Privacy Policy
Thank you for using Qardio or visiting one of our websites. This policy explains the what, how, and why of the information we collect when you visit one of our websites or use our services (“Services”). It also explains the specific ways we use and disclose that information. We take your privacy extremely seriously.

Effective date

The Effective Date of this Privacy Policy is April 12, 2017.

This Privacy Policy supersedes any prior agreements or earlier versions of this Privacy Policy between you and Qardio for the use of the Services.

This Privacy Policy covers Qardio, Inc., Qardio Europe Limited, Qardio Netherlands B.V., Qardio Hong Kong Ltd., and Qardio International Trading (Shanghai) Co., Ltd.

The sections detailing our adherence to the Privacy Shield Frameworks only pertain to Qardio, Inc. and its U.S. divisions.

Your Information

Qardio’s devices and services collect data when you use them. Some of it is personally identifiable and some is non-identifying or aggregated. You transmit data to us:

When you visit and use our websites and services

We collect certain data when you use our website or when you take part in our events or reply to our questionnaires. Certain information is collected even if you do not have a Qardio account. This may happen when you view pages, take part in surveys, competitions or events, write a comment on our website, share a page on a social network, order a product, etc.

When you order a product on our website, we have to retain certain data relating to your order, such as your delivery and billing address, even if you choose the option allowing you to order without creating an account. However, Qardio will never have access or store your bank details since payments transactions are conducted and secured by our partners.

We also use cookies on our website. For further information on them, you can refer to our Cookies section in this Privacy Policy.

Here is the data that you may communicate to us by visiting and using our sites and services:

  • Identity data
  • Cookies

When you create a Qardio account

Creating a Qardio account allows you to use Qardio’s services and applications. You will therefore need to provide us with certain data to identify yourself. Your Qardio account is the core component of our services. It allows you to access and control your personal data. Data are collected and used during account and/or user profile creation, when logging on to your account, ordering a product from your account, adding a photograph, etc.

Here is the data that you may communicate to us in creating a Qardio account:

  • Identity data
  • Body metrics data

When you use our applications

Using our applications requires an account. Through applications, you can use Qardio products and services, interact with them and access all features/offered by Qardio.

To that end, certain data are communicated to us when you download, install and use features of the application. This is the case when you share information, take measurements, respond to questionnaires or complete a field in the application, etc. It is also through the application that your data is communicated to us when you install and synchronize your Qardio product.

Through the application you may activate certain optional features such as geolocation through your smartphone.

Here is the data that you may communicate to us by using our applications:

  • Identity data
  • Body metrics data
  • Activity data
  • Cookies

When you activate and use a Qardio product

Qardio’s products, services, and applications collect data, enabling monitoring by their accumulation. When you activate a Qardio product, you will be asked to download the Qardio application and create an account. Certain features are only accessible by connecting your product and the application.

Your data are transmitted to our servers when you synchronize your product with our applications or when you connect your product to your Wi-Fi network.

Here is the data that you may communicate to us by using our applications:

  • Identity data
  • Cookies
  • Activity data
  • Environmental data

When you log on to your Qardio account with a partner

Our partners may offer to share your data with theirs. This is done via our API exchange system, which we designed as open and is currently free of charge. With your prior agreement, we may have to receive certain data that you had previously communicated to the partner.

Here is the data that you may communicate to us by creating a Qardio account to a partner:

  • Identity data
  • Body metrics data
  • Activity data
  • Environmental data

When you contact our customer service department

When you contact our customer service department, you provide us with information that allows us to identify you. The information transmitted remains confidential when you contact us through our website or support line.

For the purposes of responding to your support request, some of your data may be temporarily communicated to our teams until the problem is solved. We ensure that our teams comply strictly with our confidentiality policy.

