Blendly Health
Product Pricing FAQ
Log in

Privacy Policy

Learn how Blendly Health protects your personal health information and respects your privacy.

Privacy Policy

Blendly Technologies LLC

Effective Date: [Insert Date]
Last Updated: [Insert Date]

1. Introduction

Blendly Technologies LLC (“we,” “us,” “our,” or “Company”) operates Blendly Health, a healthcare management application that helps consumers manage their healthcare information, including doctors, medications, and medical conditions.

This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use our application and services (collectively, the “Service”).

By using our Service, you agree to the practices described in this Privacy Policy. If you do not agree, please discontinue use of the Service.

2. Information We Collect

Personal Information You Provide

Account Information: Email address for account registration and authentication.

Health Information: Any health-related information you choose to enter or upload, including:

  • Medical conditions
  • Medications and prescriptions
  • Doctor information and appointments
  • Health notes and text-based health records

Uploaded Images and Documents: You may upload images or documents (for example, prescription labels, insurance cards, or similar records) to simplify data entry.

Authentication Data: Information from third-party authentication providers (such as Google) if you log in using social accounts.

Automatically Collected Information

  • Device and browser information
  • IP address and approximate location (if enabled)
  • Application usage patterns and performance data
  • Error logs and crash reports

3. How We Use Your Information

We use your information for the following purposes:

  • Service Provision: To provide, maintain, and improve our healthcare management application.
  • Account Management: To create, manage, and authenticate your account.
  • AI and Automated Processing: To process uploaded images or documents using automated technologies, which may include artificial intelligence, in order to extract relevant text and information for your account. We use this information only to provide the Service and do not use your data to train external AI models.
  • Technical Operations: To monitor application performance, troubleshoot issues, and maintain security.
  • Legal Compliance: To comply with applicable laws and respond to lawful requests.
  • Communication: To respond to your inquiries and provide customer support.

4. Data Security

We use industry-standard measures to protect your information:

  • Encryption: All user data is encrypted in transit and at rest.
  • Access Controls: Strict access controls limit who can access your personal information.
  • Secure Infrastructure: Our application is hosted on Amazon Web Services (AWS).

5. Data Breach Notification

In the event of a data security incident that affects your personal information, we will:

  • Investigate and contain the incident promptly
  • Notify affected users and relevant authorities as required by applicable law, typically within 72 hours of discovery
  • Provide information about what happened, what information was involved, steps we are taking to address the incident, and steps you can take to protect yourself
  • Cooperate with law enforcement and regulatory authorities as appropriate

We maintain an incident response plan and conduct regular security assessments to minimize the risk of data breaches.

6. Data Storage and Retention

  • Location: Your data is stored on secure servers located in the United States using AWS.
  • Retention: We retain personal information only as long as reasonably necessary to provide the Service or as required by law.
  • Account Deletion: You may delete your account at any time through account settings. When you do, we delete your personal information from active systems within a reasonable time period.

7. Information Sharing and Disclosure

We do not sell your personal information. We share information only as follows:

Service Providers/Processors

We use trusted providers to support the Service, including:

  • Honeycomb.io (traffic analysis and monitoring)
  • AWS CloudWatch (log storage and system monitoring)
  • Auth0 (authentication services)
  • Social Login Providers (if you choose to authenticate using them)

These providers act under written contracts and may only use data to perform services on our behalf. They are contractually required to protect your data and may not use it for their own purposes.

When required by law, regulation, or valid legal process.

Business Transfers

If we are involved in a merger, acquisition, or sale of assets, your information may be transferred.

8. Your Rights and Choices

Depending on where you live, you may have the following rights:

  • Access: Request access to the personal information we hold about you.
  • Correction: Request correction of inaccurate or incomplete information.
  • Deletion: Request deletion of your personal information.
  • Data Portability: Request a copy of your personal information in a portable format.
  • Opt-Out of Sale/Sharing: We do not sell personal data. If we begin to “share” personal data for targeted advertising in the future, you will have the right to opt out.

