This Privacy Policy describes the information privacy practices of Moximed Inc. (“Moximed,” “we,” “us,” or “our”), and associated web sites made available and operated by us that reference or link to this Privacy Policy (the “Services”). The Services also include, without limitation, the myMISHA patient program (“Program”) and associated web sites, including our web-based administration portal (the “Portal”).

This Privacy Policy explains what information we collect about you online and offline; how we collect that information; the purpose for collecting it and how it benefits you; the outside parties we share it with; and your rights, including what you can do regarding your information. Additionally, this Privacy Policy describes how we treat personal information collected by or on behalf of Moximed when you APPLY FOR OR PARTICIPATE IN the Program; in our email messages to you relating to the Program; and in our offline interactions related to the Program. The Program is intended for residents of the United States and is subject to United States law.

Contact us at 1-866-201-1515, or at info@moximed.com if you wish to make a request regarding your personal information.

If you are a California resident, see Section 6 for our California Notice at Collection and information provided pursuant to the California Consumer Privacy Act.

If you are located in the European Economic Area, see Section 13 for specific information with respect to your personal information under the General Data Protection Regulation.

Click here to view our Consumer Health data Policy.

1.              We collect and use personal information about you.

We (and the vendors and other parties that perform services on our behalf) collect, receive, and develop several different types of personal information about you depending on the nature of your interactions with us.  For example, we collect:

Identifiers/Contact Information: We may collect your name, email address, mailing address, zip/postal code, and phone number. If you create an account, we also collect your username and password. We also collect identifiers that you post.

Internet and Network Activity Information: We may collect your IP address when you visit the Services. We may also use tracking tools like cookies and pixels to passively collect information about how you interact with the Services.  This might include device identifiers and the type of browser and operating system you are using.

Location Information: We may passively collect information about your location using your IP address, the country code/ region/ state/ city associated with your SIM card or your device, language setting, and time zone.

Demographic Information: We may collect demographic information, such as your age, date of birth or gender.

Employment-Related Information:  If you are a health care professional, we may collect information such as your name, title, employer, work address, work email address, and job title.

Visual Information: We may collect treatment-related images uploaded to the Portal by your health care provider.

Sensitive Information: We may collect information that may be considered sensitive personal information under certain state or local laws. For example, we may collect information related to your health, such as your medical condition. We also collect the username and password any account you create with us.

Information you submit or post: We collect feedback and any other information you provide when you contact us.

2.              We use personal information for the purposes described below.

We use personal information to provide and administer the Services.

We use personal information to develop and improve our products and services. We may use your information to make the Services (including the Program) better or customize the content you see on the Services. We use your information to customize your experience. We may also use your information to conduct research and to develop new products and services, or to provide you with information on Moximed or third-party products and services that we think may be of interest to you.

We use personal information to communicate with you and respond to your requests or questions. We use your information to respond to your questions, complaints, and feedback. We might also use your information to contact you about this Privacy Policy or your application for or participation in the Program.

We use personal information for security purposes. We use information to protect our company (including the Services), our customers and others. We may also need to use your information to detect, investigate, and remediate fraud or other suspected illegal activity.

We use personal information to verify and respond to requests made pursuant to this Privacy Policy and for other verification purposes.  We will use certain pieces of information to verify your identity if you make requests pursuant to this Privacy Policy. The verification steps and the pieces of information that we request may vary depending on the sensitivity and nature of your request.

We use information as otherwise permitted or required by law or as we may notify you.

Aggregate/De-Identified Information. We may aggregate and/or de-identify any information collected through our Services so that such information can no longer be linked to you or your device. We may use such information for any lawful purpose. To the extent that we use de-identified information, we will not attempt to reidentify that information with the exception of ensuring our de-identification process is satisfactory.

3.              We collect personal information about you from various sources, directly and indirectly.

We collect personal information directly from you. For example, we may collect information such as your personal contact information, business contact information, or any other information you provide us when you register an account, apply to or participate in the Program, or otherwise contact us.

