Privacy Policy

Our Privacy Commitments

• No Selling of Personal Data: We do not sell your personal information to third parties. Your data is used only to provide and improve SlothMD’s services, or as otherwise disclosed in this policy.
  
  

• Limited Sharing with Trusted Providers: We only share your data with trusted third-party service providers necessary to operate SlothMD (e.g. for analytics, communication, database hosting, etc.), and never for advertising or unrelated purposes.
  
  

• Anonymized Data for Research & Improvement: Any use of your information for research, product development, or analytics is done only on anonymized or aggregated data. We remove or de-identify personal details before using data to improve our features or derive insights.
  
  

• Strong Security Measures: We employ industry-standard security practices (such as encryption in transit and at rest, access controls, and regular security audits) to protect your data. Our databases and systems follow standard security protocols to safeguard personal information.
  
  

• User Control and Transparency: You have control over your data. You can access, correct, or request deletion of your personal information, and opt out of marketing communications at any time. We will always be transparent about how we use your data and will notify you of significant changes to our privacy practices.
  
  

• Not HIPAA-Covered, But Privacy-Focused: SlothMD is a digital health service not subject to HIPAA (Health Insurance Portability and Accountability Act) regulations, as we are not a covered healthcare entity. However, we treat all health-related data with strict confidentiality and the same degree of care and security as if it were protected by HIPAA or other privacy laws.
  
  

(Effective as of July 1, 2024. Last updated: June 17, 2025.)

Introduction

Your privacy is important to us. It is 360H, Inc.’s policy to respect your privacy and comply with any applicable law and regulation regarding any personal information we may collect about you, including across our website (slothmd.io) and other sites or applications we own and operate. This Privacy Policy applies to all users of SlothMD’s website and services within the United States.

“Personal information” means any information about you which can be used to identify you. This includes information about you as a person (such as name, address, date of birth), your devices, your payment details, health or wellness information you choose to provide, and information about how you use a website or online service.

In the event our site contains links to third-party sites and services, please be aware that those third parties have their own privacy policies. Once you leave our site or are redirected to a third-party service, you are no longer governed by this Privacy Policy. We have no control over, and are not responsible for, the content or policies of external sites. This Privacy Policy does not apply to any of your activities after you leave our site.

By accessing slothmd.io or using SlothMD’s services, you agree to abide by our Terms of Service and this Privacy Policy, and to comply with all applicable laws and regulations. If you do not agree with these terms, you are prohibited from using or accessing SlothMD.

Information We Collect

Information we collect falls into one of two categories: “voluntarily provided” information and “automatically collected” information.

• Voluntarily provided information is any information you knowingly and actively provide to us when using our services, such as when you create an account, fill out forms, or communicate with us.
  
  

• Automatically collected information is any information automatically sent by your devices in the course of accessing our products and services. This can include technical information sent by your browser or device for operational and analytics purposes.
  

Log Data

When you visit our website, our servers may automatically log certain standard data provided by your web browser. This log data may include details such as your device’s Internet Protocol (IP) address, your browser type and version, the pages you visit on our site, the time and date of your visit, and the time spent on each page. We may also log information about errors you encounter while using the site, including technical details about your device and what you were doing when the error occurred.

Please note that while this information does not identify you by itself, it may be possible to combine it with other data to personally identify individual users. We treat log data as confidential and use it primarily for troubleshooting and improving our service.

Device Data

We may collect data about the device you use to access SlothMD, such as your device’s model, operating system, unique device identifiers, and geolocation data (if you have enabled location services for our app or website). The information we gather can depend on your device’s settings and software. We recommend checking your device and software privacy settings to control what information is shared. Geo-location data, if collected, is used to personalize your experience (for example, to find nearby healthcare providers) and will only be collected in accordance with applicable permissions and law.