You can exercise these rights by contacting us at privacy@blendly.life or through our web request form [Insert Link]. We will respond to your requests within 30 days (45 days for complex requests). We may require verification of your identity before processing requests.

9. Children’s Privacy

Our Service is not directed to children under 13, and they may not create accounts. We do not knowingly collect, use, or disclose personal information from children under 13 without verifiable parental consent.

Parents or legal guardians may enter and manage health information for their children through their own accounts. Parents have the right to review, request deletion of, and refuse further collection of their child’s personal information.

If we discover that a child under 13 has created an account, we will delete it promptly. We comply with the Children’s Online Privacy Protection Act (COPPA) and require verifiable parental consent before knowingly collecting personal information from children.

10. Cookies and Tracking Technologies

We use cookies and similar technologies for essential functions only:

Authentication Cookies: To maintain your login session and provide secure access to your account.

We do not use cookies for advertising, tracking across websites, or other non-essential purposes. You can control cookies through your browser settings, but disabling essential cookies may affect the functionality of the Service.

11. Data Minimization

We collect only the personal information that is necessary to provide our Service. We regularly review our data collection practices to ensure we are not collecting excessive information and delete data that is no longer needed.

12. International Data Transfers

We do not transfer personal data outside the United States. All data processing and storage occurs within the United States using AWS infrastructure.

13. Automated Decision Making

We may use automated processing, including artificial intelligence, to extract information from uploaded documents such as prescription labels or insurance cards. This automated processing is used solely to provide the Service and improve your user experience.

You have the right to human review of any automated decisions that significantly affect you. If you believe an automated process has incorrectly interpreted your uploaded information, you can contact us for manual review and correction.

Our Service may contain links to third-party websites or services. We are not responsible for their privacy practices. Please review their privacy policies before providing any information.

15. Changes to This Privacy Policy

We may update this Privacy Policy periodically. If we make material changes (including changes to data sharing practices, retention periods, or your rights), we will provide notice (such as by email or in-app notification) before they take effect. The “Last Updated” date at the top will always reflect the most recent version.

16. Contact Information

For questions or to exercise your rights:

Blendly Technologies LLC
Email: privacy@blendly.life
Web: [Insert Online Privacy Request Form Link]
Phone: [Insert Toll-Free Number]

17. State-Specific Privacy Rights

California Residents (CCPA/CPRA)

You have the following rights under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA):

  • Right to Know: The categories of information we collect, use, and disclose.
  • Right to Access: A copy of the personal information we hold about you.
  • Right to Delete: Request deletion of your personal information.
  • Right to Correct: Correct inaccurate information.
  • Right to Opt-Out: Opt out of the sale or sharing of personal information.
  • Right to Limit Use of Sensitive Personal Information: You may request that we limit our use of your sensitive health information to what is necessary to provide the Service.
  • Right to Non-Discrimination: We will not discriminate against you for exercising your rights.

We also honor Global Privacy Control (GPC) signals as an opt-out mechanism.

Texas Residents (TDPSA)

Under the Texas Data Privacy and Security Act (TDPSA), Texas residents have rights similar to those listed above, including the right to access, correct, delete, and obtain a copy of their personal data.

Other States

Residents of Virginia, Colorado, Connecticut, Utah, and other states with comprehensive privacy laws may also have rights similar to those listed above. We extend these rights to all U.S. users where legally required.

Illinois Residents

If we process any biometric identifiers (such as facial recognition data from uploaded photos), we comply with the Illinois Biometric Information Privacy Act (BIPA), including obtaining consent before collection and providing specific retention and destruction schedules.

We process your personal information based on:

  • Consent: When you provide consent for specific processing.
  • Contract Performance: To provide the Service you requested.
  • Legitimate Interests: To improve the Service and ensure security.
  • Legal Obligations: To comply with applicable laws.

This Privacy Policy is effective as of [Insert Date] and applies to all users of the Blendly Health application operated by Blendly Technologies LLC.