1. Introduction

We, at CalSync Tech, Inc. (“Company” or “We”) respect your privacy and are committed to protecting it through our compliance with this policy. This policy describes:

The types of information we may collect or that you may provide when you purchase, download, install, create an account on, access, or use the mobile or web based application Heuman (the “App”).

Our practices for collecting, using, maintaining, protecting, and disclosing that information.

This policy applies only to information we collect in this App and in email, text, and other electronic communications sent through or in connection with this App.

This policy DOES NOT apply to information that:

We collect offline or on any other Company apps or websites, including websites you may access through this App.

You provide to or is collected by any third party, including other apps, websites, or content that may link to or be accessible from or through this App (see Third-Party Information Collection).

Our websites and apps, and these other third parties may have their own privacy policies, which we encourage you to read before providing information on or through them.

Please read this policy carefully to understand our policies and practices regarding your information and how we will treat it. If you do not agree with our policies and practices, do not download, create an account, or use this App. By downloading, creating an account, or using this App, you agree to this privacy policy. This policy may change from time to time (see Changes to Our Privacy Policy). Your continued use of this App after we revise this policy means you accept those changes, so please check the policy periodically for updates.

Please note that the Company is not a "Covered Entity" as defined by the Health Insurance Portability and Accountability Act of 1996 and its implementing regulations ("HIPAA"). We operate as a service provider to healthcare providers and agencies, which may be Covered Entities or Business Associates and as such are responsible for their own compliance with HIPAA.

While the Company is not a Covered Entity, we may function as a "Business Associate" to our customers. As a Business Associate, we may create, receive, maintain, or transmit Protected Health Information ("PHI") or electronic Protected Health Information ("ePHI") on behalf of those customers. Our obligations concerning this information are governed by separate Business Associate Agreements ("BAA") executed with the relevant Covered Entity customers.

For avoidance of any doubt, this Privacy Policy is not a Notice of Privacy Practices ("NPP") and does not replace the NPP that Covered Entities are required to provide to their clients.

‍

‍

2. Children Under the Age of 16

The App is not intended for children under 16 years of age. No one under the age of 16 may provide any personal information from children under 16. We do not knowingly collect personal information from children under 16. If you are under 16, do not use or provide any information on this App or through any of its features, create an account on the App, or provide any information about yourself to us, including your name, address, telephone number, email address, or any screen name or user name you may use. If we learn we have collected or received personal information from a child under 16 without verification of parental consent, we will delete that information. If you believe we might have any information from or about a child under 16, please contact us at support@heumanapp.com.

‍

3. Information We Collect and How We Collect It

We collect information from and about users of our App:

Directly from you when you provide it to us.

Automatically when you use the App.

Through integrated partners, such as payroll system, etc.

A. Information You Provide to Us

When you download, create an account, or use this App, we may ask you provide information by which you may be personally identified, such as name, postal address, email address, phone number, and/or other identifiers (“personal information”).

We may also collect information about you or your organization but which cannot be used to identify individuals, such as:

Geo-location and verification data,

User and staff data, which cannot be qualified as personal information;

Client/service user data, which cannot be qualified as personal information;

Scheduling and workflow data,

Communication data,

Administrative and agency data,

Compliance and audit data,

System and technical data,

Automation data,

Quality Assurance data,

Billing and payroll data, which cannot be qualified as personal information;

Information that you provide by filling in forms in the App, which cannot be qualified as personal information. This includes information provided at the time of creating an account on the App, and/ or subscribing to our service. We may also ask you for information when you report a problem with the App,

Records and copies of your correspondence (including email addresses and phone numbers), if you contact us,

Your responses to surveys that we might ask you to complete for research purposes,

Details of transactions you carry out through the App. You may be required to provide financial information before using the App,

Your search queries on the App, In order for the App to provide services to you or your organization, we need to collect certain electronic Protected Health Information (“ePHI”)

Your clients’/customers’/patients’ medical data, including but not limited to their:

Health metrics,

Medical professionals’ notes or impressions,

Health diagnoses and prognoses,

Disease history and family disease history,

Other relevant personal and health-related information necessary for care coordination and documentation,

You and the Regional Center are solely responsible for obtaining any and all necessary Health Insurance Portability and Accountability Act of 1996 (HIPAA) waivers from your clients’/customers’/patients’ prior to entering or uploading any ePHI – or other medical information that may qualify as confidential under HIPAA – into the App. You should consult with your legal counsel to ensure that your HIPAA waiver provides sufficient legal coverage, understanding that we collect such information as it is necessary to provide you with our services. We expressly disclaim all responsibility for obtaining such HIPAA waivers from your clients, customers, or patients. We do not share your clients’, customers’ or patients’ ePHI, or other personal or medical information with any third-parties, and actively employ HIPAA approved servers to maintain this ePHI, using Amazon Web Services to store, process, and/or transmit ePHI in a compliant way. Our employees, advisors, or contractors, however, may from time to time have access to your clients’, customers’ or patients’ personal or medical information.