Personal Information

We may ask you to provide certain personal information in order to register for or use SlothMD’s features. For example, when you join our waitlist, create an account, subscribe to a newsletter, or contact us, you may be asked to provide details such as:

1. Name
   
   

2. Email address
   
   

3. Phone number
   
   

4. Organization (e.g., your employer or affiliated institution, if you choose to share)
   
   

5. Job title or role within that organization (if applicable)
   
   

You may choose not to provide some of this personal information, but doing so might affect your ability to use certain features of SlothMD. We will only ask for information that is relevant to your interaction with SlothMD (for instance, we won’t ask for personal data that isn’t needed for the particular service or feature).

Messaging Communications (SMS & RCS)

If you choose to communicate with us via text messaging, including SMS or Rich Communication Services (RCS), we will collect and store certain information about these communications. This Messaging Data includes the phone number you use to contact us, the content of the messages you send or receive, the dates and times of the messages, and metadata such as delivery status or read receipts (when available). We use this messaging data only for legitimate purposes such as responding to your inquiries, providing customer support, and improving our service quality.

Important Notice on SMS/RCS

Please be aware that standard SMS and RCS messages are not encrypted. These channels are not secure for transmitting sensitive personal health information. We strongly advise you not to send any sensitive medical or health information via SMS or standard text messaging. If you need to share personal health details with SlothMD, please use the secure messaging features within our app or website, which are designed to protect your privacy. By using SMS/RCS to communicate with us, you acknowledge that these channels have inherent security limitations.

Sensitive Health Information

You agree not to use SMS, text messaging, or RCS to communicate sensitive health or medical information to SlothMD. 360H, Inc. explicitly disclaims any liability for unauthorized access to or disclosure of Protected Health Information (PHI) or other sensitive data that occurs as a result of you sending such information through insecure channels like SMS or standard texting. In other words, if you choose to ignore our recommendation and send health information via SMS/RCS, you do so at your own risk. We encourage all users to utilize our secure in-app communication methods for any medical or sensitive matters.

Consent and Opt-Out

By initiating communication with us via SMS or RCS (for example, by texting our number or signing up for text updates), you are providing consent to receive communications from us through those channels. This might include responses to your inquiries, important service announcements, or support messages. You can opt out of receiving SMS/RCS messages from us at any time. To opt out, you may reply with the word “STOP” to any message we send, or contact us at our email address provided below requesting to opt out. Upon receiving an opt-out request, we will cease SMS/RCS communications to your number (except for messages confirming your opt-out). Please note that standard messaging and data rates charged by your mobile carrier will apply to any SMS/RCS messages exchanged.

Third-Party Messaging Providers

We use third-party service providers to facilitate our SMS and RCS messaging functionality. For example, we use Twilio to send and receive text messages on our behalf. These providers may process and store your phone number, message content, and related metadata as necessary to deliver your messages. We select reputable providers that employ strong privacy and security practices, and any use of your data by these providers is solely to enable the messaging service. Nonetheless, these providers have their own privacy policies, and we encourage you to review Twilio’s or any relevant provider’s privacy policy if you have concerns. By using SlothMD’s SMS/RCS features, you acknowledge that third-party providers like Twilio will handle your messaging data for delivery and operational purposes.

Legitimate Reasons for Processing Your Personal Information

We will only collect and use your personal information when we have a legitimate reason to do so. In practice, this means we collect personal data only as needed to provide you with our services, to meet our contractual and legal obligations, or to pursue our legitimate interests in operating and improving SlothMD. We will not collect an excessive amount of information, and we avoid collecting data that is not relevant to the purposes of our interaction with you. Whenever we process your personal information, we ensure that we have a lawful basis to do so (for example, your consent, compliance with a legal obligation, or our legitimate interest in running our business) and that we respect your privacy rights.

Collection and Use of Information

We may collect personal information from you when you engage in any of the following activities on our website or app:

1. Registering or Signing Up: When you create an account, join our waitlist, or sign up to receive updates (e.g., providing your email to get our newsletter or product announcements).
   
   

2. Using Our Services: When you use SlothMD via a mobile device or web browser to access content or features (for example, syncing your health records, asking questions, or tracking your health data).
   
   

3. Contacting Us: When you contact us through any channel – such as email, in-app chat, customer support, or social media – with questions, feedback, or support requests.
   
