Data Privacy Policy.

Last updated: March 14, 2025

EHE Health (“EHE Health,” “we,” “us,” or “our”) provides preventative health services that employers offer as an employee benefit, giving their employees the opportunity to receive early detection, preventative care, and lifestyle management services (“Services”). This Privacy Policy (“Policy”) describes how EHE Health collects and processes personal information we learn about website visitors, members, and others (“you” or “your”) whose information we collect when:

• You visit our public website at: https://ehe.health/
• Your employer provides information establishing your eligibility to receive our Services
• You or your healthcare provider submits information to your healthcare record maintained by EHE Health
• You create and use a personal patient portal account (https://my.ehe.health/)
• We receive your information through other communications or means.

YOUR CONSENT

Please review this Policy carefully. By visiting our website (https://ehe.health/) or logging on to your patient portal account (collectively, our “Sites”) or using our Services, you agree to the collection, use, disclosure, and other processing of your personal information as described in this Policy. If you do not agree with our privacy practices described in this Policy, please do not use our Sites or Services and do not provide us with your personal information.

We will make changes to this Policy regularly. You should reread it from time to time at https://ehe.health/privacy‑policy/. Changes to this Policy will be posted on our Sites and will be effective when posted. Your continued use of our Sites after we make changes indicates your acceptance of those changes, so please check the Policy regularly for updates.

Your use of our Sites and Services is at all times subject to our Terms of Use, available at https://ehe.health/terms-of-use/ (“Terms of Use”).

 

WHAT IS PERSONAL INFORMATION?

This Policy covers our treatment of personal information. We use the term “personal information” in this Policy to refer to information that identifies, relates to, describes, is reasonably capable of being associated or linked with, or could reasonably be linked, directly or indirectly, with you (and your household if you are a resident of California). The specific definition of “personal information” may vary depending on the state or country in which you reside, and that state’s or country’s definition will apply to your personal information in the context of this Policy.

This Policy does not cover information that is: publicly available; aggregated, deidentified or anonymized (so it can no longer be linked to you); or collected by third‑party websites or social media you reach by navigating from links on our Sites. You should review the policies and terms and conditions of any website to which you navigate from our Sites.

This Privacy Policy does not cover the protected health information we receive about our members and prospective members. Please see our Notice of Privacy Practices for information about our privacy practices for protected health information under the Health Insurance Portability and Accountability Act (HIPAA) and other laws.

CATEGORIES OF INFORMATION WE COLLECT

The categories of personal information we collected and used for our business and commercial purposes during the past 12 months, and anticipate collecting in the future, include the following:

• Personal identifiers (such as name, postal address, email address, date of birth, social security number, phone number, employer, employee identification number, internet protocol address, device identifier, online account name and other online identifiers);
• Protected demographic data including age, sex, race or ethnic origin, citizenship or immigration status, medical condition, medical symptoms;
• Health and medical information including information regarding your examinations, screenings, care, and treatment provided through EHE Health (please note that our practices for health records and other protected health information are described in our Notice of Privacy Practices);
• Account information including records of the Services we provided and our communications with you;
• Internet activity including information regarding your interaction with the Sites, including your IP address and device identifier;
• Professional and employment‑related information;
• Inferences regarding your preferences, behavior, and abilities (inferences we draw from information we collect when you visit our Sites, information collected from third parties, or information about consumer preferences).

SOURCES AND TYPES OF PERSONAL INFORMATION WE COLLECT

Patient Portal. When you register to become a member in our Services program or create an account on the patient portal (https://my.ehe.health/), you may provide us with your personal information, including your name, date of birth, employer, email address, and your cell phone number (optional). When you sign into the patient portal, you are providing us with your email or username and a password. When you make an examination appointment, you provide some or all of the following: name, date of birth, name of provider, type of healthcare service.

Examinations and screenings. When you participate in one of our medical examinations or screenings (as clinically indicated for your needs and risks), your healthcare provider will submit the medical record of that visit or screening and any follow up treatment to EHE Health. We maintain a full health record for every member seen as a patient.

Request additional information or register for Services at an event. When you request additional information from us or register for our Services (by creating a myEHE account and scheduling an examination) at one of our events, we may request that you provide additional information. Often, with a request for information, we will ask you to verify your identity to ensure that you, or someone legally authorized to act on your behalf, is making the request.

