Privacy Policy — Africa's Telehealth/Second Opinion Platform

Privacy policy.

Last Updated on July 15, 2020. This Privacy Policy is effective January 1, 2020 for all users.

This Privacy Policy describes our policies on the collection, use, and disclosure of information about you in connection with your use of our services, including those offered through our websites, communications (e.g., emails, phone calls, and texts), and mobile applications (collectively, the “Service”). The terms “we”, “us”, and “CarpeMed” refer to: (i) CarpeMed Inc., a Delaware corporation with its headquarters in Berkeley, California, unless you are a European Resident. “European Resident” means a resident of a country in the European Economic Area (“EEA”) or Switzerland.

When you use the Service, you consent to our collection, use, and disclosure of information about you as described in this Privacy Policy. We may translate this Privacy Policy into other languages for your convenience. Nevertheless, the English version governs your relationship with CarpeMed, and any inconsistencies among the different versions will be resolved in favor of the English version.

TABLE OF CONTENTS

Information We Collect and How We Use It
Cookies
Third Parties
Controlling Your Personal Data
Data Retention and Account Termination
Children
Security
Contact Information
Modifications to This Privacy Policy
California Residents: Your California Privacy Rights
Nevada Residents: Your Nevada Privacy Rights
European Residents: Your Privacy Rights and International Data Transfer