We collect personal information from your devices. We use technical tracking tools that work behind the scenes, like browser cookies, beacons, and pixels, to automatically collect information from and about you and your devices, such as your IP address, browser type, browser language, operating system, the state or country from which you accessed the Services, software and hardware attributes (including device IDs) referring and exit pages and URLs, platform type, the number of clicks, files you download, domain names, landing pages, pages viewed and the order of those pages, the amount of time spent on particular pages, the date and time you used the websites, error logs, and other similar information. From your IP address, we may be able to infer your general location (e.g., city/state or postal code). We collect this information when you interact with the Services.

We get personal information from vendors we hire to work on our behalf. For example, vendors that host or maintain the Services may give us information.

We get personal information about you from other parties. We may get personal information about you from your health care provider.

We combine information about you in a variety of ways. We combine information collected offline with information collected online. We may also combine information collected across devices, such as computers and mobile devices. We may also combine your information with other consumers’ information to improve the Services (including the Program) and our products.

4.              We share personal information with other parties.

We share personal information with vendors that perform services on our behalf for our own business and operational purposes. For example, we may share information with vendors that send emails for us, run the Services (including the Program), provide analytics services, investigate and prevent data incidents, audit our business and financial statements, or provide legal advice.

We may share your personal information with your health care professionals. Your health care professionals’ use of your information is subject to their respective privacy notices and policies.

We will share personal information in order to comply with the law or to protect ourselves or others. For example, we will share information as required to respond to a court order or subpoena. We may share information if a government agency or investigatory body requests it. We might share information when we are investigating potential fraud.

We may share personal information with any successor to all or part of our business. For example, if part of our business is sold, we may give our customer database to the buyer of the business as part of that transaction. We may also share information if any such transaction is proposed.

We may share information for other reasons we may describe to you or as permitted or required by law.

5.              You have choices and rights regarding our use of your personal information.

We use Google Analytics to better understand how our users interact with the Services. You can learn about Google Analytics’ currently available opt-outs at https://tools.google.com/dlpage/gaoptout/.

Most browsers automatically accept cookies unless you change your internet browser settings. If you wish to restrict, block or delete the cookies which are set by the Services, you can generally do this through your browser settings. These settings are usually found in the ‘options’ or ‘preferences’ menu of your internet browser. If you set your internet browser preferences to block all cookies, you may not be able to access all or parts of the Services. Please note that these settings are browser and device specific. You must reset your preferences if you clear cookies or use a different browser or device. If you want to learn more about cookies, or how to control, disable or delete them, you can visit http://www.aboutcookies.org.

For other marketing communications, you may instruct us not to use your contact information to contact you regarding our projects, initiatives, the projects or initiatives of our partners, or other relevant communications that we believe will be interesting to you by contacting us using the information below. In our marketing email messages, you can also opt out by following the instructions located at the bottom of such emails or messages. Please note that, regardless of your request, we may still use and share certain information as permitted by this Privacy Policy or as required by applicable law. For example, you may not opt out of certain transactional emails from us, such as those confirming your requests or providing you with updates regarding our Privacy Policy or other terms.

6.              California Privacy Notice.

This California Privacy Notice applies to California residents and provides certain details regarding how we handle your personal information and the rights you have as a California resident regarding your information. This California Privacy Notice supplements our Privacy Policy.

6.1.          California notice at collection.

We may collect or receive (and may have collected or otherwise received during the last 12-month period) the following categories of personal information as set forth in applicable California law:

• Category of Personal Information with examples:
  • Identifiers and contact information – Contact information such as name, phone number, mailing address, email address, account details and identifiers you may post
  • Personal records – Contact information and account details
  • Personal characteristics or traits – General demographic information such as your age, date of birth or gender
  • Internet and other electronic network usage information – IP address, device identifiers, browser and operating system details, and your interactions with the Services
  • Geolocation data – Location data
  • Visual Information –Images uploaded by your health care provider
  • Professional or employment-related information –Employer and job title (health care professional only)
  • Sensitive personal information – Information collected and analyzed concerning health; account log-in information

For additional detail regarding the personal information we collect, see Section 1 of the Privacy Policy.

