Last updated: July 2, 2020
Limitations on Use by Minors
Our Service is generally intended for use by individuals who are at least eighteen (18) years of age or such older age as may be required by applicable state laws in the jurisdiction in which an individual utilizes the Service. Individuals who are between the ages of thirteen (13) and eighteen (18) (or such older age of majority) may use the Service for the sole purpose of obtaining a medical consultation for the treatment of acne using topical skincare products through www.forhers.com if a parent or legal guardian provides consent to such use in accordance with the requirements set forth in our Terms and Conditions and the Service. Services available through www.forhims.com are not available for individuals under eighteen (18) years of age or the applicable age of majority in their jurisdiction. The Service is not designed or intended to attract, and is not directed to, children under thirteen (13) years of age. If we obtain actual knowledge that we have collected personal information through the Platform from a person under thirteen (13) years of age, we will use reasonable efforts to refrain from further using such personal information or maintaining it in retrievable form.
Furthermore, if you are under sixteen (16) years of age, then you (or your parent or legal guardian if you are under age 13) may at any time request that we remove content or information about you that is posted on the Platform. Please submit any such request ("Request for Removal of Minor Information") to either of the following:
For each Request for Removal of Minor Information, please state "Removal of Minor Information" in the email or letter subject line, and clearly state the following in the body of the request:
We will not accept any Request for Removal of Minor Information via telephone or facsimile. Hims is not responsible for failing to comply with any Request for Removal of Minor Information that is incomplete, incorrectly labeled or incorrectly sent.
Please note that we are not required to erase or otherwise eliminate, or enable erasure or elimination of such content or information in certain circumstances, such as, for example, when an international, federal, state, or local law, rule or regulation requires Hims to maintain the content or information; when Hims maintains the content or information on behalf of your Providers (as defined in our Terms and Conditions) as part of your electronic medical record; when the content or information is stored on or posted to the Site by a third party other than you (including any content or information posted by you that was stored, republished or reposted by the third party); when Hims anonymizes the content or information, so that you cannot be individually identified; when you do not follow the aforementioned instructions for requesting the removal of the content or information; and when you have received compensation or other consideration for providing the content or information.
The foregoing is a description of Hims' voluntary practices concerning the collection of personal information through the Service from certain minors, and is not intended to be an admission that Hims is subject to the Children's Online Privacy Protection Act, the Federal Trade Commission's Children's Online Privacy Protection Rule(s), or any similar international, federal, state, or local laws, rules, or regulations.
Protected Health Information
When you set up an account with Hims, you are creating a direct customer relationship with Hims that enables you to access and/or utilize the various functions of the Platform and the Service as a user. As part of that relationship, you provide information to Hims, including but not limited to, your name, email address, shipping address, phone number and certain transactional information, that we do not consider to be "protected health information" or "medical information".
The Medical Groups and Providers have adopted a Notice of Privacy Practices that describes how they use and disclose Protected Information. By accessing or using any part of the Service, you are acknowledging receipt of the Notice of Privacy Practices from your Medical Group and Provider(s).
Collection of Information
We collect any information you provide when you use the Service, including, but not limited to:
If you use your mobile device to visit, access or use the Service, then additional categories of information that we collect may include
We also collect certain medical information on behalf of the Medical Groups and your Providers, which may include, but is not limited to:
How Information Is Collected
Hims might collect personal and non-personal information directly from you when you visit, access or use the Service; when you register with or subscribe to the Service or any products or services available through the Service; when you "sign in," "log in," or the like to the Service; when you allow the Service to access, upload, download, import or export content found on or through, or to otherwise interact with, your computer or mobile device (or any other device you may use to visit, access or use the Service) or online accounts with third-party websites, networks, platforms, servers or applications (e.g., your online social media accounts, your cloud drives and servers, your mobile device service provider); or whenever Hims asks you for such information, such as, for example, when you process a payment through the Service, or when you answer an online survey or questionnaire. In addition, if you or a third party sends Hims a comment, message or other communication (such as, by way of example only, email, letter, fax, phone call, or voice message) about you or your activities on or through the Site and/or the App, then Hims may collect any personal or non-personal information provided therein or therewith.