INFORMATION WE COLLECT AND HOW WE USE IT
We may collect, transmit, and store information about you in connection with your use of the Service, including any information you send to or through the Service. We use that information to provide the Service’s functionality, fulfill your requests, improve the Service’s quality, engage in research and analysis relating to the Service, personalize your experience, track usage of the Service, provide feedback to third party providers that are listed on the Service, display relevant advertising, market the Service, provide customer support, message you, back up our systems, allow for disaster recovery, enhance the security of the Service, and comply with legal obligations. Even when we do not retain such information, it still must be transmitted to our servers initially and stored long enough to process.
Please also note:
A. Account Information: When you create a CarpeMed account, we store and use the information you provide during that process, such as the first and last name you enter, email address, contact number, zip code, and any other information you may provide during the account creation process, such as a gender, phone number, and/or birth date. We also store and use any preferences you provide to personalize your user experience, including dining and activity preferences. You can later modify some of the account information you provide through your account profile. If you believe that someone has created an unauthorized account using your personal information, you can request its removal by flagging it.
B. Contacts: You can invite others to be your travel or emergency contacts by providing us with their contact information, or by allowing us to access contacts from your computer, mobile device, or third party sites to select which individuals you want to invite. If you allow us to access your contacts, we will transmit information about your contacts to our servers only long enough to process your invitations.
C. Communications: When you sign up for an account or use certain features, you are opting to receive messages from CarpeMed and providers. Most, if not all communications will be administrative, transactional, or legal messages from CarpeMed. We may track your actions in response to the messages you receive from us or through the Service, such as whether you deleted, opened, or forwarded such messages, and share that information with other related parties to your messages (for example, to let them know if you have viewed their message). Any communications with you, including phone calls, may be monitored and recorded for quality purposes.
D. Bookings: If you initiate a direct booking through the Service, such as an appointment, we will collect and store appropriate information you provide associated with your transaction, such as your name, phone number, address, email, and payment information, as well as any other information you provide, in order to process your transaction, send communications about the transaction to you, and facilitate future transactions. This information may be shared with third parties, and third parties may share such information with us, for the same purposes. When you submit credit card numbers and other sensitive payment information, that information is encrypted using industry standard technology. If you write reviews about businesses with which you transact through the Service, we may publicly display the fact that you transacted with those businesses in connection with such reviews. For example, if you make an appointment through the Service and later write a review about your experience, we may publicly display the fact that you made your reservation through the Service.
E. Activity: We store information about your use of the Service, such as your search activity, the pages you view, the date and time of your visits, businesses you call using our mobile applications, and appointments made through the Service. We also store information that your computer or mobile device may provide to us in connection with your use of the Service, such as your browser type, type of computer or mobile device, browser language, IP address, WiFi information such as SSID, mobile carrier, phone number, unique device identifier, advertising identifier, location (including geolocation, beacon based location, and GPS location), and requested and referring URLs and mobile applications. We may also receive and store your location whenever our mobile applications are running, including when running in the background, if you enable our mobile apps to access such information in the course of using the Service. You may be able to limit or disallow our use of certain location data through your device or browser settings, for example by adjusting the settings for our applications in iOS or Android privacy settings.
F. Different Devices: You may access the Service through different devices (e.g., your mobile phone or personal computer) and different platforms (e.g., the CarpeMed website or CarpeMed mobile apps). The information that we collect and store through those different uses may be cross-referenced and combined, and your contributions through one CarpeMed platform will typically be similarly visible and accessible through all other CarpeMed platforms.
G. Legal Basis for Processing (EEA and Switzerland only): For European Residents, our legal basis for collecting and using the information described above will depend on the specific information concerned and the context in which we collect it. We, however, will normally collect personal information from you only where we have your consent to do so. In some cases, we may also have a legal obligation to collect personal information from you or may otherwise need the personal information to protect your vital interests or those of another person (for instance, to prevent, investigate, or identify possible wrongdoing in connection with the Service or to comply with legal obligations). If we ask you to provide personal information to comply with a legal requirement or to perform a contract with you, we will make this clear at the relevant time and advise you whether the provision of your personal information is mandatory or not (as well as of the possible consequences if you do not provide your personal information). If we collect and use your personal information in reliance on our legitimate interests (or those of any third party), this interest will typically be to operate our Services, communicate with you in relation to our Services, or for our other legitimate commercial interests, for instance, when responding to your queries, to analyze and improve our platform, engage in marketing, or for the purposes of detecting or preventing fraud. If you have questions about or need further information concerning the legal basis on which we collect and use your personal information, please contact us at the address listed below in the “Contact” section.
COOKIES
We, and third parties with whom we partner, may use cookies, web beacons, tags, scripts, local shared objects such as HTML5 and Flash (sometimes called “flash cookies”), advertising identifiers (including mobile identifiers such as Apple’s Identifier for Advertisers (“IDFA”) or Google’s Advertising ID (“GAID”)) and similar technology (“Cookies”) in connection with your use of the Service, third party websites, and mobile applications. Cookies may contain unique identifiers, and reside, among other places, on your computer or mobile device, in emails we send to you, and on our web pages. Cookies may transmit information about you and your use of the Service, such as your browser type, search preferences, IP address, data relating to advertisements that have been displayed to you or that you have interacted with, and the date and time of your use. Cookies may be persistent or stored only during an individual session.
The purposes for which we use Cookies in the Service include:
A. Purpose - Processes
Explanation - Intended to make the Service work in the way you expect. For example, we use a Cookie that tells us whether you have already signed up for an account.
B. PURPOSE - Authentication, Security, and Compliance
Explanation - Intended to prevent fraud, protect your data from unauthorized parties, and comply with legal requirements. For example, we use Cookies to determine if you are logged in.
C. Purpose - Preferences
Explanation - Intended to remember information about how you prefer the Service to behave and look. For example, we use a Cookie that tells us whether you have declined to allow us to send push notifications to your phone.
D. Purpose - Notifications
Explanation - Intended to allow or prevent notices of information or options that we think could improve your use of the Service. For example, we use a Cookie that stops us from showing you the signup notification if you have already seen it.
E. Purpose - Advertising
Explanation - Intended to make advertising more relevant to users and more valuable to advertisers. For example, we may use Cookies to serve you interest-based ads, such as ads that are displayed to you based on your visits to other websites, or to tell us if you have recently interacted with an ad.
F. Purpose - Analytics
Explanation - Intended to help us understand how visitors use the Service. For example, we use a Cookie that tells us how our search suggestions correlate to your interactions with the search page.

