StitchedHealth Privacy Policy
Effective Date: April 29, 2025
At StitchedHealth, Inc. ("StitchedHealth," "we," "us," or "our"), we are committed to protecting the privacy and security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your data when you access or use our website, mobile applications, discussion forums, courses, videos, or any related services (collectively, the "Service") at StitchedHealth.ai.
By using the Service, you consent to the practices described in this Privacy Policy. This Privacy Policy is incorporated into and forms part of our Terms of Service. If you do not agree with this Privacy Policy, please do not use the Service.
1. Scope of This Privacy Policy
This Privacy Policy applies to all users of the Service, including clinicians, healthcare professionals, students, and other authorized users. It covers personal information we collect through the Service, including our website, mobile apps, and related platforms.
Important Note: This policy does not apply to third-party websites, services, or applications linked from our Service, which have their own privacy policies.
2. Information We Collect
We collect the following categories of information:
A. Information You Provide
- •Account Information: When you register for an account, we collect your name, email address, professional credentials (e.g., National Provider Identifier "NPI" or equivalent), licensure details, and other information you provide during registration.
- •User-Generated Content: Information you submit, such as comments, survey responses, or posts in discussion forums.
- •Communications: Information you provide when you contact us, such as through support requests or feedback forms.
- •Surveys and Evaluations: Responses to optional surveys or evaluations related to CME activities or the Service.
B. Information We Collect Automatically
- •Usage Data: Information about your interactions with the Service, such as pages visited, time spent on activities, courses accessed, and search queries.
- •Device and Log Data: Technical information, including your IP address, browser type, operating system, device identifiers, and access times.
- •Cookies and Tracking Technologies: We use cookies, web beacons, and similar technologies to enhance your experience, analyze usage, and deliver personalized content.
C. Information from Third Parties
- •Accredited Providers: We may receive information from third-party CME providers about your participation in accredited activities, such as completion status, to facilitate your educational experience.
- •Professional Verification: We may obtain information from third-party sources to verify your professional credentials or licensure.
3. How We Use Your Information
We use your information to:
- •Provide, operate, and improve the Service, including delivering CME content, managing accounts, and facilitating discussion forums.
- •Verify your professional credentials and eligibility to access certain content.
- •Personalize your experience, such as recommending relevant courses or tailoring content based on your profession or interests.
- •Communicate with you, including sending service-related notices, updates, or responses to your inquiries.
- •Analyze usage trends and performance of the Service to enhance functionality and user experience.
- •Comply with legal obligations, such as maintaining records for accreditation purposes or responding to lawful requests.
- •Protect the security and integrity of the Service, including detecting and preventing fraud or unauthorized access.
4. How We Share Your Information
We do not sell your personal information.
We may share your information as follows:
A. With Service Providers
We engage third-party service providers to perform functions on our behalf, such as hosting, analytics, customer support, and credential verification. These providers are contractually obligated to protect your information and use it only for the purposes we specify.
B. With Accredited CME Providers
We share information about your participation in CME activities (e.g., completion status) with third-party accredited providers to facilitate credit certification. These providers are responsible for issuing CME credits and have their own privacy policies.
C. For Legal and Safety Purposes
We may disclose your information to:
- •Comply with applicable laws, regulations, or legal processes (e.g., subpoenas, court orders).
- •Protect the rights, property, or safety of StitchedHealth, our users, or others.
- •Investigate or prevent suspected fraud, illegal activity, or violations of our Terms of Service.
D. With Your Consent
We may share your information for other purposes if you provide explicit consent, such as participating in a research study or sharing content publicly.
E. In Business Transfers
If StitchedHealth is involved in a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity, subject to confidentiality protections and applicable laws.
F. Aggregated or De-Identified Data
We may share aggregated or de-identified data that cannot reasonably identify you, such as usage statistics, for research, marketing, or reporting purposes.
5. HIPAA and Protected Health Information
Important Notice
The Service is designed for educational purposes only and is not intended for the collection, storage, or transmission of protected health information (PHI) as defined by the Health Insurance Portability and Accountability Act (HIPAA).
You agree not to submit PHI through the Service (e.g., in comments, forums, or surveys). If you inadvertently submit PHI, you are solely responsible for any resulting violations of HIPAA or other data protection laws.
Please contact us immediately at support@stitchedhealth.ai if you believe PHI has been submitted.
6. International Data Transfers
StitchedHealth operates in the United States, and your information may be processed and stored in the U.S. or other countries where we or our service providers operate. These countries may have different data protection laws than your jurisdiction. By using the Service, you consent to the transfer of your information to the U.S. and other locations.
For Users in the European Union (EU), European Economic Area (EEA), or United Kingdom (UK)
We comply with the General Data Protection Regulation (GDPR) and UK GDPR where applicable. Our legal basis for processing your personal data includes:
- •Contract: To fulfill our obligations under the Terms of Service.
- •Legitimate Interests: To improve the Service, analyze usage, and ensure security.
- •Consent: For optional features, such as personalized content or surveys.
7. Cookies and Tracking Technologies
We use cookies and similar technologies to enhance your experience and analyze usage. Cookies may include:
- •Essential Cookies: Necessary for the Service to function, such as maintaining your login session.
- •Analytics Cookies: To understand how users interact with the Service (e.g., Google Analytics).
- •Preference Cookies: To remember your settings and preferences.
You can manage cookie preferences through your browser settings, but disabling cookies may affect the functionality of the Service.
8. Data Security
We implement reasonable technical, administrative, and physical safeguards to protect your information from unauthorized access, use, or disclosure. However, no system is completely secure, and we cannot guarantee the absolute security of your data.
Your Responsibility: You are responsible for maintaining the confidentiality of your login credentials and promptly notifying us of any unauthorized account activity.
9. Data Retention
We retain your information for as long as your account is active or as needed to provide the Service, comply with legal obligations (e.g., accreditation recordkeeping), resolve disputes, or enforce our Terms of Service. We may delete or de-identify inactive account data after a reasonable period, subject to applicable laws.
10. Your Rights and Choices
Depending on your jurisdiction, you may have the following rights regarding your personal information:
To exercise these rights, contact us at support@stitchedhealth.ai. We may verify your identity before processing your request. For GDPR-related requests, we will respond within one month, subject to extensions for complex requests.
Additional Options
- •Opt Out of Communications: Unsubscribe from non-essential emails using the "unsubscribe" link in our messages. You cannot opt out of service-related communications.
- •Do Not Track: We do not currently respond to "Do Not Track" signals, as there is no uniform standard for compliance.
11. Children's Privacy
Age Restriction: The Service is not intended for users under 18 years of age (or the legal age of majority in your jurisdiction).
We do not knowingly collect personal information from children. If we learn that a child's data has been collected, we will take steps to delete it. Contact us if you believe a child's data has been submitted.
12. Third-Party Links and Services
The Service may contain links to third-party websites or services, such as accredited CME providers or external resources. We are not responsible for the privacy practices or content of these third parties. Please review their privacy policies before providing information.
13. Changes to This Privacy Policy
We may update this Privacy Policy to reflect changes in our practices, legal requirements, or the Service. Material changes will be posted on this page with a new effective date. We may also notify you via email or through the Service. Your continued use of the Service after changes constitutes acceptance of the updated Privacy Policy.
14. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:
By using the Service, you acknowledge that you have read, understood, and agree to this Privacy Policy.