Chat feature. Our patient portal offers a live chat feature through which you may provide personal information. The subcontractor that provides the live chat feature is not permitted to use any of the data that website visitors or patients enter into the chat feature. Please note that we have blocked all text content from being captured by session replay technology (technology that allows website operators to monitor how website visitors interact with the website). We limit session replay only to page layout elements that are captured for troubleshooting purposes.

Information collected automatically on the Sites. We use first‑party (our own) and third‑party (authorized by us) cookies, pixels, local storage, and other internet tracking technologies (collectively referred to as “cookies”) to enable some website functions to operate and to collect information about how visitors use our Sites and interact with our ads and posts on other websites and social media platforms. For information about how we use cookies, including the types of data collected and how to set your cookie preferences, please see the sections titled “How We Use Cookies and Other Tracking Technologies” and “How You Can Restrict Cookies.”

SENSITIVE PERSONAL INFORMATION

Some of the personal information we collect is considered sensitive personal information under the laws of some states (“Sensitive Information”). When we request Sensitive Information, we will use it only for the purpose of providing the Services you request and any related purpose we reasonably believe is compatible with providing our Services, or as authorized by law. Unless we collect Sensitive Information for a specific purpose (for example, to complete a physical examination), we ask that you not provide any Sensitive Information to EHE Health. The categories of Sensitive Information we may collect to provide the requested Services include: social security number, personal data revealing racial or ethnic origins, mental or physical health conditions or diagnoses, sexuality, citizenship, immigration status, genetic or biometric data processed to uniquely identify an individual, and personal data of a child under the age of thirteen.

HOW WE USE PERSONAL INFORMATION

The purposes for which we use your personal information may include:

• Providing access to our Services through our comprehensive medical examinations and screenings
• Maintaining an ongoing health record to tailor our Services and treatment options to your needs
• Providing the online patient portal you can use to access the health records we maintain for you
• Sending appointment reminders
• Suggesting possible healthcare options, benefits, and other Services
• Improving our Services, fulfill requests for information, and verify member information
• Building long‑term member relationships by learning about your experience with us and keeping records of your needs, preferences and interests
• Sending and tracking your responses to online and e‑mail marketing, including targeted advertising, subject to your options and preferences. For more information, see “How We Use Cookies and Other Tracking Technologies”
• Managing and monitoring website usage to maintain and improve the performance and functionality of our Sites and for marketing purposes
• Securing our Sites and Services, detecting and investigating fraud, and protecting ourselves and others
• Managing our business and contractual relations and protecting our business interests
• Complying with legal process and requirements
• Using aggregated, pseudonymized or anonymized information (which is no longer reasonably associated with an identifiable natural person) for any lawful purpose

INFORMATION SHARING AND DISCLOSURE

We do not sell your personal information to anyone for monetary or other valuable consideration. Your personal information may be accessible to, or shared with, the categories of third parties or for the purposes described below.

• Patient Portal. In our patient portal (https://my.ehe.health/), you control who can access your health information in addition to EHE Health personnel. By default, you are the only user who can view your information. If you choose, you can share your information with others by providing them access to your account on the patient portal.
• Healthcare providers. Your healthcare providers who upload data to your online health record in your patient portal account have access to your entire record. Only your healthcare providers can upload data in your health record on the patient portal. If there is an omission, error, or issue with the data in your health record, immediately contact the applicable healthcare provider.
• Service providers. We engage third‑party service providers to assist with various administrative and technology services including hosting our Sites, cloud data management and storage, contact management, e‑mail marketing, payment processing, and other business operations. These providers may have access to your personal information to perform their services on our behalf but they are not authorized to disclose or use personal information for their own commercial purposes.
• Site Hosted Services. We use third-party cloud-based software and hosting services to provide certain interactive functionalities on our Sites.  We currently run all of our proprietary applications on the hosting services of Amazon Web Services (AWS).
• Data analytics, digital advertising, and social media. We authorize these platforms to use tracking technologies on our Sites enabling them to access data about your device and browsing activities to build a profile of your interests, preferences and characteristics. For more information, see the sections titled “How We Use Cookies and Other Internet Tracking Technologies” and “How You Can Restrict Cookies.”
• Legal rights and process. We may disclose personal information as reasonably necessary to comply with court orders, laws, investigations, or legal processes, enforce our Terms of Use and other agreements, and otherwise defend or protect our legal rights, including for billing and collection purposes.
• Security. We may disclose or permit access to personal information to government entities, third‑party cybersecurity experts, or other parties as reasonably necessary to ensure the security and integrity of our Sites and Services and otherwise protect the rights, property, or safety of EHE Health, our members, and others.
• Business Transactions. We may share personal information as reasonably necessary in connection with business transactions such as a transfer or sale to another entity of all or a portion of our stock, assets, or other business structuring or reorganization transaction.