Here is the data that you may communicate to us by contacting our customer service department:

  • Identity data
  • Body metrics data
  • Activity data
  • Environmental data
  • Cookies – technical features

Cookies and other technologies

Qardio uses cookies, or similar technologies like single-pixel gifs and web beacons, to record log data. We use both session-based and persistent cookies. Cookies are small text files sent by us to your computer and from your computer to us, each time you visit our website. They are unique to your Qardio account or your browser. Session-based cookies last only while your browser is open and are automatically deleted when you close your browser. Persistent cookies last until you or your browser delete them or until they expire.

Some cookies are associated with your Qardio account and personal information in order to remember that you are logged in. Other cookies are not tied to your Qardio account but are unique and allow us to do site analytics and customization, among other similar things. You can set your browser to not accept cookies, but this may limit your ability to use our services.

Qardio sets and accesses our own cookies on our company-owned domains. In addition, we use third parties like Google Analytics for website analytics. You may opt-out of third party cookies from Google Analytics on its respective website. We do not currently recognize or respond to browser-initiated Do Not Track signals as there is no consistent industry standard for compliance.

Health and Wellness Data Sharing with Partners

You can choose to exchange your Qardio health and wellness data with third party partners. This data exchange might be done via our API system, or via Apple HealthKit API:

  • We only exchange your health and wellness data with your express consent.
  • We never share your data with advertising platforms, data brokers or information resellers.
  • Your data, whether originating from use of Qardio products and services or from third party partners or from Apple HealthKit, is not used for marketing and advertising purposes.
  • All our third-party partners are subject to requirements preventing them from using and/or sharing your data for marketing and advertising purposes.
  • If you choose to share your Qardio data with Apple HealthKit, the information you provide to HealthKit is governed by the Apple Terms and Conditions and Privacy Policy.

Email and Other Communications

From time to time, we may want to contact you with information about product announcements, software updates and special offers. We also may want to contact you with information about products and services from our business partners. We consider your acceptance of this Privacy Policy as your acceptance of our offer to send you these emails. You may opt out of such communications at any time by clicking the “unsubscribe” link found within Qardio email updates.

Use and Disclosure of Your Information

We may use and disclose Personal Information only for the following purposes:

  • (a) To promote use of our services to you. For example, if you leave your Personal Information when you visit our Website and do not sign up for any of the Services, we may send you an email inviting you to sign up. If you use any of our Services and we think you might benefit from using another Service we offer, we may send you an email about that. You can stop receiving our promotional emails by following the unsubscribe instructions included in every email we send. In addition, we may use information we collect in order to advertise our Services to you or suggest additional features of our Services that you might consider using. For more information on how we use cookies or other tracking technologies for this purpose, as well as how to opt out of the use of cookies, please see our Cookies section above.
  • (b) To send you informational and promotional content that you may choose (or “opt in”) to receive. You can stop receiving our promotional emails by following the unsubscribe instructions included in every email.
  • (c) To bill and collect money owed to us for our products. This includes sending you emails, invoices, receipts, and alerting you if we need a different credit card number. We use third parties for secure credit card transaction processing, and those third parties process your orders and credit card payments.
  • (d) To send you system alert messages. For example, we may inform you of temporary or permanent changes to our Services, such as planned outages, new features, version updates, releases, abuse warnings, and changes to our Privacy Policy.
  • (e) To communicate with our users about their account and provide customer support.
  • (f) To enforce compliance with our Terms of Use and applicable law. This may include developing tools and algorithms that help us prevent violations.
  • (g) To protect the rights and safety of our users and third parties, as well as our own.
  • (h) To meet legal requirements, including complying with court orders, valid discovery requests, valid subpoenas, and other appropriate legal mechanisms.
  • (i) To provide information to representatives and advisors, including attorneys and accountants, to help us comply with legal, accounting, or security requirements.
  • (j) To prosecute and defend a court, arbitration, or similar legal proceeding.
  • (k) To respond to lawful requests by public authorities, including to meet national security or law enforcement requirements.
  • (l) To provide, support, and improve the Services we offer. This includes our use of the data that our users provide us in order to enable our users to use the Services. This also includes, for example, aggregating information from your use of the Services or visit to our website and sharing this information with third parties to improve our Services. This might also include sharing your information or the information you provide us about your Subscribers with third parties in order to provide and support our Services or to make certain features of the Services available to you. When we do have to share Personal Information with third parties, we take steps to protect your information by requiring these third parties to enter into a contract with us that requires them to use the Personal Information we transfer to them in a manner that is consistent with this policy.
  • (m) To transfer your information in the case of a sale, merger, consolidation, liquidation, reorganization, or acquisition. In that event, any acquirer will be subject to our obligations under this Privacy Policy, including your rights to access and choice. We will notify you of the change either by sending you an email or posting a notice on our Website.