   

4. Interacting on Social Media: When you mention, tag, or communicate with us on third-party social media platforms. (Please note that your interactions with us on external platforms are also subject to those platforms’ privacy policies.)
   
   

We may collect, hold, and use the information we gather for the following purposes, and we will not process your personal information in ways that are unrelated to these purposes:

1. To Provide and Maintain Our Services: We use your information to operate SlothMD’s core features and functionality. This includes using your data to personalize your experience, integrate your health information into the app, respond to your requests (for example, answering a health query or sending a reminder), and otherwise deliver the services and features you expect from SlothMD.
   
   

2. Analytics and Product Improvement: We use data (mostly in aggregate or de-identified form) for internal analytics, research, and business development purposes. This helps us understand how users interact with SlothMD, identify areas to improve, develop new features, and make informed business decisions. For example, we might analyze which features are most used or gather feedback to enhance the user experience.
   
   

We may combine information you provide to us voluntarily with information that is automatically collected (such as device and log data) and with general information or research data from other trusted sources. For instance, we might incorporate general health insights or publicly available data to improve our health recommendations, or combine market research data with usage patterns to better tailor our service. Any research or analysis that involves your personal information will utilize anonymized or aggregated data. In other words, if we derive insights from user data to improve the product or contribute to health research, we strip away personal identifiers so that the results do not identify any individual user. This combined data helps us to continuously improve SlothMD and your experience, without compromising your privacy.

Security of Your Personal Information

We take the security of your personal information seriously. When we collect, process, and store personal information, we protect it within commercially acceptable means to prevent loss, theft, misuse, and unauthorized access, disclosure, alteration, or destruction. We follow standard database security practices to safeguard your data. This includes employing industry-standard encryption for data in transit (e.g., information flowing between your device and our servers) and at rest (data stored in our databases). We also implement access controls, so that only authorized personnel with a legitimate need can access personal data, and we regularly review our security measures to guard against vulnerabilities.

Despite our efforts to use commercially acceptable means to protect your personal information, we must note that no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security of your data. Internet and digital systems come with inherent risks, and while we strive to protect your information, we cannot promise or ensure complete security.

You are responsible for maintaining the security of any account credentials (such as your password) and for exercising caution in how you handle and disclose your personal information. We encourage you to choose a strong, unique password for SlothMD and to keep it confidential. If you suspect any unauthorized access to your account or information, please contact us immediately. Additionally, please avoid making your personal information publicly accessible via our platform (for example, in any user-generated content or public forums, if those exist). By taking these steps and by us maintaining robust security measures, we work together to protect your data.

How Long We Keep Your Personal Information

We retain personal information only for as long as it is needed to fulfill the purposes for which we collected it, and for any period that may be required by law or regulation. The length of time we keep data depends on the type of information and the reason we collected it. For example:

• If you provide us with an email address and other details in the course of making an inquiry or contacting support, we will retain that correspondence and your contact details for as long as your inquiry remains open. Even after we resolve your issue or question, we might keep a record of the inquiry (including your personal information) for a reasonable period in case you have follow-up questions, to improve our customer support process, or to have historical context for any future communications. Once that information is no longer needed for those purposes, we will delete it or anonymize it by removing personal identifiers.
  
  

• If you are a registered user of SlothMD, we will keep your account information for as long as your account is active. If you choose to delete your account (or if we need to terminate it due to inactivity or violation of terms), we will delete or anonymize the personal data associated with your account, except to the extent we need to retain it to comply with legal obligations or to protect our rights.
  
  

• For SMS/RCS communications, we retain the history of those messages only as long as necessary to address your needs (for instance, until your support issue is resolved) or as required for legal compliance. We do not keep your text message content indefinitely by default. Once we have no continuing need for the SMS/RCS data, we will delete it, unless we are required by law to retain it for a certain period.
  
  

In some cases, even after you delete your account or we’ve finished providing services to you, we may be required by law to keep certain information for a set time (for example, for financial record-keeping, compliance with tax regulations, or resolving disputes). We may also retain some data if it’s necessary for legal proceedings or to fulfill our legitimate business needs (such as fraud prevention or safety). However, if we do need to retain data for such purposes, we will ensure that any personal information is minimized and secured, and we will only use it for the required purpose.

