PRIVACY STATEMENT

Nutritional Biochemistry, Inc. (NBI) Internet Privacy Policy / Terms of Use Effective

Date: August 24, 2022

—-

SECTION 1 – WHAT DO WE DO WITH YOUR INFORMATION?

When you purchase something from our store, as part of the buying and selling process, we collect the personal information you give us such as your name, address and email address.

When you browse our store, we also automatically receive your computer’s internet protocol (IP) address in order to provide us with information that helps us learn about your browser and operating system.

Email marketing (if applicable): With your permission, we may send you emails about our store, new products and other updates.

SECTION 2 – CONSENT

How do you get my consent?

When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery or return a purchase, we imply that you consent to our collecting it and using it for that specific reason only.

If we ask for your personal information for a secondary reason, like marketing, we will either ask you directly for your expressed consent, or provide you with an opportunity to say no.

How do I withdraw my consent?

If after you opt-in, you change your mind, you may withdraw your consent for us to contact you, for the continued collection, use or disclosure of your information, at anytime, by contacting us at info@nbihealth.com or mailing us at: NBI, 3525 Del Mar Heights Rd #350, San Diego, CA 92130, United States

IF YOU DO NOT AGREE WITH THESE TERMS, DO NOT USE THIS WEBSITE.

SECTION 3 – DISCLOSURE

We do not sell, trade, or otherwise transfer to outside parties your personally identifiable information. This does not include trusted third parties who assist us in operating our website, conducting our business, or providing customer services, so long as those parties agree to keep this information confidential. We may also release your information when we believe release is appropriate to comply with the law, enforce our site policies, or protect ours or others’ rights, property, or safety. However, non-personally identifiable visitor information may be provided to other parties for marketing, advertising, or other uses.

SECTION 4 – SHOPIFY

Our store is hosted on Shopify Inc. They provide us with the online e-commerce platform that allows us to sell our products and services to you. Your data is stored through Shopify’s data storage, databases and the general Shopify application. They store your data on a secure server behind a firewall.

Payment:

If you choose a direct payment gateway to complete your purchase, then Shopify stores your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted.

All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover.

PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.

For more insight, you may also want to read Shopify’s Terms of Service here or Privacy Statement here.

SECTION 5 – THIRD-PARTY SERVICES

In general, the third-party providers used by us will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us.

However, certain third-party service providers, such as payment gateways, our Affiliate Program service provider and other payment transaction processors, have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions. 

For these providers, we recommend that you read their privacy policies so you can understand the manner in which your personal information will be handled by these providers. 

In particular, remember that certain providers may be located in or have facilities that are located in a different jurisdiction than either you or us. So if you elect to proceed with a transaction that involves the services of a third-party service provider, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located.

As an example, if you are located in Canada and your transaction is processed by a payment gateway located in the United States, then your personal information used in completing that transaction may be subject to disclosure under United States legislation, including the Patriot Act.

Once you leave our store’s website or are redirected to a third-party website or application, you are no longer governed by this Privacy Policy or our website’s Terms of Service.

Links

When you click on links on our store, they may direct you away from our site. We are not responsible for the privacy practices of other sites and encourage you to read their privacy statements.

SECTION 6 – INTEREST-BASED ONLINE ADVERTISING AND GOOGLE ANALYTICS

This website uses Google Analytics 3rd-party audience data such as age, gender and interests and AdWords remarketing service to better understand the behavior of our customers and advertise on third party websites (including Google). For example, we may advertise to previous visitors who haven’t completed a task on our site, such as using the contact form or adding to the Shopping Cart. This could be in the form of an advertisement on the Google search results page, or on a site in the Google Display Network. Third-party vendors, including Google, use cookies and other automated means to serve ads based on someone’s past visits to the Seeking Health website and other demographic information. These companies also use automated technologies to collect information when you click on our ads, which helps track and manage the effectiveness of our marketing campaigns. Of course, any data collected will be used in accordance with our own privacy policy and Google’s privacy policy.

You may set preferences for how Google advertises to you using the Google Ad Preferences page, or you may opt out of interest-based advertising entirely using cookie settings or by visiting the opt-out page for the Self-Regulatory Principles for Online Behavioral Advertising. Because these opt-out and preference forms are specific to your individual browser and are not owned/operated by Seeking Health, we are not able to change your settings or perform the opt-outs for you.

SECTION 7 – SECURITY

To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.

If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.

SECTION 8 – AGE OF CONSENT

By using this site, you represent that you are at least the age of majority in your state or province of residence, or that you are the age of majority in your state or province of residence and you have given us your consent to allow any of your minor dependents to use this site.