We collect and use these categories of personal information for the business and commercial purposes described in Section 2 of this Privacy Policy and as provided below:

• Performing services, including maintaining or servicing accounts, providing customer service, providing analytics services, providing storage, or providing similar services;
• Auditing compliance;
• Security and fraud prevention purposes;
• Undertaking activities to verify or maintain the quality or safety of our products and services;
• Debugging to identify and repair errors;
• To conduct business analysis;
• To conduct research and development; and
• To fulfill our legal function or obligations

We collect each of the foregoing categories of personal information from the sources described in Section 3 above.

We may disclose each of the foregoing categories of personal information for our business and commercial purposes to the extent permitted by applicable law to the categories of parties as described in Section 4 of this Privacy Policy, which may include, for example, suppliers and service providers; health care professionals; operating systems and platforms; data analytics providers; and other parties in connection with business transfers and legal, safety, fraud prevention, and enforcement reasons. We also disclose categories of personal information as we may describe to you from time to time or as permitted or required by law.

We do not “sell” (as the term is traditionally understood) personal information for money. From time to time, however, we may, in connection with our digital advertising activities, engage in a practice that may be deemed “selling” or “sharing” under applicable state law. If you would like to be added to our do-not-sell list, email us at info@moximed.com, or call us at 1-866-201-1515.

We will retain each category of personal information specified above for as long as reasonably necessary to carry out the business and commercial purposes described in this Privacy Policy or any other notice provided at the time of data collection, as necessary to provide our goods and services, and as necessary to comply with our legal obligations, resolve disputes, protect and defend our legal rights, and enforce our agreements.

6.2.          Your California Privacy Rights.

If you are a California resident, you can make the following requests with respect to your personal information subject to limitations and exceptions set forth in applicable law:

• Access – You can request that we disclose to you the following: (i) the categories of personal information that we have collected about you; (ii) the categories of sources from which we have collected personal information about you; (iii) the business or commercial purpose for collecting your personal information; (iv) the categories of personal information that we have disclosed about you for our business purposes and the categories of vendors to whom the personal information was disclosed; and (v) the specific pieces of personal information that we have collected about you.
• Deletion – You can request that we delete the personal information that we collected from you, subject to certain exceptions.
• Correction – You can request that we correct inaccurate personal information that we maintain about you, subject to certain exceptions.

We will not discriminate against you because you exercised any of these rights.

A California resident can exercise these rights online by emailing us at info@moximed.com, or by calling us at 1-866-201-1515.  We may deny certain requests, or fulfill a request only in part, based on our legal rights and obligations. For example, we may retain personal information as permitted by law, such as for tax or other record keeping purposes, to maintain an active account, and to process transactions and facilitate customer requests.

We will take reasonable steps to verify your identity prior to responding to certain of your requests.  The verification steps will vary depending on the sensitivity of the personal information and whether you have an account with us.

You may designate an authorized agent to make a request on your behalf.  When submitting the request, please ensure the authorized agent is identified as an authorized agent.

We do not disclose personal information to third parties for their direct marketing purposes.

7.              Your Privacy Rights (Residents of Colorado, Connecticut, Delaware, Iowa, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Tennessee, Texas, Utah, or Virginia).

If you are a resident of Colorado, Connecticut, Delaware, Iowa, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Tennessee, Texas, Utah, or Virginia, you may make the following requests with respect to your personal information:

• Access/Confirmation: You can request to confirm whether we process your personal information. Subject to certain exceptions, you can also request a copy of your personal information. Minnesota and Oregon residents may also request a list of third parties (as defined in applicable law) to whom we have disclosed personal information. Delaware and Maryland residents may also request a list of categories of third parties (as defined in applicable law) to whom we have disclosed personal information.