Beyond any mandatory retention periods, we may keep backup copies of data for a limited time as part of our routine backup procedures (these backups are kept secure). When personal information is no longer necessary for any permitted purpose, we will securely delete it or anonymize it so that it can no longer be associated with you.

Children’s Privacy

SlothMD is not directed to children under the age of 13, and we do not knowingly collect personal information from children under 13 years old. If you are under 13, please do not use our website or services or provide any personal information to us. We encourage parents and guardians to be aware of and monitor their children’s Internet usage and to help enforce this policy by instructing their children never to provide personal information through our services without parental consent.

If we learn that we have inadvertently collected personal information from a child under 13, we will take steps to delete that information as soon as possible. If you believe that a child under 13 may have provided us personal information, please contact us immediately so that we can investigate and remove the data if necessary.

(Note: SlothMD’s Terms of Service further stipulate that users must be at least 18 years of age to use our services. We do not allow minors to create accounts or use the platform.)

Disclosure of Personal Information to Third Parties

We may disclose personal information to third parties in the following circumstances:

1. Within Our Corporate Group: We may share personal data with a parent company, subsidiaries, affiliates, or other companies under common ownership or control of 360H, Inc., as needed to operate and streamline our services. All recipients will uphold the privacy protections as described in this policy.
   
   

2. Service Providers and Vendors: We use trusted third-party companies and individuals to help us provide our services or to perform functions on our behalf. This includes, without limitation, IT and hosting service providers, data storage providers, analytics services, error logging services, marketing partners, customer support tools, and payment processors. We only share the information that these service providers need to perform their specific tasks, and they are contractually obligated to protect your data and use it only for the purposes we specify.
   
   

3. Our Employees and Contractors: Personal information may be accessed by our authorized employees and individual contractors, but only on a need-to-know basis. All employees and contractors who handle personal data are bound by confidentiality and data protection obligations.
   
   

4. Business Partners and Agents: We may provide personal information to our agents or business partners who collaborate with us in providing some aspect of our services or in joint marketing efforts. For example, if SlothMD partners with another organization for a special program or research project that you opt into, we might share relevant data with that partner with your consent or as part of the program’s operation. Any such partner would be required to use the data in accordance with this Privacy Policy or under comparable privacy protections.
   
   

5. Credit and Payment Matters: If you purchase a product or subscription and fail to make payment, we reserve the right to disclose necessary personal information to entities such as credit reporting agencies, collection agencies, courts, or other relevant regulators to recover the debt or enforce our rights. (We hope this scenario never occurs, and we will attempt to notify you before taking such steps.)
   
   

6. Legal and Law Enforcement: We may disclose your personal information to courts, law enforcement agencies, regulators, government authorities, or other third parties when we believe it is required by applicable law or regulation. This could be in connection with any actual or prospective legal proceedings (e.g., in response to a court order or subpoena), or to establish, exercise, or defend our legal rights. If we receive a legal request for your data, we will attempt to notify you unless we are legally prohibited from doing so.
   
   

7. Third-Party Helpers: We may share information with third-party partners or sub-contractors who assist us in operating our services or conducting direct marketing to you (if you have agreed to receive marketing). For example, this could include an email delivery service sending our newsletter, or an analytics consultant helping us interpret usage data. These third parties will only use your information for the purposes we’ve contracted them for and not for their own unrelated purposes.
   
   

8. Data Aggregators: We may use third parties to help collect, process, and anonymize data on our behalf. For instance, we might engage a service to aggregate app usage statistics or health trends in a way that does not identify any individual. Such third parties act under our direction and are bound to protect your information.
   
   

9. Business Transfers (Acquisition or Merger): If we (360H, Inc.) or substantially all of our assets are acquired by another company, or if we engage in a merger, financing, bankruptcy, or any other situation involving the transfer of some or all of our business assets, your personal information may be transferred to the new owner or successor entity. In such a case, we will make reasonable efforts to ensure the acquiring party is bound by terms that are at least as protective of your personal information as those in this policy. You acknowledge that such transfers may occur, and that any party who acquires us may continue to use your personal information in accordance with the terms of this Privacy Policy (unless you’re notified of changes).
   