In addition to the information we collect directly from you, we may also collect certain information from the Medical Group and/or Providers who provide treatment or other services to you in connection with our Service. This information may include, but is not limited to, diagnoses, treatment plans (including prescription details) and notes, and is accessible and visible through certain components of the Service.
We may also receive information from third parties that pay for your care or provide you with treatment, laboratory care or prescription medication, which may include, for example, your prescription history, insurance policy, insurance eligibility and coverage, and laboratory test results.
Finally, Hims might use various tracking, data aggregation and/or data analysis technologies, including, for example, the following:
Please be advised that if you choose to block, reject, disable, delete or change the management settings for any or all of the aforementioned technologies and/or other tracking, data aggregation and data analysis technologies, then certain areas of the Platform might not function properly.
By visiting, accessing or using the Service, you acknowledge and agree in each instance that you are giving Hims permission to monitor or otherwise track your activities on the Service, and that Hims may use the aforementioned technologies and/or other tracking, data aggregation and data analysis technologies. Notwithstanding the foregoing, Hims does not permit third parties or third-party cookies to access to any communications you have with the Providers, or medical information that you submit to the Providers for diagnosis and treatment purposes.
Use of Information
In connection with providing the Service, we and our affiliates and service providers may use your information, subject to the limitations addressed in the Protected Health Information Section above, for a number of purposes, including, but not limited to:
We may de-identify your information and use, create and sell such de-identified information, or any business or other purpose not prohibited by applicable law.
Disclosure of Information
Subject to the limitations described in the Protected Health Information section above, we may disclose your information to third parties in connection with the provision of our Service or as otherwise permitted or required by law. For example, we may disclose your information to:
We may de-identify your information and disclose such de-identified information for any purpose not prohibited by applicable law.
Hims may retain your information for as long as it believes necessary; as long as necessary to comply with its legal obligations, resolve disputes and/or enforce its agreements; and/or as long as needed to provide you with the products and/or services of the Service or Hims. Hims may dispose of or delete any such information at any time, except as set forth in any other agreement or document executed by Hims or as required by law.
Similarly, the Medical Groups and Providers may retain your information for as long as they believe necessary; as long as necessary to comply with their respective legal obligations, resolve disputes and/or enforce its agreements; and/or as long as needed to provide you with the products and/or services of the Medical Groups and Providers. The Medical Groups and Providers may dispose of or delete any such information at any time, except as set forth in any other agreement or document executed by the Medical Groups or Providers or as required by law.
In connection with any transaction that you conduct through the Service (e.g., the purchase or sale of any products or services on or through the Service), you may be asked to supply certain information relevant to the transaction, including, without limitation, your credit card number and expiration date, your billing address, your shipping address, your phone number and/or your email address. By submitting such information, you grant Hims without charge the irrevocable, unencumbered, universe-wide and perpetual right to provide such information to third parties (e.g., payment processing companies, buyers on the Service, sellers on the Service) for the purpose of facilitating the transaction.
Summary of Information Practices
The following table summarizes our personal information collection, use, and sharing practices in the preceding 12 months since we last updated this Policy. As reflected in this table, we may share your personal information with a variety of outside entities.