SECTION 9 – CALIFORNIA ONLINE PRIVACY PROTECTION ACT

CalOPPA is the first state law in the nation to require commercial websites and online services to post a privacy policy. The law’s reach stretches well beyond California to require a person or company in the United States (and conceivably the world) that operates websites collecting personally identifiable information from California consumers to post a conspicuous privacy policy on its website stating exactly the information being collected and those individuals with whom it is being shared, and to comply with this policy. See more here.

According to CALOPPA we agree to the following:

Users can visit our site anonymously.

A link to this Privacy Policy will be available on our home page.

Our Privacy Policy link includes the word ‘Privacy’, and can be easily be found on the page specified above.

Users are able to change their personal information by:

• Emailing us
• Calling us
• Logging into their account
• Submitting an online Contact Form.

SECTION 10 – DO NOT TRACK SIGNALS

We honor do not track signals and do not track, plant cookies, or use advertising when a Do Not Track (DNT) browser mechanism is in place.

SECTION 11 – THIRD PARTY BEHAVIORAL TRACKING

It’s also important to note that we allow third-party behavioral tracking.

SECTION 12 – CAN-SPAM ACT

The CAN-SPAM Act sets the rules for commercial email, establishes requirements for commercial messages, and gives recipients the right to have emails stopped from being sent to them.

We collect your email address in order to:

• Send information, respond to inquiries, and/or other requests or questions
• Process orders and to send information and updates pertaining to orders
• Market to our mailing list or continue to send emails to our clients after the original transaction has occurred

To be in accordance with CAN-SPAM we agree to the following:

• We do not use false, or misleading subjects or email addresses.
• Messages are identified as advertisements in some reasonable way.
• Messages include the physical address of our business headquarters.
• We will honor opt-out/unsubscribe requests quickly.
• We allow users to unsubscribe by using the link at the bottom of each email.

SECTION 13 – ONLINE PRIVACY POLICY ONLY

This online privacy policy applies only to information collected through our website and not to information collected offline.

SECTION 14 – VISITORS’ GDPR RIGHTS 

If you are within the European Union, you are entitled to certain information and have certain rights under the General Data Protection Regulation. Those rights include:

We will retain any information you choose to provide to us until the earlier of: (a) you asking us to delete the information, (b) our decision to cease using our existing data providers, or (c) the Company decides that the value in retaining the data is outweighed by the costs of retaining it.

You have the right to request access to your data that the Company stores and the rights to either rectify or erase your personal data.

You have the right to seek restrictions on the processing of your data.

You have the right to object to the processing of your data and the right to the portability of your data.To the extent that you provided consent to the Company’s processing of your personal data, you have the right to withdraw that consent at any time, without affecting the lawfulness of processing based upon consent that occurred prior to your withdrawal of consent.

You have the right to lodge a complaint with a supervisory authority that has jurisdiction over issues related to the General Data Protection Regulation. We require only the information that is reasonably required to enter into a contract with you. 

We will not require you to provide consent for any unnecessary processing as a condition of entering into a contract with us.

SECTION 15 – CHANGES TO THIS PRIVACY POLICY

We reserve the right to modify this privacy policy at any time, so please review it frequently. Changes and clarifications will take effect immediately upon their posting on the website. If we make material changes to this policy, we will notify you here that it has been updated, so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we use and/or disclose it.

If our store is acquired or merged with another company, your information may be transferred to the new owners so that we may continue to sell products and services to you.

SECTION 16 – HIPAA

NBI’s use and disclosure of certain aspects of your information may be subject to the requirements of the Health Insurance Portability and Accountability Act of 1996 and its implementing regulations (“HIPAA”) and applicable state law. Any information that you submit to us that constitutes “Protected Health Information,” as defined by HIPAA, is subject to HIPAA and applicable state law. The term “Protected Health Information” or “PHI” refers to individually identifiable health information about your past, present or future physical or mental health or condition, the provision of health care to you or the past, present or future payment for such care. If any information collected on this Website constitutes PHI, then our Notice of Privacy Practices included in this Policy will apply. 

SECTION 17 – PERSONALLY IDENTIFIABLE INFORMATION 

Personally Identifiable Information we Collect. You may generally use this Website without disclosing personally identifiable information. However, the use of certain features and functions of the Website may require you to submit personally identifiable information to us.

In your use of the Website, we may collect any information that you voluntarily share with us. This information may also be collected by a third party vendor, supplier or contractor on our behalf.