   

Third-Party Service Providers We Use

To give you full transparency, here are some of the key third-party tools and services SlothMD currently uses to operate its platform. We may share or store your data with these providers solely for the purposes described in this Privacy Policy:

1. PostHog – an analytics platform that helps us understand user interactions with SlothMD so we can improve the product (e.g., which features are most used).
   
   

2. Twilio – a communications service used to send SMS text messages and RCS (Rich Communication Services) messages to users (for example, to deliver verification codes or respond to support texts).
   
   

3. Resend – an email delivery service we use to send transactional emails (such as verification emails, password resets, and important account notifications) and certain user-requested communications.
   
   

4. Pinnacle Software Development Inc. – a software development partner that assists in building and maintaining the SlothMD platform. In certain cases, Pinnacle’s team may have access to data as needed for development, testing, or troubleshooting under strict confidentiality.
   
   

5. Supabase – a cloud-based platform we use for user authentication and database services. Supabase manages our user sign-in/sign-up process and securely stores user data (such as account information and health records you upload) in our database. Supabase acts as our database host and auth provider and does not use your data for any purpose other than providing these services to us.
   
   

6. Stripe – a payment processing service that handles any payments or subscriptions for SlothMD (for example, if you decide to purchase a premium plan). When you provide payment information, it is transmitted directly to Stripe; we do not store your full credit card details on our servers. Stripe may collect identifying information such as your name and billing information as needed to process transactions and prevent fraud.

   
   

7. Autumn - We use Autumn, an open‑source billing platform built on top of Stripe, to manage subscription plans, usage‑based billing, and feature access. Autumn never handles raw payment data—Stripe securely processes and encrypts all payment information. Autumn receives only necessary transaction metadata (like amounts, customer email, and card last‑4) to support billing features. Stripe collects and processes personal data according to its Privacy Policy and applicable laws. We do not sell your data, and only share it under your consent or legal requirement.

   
   

8. Fasten Health – Fasten Connect, provided by Fasten Health, Inc., powers the secure connection to your healthcare records. With your consent, it fetches only the specific data you choose (such as diagnostics, treatments, and billing). This data is encrypted, stored briefly on secure servers to guarantee safe transfer, and then deleted. Fasten Health never sells your personal information and only shares it under your explicit consent or to comply with legal obligations. Fasten Health is HIPAA‑compliant and partners only with vetted third‑party service providers.

   
   

9. Terra – connections to your devices and apps are handled via Terra, health-data integration platform. Terra securely manages authentication, encrypts and temporarily stores your data (typically ≤ 2 days), and transfers it encrypted to us. Identifiable personal data is never disclosed to third parties except to comply with legal obligations.
   
   

We may update this list from time to time as our service providers change. We select third parties that have strong reputations for security and privacy. Whenever your data is shared with any third-party provider, we remain responsible for it and ensure that each provider is obligated to handle the data in compliance with applicable privacy laws and only for our intended purposes.

We reserve the right to modify, replace, or discontinue use of any third-party providers at our sole discretion and without prior notice to you. If we do so, we will update this Privacy Policy accordingly. Your continued use of SlothMD after any such changes signifies your acceptance of the updated list of providers and associated disclosures.

Your Rights and Controlling Your Personal Information

You have rights regarding your personal information and we are committed to helping you exercise those rights. Below, we outline how you can control the information we have about you and make choices about how it’s used.

Your Choice

Providing personal information to us is voluntary. You are free to refuse any request for personal information, with the understanding that we may be unable to provide you with some of your desired services without it. For example, if you choose not to provide an email address, you will not be able to create an account or receive email notifications like password resets. We will not collect personal data without your consent unless it’s necessary for the operation of our services (under a legitimate interest or legal requirement as described above). By providing personal information, you acknowledge that we will use it as described in this policy. If at any time you want to withdraw your consent for us to hold or use your information, you can do so by contacting us (see the Contact Us section below). Keep in mind that withdrawing consent for certain uses of your data may affect our ability to continue offering you some services (for example, if you withdraw consent for us to use your health data, core features of SlothMD may no longer function).