You may also provide information for publication or display (“Posted”) on public areas of the app or websites you access through the App (collectively, “User Contributions”). Your User Contributions are Posted and transmitted to others at your own risk. Although you may set certain privacy settings for such information by, please be aware that no security measures are perfect or impenetrable. Additionally, we cannot control the actions of third parties with whom you may choose to share your User Contributions. Therefore, we cannot and do not guarantee that your User Contributions will not be viewed by unauthorized persons.

‍

B. Information We Collect Through Automatic Data Collection Technologies

As you navigate through and interact with our App, including when you download, access, or use the App, we may use automatic data collection technologies to collect certain information about your device and your browsing and usage activity and patterns, including:

Usage Details. When you access and use the App, we may automatically collect certain details of your access to and use of the App, including traffic data, location data, logs, and other communication data and the resources that you access and use on or through the App.

Device Information. We may collect information about your mobile device and internet connection, including the device’s unique device identifier, IP address, operating system, browser type, mobile network information, and the device’s telephone number.

Stored Information and Files. The App also may access metadata and other information associated with other files stored on your device. This may include, for example, photographs, audio and video clips, personal contacts, and address book information.

Location Information. This App collects real-time information about the precise location of your device as long as you explicitly enable your device's location tracking features. The collection of real time location information is limited to two specific use cases:

EVV (Electronic Visit Verification) tracking during clock-in and clock-out events, as required under applicable law (including the CURES Act).

Live trip tracking during active trips for the limited purpose of calculating mileage reimbursement. In those cases tracking begins when a trip is started and automatically stops when the trip is ended.

• No continuous or background location tracking occurs outside of these user-initiated functions.

If you do not want us to collect this information you may opt out at any time through your device settings. For more information, see Your Choices About Our Collection, Use, and Disclosure of Your Information. However, please note that opting out of the App’s collection of location information will disable its location-based features.

The technologies we use for automatic information collection may include cookies (or mobile cookies). A cookie is a small file placed on your smartphone. It may be possible to refuse to accept mobile cookies by activating the appropriate setting on your smartphone. However, if you select this setting you may be unable to access certain parts of our App.

• We use cookies for login sessions, security, and analytics. For more information, please review our Cookies Policy.

We do not collect personal information automatically, but we may tie non-personal information collected automatically to personal information about you that we collect from other sources or that you provide to us.

‍

C. Third-Party Information Collection

When you use the App or its content, certain third parties may use automatic information collection technologies to collect information about you or your device. These third parties may include:

Analytics companies.

Your mobile device manufacturer.

Your mobile service provider.

These third parties may use tracking technologies to collect information about you when you use this app. The information they collect may be associated with your personal information or they may collect information, including personal information, about your online activities over time and across different websites, apps, and other online services websites. They may use this information to provide you with interest-based (behavioral) advertising or other targeted content.

We do not control these third parties’ tracking technologies or how they may be used. If you have any questions about an advertisement or other targeted content, you should contact the responsible provider directly. For information about how you can opt out of receiving targeted advertising from many providers, see Choices About How We Use and Disclose Your Information.

‍

4. How We Use Your Information

We use information that we collect about you or that you provide to us, including any personal information, to:

Provide you with the App and its contents and services, and any other information, products, or services that you request from us.

Fulfill any other purpose for which you provide it.

Send you notices about your account, including expiration and renewal notices.

Carry out our obligations and enforce our rights arising from any contracts entered into between you and us, including for billing and collection.

Notify you when App updates are available, and of changes to any products or services we offer or provide though it.

The usage information we collect helps us to improve our App and to deliver a better and more personalized experience by enabling us to:

Estimate our audience size and usage patterns.

Store information about your preferences, allowing us to customize our App according to your individual interests.

Recognize you when you use the App.

We use location information we collect solely for the operational and compliance purposes to support legally required EVV clock-in and clock-out verification and to calculate and document mileage reimbursement for trips performed while on shift.

Location data is not collected for marketing, profiling, or unrelated analytics purposes.