• Deletion: You can request that we delete personal information we have from or about you, subject to certain exceptions.

• Correction: You can request that we correct inaccurate personal information we maintain about you, subject to certain exceptions.

 

You can exercise these rights online by emailing us at info@moximed.com, or by calling us at 1-866-201-1515.  Note that for purposes of these rights under this Section 7, personal information does not include information about employees and other of our personnel or information about employees and other representatives of third-party entities we may interact with.

We do not “sell” (as the term is traditionally understood) personal information for money. From time to time, however, we may, in connection with our digital advertising activities, engage in a practice that may be deemed “selling” under applicable state law. If you would like to be added to our do-not-sell list, email us at info@moximed.com, or call us at 1-866-201-1515.

We will take reasonable steps to verify your identity prior to responding to your requests. The verification steps will vary depending on the sensitivity of the personal information and whether you have an account with us. We may deny certain requests and will explain why your request was denied and how to appeal our decision, as required by applicable law. After receiving our explanation, if you would like to appeal our decision and are a resident of Colorado, Connecticut, Delaware, Iowa, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Tennessee, Texas, or Virginia, you may do so as further detailed in our communication back to you. For questions, you may also contact us by calling or emailing us at the contact information above.

8.              Information for International Users.

Because Moximed is based in the United States, please note that your information may be processed and stored in the United States and other jurisdictions around the world where we or our service providers are located, and that such jurisdictions may have different privacy laws than those in your jurisdiction. Whenever your information is transferred, stored, or processed by us, we take reasonable steps to protect your information in accordance with this Privacy Policy and applicable laws. These measures may include implementing standard contractual clauses to govern the transfer of your information, or other means recognized by applicable laws. By providing us with your information, you acknowledge any such transfer, storage, or processing.

The Portal is hosted in the United States and is intended for United States visitors. If you are visiting from outside the United States, note that United States laws may not provide the same level of protections as those in your own country. If you access the Portal from outside of the United States, you understand, consent, and agree that we may transfer your personal information to the United States. We may also process, share, transfer and store personal information on servers located in countries other than the United States.

9.              The Services are not intended for children.

We do not knowingly collect personal information from children under 18.  If you are a parent or legal guardian and think your child under 18 has given us personal information, you can email us at info@moximed.com. Parents, you can learn more about how to protect children’s privacy online here (https://consumer.ftc.gov/identity-theft-and-online-security/protecting-kids-online).

10.              We use standard security measures.

The Internet is not 100% secure. Moximed takes a variety of technical and organizational security measures to protect the information provided to us from loss, misuse, and unauthorized access, disclosure, alteration, or destruction but we cannot promise that your use of the Services will be completely safe. We encourage you to use caution when using the Internet. This includes not sharing your passwords.

11.              We may link to other sites or outside party services on platforms we do not control.

If you click on a link to an outside party site, you will be taken to websites or platforms we do not control. This Privacy Policy does not apply to the privacy practices of those websites or platforms. Read the privacy policies of other websites and companies carefully. We are not responsible for the practices of these outside parties.

12.              We keep personal information as long as reasonably necessary.

We keep personal information as long as reasonably necessary to carry out the business and commercial purposes described in this Privacy Policy or any other notice provided at the time of data collection, to provide our products and services, and as necessary to comply with our legal obligations, resolve disputes, protect and defend our legal rights, and enforce our agreements.

