When we say ‘we’ or ‘us’ or ‘VitalSines’ it’s because that’s who we are and we own and run our products and sites.
We collect certain personal information about iHeart users, and visitors to our site. The most common types of information we collect include things like email address, survey results, blogs, IP address, payment details, shipping address, tax information, usernames, forum comments, and any content you direct to us to make available on our site. For the iHeart product birthdate, sex, aortic pulse wave velocity, heart rate, blood oxygen level, internal age.
When you sign up for a User Account, you are required to provide an email address and to create an account password.
Registration with our Services also requires that you provide your name, gender, date of birth, height, weight, and activity level.
Information sent wirelessly from your Product to the Service is stored in your User Account.
Information that you add manually to the Service is stored in your User Account.
We collect industry standard aggregate data, web server log data, internet protocol (IP) addresses, cookies, and web beacons. This includes information about the browser and operating system you are using, the address of the external or internal page that referred you, your IP address at the time of account creation and a log of the pages that you visit on the Services in association with your IP address. We also collect the IP address associated with the device running the mobile app each time you sync.
We collect personal information directly when you provide it to us via a subscription to our newsletter on our site, or when you order the iHeart device and then create a profile to use it, followed by your tests with the device. We also collect information when you enter a contest, fill out a survey, or send us communication.
We will use your personal information to:
To reach out to you with newsletters and special offers if you have signed up online To send you your results after your iHeart tests Carrying out technical analysis to determine how to improve the site and products we provide Managing relationships with you by responding to your comments or queries submitted to us on the website or asking for your feedback on whether you want to participate in a survey Training Staff on how best to serve our community For the purpose of responding to requests by government, a court of law, or law enforcement authorities conducting an investigation
We will disclose your information to the following recipients:
Our professional advisors (lawyers, accountants, executive advisors) which are located in Canada and the USA. Regulators and government authorities in connection with our compliance procedures and obligations A purchaser or prospective purchasers of all or part of our assets or our business and their professional advisers, in connection with the purchase A third party, in order to enforce or defend our rights, or to address financial or reputational risks A rights holder in relation to an allegation of intellectual property infringement or any other infringement Other recipients where we are authorised or required by law to do so.
We will not share, sell or rent your personal information in personally identifiable form with any third party, except if, and to the extent necessary, in our good faith judgment, doing so is required to: complete your purchase; comply with laws or regulations; respond to a valid subpoena, order, or government request; establish or exercise the Company’s legal rights or defend against legal claims; investigate, detect, surpress, prevent or take action regarding illegal or prohibited activities, suspected fraud, situations involving potential threats to the reputation or physical safety of any person; or as otherwise required by law.
We may remove personal identifiers from your information and maintain and use it in aggregate form that may later be combined with other information to generate anonymous, aggregated statistical information. Such anonymous, group data may be shared on an aggregated basis with our business partners, but we will not disclose your personally identifiable information unless we receive your express consent to do so.
We are based in Canada but use Amazon servers for our data storage, your data will be stored in Oregon.
We have SSL certificates in place for secure data transfer in and out of the server. The "physical" security of our servers is handled by Amazon (i.e. so no-one can break-in and take our server with them).
You can access your personal information by logging into your iHeart app and reviewing your tests and notes. You also have the right to access other personal information we hold about you and request corrections of any errors in that data. You can also close the account you have with us at any time. To make an access or correction request, contact our support team at the address at the end of this policy.
Where we have consent to do so (eg. if you have subscribed to one of our email lists or have indicated that you are interested in receiving offers or other information from us) we send you marketing communication by email about products and services that we feel may be of interest to you. You can opt out of such communications if you would prefer not to receive them in the future by using the ‘unsubscribe’ facility provided in the communication itself.
When you visit our site there’s certain information that’s recorded which is generally anonymous information and does not reveal your identity. We’re talking about the following kinds of details:
Your IP address or proxy server IP address The domain name or keyword you requested The name of your internet services provider is sometimes captured depending on the configuration of the ISP connection The date and time of your visit to our website The length of your session The pages which you have accessed The number of times yu have come back to the page The file URL you look at and information relating to it The website which referred you to our site The operating system which your computer uses
Occasionally we will use third party advertising companies to serve ads based on prior visits to our sites. For example, if you visit our sites you may later see an ad for our products and services when you visit a different site.
Our sites are not suitable for children under the age of 16 years, if you are under 16 we ask that you do not use our site or our products or give us your personal information. If you are under the age of 16 years you can browse the site but you’ll need the supervision of a parent or guardian to become a registered user.
We aim to provide you with a safe experience. We have in place certain physical, electronic, technological, and organizational safeguards to appropriately protect the security and privacy of your personal information against loss, theft, and unauthorized access, disclosure, copying use or modification. Please note, however, that while we try to create a secure and reliable Service for users, the confidentiality of any communication or material transmitted to or from the Services or via e-mail cannot be guaranteed.
We limit access to your personal information within the Company to individuals on a need-to-know basis.
We will need to change this policy from time to time in order to make sure it stays up to date with the latest legal requirements and any changes to our privacy management practices
When we do change the policy we’ll make sure to notify you about such changes when required. A copy of the latest version of this policy will always be available on this page.
If you’re a user or visitor in the European Economic Area these rights also apply to you:
You are also entitled to ask us to port your personal information (ie. to transfer in a structured, commonly used, and machine-readable format to you), to erase it, or restrict its processing. You also have rights to object to some processing that is based on our legitimate interests, such as profiling that we perform for the purposes of direct marketing, and where we have asked for consent to process your data, to withdraw this consent as more fully described below.
These rights are limited in some situations - for example, we can demonstrate that we have a legal requirement to process your personal information. In some instances, this means that we may retain some data if you withdraw consent.
Where we require your personal information to comply with legal or contractual obligations, then provision of such data is mandatory: if such data is not provided, then we will not be able to manage our contractual relationship with you, or meet obligations placed on us. In all other cases, provision of requested information is optional.
If you have unresolved concerns you also have the right to complain to data protection authorities. The relevant data protection authority will be the the data protection authority of the country: (i) of your habitual residence; (ii) of your place of work; (iii) in which you consider the alleged infringement has occurred.
If you have any questions or concerns please contact firstname.lastname@example.org