 

HOW WE USE COOKIES AND OTHER TRACKING TECHNOLOGIES

What are Cookies? Internet tracking and data storage technologies, commonly referred to as “cookies,” are placed on your device and stored by your browser when you visit our Sites. These technologies may include, for example, cookies, pixels, local device storage, web beacons, scripts, and device identifiers. They can be classified by:

• Time span.  How long will the cookie remain on your browser? A session cookie is temporary and will expire when you close your browser; a persistent cookie will remain on your device until it automatically expires after a specified time period (or sooner if you delete it);
• Source.  Who placed the cookie?  Either the operator of the website you are visiting (first party cookie) or an authorized third-party service or platform (third-party cookie) can place the cookie; and
• Purpose.  Why is the cookie used and what functions does it perform?

For information about setting your cookie preferences and restricting cookies, see the section titled “How You Can Restrict Cookies.”

Types of Data Collected. Cookies used on our Sites may collect a wide range of data about users’ internet activities including, for example, the following:

• Time and duration of your visits to the Sites and member account;
• Pages viewed and functions used on the Sites and member account;
• IP address or mobile device identifier;
• Randomly generated ID number;
• Device type, browser type, and operating system;
• Browsing and search history;
• Internet location from which you navigated to our Sites and the location you went to when leaving our Sites;
• Interactions with our advertisements placed on other websites and social media platforms (if you consented to targeted advertising).

Data Use by Third-Party Cookies. Third-party cookies help us analyze performance of the Sites and collect data on how users interact with the Sites. We do not sell your data collected by cookies nor do we disclose any directly identifying personal data to third-party platforms. But the data collected by these cookies is available to third parties that place them on our Sites, subject to certain restrictions you can select. The third-party platforms that place these cookies can correlate data collected on our Sites with data they collect from other websites and use the combined findings to build user profiles for marketing, advertising, and other commercial purposes. These third parties also may correlate data collected from cookies on our Sites and other websites to identify individuals, in which case the processing of personal data will be the responsibility of the third-party platform. For information about how to restrict these cookies, visit our Cookie Preferences link at the bottom of each page on our Sites and the section below titled “How to Restrict Cookies.”

Types of Cookies. The categories of cookies we (or our authorized third‑party providers) may place on our Sites are described below. See our Cookies Preferences link located at the bottom of each page on our Sites. You may opt‑out of data collection using other types of cookies at our Cookies Preferences page, except for essential cookies. For more information about setting your cookie preferences, see “How You Can Restrict Cookies” below.

Essential cookies are necessary for important features on our Sites to work properly, including saving your login data and supporting reliable performance. You cannot opt-out of these cookies because they are required for basic functions to operate. Essential cookies are generally first-party (placed by us) session cookies. They do not store your name, IP address or mobile device identifier, or other directly identifying personal data and are deleted when you close your browser.

Preference (or personalized) cookies allow our Sites to provide enhanced and additional personalized features based on actions you took, such as remembering your settings and the browsing choices you make (such as your username and password for logging on to your member portal account, language preferences, and the region in which you are located). These are persistent cookies and generally set on our behalf by website service providers. You can restrict these cookies, but some parts of the Sites will not work if you block these cookies.

Targeted advertising cookies are used by advertising networks and social media advertising platforms to track users’ internet browsing activities over time and across many different websites, applications, and platforms you visit and devices you use. These platforms place a unique identifier cookie on your browser to identify you as a unique user when you visit websites and other platforms they monitor. This enables the networks and platforms to build a profile of your interests and preferences and deliver advertisements and marketing campaigns targeted to you.

Targeted advertising may also be used for retargeting, which is a marketing technique directed to reach previous visitors to a website or social media page through ads on other online platforms or by e‑mail. Retargeting is also used to limit the number of times you see an advertisement and measure the effectiveness of a marketing campaign.