Information from Third Parties

If we receive personal information about you from a third-party source, we will treat that information in accordance with this Privacy Policy. For instance, if someone refers you to SlothMD or provides us with your data as part of a partnership, we will protect it just as we do information you give us directly. If you are a third party providing personal information about someone else (for example, if you are a healthcare provider or a family member submitting someone’s information with their permission), you represent and warrant that you have that person’s consent to provide their personal information to us. We will rely on you to have obtained the necessary permission and to inform them of this policy. If we find that personal data has been provided to us by a third party without the proper consent, we will delete it or seek the individual’s consent as appropriate.

Marketing Permission

If you have agreed to receive marketing communications from us (for example, if you opted in to a newsletter or promotional updates), you can change your mind at any time. We will always provide a way for you to opt out or unsubscribe from marketing emails. This is typically done by clicking the “unsubscribe” link at the bottom of our emails or by adjusting your account preferences. You can also contact us directly (see Contact Us below) to request that we stop sending you marketing messages. Please note that transactional or service-related communications (such as account notifications, password resets, or customer support responses) are not considered marketing – you will continue to receive those as long as you have an active account, since they are necessary for providing our service to you.

Access to Your Information

You have the right to request a copy of the personal information we hold about you. Subject to applicable law, we will provide you with access to this information, typically within a reasonable time after receiving your request. If you have an account with SlothMD, you may be able to access and update certain information directly by logging into your account profile. For any information you cannot review or update yourself, you may send us a request (see Contact Us below). We will ask you to verify your identity before releasing personal data to you, to ensure that we don’t inadvertently share your information with someone pretending to be you.

Communications via SMS or RCS

As discussed in earlier sections, if you reach out to us via SMS or RCS, we collect your phone number and message content solely to address your inquiry or deliver the service you requested. We do not use SMS/RCS information for marketing unless you explicitly opt in via those channels. Standard text messaging charges from your carrier may apply to messages you send or receive. If at any point you no longer wish to receive text communications from us, you can opt out by replying “STOP” to any message we send. You may also contact us at our email address to request removal of your number from our text messaging list. Once opted out, you will no longer receive SMS/RCS messages except where required for authentication or legal purposes.

(Please note: Even after you opt out of general SMS, if you initiate a new text conversation with us (for example, a new support request), that will be treated as a new consent to communicate via SMS for that interaction. You would need to opt out again if you want to stop those responses.)

Correction of Information

If you believe any personal information we hold about you is inaccurate, out-of-date, incomplete, or misleading, please let us know. You have the right to request that we correct or update your information. For example, if you change your email address or realize that we have an incorrect spelling of your name, you can contact us and we will correct it. We take accuracy seriously and will promptly make corrections to any information that is incorrect. In some cases, we may need to verify the new information you provide (for instance, we might require proof of a legal name change). If for some reason we cannot fulfill your request (e.g., if the information is required to be maintained in its original form for legal reasons), we will explain the reason.

Non-Discrimination

We will not discriminate against you for exercising any of your rights over your personal information. This means that if you choose to exercise rights such as accessing your data or opting out of certain processing, we will not deny you our services or provide you a lesser experience solely because of that choice. For example, we will not refuse service, charge you a different price, or provide a different quality of service just because you exercised your privacy rights. The only exception would be if your personal information is essential to providing a certain service or feature – in that case, if you withhold that information, we may be unable to offer that feature (but we will not otherwise punish or penalize you). We treat all users equally, regardless of their privacy choices, to the extent possible under the functionality of our services.

Notification of Data Breaches

We comply with all laws applicable to us regarding any data breach. A data breach is any unauthorized access to or disclosure of personal information. If such an unfortunate incident occurs and it affects your personal data, we will notify you and the appropriate authorities as required by law. In plain terms, if we discover a security breach that compromises your personal information, we will act promptly to contain the breach, assess the scope, and inform affected users in accordance with legal requirements. We may notify you via email, through the SlothMD app/website, or other direct communication methods. We will also take any steps required by law to remedy the situation and prevent future occurrences.

