BetterRX Privacy Policy

Last Revised: November 9, 2021

BetterRX ("BetterRX," "we," or "us") respects your privacy. This Privacy Policy describes the types of information we may collect from you when you visit BetterRX-owned websites and domains, including BetterRX for Pharmacy (order & delivery web app and pharmacy system) and BetterRX for Hospice (e-prescribe, medication management)—as seen at the following URLs: Pharmacy.BetterRX.com, Status.BetterRX.com, erx.rxflo.com, and BetterRX.com, and our other products and services that include an authorized link to this Privacy Policy (collectively, the "Services"). Please note that the collection, processing, and storage of protected health information (PHI), as defined under the Health Insurance Portability and Accountability Act (HIPAA), is first governed by the business associate agreement (BAA) entered into between BetterRX and its customers. If there is any conflict between this Privacy Policy and the BAA regarding PHI, the BAA shall apply.

This Privacy Policy describes (i) how we use the information we collect, (ii) with whom we share it, (iii) how we protect it, and (iv) the choices we offer you regarding our collection and use of such information. We are constantly working to improve our administrative, technical, and physical safeguards to protect your personal information. If you do not agree with this Privacy Policy, do not access or use any part of the Services.

1. Information We Collect

Where We Collect It From. We may collect personal information about you, meaning information that can uniquely identify you, from various sources, such as:

• Directly from you when you use the Services, such as when you register for an account, access certain features or content, or contact us for support;
• Social networks through which you may interact with us; and
• Our parents, subsidiaries, affiliates, service providers, business partners, and other third parties.

•  From the users of the Services: contact information (such as first and last name, email address, phone number) and login information (such as username and password).
• From hospices: membership and affiliations, payment information (such as payment card number, expiration date, authentication code, billing address, and bank account number), and business addresses.
• From pharmacies: identification numbers (such as NCPDP membership number and NPI number), payment information, and business address.

Automatic Collection. When you use the Services, we may also collect certain information by automated means, such as cookies and web beacons (through HubSpot). A "cookie" is a text file that websites send to a visitor’s computer or other Internet-connected device to uniquely identify the visitor’s browser or to store information or settings in the browser. A "web beacon," also known as an Internet tag, pixel tag, or clear GIF, is used to transmit information about actions of the user opening the page or email containing the beacon back to a web server. We may also use third-party analytics tools (such as Google Analytics, Piwik (Matomo), Stonly, and HubSpot) that collect information about use of the Services and user traffic. The information we collect by automated means may include, without limitation:

• Information about the devices you use to access the Services (such as the IP address and the type of the device, operating system, and web browser);
• Dates, times, and duration of use of the Services (including whether you are a repeat or first time visitor); and
• Information on actions taken when using the Services (such as page views and website navigation patterns).

Statistical Information. The information we collect automatically is statistical data and does not include personal information. It helps us to improve and personalize our Services, including by enabling us to identify and authenticate users.

2. How We Respond to "Do Not Track" Signals.

Your web browser may let you choose your preference as to whether you want to allow the collection of information about your online activities over time and across different websites or online services. We honor the preferences you may have set in your web browser regarding such collection of your information.

3. How We Use the Information We Collect

We may use information we obtain about you to:

• Complete transactions you have requested using the Services, and provide you with products and services you request;
• Send you information or materials you request;
• Maintain a record of your purchases and other transactions using the Services;
• Respond to your questions and comments and provide customer support;
• Operate, evaluate, and improve our business and the products and services we offer;
• Analyze and enhance our marketing communications and strategies;
• Analyze trends and statistics regarding use of the Services and transactions conducted using the Services;
• Protect against and prevent fraud, unauthorized transactions, claims, and other liabilities, and manage risk exposure, including by identifying potential hackers and other unauthorized users;
• Enforce our Terms and other agreements; 
• BetterRX for Hospice
• BetterRX for Pharmacy
• And comply with applicable legal requirements and industry standards.

Combined Information. We may combine the information we collect information we receive from our parent, affiliate, or subsidiary companies, business partners, and other third parties. We may use that combined information to enhance and personalize your experience with us, to communicate with you about products, services, and events that may be of interest to you, for promotional purposes, and for other purposes described in this Privacy Policy.

Other Uses. We also may use the information we obtain about you in other ways for which we provide specific notice at the time of collection.

4. Disclosure of Information

Who We Disclose To. We may disclose aggregated information about our users without restriction. We may disclose personal information about you:

• To contractors, service providers, and other third parties we use to support our business and who are bound by contractual obligations to keep personal information confidential and use it only for the purposes for which we disclose it to them;
• To comply with any court order, law, or legal process, including to respond to any government or regulatory request;
• To enforce or apply our Terms and other agreements;
• BetterRX for Hospice
• BetterRX for Pharmacy
• If we believe disclosure is necessary or appropriate to protect the rights, property, or safety of BetterRX, users of the Services, or others; and
• With your consent.

