Privacy Policy

Introduction

Azodha, Inc. (“Azodha,” “we,” “us,” or “our”) is committed to protecting the privacy and security of your personal data. This Privacy Policy (“Policy”) explains how we collect, use, disclose, and protect your information when you interact with our website, digital platforms, and services.

This Privacy Policy applies to all individuals who visit our website (the “Site”) and use our products, software, applications, and services (collectively, the “Services”).

Azodha provides a platform that allows our clients (“Customers”) to develop web applications, mobile applications, text chatbots, voice bots, and VR apps for the users (“End Users”). These applications may involve processing user data, including Protected Health Information (PHI) under specific agreements (“Agreements”) with our Customers. These Agreements dictate how we handle PHI and other personal data collected through their applications. This Privacy Policy supplements those Agreements. If there is a conflict between this Privacy Policy and an Agreement, the Agreement will prevail.

By using our Services, you acknowledge and agree to the practices described in this Privacy Policy. If you do not agree, you should discontinue the use of our Services.

1. Information We Collect

1.1 Basic Personal Information

Personal information refers to any data that can identify or be linked to an individual. This includes:

• Personal Identifiers: We collect information that can directly identify you, such as your real name, birth date, email address, home address, billing and shipping address, and telephone number.
• Information That Identifies, Relates to, or Describes an Individual: We may collect additional personal information capable of being associated with you, including physical characteristics, credit card or debit card numbers, financial details, health or medical information, and media files such as photos, videos, or voice recordings.
• Internet or Other Electronic Network Activity Information: We collect data related to your interactions with our website, services, and online advertisements. This includes IP address, device model, device ID, advertising ID, OS version, device language, operating system, browser type, browsing history, search history, and engagement metrics related to your interaction with our website, applications, or advertisements.
• User-Generated Content: If you choose to share content on public areas of our website or communicate with other users through our platform, we may collect and store that information. This includes comments, reviews, posts, and any media you voluntarily submit.
• Location Information: Physical location, movements, and travel patterns collected through IP addresses, GPS, or device settings when you use our Services (where applicable).
• Customer Support Data: Any information you provide in communications with our team, such as email exchanges or feedback submissions.

1.2 Sensitive Personal Information

The categories of Sensitive Personal Information we may collect from End Users are contingent upon the specific data collection practices of our respective customers. Sensitive Personal Information is only collected when legally required, necessary to provide our services, and with explicit consent. Such categories may include:

• Racial or Ethnic Origin: Information relating to an individual's race or ethnicity, which is collected solely when (i) required for legal compliance purposes or (ii) voluntarily provided by the individual with explicit consent.
• Genetic Data: Information concerning inherited or acquired genetic characteristics that provide unique information about an individual's physiology or health, including DNA-related data, when applicable to the services provided.
• Biometric Data: Unique biological identifiers such as fingerprints, facial geometry data, voiceprints, or other physiological or behavioral characteristics used for authentication or security purposes.
• Health Information: Protected health information (PHI) as defined under the Health Insurance Portability and Accountability Act (HIPAA), including but not limited to medical conditions, treatment records, prescription information, or other health-related data necessary for services involving healthcare.
• Information Concerning Sex Life or Sexual Orientation: Data pertaining to an individual's sexual orientation or preferences, which is collected only (i) where explicitly required by applicable law or regulatory obligation or (ii) when voluntarily provided by the individual with express consent.
• Enhanced Financial Information: Financial data beyond standard payment processing details, including credit risk assessments, financial behavior patterns, or other financial evaluations necessary for fraud prevention, detection, or regulatory compliance purposes.

The collection, processing, and retention of such Sensitive Personal Information shall be conducted in accordance with all applicable privacy laws and regulations, including but not limited to the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other relevant regional or sector-specific requirements.

1.3 Customer Agreements and Protected Health Information (PHI)

Azodha may collect electronic health record information, including Protected Health Information (PHI), as defined under the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and its implementing regulations. PHI refers to personally identifiable health information that is protected under HIPAA and may include race, gender, sexual orientation, biometric data, and medical history.

