Healiam Healiam

Privacy Policy

Effective date: March 27, 2026

This Privacy Policy explains how Healiam collects, uses, discloses, stores, and deletes information when you use our mobile app, website, and related services.

Data We Collect

Depending on your use of the service, we may collect:

  • Account and contact data (name, email, phone number, date of birth, login credentials).
  • Order and appointment data (selected tests, scheduling details, location for at-home collections).
  • Payment-related data (payment status and transaction identifiers, but not full card numbers).
  • Device and diagnostic data (IP address, device type, operating system, app logs, crash data).
  • Customer support communications and account preferences.

Health Data We Access and Use

We collect health data to provide testing and result-delivery services. Health data can include:

  • Lab test orders and biomarker results (for example CBC, thyroid, kidney, vitamin, iron, and HbA1c data).
  • Related specimen and collection details required to process your order.
  • Health-related information you provide in connection with testing services.

We use this health data to schedule and perform testing, generate and deliver results, provide customer support, meet legal and regulatory obligations, and improve service reliability. We do not sell your health data.

How We Share Data

We share data only when needed to operate our services, including with:

  • Laboratories, phlebotomy partners, and service providers involved in your testing workflow.
  • Infrastructure and analytics providers that help us run and secure the app.
  • Authorities or regulators when required by law.

How Long We Retain Data

We retain personal and health data for as long as needed to provide our services and satisfy legal, accounting, and regulatory requirements.

  • Account and profile data: retained while your account is active and up to 24 months after account closure.
  • Health and test-result records: retained for at least 7 years, or longer when required by applicable law.
  • Billing and transaction records: retained for at least 7 years for tax and audit requirements.
  • Technical logs: generally retained up to 12 months unless needed for security investigations.

How to Request Data Deletion

You can request deletion of your account and personal data by emailing [email protected] from your registered email address, with the subject line "Data Deletion Request."

After verification, we will process deletion or de-identification of data that is not required to be retained by law. We typically complete deletion requests within 30 days.

Security

We use administrative, technical, and physical safeguards designed to protect personal and health data.

Changes to This Policy

We may update this Privacy Policy from time to time. Material updates will be posted on this page with an updated effective date.

Contact Us

If you have questions about this Privacy Policy, contact us at:

Email: [email protected]

Phone: 720-761-7869