• Learn about the latest positive medical coverage decisions Latest News

HeartFlow Privacy Policy

Welcome to the HeartFlow, Inc. (“HeartFlow”) website at www.heartflow.com (or any successor URLs thereof) (collectively, the “Site”). HeartFlow values your privacy and the privacy of our other customers and visitors of the Site (referred to individually as “Customer” and collectively as “Customers“).

This Privacy Policy describes what information we gather from you on the Site, how we use that information, and what we do to protect it. By using the Site, you expressly consent to the information handling practices described in this policy.

This Privacy Policy is incorporated into and is subject to the HeartFlow Services Agreement entered into by each Customer who registers for an account. Your use of the Site and any personal information you provide on the Site are subject to the terms of this Privacy Policy and HeartFlow’s Services Agreement.

The Information HeartFlow Collects:

8 Customer-provided Information: You may provide to HeartFlow what is generally called “personally identifiable” information (such as your name, email address, postal mailing address, and telephone number) when using the Site. For example, Customers who register to use HeartFlow’s hosted service solution to access HeartFlow’s proprietary technology, including its proprietary methodology to analyze fractional flow reserve (“HeartFlow Services”) are required to provide contact information, such as their name, company name, address, phone number, email address, and company billing information, such as billing name, and address. Customers can update, correct, or delete such “personally identifiable” information at any time by contacting HeartFlow customer service at care@heartflow.com.

9 Customer Data: Customers who create an account to use the HeartFlow Services may upload or stream patient information and other data to HeartFlow using the HeartFlow Services. HeartFlow’s policies regarding use and disclosure of such patient information and other data are addressed in the Services Agreement entered into by each Customer who registers for an account, and not by this Privacy Policy. If you have a Customer account, please refer to our Services Agreement for information on how HeartFlow handles such patient information and other data.

10 “Cookies” Information: When you visit the Site, we may send one or more cookies – small text files containing a string of alphanumeric characters – to your computer. HeartFlow uses only session cookies. A session cookie disappears after you close your browser.

11 “Automatically Collected” Information. When you visit the Site, we may automatically record certain information from your web browser by using different types of technology, including “clear gifs” or “web beacons.” This “automatically collected” information may include Internet Protocol address (“IP Address“), web browser type, the web pages or sites that you visit just before or just after the Site, the pages you view on the Site, and the dates and times that you visit the Site.

The Way HeartFlow Uses Information:

11 HeartFlow uses the information you provide or that we collect to operate, maintain, enhance, and provide all of the features, information, and services found on the Site. HeartFlow will also use the collected information, including “personally identifiable” information, to set up and provide HeartFlow Services to Customers who register for an account. We will use your email address, without further consent, for administrative purposes, for customer service purposes, or to address intellectual property infringement, rights of privacy, or other legal issues. Your information may at times be viewed or accessed for the purpose of resolving a problem, for technical support issues, or for a suspected violation of the Services Agreement, or as may be required by law.

12 HeartFlow may also use the information you provide to contact you to further discuss your interest in our company, in the HeartFlow Services, and to send information regarding our company or partners, such as promotions and events. All billing information (billing name and billing address) that we collect is used solely to bill your company for the HeartFlow Services.

HeartFlow does not use this billing information for marketing or promotional purposes.

13 HeartFlow uses all of the information that we collect to understand and analyze the usage trends and preferences of our Customers, to improve the way the Site and HeartFlow Services work and look, and to create new features and functionality.

14 HeartFlow may use “automatically collected” information and “cookies” information to: (a) remember your information so that you will not have to re-enter it during your visit or the next time you visit the Site, and (b) monitor aggregate site usage metrics such as the total number of visitors and pages viewed.

When HeartFlow Discloses Information:

6 HeartFlow does not share your personally identifiable information with other organizations for their marketing or promotional uses without your express consent.

7 HeartFlow may disclose automatically collected and other aggregate non-personally identifiable information with interested third parties to assist such parties in understanding the usage, viewing, and demographic patterns for certain programs, content, services, advertisements, promotions, and/or functionality found on the Site.

8 HeartFlow may disclose Customer information to affiliated companies or other businesses or persons to: provide website hosting, maintenance, and security services; fulfill orders; conduct data analysis and create reports; offer certain functionality; and assist HeartFlow in improving the Site and creating new service features. We require that these parties process such information in compliance with this Privacy Policy, we authorize only a limited use of such information, and we require these parties to use reasonable confidentiality measures.

