At Parsimed, we believe digital tools can help empower women to manage their health and assist with screening for endometriosis. We recognize that using any digital service increases your data footprint. We take great care to protect both personal and health-related data consistent with applicable U.S. laws and industry standards, and we are committed to strong confidentiality and security.
How and why we process your personal and health data:
In short: your data is valuable, and we protect it—especially health data—using appropriate safeguards.
When you use Parsimed services, you share information with HDSI (the company behind Parsimed):
HDSI is responsible for the collection and processing of your data in connection with Parsimed’s U.S. services as described in this policy.
We follow U.S. privacy principles, including transparency, purpose limitation, data minimization, accuracy, security, and retention limits. We apply administrative, technical, and physical safeguards to prevent unauthorized access, destruction, or disclosure.
To the extent Parsimed receives, maintains, or transmits Protected Health Information (”PHI”) on behalf of a covered entity or business associate, Parsimed will comply with applicable HIPAA requirements. In such cases, we implement HIPAA-aligned safeguards and may enter into a Business Associate Agreement (BAA) where required.
We host data on reputable U.S. infrastructure providers with industry-standard security (e.g., authentication, firewalls, anti-malware, short-lived access tokens, daily backups and disaster-recovery practices).
Data is encrypted in transit and at rest using industry-standard cryptography. Access is controlled via authentication and time-limited authorization.
Registered users authenticate with login credentials (and where offered, multi-factor authentication). You are responsible for keeping your credentials secure. By using Parsimed or providing personal information, you authorize us to communicate with you electronically (e.g., email, in-app, push).
When you use the Parsimed app or website, some personal data may be collected, stored, and analyzed using internal systems and vetted third-party processors acting on our behalf.
We process data as reasonably necessary to provide the services you request, with your consent/notice and choice where required by law (e.g., for certain communications, cookies, analytics/ads; see Section VIII). Where HIPAA applies, we process PHI as permitted by HIPAA.
By creating an account, you consent to Parsimed storing and processing your personal data—including health data you enter—to provide and improve features and services, including messages, reminders, and push notifications.
We design our products to collect only what is necessary. We test and monitor server security. We do not keep identifiable data longer than needed for the purposes described here. You can:
If you are a California resident, you may have the right to request: (a) access to the categories and specific pieces of personal information we collected about you; (b) deletion of personal information; (c) correction of inaccurate personal information; (d) information about "selling" or "sharing" (as defined by CPRA) of personal information; and (e) to opt out of sale/share and certain targeted advertising. You also have the right to not be discriminated against for exercising your rights. Contact office@wpsnj.com to exercise these rights. If we engage in activities deemed "sale" or "share," we will provide a "Do Not Sell or Share My Personal Information" mechanism as required.
Depending on your state (e.g., VA, CO, CT, UT), you may have rights to access, delete, correct, obtain a portable copy, and opt out of targeted advertising or certain profiling. We will honor applicable state rights consistent with those laws.
We may send push notifications, in-app messages, and emails (including newsletters and health content). You can unsubscribe via links in emails or disable notifications in device settings. For support requests, we may need to access/process your personal and health data to respond. By seeking support, you consent to such processing.
We may use vetted providers (e.g., email/SMS platforms) solely to send these communications on our behalf and under contract. Marketing emails comply with the CAN-SPAM Act; SMS/MMS comply with TCPA as applicable (message/data rates may apply).
Our website uses cookies and similar technologies to operate, measure, and improve performance. The app and site may use analytics to understand usage and enhance your experience. Where required, we request your consent (e.g., cookie banner).
Note: We strive to de-identify or aggregate data before broader sharing. Where state law considers certain ad/analytics uses a "sale" or "share," you may opt out as described in Section VI.
We do not knowingly collect personal data from children under 13. If you are under 13, do not use the Services. If you are a parent and believe your child used Parsimed without permission, contact office@wpsnj.com. If we learn we collected information from a child under 13 in the U.S. in violation of COPPA, we will delete the account and related information, including health data.
We retain personal information only as long as necessary for the purposes described here (or as required by law), then delete or de-identify it. Specific retention periods may vary based on account status, legal obligations, and operational needs.
We may update this Privacy Policy to reflect changes in law, our data practices, features, or technology. We will update the "Updated on" date above and, where required, provide additional notice. Please review it periodically.
This Privacy Policy is provided in multiple languages for convenience. In the United States, the English version controls in case of any discrepancy with translations.
Questions? Email office@wpsnj.com