A copy of the Terms of Service can be found here.
In connection with the Services, Curology will collect, use and disclose Personal Information as described below.
Personal Information also includes certain “Sensitive Personal Information” as may be defined under federal or state law, or as otherwise set forth in Curology policies. Sensitive Personal Information may be subject to stricter regulation and consent requirements than other information. Before providing Sensitive Personal Information to us in any manner, including through our Services, you should carefully consider whether to disclose such Sensitive Personal Information. Sensitive Personal Information that we may collect includes, but is not limited to, location data, health information (including medical records), health background, health status, prescribed and over-the-counter medications, medical ID numbers, driver’s license numbers, laboratory testing results, and full-face and similarly identifiable photos.
Any Personal Information you provide to us when you visit or use the Services is voluntary. However, in order to utilize certain Services, you may need to provide Personal Information and/or Sensitive Personal Information.
Subject to the restrictions on the use and disclosure of your Personal Information under applicable law, Curology and our service providers may use your Personal Information and your Sensitive Personal Information to:
Your Personal Information and Sensitive Personal Information may be disclosed:
The Services may contain links to third-party sites and services whose information, privacy and security practices may be different than ours. Before using these third-party sites or providing them with your Personal Information, you should carefully review and evaluate the privacy notices for such sites, as Curology has no control over information that is submitted to, or collected by, these third parties.
We may also use and disclose your Personal Information as we believe to be necessary or appropriate:
Curology may automatically collect information about your use of the Services through your browser or device, IP address or through data collection tools, such as web beacons and cookies (“Usage Data”). This may include information about the date and time of your website session, geographic location, and how you have navigated the website, browser and device information and other information collected through our weblogs, cookies, or in other ways. We use Usage Data to manage and secure our websites, network systems, and other assets and to help us understand and improve our Websites and Products design, functionality, and usability. We also use Usage Data to monitor usage patterns, store information about user preferences and to improve the Services.
In some instances, we may combine Usage Data with Personal Information. If we do, we will treat the combined information as Personal Information as long as it is combined.
Through your browser or device: Certain information is collected by most browsers or automatically through your device, such as your Media Access Control (MAC) address, computer type (Windows or Mac), screen resolution, operating system name and version, device manufacturer and model, language, and Internet browser type and version. We use this information to ensure that the Website functions properly.
IP Address: Your IP Address is a number that is automatically assigned to your computer by your Internet Service Provider. An IP Address may be identified and logged automatically in our server log files whenever a user accesses the Services, along with the time of the visit and the pages visited. We use IP Addresses for purposes such as calculating usage levels, diagnosing server problems, and administering the Services. We may also derive your approximate location from your IP Address.
Web Beacons: A “web beacon” is a piece of code that enables us to monitor user activity and website traffic and, consistent with common industry practice, we may use web beacons in commercial emails we send to help us understand if emails are opened.
Cookies: A “cookie” is a randomly-generated unique numeric code stored in the user’s web browser settings or computer’s hard drive. A cookie typically contains the name of the domain (internet location) from which the cookie originated, when it expires, as well as a randomly generated unique numeric code.
Curology seeks to employ reasonable physical, electronic, and administrative security measures, designed to safeguard your Personal Information within our organization.
However, please be aware that no method of data transmission over the Internet or method of electronic storage can be guaranteed to be perfectly secure. As a result, while Curology takes the measures stated above to protect your Personal Information, it cannot ensure or guarantee the security of any information you transmit to Curology or through the Website. ACCORDINGLY, CUROLOGY DOES NOT COVENANT, REPRESENT, OR WARRANT THAT THE TRANSMISSION OR STORAGE OF YOUR PERSONAL INFORMATION ONLINE WILL BE SECURE, AND YOU PROVIDE CUROLOGY WITH PERSONAL INFORMATION AND/OR SENSITIVE PERSONAL INFORMATION, AT YOUR OWN RISK.
Your cooperation is imperative in safeguarding your Personal Information. Choose your Account password carefully, as anyone with access to your Account password will be able to assume your online identity and view your medical information, change your Personal Information, and communicate with your Curology health care providers. It is your responsibility to prevent disclosure of your password to others, and to change your password if you feel that its security has been compromised. You may change your password from your Account profile page after logging into your Account.
Additionally, you will periodically receive correspondence from Curology at the email address you register with your Account. While these emails will never contain your photos or payment information, they will sometimes include information relating to the details of your treatment (as applicable). Accordingly, it is critical that you safeguard your designated email address and restrict access thereto. The registration of an email address with your Account indicates your consent for Curology to transmit your Personal Information, including your Sensitive Personal Information, to such address.
You can stop receiving marketing emails from Curology by clicking the unsubscribe link included at the bottom of a Curology marketing email. You cannot opt out of certain emails we need to send you relating to normal business operations (for example, notifying you of a message from your medical provider). To opt out of all emails from Curology, you may email email@example.com and cancel your Curology membership.
You may access and update certain information in your Account, or deactivate your Account from your Account profile page after logging into your Account.
You may also, inspect and copy your Personal Information that you have provided to us or amend your Personal Information if you believe your file is incomplete, incorrect or obsolete.