Sharing Your Information

We may share Your Information as discussed below:

  • Others working for Qardio. Qardio will from time to time engage certain affiliates or other third parties to provide technical or other services relating to all or part of the Services, or perform certain functions associated with the operation of the Qardio Market, and you hereby agree that such third party involvement is acceptable. These third parties will access your information only to perform tasks on our behalf and in compliance with this Privacy Policy.
  • Other users. Our Services display information like your name and email address to other users in places like your user profile and sharing notifications. Certain features let you make additional information available to other users.
  • Other applications. You can also give third parties access to your information and account – for example, via Qardio APIs. Just remember that their use of your information will be governed by their privacy policies and terms.
    • We will provide an individual opt-out choice before we share data with third parties other than our agents, or before we use it for a purpose other than which it was originally collected or subsequently authorized. To limit the use and disclosure of your personal information, you may submit a written request to legal@getqardio.com
    • Qardio’s accountability for personal data that it receives under the Privacy Shield and subsequently transfers to a third party is described in the Privacy Shield Principles. In particular, Qardio remains responsible and liable under the Privacy Shield Principles if third-party agents that it engages to process the personal data on its behalf do so in a manner inconsistent with the Principles, unless Qardio proves that it is not responsible for the event giving rise to the damage.

Data Transmission and Storage

Your use of the Services will likely result in interstate and possibly international data transmissions, and your use of the Service shall constitute your consent to permit such transmissions.

If you are based in the European Union, any information you provide, including any personal information, will be transferred to and processed by a computer server located within the European Union. If you are based in the United States or any other location outside of the European Union, any information you provide, including any personal information, will be transferred to and processed by a computer server located within the United States.

If you live in Switzerland or the European Union, please note that not only is United Kingdom-based Qardio Europe Ltd the data controller for all information associated with your Qardio Service account, but Qardio Europe Ltd is also the data controller for any payment, order, shipping and other information you provide when you purchase an item from the Qardio Market, even though such orders will be placed with or fulfilled by U.S.-based Qardio, Inc.

Data security

Qardio is committed to protecting the security of your information and takes reasonable precautions to protect it. However, Internet data transmissions, whether wired or wireless, cannot be guaranteed to be 100% secure, and as a result, we cannot ensure the security of information you transmit to us; accordingly, you acknowledge that you do so at your own risk. If a security breach causes an unauthorized intrusion into our system that materially affects you, then Qardio will notify you as soon as possible and later report the action we took in response.

We use industry standard encryption to protect your data in transit. This is commonly referred to as transport layer security (“TLS”) or secure socket layer (“SSL”) technology.

Once we receive your data, we protect it on our servers using a combination of administrative, physical and logical security safeguards. The security of the information stored locally in the Qardio Software installed on your computing device requires that you make use of the security features of your device. We recommend that you take the appropriate steps to secure all computing devices that you use with our applications and service.

