident of California and Virginia, to request that we confirm, correct, or delete the personal information we collected from you and to opt out of the display of behavioral ads on the Site that use data from another site or the display of behavioral ads on other sites using data from the Site.
Residents of California of Virginia can exercise their rights by sending a request by email to bestservice@mend.com or by writing to us at the physical address provided below. We will need to verify your identity and place of residence before fulfilling your request. You will not be denied goods or services for exercising any of these rights. Even if you are not a resident of California or Virginia, you may submit a request and we will process it in the manner described in this policy, even though the CCPA does not require us to do so.
We will endeavor to process requests within one month. We will contact you if we need additional information respecting your request. It might take us longer than a month to process some requests, depending upon the complexity and number of requests we receive.
CHANGES TO OUR PRIVACY POLICY
Our Privacy Policy may change from time to time. It will not, except as you otherwise consent, change in a way that reduces your rights under this Privacy Policy with respect to personal information collected before the changes take effect. We will post any privacy policy changes on this page and, if the changes are significant, we will provide a more prominent notice (including, for certain services, email notification of privacy policy changes). We will also keep prior versions of this Privacy Policy in an archive for your review.
QUESTIONS AND HOW TO CONTACT US
If you have any questions, concerns, complaints or suggestions regarding our Privacy Policy or otherwise need to contact us, please Contact Us, email us at bestservice@mend.com, call us at (800) 490-2788, or contact us by US postal mail at the following address:
Mend VIP, Inc.
4767 New Broad St.
Orlando, FL 32814