The advertising mechanisms we use do not collect directly identifying information such as your name, email address, postal address, or phone number. However, the third‑party platforms may store your IP address, device identifier, and data about your activities and interests on each website where they place cookies. They may be able to correlate the data they collect from multiple websites and other sources to identify individuals.

You can restrict the collection of your data using cookies for targeted advertising purposes when you visit our Sites and as explained in the section titled “How You Can Restrict Cookies.”

Analytics cookies are placed by third-party platforms such as Google Analytics to track, for example, how many users visit the Sites, the time and date of each visit, which pages they view, which links and ads they click on, and how long they remain on the Sites. They also identify a user’s device, operating system, browser, and general location based on IP address. Individual users are not identifiable to EHE Health because the reports we receive present the data from these cookies on an aggregated, and therefore, anonymous basis. However, these cookies allow Google Analytics and other analytics services to assign a unique user identification number to your device that can be used to track your browsing activities on multiple websites and mobile apps. These are persistent cookies and will remain on your browser after you close the session. You can restrict the collection of your data using analytics cookies when you visit our Sites and as explained in the section titled “How You Can Restrict Cookies.”

Social media cookies. We use the Meta (Facebook) pixel and other social media cookies to collect, for example, web activity, IP address, device and browser characteristics, and timestamps of visits. These cookies help us to analyze the effectiveness of advertisements we post on social media. The social media networks also receive data about your activities on our Sites. For information about how social media networks use the data collected by cookies, and how to restrict their data collection, see the privacy and cookie policies of the social media platforms you use as posted on their websites.

E‑mail cookies transmit information about how you interact with our e‑mail communications such as whether and when you open an e‑mail, what links you click within the e‑mail, and if you forwarded it.

HOW YOU CAN RESTRICT COOKIES

As explained in the “How We Use Cookies and Other Tracking Technologies,” we (or our authorized third‑party providers) use cookies to monitor and track visitor interactions with our Sites. In the past twelve months, the third‑party services and platforms authorized to place non‑essential cookies on our Sites included (among others) Google Analytics, Google Ads, Facebook Ads, DataDog, and RUM.

You can select privacy preferences and limit some of the ways cookies are used on our Sites and other websites, including by:

• Visiting our Cookies Preferences link and selecting your privacy settings (and opting‑out of certain cookies)
• Managing the cookie and privacy settings on the internet browsers you use
• Configuring your advertisement and privacy settings through your accounts on social media and advertising platforms where you have an account (including Google and Facebook)
• If available, configuring an opt‑out preference signal on your browser or platform to tell us not to share your personal information for targeted advertising, which we will follow as required by applicable law
• Installing the Google Analytics opt‑out browser add‑on, which is described at the Google Analytics Opt‑out Browser Add‑on page at http://tools.google.com/dlpage/gaoptout
• Downloading a utility from an independent software provider that you install on your browsers to limit tracking of your browsing activity

Most browsers have an option for limiting or restricting cookies, which will prevent your browser from either accepting new cookies or allow you to decide whether to accept certain cookies. You can also delete cookies that are already on your browser or device. If you do this, however, it may impact the overall functionality of some features of the websites.

You also may limit the use of mobile device advertising identifiers by adjusting your advertising preferences on mobile devices through your device settings:

• iOS Devices: Go to Settings > Privacy & Security > Apple Advertising > Personalized Ads
• Android Devices: Go to Google Settings > Privacy > Advanced > Ads > Opt Out of Ads Personalization

Certain coalitions of advertisers allow consumers to opt out of receiving interest‑based advertising from participating advertisers. You will need to exercise these opt‑out options on each browser and device where you wish to opt out.

• https://youradchoices.com/control
• https://optout.networkadvertising.org/?c=1

YOUR CHOICES ABOUT E MAIL AND TELEMARKETING

We may communicate with you using the contact information provided by you or your employer, electronically or via telephone, including by SMS (text) about our programs, Services, offers or general health information. We may communicate with you via unencrypted methods, such as by text or unencrypted email. You acknowledge and accept that communications by text or email involve the risk of unauthorized disclosure or interception of the contents of these communications. You may customize your preferences on the patient portal for some communications, including delivery options, and update your contact information, including telephone number and email address. You understand that failing to update your contact information may delay or prevent us from providing you with communications that rely on that contact information.