Complaints

If you believe that we have breached this Privacy Policy or violated any applicable data protection law, we want to address your concerns. Please contact us using the details in the Contact Us section below and provide a thorough description of your complaint. Specifically, let us know what you think went wrong – for example, which part of our policy you believe we haven’t followed, or what law you think we might have breached, along with relevant details about the situation. We take all complaints seriously. Once we receive your complaint, we will investigate it promptly and impartially. You will receive a response in writing, outlining the results of our investigation and any steps we will take to address your concerns or rectify any errors. Our goal is to ensure your satisfaction and confidence in how we handle your personal information.

If you are not satisfied with our response to your complaint, or you believe we are not complying with our legal obligations, you also have the right to lodge a complaint with a regulatory authority. For example, if you are a resident of California and have a complaint under the California Consumer Privacy Act (CCPA) or other privacy laws, you may contact the California Attorney General’s Office. For other jurisdictions, there may be a data protection authority or similar regulator you can reach out to. We would, however, appreciate the chance to address your concerns first, so we kindly ask that you contact us to attempt to resolve the issue before involving regulators, if possible.

Unsubscribe (Opting out of Emails)

If you have subscribed to any optional communications from us, such as newsletters, promotional emails, or other updates, you can unsubscribe at any time. To stop receiving such emails, you can click the “unsubscribe” link that is typically included at the bottom of each marketing or promotional email. Alternatively, you may contact us directly (see Contact Us below) and request to be removed from our mailing list. When contacting us, please provide the email address you want unsubscribed and identify the communications you no longer wish to receive. We may need to ask for additional information to verify your identity (to ensure the request is legitimate). Please note that after you unsubscribe, it may take a short time to process your request, during which you might still receive communications already in production. Also, even if you opt out of marketing messages, we will still send you transactional or service-related communications as needed (for example, we might still send account alerts, billing notices, or support responses, as these are not promotional).

California Residents

If you are a resident of California, you have specific privacy rights under the California Consumer Privacy Act (CCPA) (and as amended by the California Privacy Rights Act, or CPRA). These include:

• Right to Know: You have the right to request that we disclose what personal information we collect, use, disclose, and sell (note: we do not sell personal information). This includes the categories of personal information, the categories of sources, our purposes for collecting it, the categories of third parties with whom we share it, and the specific pieces of personal information we hold about you.
  
  

• Right to Delete: You have the right to request that we delete personal information we have collected from you (with certain exceptions – for example, we may retain information needed to complete a transaction you initiated, to detect security incidents, for legal compliance, etc.). Once we receive and confirm a verifiable deletion request, we will delete (and direct our service providers to delete) your personal information from our records, unless an exception applies.
  
  

• Right to Opt-Out of Sale/Sharing: You have the right to direct us not to sell your personal information to third parties. SlothMD does not sell your personal information for monetary consideration. We also do not “share” your personal information for cross-context behavioral advertising. If that ever changes, we will update this policy and provide a mechanism for you to opt out.
  
  

• Right to Non-Discrimination: As noted above, we will not discriminate against you for exercising any of your CCPA rights. This means we won’t deny you services, charge you a different price, or provide a lesser quality of service just because you exercised your privacy rights under California law.
  
  

To exercise any of your California privacy rights, you (or your authorized representative) can send us a request as described in the Contact Us section. Please specify which right you intend to exercise (e.g., access request, deletion request) and provide enough information for us to verify your identity (we may need to ask for additional proof of identity to ensure we are protecting your data from unauthorized access). We will respond to your request within the timeframe required by law (generally within 45 days, with the possibility of a 45-day extension, which we would communicate to you if needed).