|Category of Personal Information Collected||Examples||Categories of Sources||Commercial/Business Purpose||Categories of Third Parties with Whom Hims Shares Personal Information|
|Identifiers||Full name, email address, phone number, account login and password, purchase information, billing address, physical address||You, our and third-party cookies and other tracking technologies on our website, and service providers.||Facilitating use of Services and/or products or services, processing payments, marketing, customer, or analytic services, protecting against malicious, deceptive, fraudulent or illegal activity, and enabling or effecting, directly or indirectly, a commercial transaction||Service providers, Medical Groups, Providers, Pharmacies, third parties that assume control over all or part of the business in connection with a merger, acquisition, bankruptcy, or similar event, affiliates, professional advisors, law enforcement authorities, and those involved in legal proceedings, with consent|
|Unique identifiers or personal identifiers||IP address, online identifiers, mobile device ID, dates of medical visit||You, your mobile device, and our and third-party cookies and other tracking technologies on our website||Processing or fulfilling orders and transactions, debugging to identify and repair errors that impair existing intended functionality, providing customer or analytic services, and enabling or effecting, directly or indirectly, a commercial transaction||Service providers, Medical Groups, Providers, Pharmacies, data analytic providers, payment processors, affiliates, professional advisors, law enforcement authorities, and those involved in legal proceedings, with consent|
|Internet and other network activity||Browsing activity||Your mobile devices and computers used to access our Site||Marketing, customer, or analytic services and enabling or effecting, directly or indirectly, a commercial transaction||Service providers, data analytic providers, affiliates|
|Demographic information||Gender, date of birth, zip code||You||Marketing, customer, or analytic services, processing or fulfilling orders and transactions||Service providers, data analytic providers, affiliates|
|Audio, electronic, visual, thermal, olfactory, or similar information||Electronic signature, photographic or video images||You||Identification verification or non-diagnosis or treatment purposes, on behalf of Medical Groups/Providers for diagnosis or treatment purposes||Medical Groups and Providers|
|Commercial Activity||Information about goods or services purchased, obtained, or considered,||Your mobile device||Processing or fulfilling orders and transactions, marketing, customer or analytic services||Service providers, data analytic providers, affiliates|
|Health and Medical Information||Medical history and other information, symptoms, prescription history, insurance policy, insurance eligibility and coverage, laboratory test results, previous doctors visited||You or Medical Group and/or Providers||Processing or fulfilling orders and transactions||Medical Groups and Providers|
|Financial Information (Information under California Civil Code 1798.80)||Payment information||You||Processing or fulfilling orders and transactions||Payment processors, buyers on Service, sellers on Service|
|Geolocation information||Geolocation||Your mobile devices and computers used to access our Site||Confirming location||Medical Groups and Providers|
|Professional or Employment-related Information||Job history, educational history, employer||Applicants or non-applicant email addresses or signature blocks||Process and evaluate applications for positions with Hims||Service providers such as HR vendors|
If you are a California resident, you have the right to know what personal information we collect, use, disclose or sell about you under the CCPA. Additionally, you have the right to access and delete your personal information.
To exercise these privacy rights and choices, please follow the instructions below:
We reserve the right to charge a fee where permitted by law, for instance, if your request is manifestly unfounded or excessive. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.
Verification: Please note, we will take steps to verify your identity before fulfilling any of the above requests. If you maintain an account with us, we will verify your identity through existing authentication practices for the account (e.g., login and password). If you are not a registered member, we will verify your identity by matching two or three data points that you provide with data points that we maintain and have determined to be reliable for the purposes of verification (e.g., browser or device ID).
Authorized Agents: Only you, or someone legally authorized to act on your behalf, may make a verifiable consumer request related to your or your minor child's personal information. In order to designate an authorized agent to make a request on your behalf, you must provide written proof that you have consented to this designation unless the agent has power of attorney pursuant to California Probate Code sections 4000-4465. You must also verify your identity directly with us by providing a copy of your government issued identification.
Response Timing and Format: If you are a Hims customer with an online account, we will deliver our written response to that account online or via email. If you are not a Hims customer or do not have an online account, we will deliver our written response by mail or electronically, at your preference. The response will also explain the reasons we cannot comply with a request, if applicable. Please note, that if you are submitting a request regarding information you provided to a Medical Group, a Providers, or a Pharmacy, your request should be directed to that entity.
Anti-Discrimination Right: We will not discriminate against you for exercising any of your CCPA rights. But note that some of the functionality and features available to you may change or no longer be available to you upon deletion of your personal information or opt-out of sale of your personal information.
We do not and will not sell the personal information of minors under 16 years of age without affirmative authorization.
We strive to use reasonable physical, technical and administrative measures to protect information under our control. However, you must keep your Account password secure and your Account confidential, and you are responsible for any and all use of your Account. If you have reason to believe that the security of your Account has been compromised, please notify us immediately in accordance with the "Contacting Us" section below.
2269 Chestnut Street, #523
San Francisco, CA 94123
Attn: Privacy Officer