You may opt‑out of SMS (text) messages by texting “STOP” or by using the web form to opt‑out (for SMS text messages only). We do not retain call recordings, but we retain SMS text messages for a period of three years.

PROTECTION OF PERSONAL INFORMATION

Please see our Notice of Privacy Practices for information about our privacy practices for protected health information.

We employ industry standard administrative, physical, and technical measures designed to safeguard and protect information under our controlled authorized access, use, and disclosure. Access to your personal information is restricted to only authorized EHE Health employees, your healthcare providers and persons you specifically authorize, and others as described in the section titled “Information Sharing and Disclosure.”  EHE Health has received data security certifications under International Organization for Standardization Standards 27001 and 27701.  In addition, EHE Health undergoes annual SOC/2 HIPAA Type 2 audits by an independent, third‑party auditor.

However, neither people nor systems can operate in a fully secure manner and no method of transmission over the Internet or method of electronic data storage is fully secure. While we use reasonable efforts to protect your personal information and select third‑party service providers required to use reasonable precautions, we cannot guarantee the security of the personal information you provide to us.

When you set up an account using our patient portal, you will be prompted to create a password. You are responsible for maintaining the confidentiality of your password, and you are responsible for any access to or use of your account by someone else who has obtained your password, even if you did not authorize that person. You should notify us of any unauthorized use of your password or account, and, if any unauthorized use is suspected, you should immediately reset your password.

If you have reason to believe that your interaction with us is no longer secure (for example, if you feel that the security of your patient portal account or health record has been compromised), please immediately notify us of the problem at the contact information provided in the section titled “How to Contact Us.”

RETENTION OF PERSONAL INFORMATION

We retain personal information as long as your account is active and then for an additional period to comply with legal obligations, implement our document retention program, resolve disputes, enforce agreements, and for marketing purposes. When we no longer have a business or legal reason to keep your personal information, we will delete, destroy, or de‑identify (anonymize) the information. In determining retention periods, we take into consideration all applicable laws, contractual obligations, and business considerations we reasonably believe are compatible with your expectations and the purposes for which we collected your personal information.

THIRD PARTY FEATURES, SOCIAL MEDIA, LINKS TO OTHER WEBSITES

Our Sites contain links to features, social media, and websites operated by other companies (“third parties”). When you click on any of these links, you will leave our Sites and be transferred to an internet location operated by the third party. That third party will have access to any personal information you submit and may set cookies and other tracking technologies on your browser or device. Data collection and interactions with you on any third‑party platform are subject to the third party’s privacy practices and policies.

This Policy applies solely to information under our control. EHE Health is not responsible for the privacy practices of these third‑parties. For information about how these third parties collect and manage personal information, we recommend that you review their privacy policies and practices.

Third-Party Features. Our Sites may use third‑party applications to host some features. Even though a third‑party feature is branded with the EHE Health logo, it is not operated or controlled by EHE Health. These third‑party applications are able to access and collect data from your use of these features, including your personal information.

Social Media. Our Sites may include links to social media platforms, such as the “Facebook Like” button, and widgets, such as the “Share This” button or interactive mini‑programs that run on our Sites. If you activate a link to social media, that platform may collect your IP address, set a cookie to recognize you, and collect information about your activities on our Sites. The social media platform may send us the information in your social media account that you make available to third parties through your account settings. We may combine information from your social media accounts with other information about you that we use for marketing purposes.

Your interactions with social media are governed by the privacy practices of the social media platforms. Please refer to the privacy settings in your social media account to learn about (1) what data is shared with connected applications, (2) how to manage the data that is shared through your social media account settings, including information about your activities using our Sites and Services, and (3) how to disconnect a social media account from our Sites.

Links to Third‑Party Websites. Our Sites may include embedded content (such as videos and charts) and links to websites operated by third parties that have information we think may be of interest to you. If you click on a third‑party link, you will be directed away from our Sites to that third‑party website. Any information you provide to that third‑party website, or is collected while you visit that website, will be available to the third‑party website operator including, for example, your IP address or device identifier and other internet tracking data. We recommend that you review the privacy policies of these websites before sharing any information with them. We have no control over and assume no responsibility for the content, accuracy, privacy policies, or practices of any third‑party websites or services.