Curology will make reasonable efforts to respond promptly to all such requests. Curology may impose a fee for the costs associated with your request, including the costs of labor, materials and/or shipping. In certain circumstances, Curology may deny your request, for example if we have legal obligations to maintain original copies of certain data and you request it to be modified. If we do, we will inform you of why we have refused a request.
You may at any time make a request for Curology to delete your Personal Information. Curology will comply with all such requests as soon as reasonably practicable, but only to the extent such requests are not in conflict with any requirements to retain such information pursuant to applicable law, contract or otherwise. When we delete your Personal Information, it will be deleted from the active database, but may remain in our archives.
Persons under thirteen (13) years of age are not eligible to use the Services. Further, Curology does not knowingly collect Personal Information from anyone between the ages of thirteen (13) and eighteen (18) without authorization from the parent or legal guardian of such individual. A parent or guardian of a person under the age of eighteen (18) may review and request deletion of such individual’s Personal Information as well as prohibit our use thereof. If you are a parent or guardian of an individual under the age of eighteen (18) and believe your child has disclosed Personal Information to Curology without your consent or authorization, please contact us at firstname.lastname@example.org.
When you use our Websites, Products, or Accounts online, Social Media operators can place a cookie on your computer to recognize individuals who have previously visited the Websites. If you are logged into a Social Media account while using the Websites, Products, or Accounts online, the social plugins may allow that Social Media to receive information that you have accessed and used the Websites, Products or Accounts. The social plugins may also allow the Social Media operator to share information about your activities in or through the Websites with other Social Media users. For example, Facebook Social Plugins allows Facebook to show your Likes and comments on our pages to your Facebook friends. Facebook Social Plugins also allows you to see your friends’ Facebook activity through the Services. Curology does not control Social Media plugins or the content they create, collect, share, or process. For more information about Social Media plugins, please refer to the privacy statements and other legal notices of the Social Media platform.
If you are a California resident under age 18 and are a registered user of any of the Services, then you may request that we remove any information you publicly posted on or in the Services. To request removal, please send a request with a detailed description of the specific post to the support contact information below. (You also may be able to log in to your account and delete your own information as set forth above). Curology reserves the right to request that you provide information that will enable us to confirm that the post that you want removed was created and posted by you.
Curology will make a good faith effort to delete or remove your post from public view as soon as reasonably practicable. Please note, however, that your request that we delete your post does not ensure complete or comprehensive removal of your post. Your post may remain on backup media, cached or otherwise retained by Curology for administrative or legal purposes or your post may remain publicly available if you or someone else has forwarded or re-posted your post on another website or service prior to its deletion. Curology may also be required by law to not remove (or allow removal) of your post.
California Civil Code Section 1798.83 permits individual California residents to request certain information regarding Curology’s disclosure of personal information to third parties for their direct marketing purposes. To make such a request, please write or send an email to:
369 Hayes Street
San Francisco, CA 94102
Be sure to include your name, address, and email address if you want to receive a response by email. Otherwise, we will respond by postal mail within the time required by applicable law.
The Services are controlled and operated by us from the United States and are not intended to subject us to the laws or jurisdiction of any state, country or territory other than that of the United States.
Pursuant to the California Consumer Privacy Act of 2018 (“CCPA”), Curology, Inc. (“Curology,” “we” or “our”) is providing the following details regarding the categories of Personal Information that we collect, use, and disclose about California residents. This CCPA Addendum does not apply to our job applicants, employees, contractors, owners, medical staff members, directors, or officers where the Personal Information we collect about those individuals relates to their current, former, or potential role at Curology.
Under the CCPA, “Personal Information” is information that identifies, relates to, or could reasonably be linked with a particular California resident or household. The CCPA, however, does not apply to certain information, such as information subject to certain other privacy laws, such as the California Confidentiality of Medical Information Act ( “CMIA”). As a result, this Addendum does not apply with respect to medical information that we collect about California residents that is subject to CMIA, which may include information provided when they request or obtain medical products or services via Curology.
We collect Personal Information from:
We collect, and have collected within the preceding 12 months, the following categories of Personal Information as listed in the CCPA:
We use these categories of Personal Information for the purposes of operating, managing, and maintaining our business, providing our products and services, including the services we deliver to the medical practices and other healthcare entities who provide you with medical care, and accomplishing our business purposes and objectives, including using Personal Information to:
We have disclosed the following categories of Personal Information as listed in the CCPA to third parties for our operational business purposes within the preceding 12 months:
We have disclosed these categories of Personal Information to: our affiliated entities; trusted third-party service providers; licensed medical providers, so that they may provide you with the teledermatology and related products and services you request.
We have not sold Personal Information, as “sale” is defined in the CCPA.
If you are a California resident, you may request that we:
To make a request for the disclosures or deletion described above, please contact us via our interactive webform or at email@example.com. We will respond to your request consistent with applicable law.
You have the right to be free from unlawful discrimination for exercising your rights under the CCPA.
We may change or update this CCPA Addendum from time to time. When we do, we will post the revised CCPA Addendum on this page with a new “Last Updated” date.
If you have any questions regarding this CCPA Addendum, please contact us at firstname.lastname@example.org.
Last Updated: January 1, 2020.