RightPatient, Inc. Privacy Policy

1. Personal Information We Collect & Legal Basis for Processing

We collect and process the following types of information:

  • Contact Information: Name, company name, email address, and phone number (collected when you contact us or subscribe to emails).
  • Device Information: IP address, browser type, time zone, cookies, and site interactions.
  • Marketing & Analytics Data: Website activity and ad interactions via Google Analytics, Facebook, and similar platforms.

Legal Basis for Processing (GDPR & Other Laws)

We process your data based on:

  • Legitimate interest (e.g., fraud prevention, analytics, product improvement).
  • Contractual necessity (e.g., providing requested services).
  • Legal compliance (e.g., security measures, responding to legal requests).
  • Consent (e.g., marketing emails, optional cookies—users can withdraw consent anytime).

2. Your Privacy Rights by Region

European Economic Area (EEA), UK, & Canada (GDPR/PIPEDA)

You have the right to:

✔ Access, correct, delete, or restrict processing of your data.

✔ Object to processing or request data portability.

✔ Withdraw consent where processing is based on consent.

✔ Lodge a complaint with your local data protection authority.

California (CCPA/CPRA)

If you are a California resident, you have the right to:

✔ Know what personal data we collect and how we use/share it.

✔ Request deletion, correction, or restriction of your data.

✔ Opt-out of “selling” or “sharing” of your personal information for targeted advertising.

✔ Limit the use of sensitive personal data.

To exercise your rights, email privacy@rightpatient.com.

3. Data Sharing & “Do Not Sell or Share” Disclosure (CCPA Compliance)

We do not sell personal data, but we share certain data (e.g., ad tracking via Google & Facebook), which may be considered “sharing” under California law. You can opt out by emailing privacy@rightpatient.com. No mobile information will be shared with third parties/affiliates for marketing/promotional purposes.

We only share data with:

  • Service providers (e.g., analytics, hosting, customer support tools).
  • Legal authorities when required by law.

4. Data Retention

We retain personal data only as long as necessary to fulfill the purposes for which it was collected, including business, legal, and compliance obligations. The retention period varies depending on the type of data and applicable regulations. When data is no longer needed, we securely delete or anonymize it. You may also request deletion of your personal data, subject to any legal or contractual requirements.

5. Security Measures

We use industry-standard encryption, access controls, and security monitoring to protect personal data. However, no system is 100% secure, so we encourage strong passwords and vigilance.

6. Children’s Privacy (COPPA & Global Compliance)

Our services are not intended for children under 13 (or 16 where applicable), and we do not knowingly collect data from them. If you believe a child has provided data, contact privacy@rightpatient.com for deletion.

7. Changes & Contact Information

We may update this policy periodically. If you have questions, email privacy@rightpatient.com or write to:

RightPatient, Inc.

1 Concourse Parkway, Suite 800

Atlanta, GA 30326, USA