Norbert Health Privacy Policy

How Norbert Health, Inc. handles personal information for our SMS messaging programs.

1. Introduction

This Privacy Policy describes how Norbert Health, Inc. ("Norbert Health", "we", "us") collects, uses, and shares personal information when you use our products, services, and websites, including our clinical monitoring platform and related messaging programs.

For Norbert Health's general corporate privacy practices, see our company privacy policy. The notice below focuses on data handling specific to our messaging programs.

2. Information we collect

We collect information in the following categories:

Information you provide directly — including name, email address, mobile phone number, role, organization, and any information you submit through forms, support channels, or program enrollments.
Information collected automatically — including log data, device information, and usage data generated when you interact with our services.
Clinical and operational data — vital signs, alerts, and care-team metadata processed on behalf of healthcare provider customers under separate Business Associate Agreements.

3. How we use information

We use the information we collect to operate, maintain, and improve our services; to deliver communications you have requested or consented to; to provide customer support; and to comply with legal obligations.

4. Mobile information and SMS opt-in data

Mobile information, including phone numbers and SMS opt-in data, is used solely to deliver the messaging program(s) the user has consented to. Norbert Health does not share mobile opt-in data or consent with any third parties or affiliates for marketing or promotional purposes. SMS message content and delivery metadata may be processed by our SMS provider (Twilio) for the sole purpose of message delivery.

Norbert Health operates the Norbert Health Monitoring Notifications SMS program for transactional clinical notifications to authorized physicians enrolled by Norbert Health. Mobile numbers in this program are collected from physicians at enrollment, not from the general public. Notifications may contain protected health information (PHI); recipients have agreed in writing to safeguard PHI consistent with applicable laws. Details of the program — including message frequency, opt-out instructions, security expectations, and support contact — are described in the SMS Program Terms.

You may opt out of SMS messages at any time by replying STOP to any message. Replying HELP will return support contact information.

5. How we share information

We share personal information only in the following circumstances:

Service providers — vendors who process information on our behalf to deliver our services (for example, cloud hosting, SMS delivery via Twilio, and email delivery). These providers are bound by contract to use the information only as instructed.
Healthcare provider customers — clinical and operational data is shared with the healthcare organizations that have engaged Norbert Health to provide monitoring services for their patients, under the terms of the applicable services agreement and Business Associate Agreement.
Legal and safety — when required by law, legal process, or to protect the rights, property, or safety of Norbert Health, our customers, or others.

We do not sell personal information, and we do not share mobile opt-in data with third parties or affiliates for their own marketing or promotional purposes under any circumstance.

6. Data retention

We retain personal information for as long as necessary to provide the services you have requested, comply with our legal obligations, resolve disputes, and enforce our agreements. Retention periods for clinical data are governed by the applicable services agreement with the healthcare provider customer.

7. Security

We use administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, disclosure, alteration, and destruction. No system can be guaranteed to be completely secure; if you believe your interaction with us is no longer secure, please contact us using the information below.

8. Your choices

Depending on your jurisdiction, you may have rights to access, correct, delete, or restrict processing of personal information we hold about you. To exercise these rights, contact us at the address below. We will respond consistent with applicable law.

9. Children

Our services are not directed to individuals under the age of 13, and we do not knowingly collect personal information from children under 13. If we learn we have collected such information, we will delete it.

10. Changes to this policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Last updated" date below. Material changes will be communicated through the services or by other reasonable means.

11. Contact us

Questions about this Privacy Policy or our privacy practices can be directed to:

Email: support@norberthealth.com (subject line: "Privacy Policy")