We may also use your information to contact you about our own goods and services that may be of interest to you. If you do not want us to use your information in this way, please [check the relevant box located on the form on which we collect your data or adjust your user preferences in your account profile. For more information, see Choices About How We Use and Disclose Your Information.

‍

5. Disclosure of Your Information

We may disclose aggregated information about our users, and information that does not identify any individual or device, without restriction.

In addition, we may disclose personal information that we collect or you provide:

To our subsidiaries and affiliates.

To contractors, service providers, and other third parties we use to support our business and who are bound by contractual obligations to keep personal information confidential and use it only for the purposes for which we disclose it to them.

To a buyer or other successor in the event of a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of Company’s assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which personal information held by Company about our App users is among the assets transferred.

To fulfill the purpose for which you provide it.

For any other purpose disclosed by us when you provide the information.

With your consent.

We may also disclose your personal information:

To comply with any court order, law, or legal process, including to respond to any government or regulatory request.

To enforce our rights arising from any contracts entered into between you and us, including the Terms of Service [TERMS OF SERVICE], and for billing and collection.

If we believe disclosure is necessary or appropriate to protect the rights, property, or safety of the Company, our customers, or others.
‍

‍

7. Accessing and Correcting Your Information

You can review and change your personal information by logging into the App and visiting your account profile page.

You may also send us an email at support@heumanapp.com to request access to, correct, or delete any personal information that you have provided to us. We cannot delete your personal information except by also deleting your user account. We may not accommodate a request to change information if we believe the change would violate any law or legal requirement or cause the information to be incorrect.

If you delete your User Contributions from the App, copies of your User Contributions may remain viewable in cached and archived pages or might have been copied or stored by other App users. Proper access and use of information provided on the App, including User Contributions, is governed by our Terms of Service available at [link to Terms of Service].

Residents in certain states, such as California, may have additional personal information rights and choices. Please see Your State Privacy Rights for more information.

‍

8. Your State Privacy Rights

State consumer privacy laws may provide their residents with additional rights regarding our use of their personal information.

California’s “Shine the Light” law (Civil Code Section § 1798.83) permits users of our App that are California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes. To make such a request, please send an email to support@calsynctech.com or write us at 5065 Deer Valley Rd Suite 248 Antioch, CA 94531.

Many states, including California, Colorado, Connecticut, Delaware, Florida, Indiana, Iowa, Montana, Oregon, Tennessee, Texas, Utah, and Virginia provide (now or in the future) their state residents with rights to:

Confirm whether we process their personal information.

Access and delete certain personal information.

Correct inaccuracies in their personal information, taking into account the information’s nature processing purpose (excluding Iowa and Utah).

Data portability.

Opt-out of personal data processing for:

targeted advertising (excluding Iowa);

sales; or

profiling in furtherance of decisions that produce legal or similarly significant effects (excluding Iowa and Utah).

Either limit (opt-out of) or require consent to process sensitive personal data or process personal data of minors under 18, 17, or 16 years old.

The exact scope of these rights may vary by state. To exercise any of these rights please send an email to support@heumanapp.com.

9. Data Security

We have implemented measures designed to secure your personal information from accidental loss and from unauthorized access, use, alteration, and disclosure. All information you provide to us is stored on our secure servers behind firewalls. All data that we receive, all account data, timesheets, and location data – is encrypted in transit using HTTPS/TLS encryption protocols.

The safety and security of your information also depends on you. Where we have given you (or where you have chosen) a password for access to certain parts of our App, you are responsible for keeping this password confidential. We ask you not to share your password with anyone. We urge you to be careful about giving out information in public areas of the App. The information you share in public areas may be viewed by any user of the App.

Unfortunately, the transmission of information via the internet and mobile platforms is not completely secure. Although we do our best to protect your personal information, we cannot guarantee the security of your personal information transmitted through our App. Any transmission of personal information is at your own risk. We are not responsible for circumvention of any privacy settings or security measures included through the App.

10. Changes to Our Privacy Policy

We may update our privacy policy from time to time. If we make material changes to how we treat our users’ personal information, it is our policy to notify you by email to the primary email address specified in your account and/or through a notice on the App’s home page.

The date the privacy policy was last revised is identified at the top of the page. You are responsible for ensuring we have an up-to-date active and deliverable email address for you and for periodically visiting this privacy policy to check for any changes.

‍

11. Contact Information

To ask questions or comment about this privacy policy and our privacy practices, contact us at:

• Email: support@heumanapp.com
• Address: 5065 Deer Valley Rd Suite 248, Antioch, CA 94531
• Legal Counsel: Sutter Law (sutterlegal.com)