Business Transfers

In the unlikely event that 360H, Inc. goes through a business transition, such as a merger, acquisition by another company, or sale of all or a portion of its assets, your personal information may be among the assets transferred. For example, if another company acquires SlothMD or if we merge with another organization, user information (including personal data) would likely be transferred so that the service can continue to operate. By providing your personal information to us, you acknowledge that such transfers may occur. In any such transfer of ownership, the successor company will assume the rights and obligations regarding your personal information as described in this Privacy Policy. The new owner may continue to use your personal information in the same manner that we do, as outlined here, to the extent permitted by applicable law. If a business transfer occurs, we will make reasonable efforts to notify you and ensure that the successor entity is aware of and agrees to uphold the commitments we’ve made in this Privacy Policy.

Limits of Our Policy

Our website and app may contain links to external websites or services that are not operated by us. Please be aware that this Privacy Policy applies only to SlothMD (services managed by 360H, Inc.). We have no control over the content or privacy practices of third-party sites or services that you might access through external links from our platform. For example, if we link to a health resource or an article on another site, and you click that link, any information you provide to that external site or how that site collects information about you is governed by their privacy policy, not ours. We cannot accept responsibility or liability for the privacy and security practices of these other websites or applications. We encourage you to review the privacy policies of any third-party sites or services you visit, especially if you navigate to them from our platform, so that you can understand how they collect and use your information.

Changes to This Policy

At our discretion, we may update or change this Privacy Policy from time to time to reflect changes in our business practices, to accommodate new features or services, or to address new legal requirements. If we make changes, we will post the updated policy on this page (accessible through the same URL), and we will update the “last updated” date at the top of the policy. Changes to the Privacy Policy become effective immediately upon being posted here, unless stated otherwise.

If the changes are significant, or if required by law, we will also provide a more prominent notice or seek your consent when appropriate. For example, we might email you or display a notice within the app if a major change is made. In certain cases (especially if a change would allow us to use your personal information in a materially different way than we previously told you), we will either ask for your explicit consent or give you a chance to opt in or out of the new use, as applicable, before the change becomes effective.

We encourage you to periodically review this Privacy Policy to stay informed about how we are protecting your information. Your continued use of SlothMD after any changes to this Privacy Policy will signify your acceptance of those changes.

Cookies and Tracking Technologies

SlothMD may use cookies and similar tracking technologies (such as web beacons or pixels) to enhance your experience and to collect information about how you use our site. Cookies are small text files that are stored on your device (computer or mobile) via your web browser. We use cookies for several purposes, including:

• To improve functionality: Some cookies are essential for the operation of our website (for example, to keep you logged in or remember your preferences).
  
  

• To understand usage: We use analytics cookies to see how users navigate through SlothMD, which pages are popular, and other usage statistics. This helps us improve the site’s design and content.
  
  

• For marketing and performance: We might use tracking pixels or similar technologies in our emails or on our site to measure the effectiveness of campaigns and understand user engagement. For instance, a pixel in an email might tell us if you opened that email.
  
  

By using SlothMD, you consent to our use of cookies and tracking technologies as described in this policy. However, we respect that you have choices. You can manage or disable cookies through your browser settings. Each browser is a little different, but look for options to manage “cookies” or “tracking” in your browser’s privacy or security settings. Please note that if you disable cookies, some features of our site may not function properly (for example, you might not be able to stay logged in).

SlothMD’s website currently does not respond to “Do Not Track” (DNT) signals. DNT is a setting you can configure in some web browsers to request that websites not track your activities across different sites. Because there is not yet a common understanding of how to interpret the DNT signal, our systems may not recognize or react to it. That said, we do not engage in cross-site tracking of users, nor do we allow third parties to collect personally identifiable information about your online activities over time and across different websites through our platform. In summary, while we use cookies to enhance your experience on our own site, we do not track your browsing outside of SlothMD, and third parties are not given license to do so via our site.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal information, please contact us at:

360H, Inc. (SlothMD)
299 Fremont St, Unit 3003
San Francisco, CA 94105, USA
Email: founders@slothmd.io

We are committed to addressing your inquiries promptly and responsibly. Whether you need help understanding something in this policy, want to exercise one of your rights, or have a concern about how we handle privacy, please reach out. We appreciate the opportunity to communicate with you and will do our best to resolve any issues to your satisfaction.