Privacy Policy

Last updated: Oct 23, 2024

This Privacy Policy explains our collection, use, and disclosure of personal information. This Privacy Policy applies to MyBodySite LLC dba BodySite.com and to our controlled affiliates and subsidiaries (“BodySite”). References to our “services” in this Policy include our websites, apps, devices, and other products and services. This Policy applies to our services that display or reference this Policy, but it does not apply to any services that display or reference a different privacy statement.

This Privacy Policy also does not apply to your Protected Health Information (“PHI”) that is governed by HIPAA, regardless of where it is collected. In connection with HIPAA covered services, BodySite is a “Business Associate” under HIPAA, so we may process PHI under agreements we have with other persons or businesses, such as health care providers you interact with. For information about our role as a Business Associate, including how we use and disclose PHI, our legal duties with respect to PHI, please refer to our HIPAA Compliance Statement.

PERSONAL INFORMATION WE COLLECT

The personal information we collect depends on how you interact with us, the services you use, and the choices you make.

We collect information about you from different sources and in various ways when you use our services, including information you provide directly, information collected automatically, information from third-party data sources, and data we infer or generate from other data.

Information you provide directly. We collect personal information you provide to us. For example:

  • Name and contact information. We collect name, username or alias, and contact details such as email address, postal address, and phone number.
  • Demographic data. In some cases, such as when you register or participate in surveys, we request that you provide age, gender, marital status, and similar demographic details.
  • Payment information. If you make a purchase or other financial transaction, we collect credit card numbers, financial account information, and other payment details.
  • Content and files. We collect the photos, documents, or other files you upload to our services; and if you send us email messages or other communications, we collect and retain those communications
  • Sensitive Personal Information.
    • Account access information. We collect information such as a username or account number in combination with a password, security or access code, or other credential that allows access to an account.

Information we collect automatically. When you use our services, we collect some information automatically. For example:

  • Identifiers and device information. When you visit our websites, our web servers automatically log your Internet Protocol (IP) address and information about your device, including device identifiers (such as MAC address), device type, and your device’s operating system, browser, and other software including type, version, language, settings, and configuration. As further described in the “Cookies, Mobile IDs, and Similar Technologies” section below, our websites and online services store and retrieve cookie identifiers, mobile IDs, and other data.
  • Geolocation data. Depending on your device and app settings, we collect geolocation data when you use our apps or online services.
  • Usage data. We automatically log your activity on our websites, apps and connected products, including the URL of the website from which you came to our sites, pages you viewed, how long you spent on a page, access times, and other details about your use of and actions on our website.

We use cookies, web beacons, mobile analytics and advertising IDs, and similar technologies to operate our websites and online services and to help collect data, including usage data, identifiers, and device information.

What are cookies and similar technologies?

Cookies are small text files placed by a website and stored by your browser on your device. A cookie can later be read when your browser connects to a web server in the same domain that placed the cookie. The text in a cookie contains a string of numbers and letters that may uniquely identify your device and can contain other information as well. This allows the web server to recognize your browser over time, each time it connects to that web server.

Web beacons are electronic images (also called single-pixel or clear GIFs) that are contained within a website or email. When your browser opens a webpage or email that contains a web beacon, it automatically connects to the web server that hosts the image (typically operated by a third party). This allows that web server to log information about your device and to set and read its own cookies. In the same way, third-party content on our websites (such as embedded videos, plug-ins, or ads) results in your browser connecting to the third-party web server that hosts that content. We also include web beacons in our email messages or newsletters to tell us if you open and act on them.

Mobile analytics and advertising IDs are generated by operating systems for mobile devices (iOS and Android) and can be accessed and used by apps in much the same way that websites access and use cookies. Our apps contain software that enables us and our third-party analytics and advertising partners to access these mobile IDs.

How do we and our partners use cookies and similar technologies?