You can set some Cookie preferences through your device or browser settings, but doing so may affect the functionality of the Service. The method for disabling Cookies may vary by device and browser, but can usually be found in your device or browser preferences or security settings. For example, iOS and Android devices each have settings which are designed to limit forms of ad tracking. Please note that changing any of these settings does not prevent the display of certain advertisements to you.
THIRD PARTIES
Third parties may receive information about you as follows:
A. Advertisers: We allow third parties to use Cookies through the Service to collect the same type of information for the same purposes as we do. In doing so, we adhere to the Digital Advertising Alliance’s Self-Regulatory Principles for Online Behavioral Advertising. Third parties may be able to associate the information they collect with other information they have about you from other sources. We do not necessarily have access to or control over the Cookies they use, but you may be able to opt out of some of their practices by visiting the following links: Network Advertising Initiative, Omniture and Digital Advertising Alliance. Please note that opting out does not prevent the display of all advertisements to you. We may also share some non-identifiable, de-identified or aggregated information from or about you, such as location information, with third parties in connection with advertising programs and data analytics. You may be able to limit our sharing of some of this information through your mobile device settings, as described in Section 2 above, or through the Service’s settings.
B. Service Providers: We rely on third party service providers to support or provide services for us in connection with your use of the Service, such as food delivery services, communications and hosting, security and fraud prevention, technical and customer support, tracking and reporting usage of the Service, quality assurance testing, payment processing, marketing, and other functions. We share information from or about you with these third party providers so that they can perform their services or complete your requests. For example, we may share your advertising identifiers (e.g., your IDFA, GAID, or a cryptographic hash of your email address) with third party service providers that help us facilitate CarpeMed’s advertising programs and measure and report their effectiveness, including with third parties that help determine the efficacy of CarpeMed’s advertising programs by combining information they receive about you from other sources than the Service. You may be able to limit our access to some of this information through your mobile device settings, as described in Section 2 above, or through the Service’s settings. CarpeMed’s third party service providers may likewise share information with us that they obtain from or about you in connection with providing their services or completing your requests.
C. Aggregate or Anonymous Information: We share user information in the aggregate with third parties, such as businesses that are listed on CarpeMed and content distributors. For example, we disclose the number of users that have been exposed to or interacted with advertisements, or that we believe visited the physical location of a particular business.
D. Business Transfers: We share information from or about you with our parent companies, subsidiaries, joint ventures, or other companies under common control, and require them to also honor this Privacy Policy. If another company acquires CarpeMed, or all or substantially all our assets, that company will possess the same information, and will collect, use, and disclose the information only as described in this Privacy Policy.
E. Investigations and Legal Disclosures: We may investigate and disclose information from or about you if we have a good faith belief that such investigation or disclosure: (a) is reasonably necessary to comply with legal or law enforcement processes, such as a search warrant, subpoena, statute, judicial proceeding, or other legal process or law enforcement request; (b) is helpful to prevent, investigate, or identify possible wrongdoing in connection with the Service; or (c) protects our rights, reputation, property, or that of our users, affiliates, or the public, such as disclosures in connection with CarpeMed’s Consumer Alerts program. If you flag or otherwise complain to us about content through the Service, we may share the substance of your complaint with the contributor of that content in order to provide an opportunity for the contributor to respond.
F. Links: The Service may link to third party-controlled websites, like a provider’s URL. Except as set forth herein, we do not share your personal information with them, and are not responsible for their privacy practices.
G. Third Party Integrations: If you sign up for, or log into, CarpeMed using a third party service like Facebook, Google or Apple, or link your CarpeMed account to your account with a third party service like Facebook, Instagram or Twitter, we may receive information about you from such third party service. If you post content to a third party service through the Service, that third party service will also receive that content, which will be visible to anyone that has access to it through that third party service. Some of our web pages utilize framing techniques to serve content to you from our third party partners, while preserving the look and feel of the Service. In such cases, please note that the information you provide may be transmitted directly to the identified third party partner. If you interact with businesses through CarpeMed, they will receive whatever information you choose to share with them, for example contact information you share through direct messages to the business or your phone number if you call the business.
DATA RETENTION AND ACCOUNT TERMINATION You can close your account anytime by notifying us. However, we may retain information about you for the purposes authorized under this Privacy Policy unless prohibited by law. For example, we may retain information to prevent, investigate, or identify possible wrongdoing in connection with the Service or to comply with legal obligations. We may also maintain residual copies of your personal information in our backup systems.
CHILDREN
The Service is intended for general audiences and is not directed to children under 13. We do not knowingly collect personal information from children under 13 (in some jurisdictions, local laws may have an older age requirement). If you become aware that a child has provided us with personal information without parental consent, please contact us directly. If we become aware that a child under 13 has provided us with personal information without parental consent, we take steps to remove such information and terminate the child’s account.
SECURITY
We use various safeguards to protect the personal information submitted to us, both during transmission and after we receive it. However, no method of transmission over the Internet or via mobile device, or method of electronic storage, is 100% secure. While we use HIPPA security standards, additional server related safety protocols and other commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.
MODIFICATIONS TO THIS PRIVACY POLICY
We may revise this Privacy Policy from time to time. The most current version of the Privacy Policy will govern our collection, use, and disclosure of information about you. If we make material changes to this Privacy Policy, we will notify you by email or by posting a notice on the Service prior to or on the effective date of the changes. By continuing to access or use the Service after those changes become effective, you acknowledge the revised Privacy Policy.
CALIFORNIA RESIDENTS: YOUR CALIFORNIA PRIVACY RIGHTS
Under the California Consumer Privacy Act of 2018 (“CCPA”), California residents have certain rights around CarpeMed’s collection, use, and sharing of their personal information.