This information may be collected when you send us emails or voluntarily submit information to us via the Website. This information may include your (1) contact information (such as name, address, email address and phone number), (2) age, (3) gender, (4) date of birth, (5) health and medical information or other PHI, (6) account numbers, (7) financial and payment information, including credit card and payment card information, and (8) any other information you choose to provide us, subject to applicable laws and the terms of this Privacy Policy.

We may use third party service providers to assist us in collecting and maintaining this personally identifiable information. However, we require such service providers to maintain the confidentiality of such information.

How we use Personally Identifiable Information we Collect. We will use personally identifiable information for: (1) the purpose for which you provide it; (2) as otherwise may be disclosed at the point of collection; and/or (3) for the purposes described below. In addition, we may use your personal information in the aggregate in a non-identifiable way in order to better understand the services being provided, how to improve these services and how to improve the Website. We may provide this aggregated information to third parties, but when we do so we do not provide any of your information without your express permission.

SECTION 18 – NON-PERSONALLY IDENTIFIABLE INFORMATION

When you visit our Website, we (or a third party vendor or contractor on our behalf) may passively collect non-personally identifiable information about you. This may include (a) IP Address. Your IP address may be collected. Your “IP address” is usually associated with the network location and physical location from which you enter the Internet. We log IP addresses for systems administration purposes. This information helps us determine how often different areas of our site are visited and we also use this information to personalize the content that is displayed to you on the Website based on your previous visits and the ads that you access. We do not link IP address to any information that is personally identifiable.

(b) Cookies. We use cookies to track the use of our Website and to facilitate and enhance your experience on our Website by, among other things, displaying content that is personalized based on your previous visits and the ads that you access. The term “cookies” refers to electronic data stored by your computer browser. The cookies enable us to facilitate your access to different aspects of the Website. For example, by showing when and how you visit our Website, cookies help us to see which pages of the Website are popular and which are not. Cookies can also help us to improve your enjoyment of this Website, for example, by remembering your address or other information when you request information or services on the Website. We  use cookies to help keep track of items you put into your shopping cart including when you have abandoned your cart and this information is used to determine when to send cart reminder messages via email or SMS. We also use cookies for analytics, retargeting, and online behavioral advertising as set forth below.

Most web browsers automatically accept cookies, but you can disable this function so that your browser will not accept cookies. Please be aware that if you disable this function, it may impact your use and enjoyment of the Website.

(c) Statistical Identifiers and Device Recognition. We (or our vendors on our behalf) may employ statistical identifiers, also known as device recognition tools. These tools may be used to assist in managing the content and advertising on our Website by informing us (without using cookies) of the content that you use and view on the Website. These tools collect various information about your device, such as your screen resolution, browser type, and operating system. Many devices have unique, or near unique, device profiles such that collecting this information allows us and our vendors to determine with a reasonable level of statistical accuracy information on your engagement with our Website and advertisements on our Website, as well as your device when you interact with our Website. We do not tie this statistical information to your personal information.

(d) Analytics. We use non-personally identifiable information in the aggregate to determine how much traffic the Website receives, to statistically analyze Website usage, to improve our content, and to customize the Website’s content, layout and services. In addition, we may use your IP address to help diagnose problems with our server, to manage the Website and to enhance the Website based on the usage pattern data we receive.

SECTION 19 – HOW WE DISCLOSE THE INFORMATION WE COLLECT

Your information may be disclosed to or collected by third-party suppliers and service providers specifically involved in the processing of your information received via the Website and as otherwise necessary to manage our Website and provide the services you request. We may also use third party service providers to host the Website and gather and use on our behalf your personal information as contemplated by this Policy and applicable law. All such third parties are subject to confidentiality obligations in an attempt to protect your information as much as is commercially reasonable. We may also use or disclose your personal information to resolve disputes, investigate problems, and enforce our Website Terms of Use or any other agreement with NBI.

We may investigate and disclose information from or about you if we have a good faith belief that such investigation or disclosure is (a) reasonably necessary to comply with legal process and law enforcement instructions and orders, such as a search warrant, subpoena, statute, judicial proceeding, or other legal process served on us; (b) helpful to prevent, investigate, or identify possible wrongdoing in connection with the Website; or (c) protect our rights, reputation, property, or that of our users, affiliates, or the public.

If we, or any of our businesses, are sold or disposed of as a going concern, whether by merger, reorganization, sale of assets or otherwise, or in the event of an insolvency, bankruptcy or receivership, any and all personally identifiable information, including your Account information may be one of the assets sold or merged in connection with that transaction. Information about you may also need to be disclosed in connection with a commercial transaction where we are seeking financing, investment, support or funding. In such transactions, personal information will be subject to the promises made in any pre-existing Privacy Policy in effect when the information was obtained.