ANONYMOUS & AGGREGATE INFORMATION

We collect some information on an anonymous basis. We also may anonymize the information we collect about you so that it can no longer be linked to you, and we may combine or aggregate this data, or engage service providers to do so on our behalf. We may use and share this data with third parties to perform data analytics and research, including to improve or develop our Services.

REQUESTS ABOUT YOUR PERSONAL INFORMATION

Data Privacy Requests and Rights

The personal information privacy rights of individuals are based on the laws of the state where the person resides. We will honor requests to exercise other privacy rights granted by your place of residence as applicable to us.

EHE Health recognizes and responds to the following privacy preferences and requests regardless of where you live.

Cookie Preferences. We recognize the cookie preferences you select by clicking on the Cookie Preferences link at the bottom of our Sites. You can change these selections at any time. Additional methods for controlling cookies are outlined in the section titled “How You Can Restrict Cookies.”

Consent to Targeted Advertising. You can indicate your consent to targeted advertising (or withdraw consent given previously) by clicking on the Cookie Preferences link at the bottom of our Sites. For more information about targeted advertising, please review the sections “How We Use Cookies and Other Tracking Technologies,” “How You Can Restrict Cookies,” and “Third-Party Features, Social Media, Links to Other Websites.”

Withdrawing Consent. You can withdraw any previously granted consent to use or disclose your personal information by contacting us as explained below under “How to Submit and How We Verify a Privacy Request.”

Request to Confirm or Access Information. You may ask EHE Health (1) to confirm whether we are collecting or otherwise processing your personal information and (2) to access that personal information. When you request access to personal information, you have the right to receive that information in a usable and portable format if technically feasible, and to receive any specific types of information identified in the law of your place of residence. Sensitive personal information is identified but not transmitted in response to these requests.

Request to Correct Inaccuracies. You may ask us to correct information we have that you believe is inaccurate. You can also update or correct certain online account information by logging into your account on our Sites.

Request to Delete Information. If you ask us to delete personal information, we will take into account our reasons for keeping that information and any applicable legal standards that apply to deletion requests. We may deny part or all of a request to delete personal information if, for example, it is necessary for completing a transaction, maintaining an ongoing relationship, or for legal purposes. If we deny part or all of your request, we will explain the reason for that decision. For technical reasons, and to maintain anonymous business statistics, we may de-identify personal information rather than erase it completely from our systems.

How to Submit and How We Verify a Privacy Request. To submit a privacy request, please contact us either by e-mail or by postal mail sent to the addresses outlined in the section “How to Contact Us.”

Only you, or someone legally authorized to act on your behalf, may make a request to access, correct, or delete your personal information. Before responding to a request, we may need to verify your identity based on the information we have on file for you, including email address, phone number, full name, address, and other personal information. If you make a request on behalf of someone else, we will need to verify your authority to make that request on their behalf. We reserve the right to deny a request if the identity or authority of the requesting party cannot be confirmed. If we deny or cannot comply with all or part of your request, we will explain the reasons.

How We Respond to Requests for Information. Where applicable laws set a timeframe for responding to consumer requests, we will respond within that timeframe subject to the need to obtain additional information necessary to verify your identity. We try to respond to a verifiable consumer request within 45 calendar days of receiving it. If you have an account with us, we may respond through that account. Otherwise, we will use the email address or street address you provided us when making the request.

Non-discrimination. We will not discriminate against you for making a privacy request, selecting a preference, or exercising your rights regarding your personal information. We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.

 

INFORMATION ABOUT MINORS

Our Sites and Services are not intended for children under 16 years of age and we do not knowingly collect personal information from children under 16. If we learn we have collected or received personal information from a child under 16 without verification of parental or guardian consent, we will delete that information. If you believe we might have any information from or about a child under 16, please contact us as explained in the section titled “How to Contact Us.”

REVISIONS TO THIS PRIVACY POLICY

We may update this Policy as needed to reflect changes in our practices for collection and use of personal information or applicable legal requirements. When we make updates, we will revise the “Last Updated” date located at the top of this Policy. In the event of significant changes to the Policy, we will provide notification or seek your consent as required by law.

HOW TO CONTACT US

To request to exercise your privacy rights, request information, or contact us for any reason, please use the following:

• Email us at privacy@ehe.health
• Call us toll‑free at 1.800.362.8671
• Send us postal mail at:

EHE Health
Privacy & Security Officer
600 Fifth Avenue, 5th Floor
New York, NY 10020