We, and our analytics and advertising partners, use these technologies in our websites, apps, and online services to collect personal information (such as the pages you visit, the links you click on, and similar usage information, identifiers, and device information) when you use our services, including personal information about your online activities over time and across different websites or online services. This data is used to store your preferences and settings, enable you to sign-in, analyze how our websites and apps perform, track your interaction with the site or app, develop inferences, combat fraud, and fulfill other legitimate purposes. We and/or our partners also share the data we collect or infer with third parties for these purposes. For more information about the third-party analytics and advertising partners that collect personal information on our services, please see the “Our Disclosure of Personal Information” section of this Policy.

What controls are available?

There are a range of cookie and related controls available through browsers, mobile operating systems, and elsewhere. See the “Choice and Control of Personal Information” section below for details.

OUR USE OF PERSONAL INFORMATION

We use the personal information we collect for purposes described in this Privacy Policy or as otherwise disclosed to you. For example, we use each of the categories of personal information we collect for the following purposes:

  • Product and service delivery. To provide and deliver our services, including troubleshooting, improving, and personalizing those services.
  • Business operations. To operate our business, such as billing, accounting, improving our internal operations, securing our systems, detecting fraudulent or illegal activity, and meeting our legal obligations.
  • Communications. To send you information, including confirmations, invoices, technical notices, updates, security alerts, and support and administrative messages.
  • Product improvement, development, and research. To develop new services or features and conduct research.
  • Customer support. To provide customer support and respond to your questions.
  • Personalization. To understand you and your preferences to enhance your experience and enjoyment using our services.
  • Marketing. To communicate with you about new services, offers, promotions, rewards, contests, upcoming events, and other information about our services and those of our selected partners (see the “Choice and Control” section of this Policy for information about how to change your preferences for promotional communications).

We combine data we collect from different sources for these purposes, and to give you a more seamless, consistent, and personalized experience.

OUR DISCLOSURE OF PERSONAL INFORMATION

We disclose personal information with your consent or as we determine necessary to complete your transactions or provide the services you have requested or authorized. In addition, we disclose each of the categories of personal information described above, to the types of third parties described below, for the following business purposes

  • Service providers. We provide personal information to vendors or agents working on our behalf for the purposes described in this Policy. For example, companies we’ve hired to provide customer service support or assist in protecting and securing our systems and services may need access to personal information to provide those functions.
  • Public information. You may select options available through our services to publicly display and disclose your name and/or username and certain other information, such as your profile, demographic data, content and files, or geolocation data.
  • Financial services & payment processing. When you provide payment data, for example to make a purchase, we will disclose payment and transactional data to our payment processor Stripe, Inc. and other banks or entities as necessary for payment processing, fraud prevention, credit risk reduction, analytics, or other related financial services.
  • Affiliates. We enable access to personal information across our subsidiaries, affiliates, and related companies, for example, where we share common data systems or where access helps us to provide our services and operate our business
  • Legal and law enforcement. We will access, disclose, and preserve personal information when we believe doing so is necessary to comply with applicable law or valid legal process, including from law enforcement, national security, or other agencies.
  • Security, safety, and protecting rights. We will disclose personal information if we believe it is necessary to: protect our customers and others, for example to prevent spam or attempts to commit fraud, or to help prevent the loss of life or serious injury of anyone; operate and maintain the security of our services, including to prevent or stop an attack on our computer systems or networks; or protect the rights or property of ourselves or others, including enforcing our agreements, terms, and policies.
  • Corporate transactions. We may disclose personal information as part of a corporate transaction or proceeding such as a merger, acquisition, financing, bankruptcy, dissolution, or a transfer, divestiture, or sale of all or a portion of our business or assets.

Third party analytics companies also collect personal information through our website and apps including identifiers and device information (such as cookie IDs, device IDs, and IP address), geolocation data, usage data, and inferences based on and associated with that data, as described in the “Cookies” section of this Policy. These third-party vendors may combine this data across multiple sites to improve analytics for their own purpose and others.

Please note that some of our services also include integrations, references, or links to services provided by third parties whose privacy practices differ from ours. If you provide personal information to any of those third parties, or allow us to share personal information with them, that data is governed by their privacy statements.

Finally, we may disclose de-identified information in accordance with applicable law.