13.              Information for Individuals in the European Economic Area

The legal bases for using your information as set out in this Privacy Policy are as follows:

• Where use of your information is necessary to perform our obligations by contract with you (for example, to comply with, as applicable, our Terms of Service and Privacy Policy)
• Where use of your information is necessary for our legitimate interests or the legitimate interests of others (for example, to provide security for our websites; operate our Services; defend our legal rights; analyze use of and improve our Services)
• Where we have a reason to process the data in accordance with applicable laws
• Where we have your consent to engage in a particular processing activity

If you would like further information in relation to your legal rights under applicable law or would like to exercise any of them, please contact us using the information provided in the section below at any time. Your local laws may permit you to request that we:

• provide access to and/or a copy of certain information we hold about you
• update information which is out of date or incorrect
• delete certain information which we are holding about you
• restrict the way that we process and disclose certain of your information
• revoke your consent for the processing of your information

We will consider all requests and provide our response within the time period stated by applicable law and as otherwise required by applicable law. Please note, however, that certain information may be exempt from such requests in some circumstances, which may include if we need to keep processing your information for our legitimate interests or to comply with a legal obligation. We may request you provide us with information necessary to confirm your identity before responding to your request.

If you have any concerns or complaints about our data processing activities, we urge you to first try to resolve such issues directly with us. However, if applicable, you may have the right to make a complaint to the data protection supervisory authority in the country where you are based or seek a remedy through local courts if you believe your rights have been breached.

14.              Feel free to contact us if you have more questions.

If you have any questions about this Privacy Policy or want to correct or update your information, please email us at info@moximed.com. You can also write to us or call at:

Moximed Inc.
46602 Landing Pkwy
Freemont, CA 94538
Telephone: 1-866-201-1515

15.           We may update this Privacy Policy.

From time to time we may change our privacy policies. We will notify you of any material changes to our Privacy Policy to the extent required by law. We will also post an updated copy on the Services.  Please check the Services periodically for updates.

 

MOXIMED CONSUMER HEALTH DATA PRIVACY POLICY 

Effective: September 1, 2025

This Consumer Health Data Privacy Policy (this “Policy”) describes how Moximed Inc.  (“Moximed,” “we,” “us,” or “our”) collects, uses, and shares consumer health data (as that term is defined by applicable laws in Nevada and Washington). We ask that you review it carefully. This Policy describes how we treat consumer health data collected by or on behalf of Moximed in connection with the “Services,” as defined in the Moximed Privacy Policy. The services include the myMISHA patient program and associated web sites made available and operated by us that reference or link to this Policy (the “Program”). The Program includes, without limitation, our web-based administration portal (the “Portal”). This policy applies to our email messages to you relating to the Program, and in our offline interactions where this Policy is referenced.  By providing us with consumer health data or using or accessing the Program, you agree to the collection, use, and disclosure of your consumer health data, as described in this Policy.  If you do not agree, please do not provide us with consumer health data and do not access or use the Portal.

This Policy supplements the Moximed Privacy Policy and applies solely to consumer health data, as described above.

1.     Consumer health data we may collect.

We (and the vendors and other parties we use to perform services on our behalf) may collect the following categories of consumer health data; the categories of consumer health data we collect from or about you specifically (if any) will depend on the context of your interactions with the Services and the choices you make:

• Information about your health conditions, symptoms, status, diagnoses, testing, or treatments (including surgeries, procedures, medications, or other interventions): We may collect this information, for example, in connection with the Program;
• Measurements of bodily functions, vital signs, or characteristics: We may collect this information, for example, in connection with the Program;
• Information that identifies a consumer seeking health care services; and
• Other information that identifies your past or present health status

2.              Sources of consumer health data.

We may collect consumer health data directly from you—for example, in connection with your application to or participation in the program. Additionally, we and our vendors may use cookies and related technologies to passively collect information from and across your devices when you interact with the Services. For more information about how we use information that is collected passively, please see our Privacy Policy. Finally, we may acquire consumer health data about you from other sources, such as healthcare professionals. We may also combine information about you that we receive from other parties with other information about you that we collect when you participate in the Program or that you choose to share with us, and this combined information may in some instances be considered consumer health data.