We also reserve the right to transfer your personal information to a buyer or other transferee in the event of a merger, divestiture, restructuring, reorganization, dissolution, sale, or other transfer of some or all of our assets, equity or similar transaction. Should such a sale, merger, or transfer occur, we will use reasonable efforts to direct the transferee to use your personal information in a manner that is consistent with our Privacy Policy.

5. Data Security

We have implemented measures intended to protect your personal information from accidental loss and from unauthorized access, use, alteration and disclosure. The Services are secured with SSL certification and hosted in AWS. Any payment transactions will be encrypted using SSL technology. Please note that the electronic transmission of information is not completely secure. We cannot guarantee that the security measures we have in place to safeguard personal information will never be defeated or fail, or that such measures will always be sufficient or effective. Any transmission of personal information is at your own risk.

6. Your Choices

We offer you the following choices about the information we collect from you and how we communicate with you:

• Cookies Most browsers will tell you how to stop accepting new cookies, how to be notified when you receive a new cookie, and how to disable existing cookies. Please note, however, that without cookies you may not be able to take full advantage of all of the features of the Services.
• Promotional Communications If you have received a promotional email from us, you can also opt out of receiving future promotional emails from us by following the unsubscribe instructions contained in such email or by contacting us.
• Web Analytics You may opt out of the aggregation and analysis of data collected about you on our website by Google Analytics by visiting https://tools.google.com/dlpage/.
• Third-Party Tracking Although we do not control third parties’ collection or use of your information to serve interest-based advertising or other targeted content, a number of these third parties may provide you with ways to choose not to have your information collected or used in this way. You can opt out of receiving targeted advertisements from members of the Network Advertising Initiative by visiting http://www.networkadvertising.org/choices.

7. Accessing and Changing Your Information.

You can review and change the personal information associated with your account by logging into your account and visiting your account profile page. You may also send us an email to request access to, correct, or delete any personal information that you have provided to us. We may not accommodate a request to change information if we believe the change would violate any law or legal requirement or cause the information to be incorrect.

8. Your California Privacy Rights.

California Civil Code Section § 1798.83 permits users of our Services who are California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes. To make such a request, please contact us.

9. Children Under the Age of 13.

The Services are not directed to, and we do not knowingly collect or solicit personal information from, children under the age of 13. If we learn we have collected or received personal information from a child under the age of 13, we will delete that information. If you believe we might have any information from or about a child under the age of 13, please contact us.

10. Changes to Our Privacy Policy.

We reserve the right to update or change this Privacy Policy at any time. If we make a material change to our Privacy Policy, we will provide notice to you (by posting on our website) that our privacy practices have changed and will provide a link to the new policy. In the event we make a material change to how we use your personal information, we will provide you with an opportunity to opt out of such new or different use. The date this Privacy Policy was last revised is at the top of this page. We encourage you to review this Privacy Policy periodically to check for any updates or changes.

11. Data Transfers.

We are based in the United States. When we obtain information about you, we may transfer, process, and store such information outside of the country in which you reside, including in the United States. By using the Services, you consent to the transfer to and processing and storage of your information in countries outside of your country of residence, which may have different data protection laws than those in the country where you reside.

12. Notice to EEA and UK Residents.

Privacy and security are key to our approach to product development and business. We continuously evaluate all our practices in an effort to safeguard your information as effectively as possible. In that vein, we're glad to comply with the General Data Protection Regulation (GDPR) and to help our customers comply with GDPR.

12.1. Legal Basis. Our legal basis for processing and collecting personal information varies based on the context for which it is collected. However, we will normally collect personal information only as necessary to perform a contract with you (such as when we provide the Services you request), as noted in this Privacy Policy, and otherwise with your explicit consent.

12.2. Transfers of Data. We are based out of the United States and thus must transfer your personal information across borders. We have taken appropriate safeguards to ensure your personal information is protected in accordance with this Privacy Policy through implementing additional safeguards, such as the standard contractual clauses.

12.3. Retention of Data. We will only retain personal information for as long as it is required to provide you the Services you have requested, or as otherwise required by applicable law.

12.4. Your Rights. You may exercise the rights afforded to you under the GDPR, including the right to access, correct, update, and/or delete your personal information. You may also object to the further processing of your personal information and request portability of your personal information at any time by contacting us using the information provided below.

12.5. Consent. You may withdraw your consent that allows us to collect, store, and otherwise process your personal information, at any time. Please contact us using the information provided below to do so.

12.6. Data Protection Authority. You have the right to complain to an applicable data protection authority. For more information, please contact your local data protection authority, contact information may be found here

13. Contact Us.

If you have any questions about this Privacy Policy or our information practices, please call us at (855) 590-2100, email us at hello@BetterRX.com, or write to us at 299 S. Main Street, Suite 1300, PMB 91114, Salt Lake City, UT 84111.