CHOICE AND CONTROL OF PERSONAL INFORMATION

As described above in this Policy, please be aware that any choice and control of PHI is not subject to this Policy and instead is subject to the agreement(s) we have with the relevant business or person for which we act as a “Business Associate.” Please contact that business or person for information about how to access, correct, or delete PHI about you such business or person may hold.

The rest of this section addresses personal information subject to this Policy.

Access and deletion. If you wish to access or delete personal information about you that we hold, please contact info@BodySite.com.

If you are unable to access or delete certain personal information we have via the means described above, you can send us a request by using contact methods described at the bottom of this Privacy Policy.

“Communications preferences. You can choose whether to receive promotional communications from us by email, SMS, and telephone. If you receive promotional email or SMS messages from us and would like to stop, you can do so by following the directions in that message or by contacting us as described in the “Contact Us” section below. If you receive a sales call from us, you can ask to be placed on our do-not-call list. These choices do not apply to certain informational communications including surveys and mandatory service communications.”

Targeted advertising. To opt out from or otherwise control targeted advertising, you can use the opt-out controls offered by the organizations advertising providers may participate in, which you can access at:

You can also use the other cookie or mobile ID controls described below.

These choices are specific to the device or browser you are using. If you access our services from other devices or browsers, take these actions from those devices or browsers to ensure your choices apply to the data collected when you use them.

Browser or platform controls.

  • Cookie controls. Most web browsers are set to accept cookies by default. If you prefer, you can go to your browser settings to learn how to delete or reject cookies. If you choose to delete or reject cookies, this could affect certain features or services of our website. If you choose to delete cookies, settings and preferences controlled by those cookies, including advertising preferences, may be deleted and may need to be recreated.
  • Do Not Track. Some browsers include a “Do Not Track” (DNT) setting that can send a signal to the websites you visit indicating you do not wish to be tracked. There is not a common understanding of how to interpret the DNT signal; therefore, our websites do not respond to browser DNT signals. Instead, you can use the range of other tools to control data collection and use, including the GPC, cookie controls, and advertising controls described above.
  • Mobile advertising ID controls. iOS and Android operating systems provide options to limit tracking and/or reset the advertising IDs.

Email web beacons. Most email clients have settings that allow you to prevent the automatic downloading of images, including web beacons, and the automatic connection to the web servers that host those images.

RETENTION OF PERSONAL INFORMATION

We retain personal information for as long as necessary to provide the services and fulfill the transactions you have requested, comply with our legal obligations, resolve disputes, enforce our agreements, and for other legitimate and lawful business purposes. Because these needs can vary for different data types in the context of different services, actual retention periods can vary significantly based on criteria such as user expectations or consent, the sensitivity of the data, the availability of automated controls that enable users to delete data, and our legal or contractual obligations.

SECURITY OF PERSONAL INFORMATION

We take reasonable and appropriate steps to help protect personal information from unauthorized access, use, disclosure, alteration, and destruction.

To help us protect personal information, we request that you use a strong password and never share your password with anyone or use the same password with other sites or accounts

CALIFORNIA PRIVACY RIGHTS

Under California Civil Code section 1798.83, also known as the “Shine the Light” law, California residents who have provided personal information to a business with which the individual has established a business relationship for personal, family, or household purposes (“California Customers”) may request information about whether the business has disclosed personal information to any third parties for the third parties’ direct marketing purposes. Please be aware that we do not disclose personal information to any third parties for their direct marketing purposes as defined by this law.

California Customers may request further information about our compliance with this law by emailing info@BodySite.comwith the subject line “Request for California Privacy Information”. Please note that businesses are required to respond to one request per California Customer each year and may not be required to respond to requests made by means other than through the designated email address.

CHANGES TO THIS PRIVACY POLICY

We will update this Privacy Policy when necessary to reflect changes in our services, how we use personal information, or the applicable law. When we post changes to this Policy, we will revise the “Last updated” date at the top of the Policy. If we make material changes to this Policy, we will provide notice or obtain consent regarding such changes as may be required by law.

CONTACT US

For privacy questions, concerns, or complaints for BodySite, please contact info@BodySite.com. Our address is:

MyBodySite LLC.
230 N. Congress Ave.
Unit A12
Lake Park, FL 33403