9 HeartFlow may also disclose Customer information if required to do so by law or in the good-faith belief that such action is necessary to comply with local, state, or federal laws, or respond to a court order, judicial or other government subpoena, or warrant. In some cases, we may make such disclosures without first providing notice to Customers.

10 HeartFlow also reserves the right to disclose Customer information that we believe, in good faith, is appropriate or necessary to take precautions against liability; protect HeartFlow from fraudulent, abusive, or unlawful uses; to investigate and defend ourselves against any third party claims or allegations; to assist government enforcement agencies; to protect the security or integrity of the Site; or to protect the rights, property, or personal safety of HeartFlow, our Customers, or other related or affected third parties.

Your Choices:

4 You may, of course, decline to share your personally identifiable information with HeartFlow, in which case HeartFlow will not be able to provide to you some of the features and functionality found on the Site, including use of the HeartFlow Services.

5 You may update, correct, or delete your personal information, preferences, or choices for any services or programs, including receiving information or promotions from us or about sharing your information with third parties, by contacting HeartFlow customer service at care@heartflow.com.

6 To protect your privacy and security, we take reasonable steps to verify your identity before granting you account access or making corrections to your information. YOU ARE RESPONSIBLE FOR MAINTAINING THE SECRECY OF YOUR UNIQUE PASSWORD AND ACCOUNT INFORMATION AT ALL TIMES.

Third Party Sites:

The Site may contain links to third party web sites that may direct you to a third party web site. Please be aware that HeartFlow is not responsible for the content of these other web sites or the privacy practices of their operators. We encourage you to read the privacy policy statement of these other web sites to understand their policies regarding information they may collect from you. This Privacy Policy only applies to the HeartFlow Site.

Our Commitment to Children’s Privacy:

Protecting the privacy of young children is especially important. For that reason, HeartFlow does not knowingly collect or maintain personally identifiable information on the Site from persons under 13-years-of-age, and no part of the Site is directed to persons under 13. If HeartFlow learns that personally identifiable information of persons less than 13-years-of-age has been collected by HeartFlow without verifiable parental consent, then HeartFlow will take the appropriate steps to delete this information.

Our Commitment to Data Security:

HeartFlow uses commercially reasonable physical, managerial, and technical safeguards to preserve the integrity and security of your personal information. We cannot, however, ensure or warrant the security of any information you transmit to

HeartFlow, and you do so at your own risk. Once we receive your transmission of information, HeartFlow makes commercially reasonable efforts to ensure the security of our systems. However, please note that this is not a guarantee that such information may not be accessed, disclosed, altered, or destroyed by breach of any of our physical, technical, or managerial safeguards.

If HeartFlow learns of a security systems breach, then we will attempt to notify you using the contact information that you have provided so that you can take appropriate protective steps. HeartFlow may post a notice on the Site if a security breach occurs. Depending on where you live, you may have a legal right to receive notice of a security breach in writing. To receive a free written notice of a security breach you should notify us at care@heartflow.com.

International Visitors:

The Site is hosted in the United States. If you nonetheless choose to use the Site from the European Union or other regions of the world with laws governing data collection and use that may differ from U.S. law, then please note that you are transferring your personally identifiable information outside of those regions to the United States and by providing your personally identifiable information on the Site you consent to that transfer.

In the Event of a Merger or Sale:

In the event that HeartFlow is acquired by or merged with a third-party entity, we reserve the right, in any of these circumstances, to transfer or assign the information that we have collected from Customers as part of such merger, acquisition, sale, reincorporation, reorganization, or other change of control.

Changes and Updates to this Privacy Notice:

This Privacy Policy may be revised periodically without further notice to you and this will be reflected by a “last modified” date below. Please revisit this page to stay aware of any changes. In general, we only use your personal information in the manner described in the Privacy Policy in effect when we received that personal information. Your continued use of the Site constitutes your agreement to this Privacy Policy and any future revisions.

For revisions to this Privacy Policy that may be materially less restrictive on our use or disclosure of personal information you have provided to us, we will make reasonable efforts to notify you and obtain your consent before implementing such revisions with respect to such information.

Effective Date; Date Last Modified:

This Privacy Policy is effective as of December 09, 2011.
This Privacy Policy was last modified on August 26, 2016.

HeartFlow Contact Information:

If you have any questions or comments about this Privacy Policy, would like to opt in or opt out of any contact or disclosure preferences, or need to update your personal information, please contact HeartFlow at: care@heartflow.com.