Privacy Policy

Effective Date: February 6, 2026

This Privacy Policy explains how HeartLink Health, LLC (“HeartLink,” “we,” “us,” or “our”) collects, uses, and shares information across:

our marketing website at https://heartlink.app

(the “Site”),

the HeartLink provider platform (the “Platform”), and

the HeartLink mobile application (the “App”).

This policy applies to visitors, prospective customers, and authorized users.

If your organization is a healthcare provider, HeartLink may act as a service provider or business associate with respect to protected health information (“PHI”) processed on your behalf, subject to a Business Associate Agreement (BAA), if applicable.

1. Information We Collect

A. Marketing Site (heartlink.app)

We may collect:

Contact Information: name, organization, email address, phone number, and message content submitted through forms (e.g., demo requests).

Usage Data: pages visited, time on page, device type, browser type, and approximate location (such as city or region derived from IP address).

Cookies and Similar Technologies: used for basic site functionality and analytics.

We do not intend to collect protected health information through the Site. Please do not submit patient or clinical data via website forms.

B. Platform & App

We may collect and process the following information, as directed by the customer organization:

Account & Organization Data

User name, email address, and phone number

User role and permissions

Provider or agency identifiers and workspace access

Patient & Clinical Data

(entered by authorized users or patients)

Patient name or identifier

Date of birth and sex

Contact information when required by the provider

Health and medical data, including baseline symptom ratings, orthopnea, weight, daily check-ins, symptom trends, blood pressure, heart rate, hospitalization status since last check-in, clinical notes, stability category, and wellness scores

Usage & Device Data

App and platform usage (e.g., check-in timestamps, adherence rates, page visits within the Platform)

Device and app technical data (e.g., device type, operating system version, app version)

Support Communications

Information you provide through support requests or other communications

2. How We Use Information

We use information to:

Provide, operate, and improve the Site, Platform, and App

Authenticate users, manage access, and enforce security controls

Support clinical workflows and care coordination, as directed by the provider organization

Respond to inquiries and support requests

Analyze performance and usage trends

Communicate with prospective and existing customers about HeartLink services

Comply with legal and regulatory obligations

3. How We Share Information

We may share information with:

Service Providers: vendors who assist with operating, hosting, securing, or supporting the Site, Platform, or App (e.g., cloud hosting, analytics, email delivery, support tools)

Customer Organizations: authorized users within the same provider or agency environment

Legal and Compliance Authorities: when required by law or to protect rights, safety, or property

Business Transfers: in connection with a merger, acquisition, or sale of assets

We do not sell personal information.

4. Data Retention

We retain information only as long as necessary to:

Provide services to customer organizations

Respond to inquiries and support requests

Comply with legal obligations

Resolve disputes or enforce agreements

Marketing inquiries are retained only as long as reasonably necessary for business purposes.

5. Security

We implement reasonable administrative, technical, and physical safeguards designed to protect information. However, no system can be guaranteed to be 100% secure.

6. Your Choices

Marketing Communications: You may opt out at any time using the unsubscribe link or by contacting us directly.

Cookies: You can disable cookies through your browser settings, though some Site features may not function properly.

Access, Correction, and Deletion: Platform and App users should contact their provider or organization to request access, correction, or deletion of PHI. HeartLink will support customer requests in accordance with applicable agreements.

7. Children’s Privacy

The Site, Platform, and App are not intended for children under the age of 13, and we do not knowingly collect information from children through the Site.

8. International Visitors

If you access the Site, Platform, or App from outside the United States, your information may be processed in the United States or other jurisdictions with different data protection laws.

9. Updates to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted with a revised Effective Date.

10. Contact Us

If you have questions about this Privacy Policy, please contact:

Email: support@heartlink.app