3.              Purposes for which we may collect and use consumer health data.

We may collect and use consumer health data to:

• Provide the Services and administer the Program;
• Fulfill and comply with our contractual and other obligations;
• Provide support and respond to your inquiries, and to contact and communicate with you when necessary;
• Review the usage and operations of the Services, develop new products or services, improve the Services (including the Program), and conduct research and analyses to enhance or improve our content, products, and services;
• Prevent, detect, and investigate fraud, cyber incidents, or other illegal or harmful activity and for other security, safety, compliance, and due diligence purposes; and
• Create data in an aggregated format that may be used for analytical and demographic purposes.

We will obtain your consent or authorization where required by applicable law in connection with any of the uses described above. Additionally, we may use consumer health data for other purposes for which we give you choices and/or obtain your consent or authorization as required by law. See Sections 6 and 7 below for more details on the controls and choices you may have.

4.              How we may share consumer health data.

We may share your consumer health data for the purposes described above. Additionally, we may share personal information, including consumer health data, with your consent or as reasonably necessary to complete any transaction or provide any product or service you have requested or authorized, as described above.

We may share your consumer health data with your health care professionals.

We may also disclose your consumer health data (a) to vendors that provide business, professional, or technical support functions for us, help us operate our business and the Services, or administer activities on our behalf; (b) to comply with law, or to respond to subpoenas, judicial processes, or government requests and investigations, or in connection with an investigation on matters related to public safety, as permitted by law, or otherwise as required by law; (c) to protect the security of the Services, servers, network systems, databases, and our business; (d) as necessary, if we believe that there has been a violation of any legal document or contract related to the Services, or the rights of any third party; and (e) to another entity that acquires or intends to acquire us or any of our assets in connection with a sale or bankruptcy or reorganization proceeding.

5.              Third party collection of consumer health data.

Third parties may be able to collect consumer health data from you over time and across different websites depending on your browser, browser add-ons, and associated permissions you set on your devices.

6.              Your privacy rights.

Subject to certain legal limitations and exceptions, you may be able to exercise some or all of the following rights:

• Confirmation and Access: You may request to confirm whether we collect or share consumer health data about you. You may also request to access such consumer health data, including a list of all third parties and affiliates with whom Moximed has shared the consumer health data and an active email address or other online mechanism that you may use to contact these third parties.
• Deletion: You may request that we delete any of your consumer health data collected from you and retained by us.
• Withdraw Consent: You may request to withdraw consent to Moximed’s collection and sharing of consumer health data concerning you.
• Review and Revise: You may request to review and/or revise your consumer health data.

We may deny your request to exercise any of the rights described above if doing so is reasonably necessary for us (or our affiliates or processors) to:

• Prevent, detect, protect against, or respond to security incidents, identity theft, fraud, harassment, malicious or deceptive activities, or any activity that is illegal under applicable law;
• Preserve the integrity or security of systems; or
• Investigate, report, or prosecute those responsible for any such action that is illegal under applicable law.

7.              Exercising your rights.

You may exercise your rights by emailing us at info@moximed.com, or by calling us at 1-866-201-1515.  We may take steps to verify your identity before responding to your request by asking you a series of questions about your previous interactions with us.

We may deny certain requests and will explain why your request was denied and how to appeal our decision, as required by applicable law. After receiving our explanation, if you would like to appeal our decision, you may do so as further detailed in our communication back to you. For questions, you may also contact us by calling or emailing us at the contact information in Section 9 below.

8.              Changes to the Moximed Consumer Health Data Privacy Policy.

We reserve the right, at our sole discretion, to change, modify, add, remove, or otherwise revise portions of this Policy at any time. When we do, we will post the change(s) on the Services.  Your continued use of the Services or participation in the Program following the posting of changes to this Policy means you accept these changes.

9.              Contact information.

If you have any questions or concerns about this Policy or the practices described herein, please email us at info@moximed.com. You can also write to us or call at:

Moximed Inc.
46602 Landing Pkwy
Freemont, CA 94538
Telephone: 1-866-201-1515