CarpeMed does not sell your personal information and will not do so in the future without providing you with notice and an opportunity to opt-out of such sale as required by law. Similarly, we do not offer financial incentives associated with our collection, use, or disclosure of your personal information.

CarpeMed collects various categories of personal information when you use the Service, including identifiers, commercial information, internet or other electronic network or device activity information, geolocation data, and professional information. A more detailed description of the information CarpeMed collects and how we use it is provided above in Section 1 (Information We Collect and How We Use It). Section 3 (Third Parties) describes the categories of third parties with whom we share personal information, and what information may be shared under different circumstances.

If you are a resident of California, you have the right to request to know what personal information has been collected about you, and to access that information. You also have the right to request deletion of your personal information, though exceptions under the CCPA may allow CarpeMed to retain and use certain personal information notwithstanding your deletion request. We will not discriminate against you for exercising your rights under the CCPA. An agent may submit a request on your behalf, but you must verify that your agent is authorized to do so.

Under the California Consumer Privacy Act of 2018 ("CCPA"), beginning January 1, 2020, California residents have the right to request the permanent deletion of their personal information. As a CarpeMed user, you may request the permanent deletion of your personal information, but please note that deleting your personal information will automatically and permanently delete your CarpeMed account. If you would like to retain any of the information in your account, you can request access to your CarpeMed data prior to deleting your account.

Note: EXCEPTIONS AND EXEMPTIONS UNDER THE CCPA - Rights provided by the CCPA are subject to certain exemptions and exceptions, as specified in the applicable statutes and/or associated regulations issued by California’s Office of the Attorney General. As a business and service provider, CarpeMed may retain some of your personal or account data as provided for in CCPA Section 1798.105. Additionally, CarpeMed may be unable to fulfill your request if we cannot verify your identity to the standard the law and applicable regulations require. Please ensure your desktop, mobile device, and browser are updated to the most recent operating system or release. If your device is out of date, some functionality may not be available.
NEVADA RESIDENTS: YOUR NEVADA PRIVACY RIGHTS
Nevada law (SB 220) requires website operators to provide a way for Nevada consumers to opt out of the sale of certain information that the website operator may collect about them. CarpeMed does not sell your personal information to third parties as defined in Nevada law, and will not do so in the future without providing you with notice and an opportunity to opt-out of such sale as required by law.
EUROPEAN RESIDENTS: YOUR PRIVACY RIGHTS AND INTERNATIONAL DATA TRANSFER
If you are a European Resident, you have the right to access your personal data, and the right to request that we correct, update, or delete your personal data. You can object to the processing of your personal information, ask us to restrict processing of your personal information, and request portability of your personal information. Similarly, if we have collected and processed your personal information with your consent, then you can withdraw your consent at any time. Withdrawing your consent will not affect the lawfulness of any processing we conducted prior to your withdrawal, nor will it affect processing of your personal information conducted in reliance on lawful processing grounds other than consent. The Service generally provides you with a reasonable means to view and change your profile information and you can opt-out of marketing communications at any time by clicking on the “unsubscribe” or “opt-out” link in the marketing emails we send you. If you have any questions or comments about the processing of your personal information, please contact us directly. For European Residents, please note that the personal information we obtain from or about you may be transferred, processed, and stored outside of the EEA or Switzerland for the purposes described in this Privacy Policy, including in the United States of America. We take the privacy of our users seriously and therefore take steps to safeguard your information, including ensuring an adequate level of data protection in accordance with E.U. standards in effect as of the date of this Privacy Policy. These steps include use of the European Commission’s Standard Contractual Clauses for transfers of personal information between our group companies, which require all group companies to protect personal information they process from the EEA in accordance with European Union data protection laws. We have implemented similar appropriate safeguards with our third party service providers and partners and further details can be provided upon request.