Contests and Sweepstakes

We may, from time to time, offer surveys, contests, sweepstakes, or other promotions on our Websites or through social media (collectively, “Our Promotions”). Participation in our Promotions is completely voluntary. Information requested for entry may include personal contact information such as your name, address, date of birth, phone number, email address, username, and similar details. We use the information you provide to administer Our Promotions. We may also, unless prohibited by the Promotion’s rules or law, use the information provided to communicate with you, or other people you select, about our Services. We may share this information with our affiliates and other organizations or service providers in line with this policy and the rules posted for the Promotion.

Law & Order

We may disclose your information to third parties if we determine that such disclosure is reasonably necessary to (a) comply with the law; (b) protect any person from death or serious bodily injury; (c) prevent fraud or abuse of Qardio or our users; or (d) protect Qardio’s property rights.

Accessing and Modifying Your Personal Information

If you are a registered user of our Services, we provide you with tools and account settings to access, correct, delete, or modify the personal information you provided to us and associated with your account.

We’ll retain information you store on our Services for as long as we need it to provide you the Services. You can also permanently delete your account. If you delete your account, we’ll also delete this information. But please note: (1) there might be some latency in deleting this information from our servers and back-up storage; and (2) we may retain this information if necessary to comply with our legal obligations, resolve disputes, or enforce our agreements.

Qardio acknowledges that EU and Swiss individuals have the right to access the personal information that we maintain about them.  An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data, should direct their query to legal@getqardio.com. If requested to remove data, we will respond within a reasonable timeframe.

Data Transfers from the European Union and Switzerland to the United States.

Qardio complies with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework as set forth by the US Department of Commerce regarding the collection, use, and retention of personal information transferred from European Union member countries and Switzerland to the United States, respectively. Qardio has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. If there is any conflict between the terms in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification page, please visit https://www.privacyshield.gov/.

In compliance with the EU-US and Swiss-US Privacy Shield Principles, Qardio commits to resolve complaints about your privacy and our collection or use of your personal information. European Union or Swiss individuals with inquiries or complaints regarding this privacy policy should first contact Qardio at:

Qardio, Inc.
Attn: Corporate Counsel
115 Sansome St., Suite 1005
San Francisco, CA 94104
legal@getqardio.com

Qardio has further committed to refer unresolved privacy complaints under the EU-US and Swiss-US Privacy Shield Principles to an independent dispute resolution mechanism, the BBB EU PRIVACY SHIELD, operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit www.bbb.org/EU-privacy-shield/for-eu-consumers/ for more information and to file a complaint.

Under certain conditions, more fully described on the Privacy Shield website, https://www.privacyshield.gov/article?id=How-to-Submit-a-Complaint, you may invoke binding arbitration when other dispute resolution procedures have been exhausted.

With respect to personal data received or transferred pursuant to the Privacy Shield Framework, we are subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, we may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

California Privacy Statement

Under California Law, California residents have the right to request in writing from businesses with whom they have an established business relationship, (a) a list of the categories of Personal Information, such as name, email and mailing address and the type of services provided to the customer, that a business has disclosed to third parties (including affiliates that are separate legal entities) during the immediately preceding calendar year for the third parties’ direct marketing purposes and (b) the names and addresses of all such third parties. To request the above information, please contact us at privacy@getqardio.com

Modifications

We may change this Privacy Policy at any time and from time to time. The most recent version of the Privacy Policy is reflected by the version date located at the bottom of this Privacy Policy. All updates and amendments are effective immediately upon notice, which we may give by any means, including, but not limited to, by posting a revised version of this Privacy Policy or other notice on the Website. We encourage you to review this Privacy Policy often to stay informed of changes that may affect you, as your continued use of the Website signifies your continuing consent to be bound by this Privacy Policy. Our electronically or otherwise properly stored copies of this Privacy Policy are each deemed to be the true, complete, valid, authentic, and enforceable copy of the version of this Privacy Policy which were in effect on each respective date you visited the Website.

Contact

Have questions or concerns about Qardio, our Services and privacy? Contact us at privacy@getqardio.com