Except as stated in this Policy, we do not sell, distribute, or release to a third party your personal information without notice to you.

SECTION 20 – ACCESS TO YOUR PERSONALLY IDENTIFIABLE INFORMATION

Upon written request and verification of your identity, we will provide you with your personal information in our possession as well as the personal information, if any, that we have disclosed to third parties. Requests for such information should be sent to the contact information below. You may also update, correct, or delete your personal information in our possession by contacting us.

SECTION 21 – HANDLING OF ELECTRONIC RECORDS AND BACKUP

In general, we will retain all information collected through the Website for, at a minimum, the length of time permitted by law. However, we will delete any personally identifiable information in our database upon your request or as otherwise required by law. We may retain non-personally identifiable information indefinitely. We maintain backup files as a protection against natural disasters, equipment failures, or other disruptions. Backup files protect you and us because they lower the risk of losing valuable data. Backup files may contain records with your personal information. Removing a record from our active files and databases does not remove that record from any backup systems. Such backup data will eventually be passively deleted as backup records are erased through the normal recycling of backup files. In the meantime, as long as backup records exist, they receive the same security protections as our other records.

SECTION 22 – SECURITY

Communications between your browser and portions of the Website containing personally identifiable information may be protected with various forms of encryption. This encryption is to help protect your information while it is being transmitted. Once we receive your information we strive to maintain the physical and electronic security of your personal information using commercially reasonable efforts.

HOWEVER, NO DATA TRANSMISSION OVER THE INTERNET OR ANY WIRELESS NETWORK CAN BE GUARANTEED TO BE PERFECTLY SECURED. AS A RESULT, WHILE WE STRIVE TO PROTECT YOUR PERSONAL INFORMATION USING COMMERCIALLY AVAILABLE AND INDUSTRY STANDARD TECHNOLOGY, WE CANNOT ENSURE OR GUARANTEE THE SECURITY OF ANY INFORMATION YOU TRANSMIT TO US, AND YOU DO SO AT YOUR OWN RISK.

SECTION 23 – SECURITY BREACH 

If we determine that your personal information has or may reasonably have been disclosed due to a security breach of our systems, we will notify you to the extent required by applicable state and federal law, using your information that we have on file.

SECTION 24 – THIRD PARTY PRIVACY 

This Privacy Policy applies only to the Website as provided by NBI. This Website may contain links to other websites, which may be subject to a different privacy policy or are otherwise maintained or provided by a third party. We are not responsible for the privacy practices of any third party website you access from this Website. You should review the privacy policy of every website before using the website or submitting any information to the website.

COPYING OR REPRODUCTION OF ANY PORTION OF THIS WEBSITE TO ANY OTHER SERVER, LOCATION, WEBSITE OR ANY THIRD PARTY FOR FURTHER REPRODUCTION OR REDISTRIBUTION IS EXPRESSLY PROHIBITED.

FOR MORE INFORMATION OR TO REPORT A PROBLEM

If you have questions about this notice or would like additional information, you may contact our Privacy Officer at the telephone or address below. If you believe that your privacy rights have been violated, you have the right to file a complaint with the Privacy Officer at NBI or with the Secretary of the Department of Health and Human Services. The complaint must be in writing, describe the acts or omissions that you believe violate your privacy rights, and be filed within 180 days of when you knew or should have known that the act or omission occurred. We will take no retaliatory action against you if you make such complaints.

The contact information for both is included below.
U.S. Department of Health and Human Services 
Office of the Secretary 
200 Independence Avenue, S.W. 
Washington, D.C. 20201 
Tel: (202) 619-0257 
Toll Free: 1-877-696-6775 
https://www.hhs.gov/about/contact-us/index.html

 

NBI 
John Neustadt
Privacy Officer 
3525 Del Mar Heights Rd #350
San Diego, CA 921340, USA 
1-800-624-1415

NOTICE OF PRIVACY PRACTICES AVAILABILITY

This notice will be prominently posted on the website where registration occurs.
Contact us at info@nbihealth.com with any questions or concerns regarding the above.

QUESTIONS AND CONTACT INFORMATION

If you would like to: access, correct, amend or delete any personal information we have about you, register a complaint, or simply want more information contact our Privacy Compliance Officer at info@nbihealth.com or by mail at NBI.

[Re: Privacy Compliance Officer]
[3525 Del Mar Heights Rd #350, San Diego, CA 92130, United States]

—-