Azodha collects this information only as required to provide our Services to our Customers and only processes PHI as permitted under the relevant Agreement. Our role in handling PHI is dictated by Business Associate Agreements (BAA) between Azodha and our healthcare Customers.

Our Customers (such as healthcare providers, insurers, or health-related service providers) determine how PHI is used and disclosed within their applications. If you are a patient or user of an application developed by one of our Customers, your healthcare provider is responsible for managing your PHI under their own privacy policies and terms. If you have questions about your treatment or how your PHI is stored and used, you should contact your healthcare provider directly.

If you wish to request changes or corrections to your Protected Health Information that is stored in our systems or processed through our Services, please contact your healthcare provider to manage those changes.

This Privacy Policy applies only to the PHI we collect as part of providing services to our Customers and does not replace your healthcare provider's privacy policies.

2. How We Collect Information

We collect personal information through several methods, including:

• Directly from You: When you register an account, make a purchase, subscribe to our communications, or request customer support.
• Automatically: Through cookies, tracking pixels, and other digital analytics tools when you browse our Site.
• From Third Parties: We may receive data from business partners, service providers, and publicly available sources.
• From Healthcare Customers: If you are a patient using an application developed by a healthcare provider using our services, we may process Protected Health Information (PHI) under a Business Associate Agreement (BAA) in compliance with HIPAA.

3. How We Use Your Information

We use Personal Information and Sensitive Personal Information we collect for legitimate business purposes as outlined below and as permitted by applicable law:

• Operating and Enhancing Our Services: Maintaining and analyzing our platform's performance, monitoring site usage, and facilitating account registration.
• Providing Products and Services: Delivering requested products, services, and information in a personalized manner based on your preferences.
• Marketing and Communications: Sending newsletters, announcements, and promotional content related to our services. You may opt out of marketing communications at any time.
• Account Management and Notifications: Providing essential updates about your account, service changes, billing information, and responding to inquiries.
• Security and Fraud Prevention: Detecting and preventing unauthorized access and fraudulent activity, verifying identity, and maintaining appropriate security measures.
• Legal and Compliance Obligations: Complying with applicable laws, responding to lawful requests from authorities, and enforcing our Terms of Service and other contractual rights.
• Analytics and Reporting: Creating anonymized, aggregated data to improve platform functionality and analyze user experience.
• Surveys and Feedback Collection: Administering voluntary surveys and collecting feedback to enhance our services and products.

We implement appropriate technical and organizational measures to protect your information during processing.

4. How We Share Your Personal Information

We may share your Personal Information with third parties as necessary to operate our business, comply with legal obligations, and enhance our services at the time of collection, with your consent, or in below mentioned cases.

Azodha does not sell, rent, or trade your Personal Information to third parties for their own direct marketing purposes. We may share Personal Information with our service providers, business partners, and affiliates, but only as necessary to operate our services, comply with legal obligations, or as described in this Privacy Policy. If we ever decide to sell or share Personal Information in a way that requires user consent, we will provide an explicit opt-out mechanism.

4.1 Business Purposes and Service Providers

We may share your information with affiliates, vendors, service providers, and business partners that assist us in providing, maintaining, and improving our services. These include Data hosting and storage providers, Analytics and Technology support and security advisors, and Professional advisors such as auditors, law firms, and accounting firms.

4.2 Healthcare Providers

If you use our healthcare-related services, we may share your information with your healthcare providers or designated family members, but only with your explicit consent and in compliance with HIPAA regulations.

4.3 With Your Consent

We may share your Personal Information if you request or direct us to do so, including with third-party platforms or applications you choose to connect with our services.

4.4 Compliance with Laws and Legal Obligations

We may disclose Personal Information to comply with laws, regulations, judicial orders, law enforcement requests, and regulatory inquiries. This includes cooperating with authorities to investigate fraud, security breaches, or other unlawful activities.

4.5 Business Transfers

If Azodha undergoes a merger, acquisition, restructuring, reorganization, or sale of assets, your Personal Information may be transferred as part of the transaction. If required, we will ensure that any acquiring entity upholds the commitments of this Privacy Policy.

4.6 Enforcing Our Rights and Security

We may share your information to enforce our Terms of Use, protect our rights, ensure platform security, and safeguard users against fraud or harm.

4.7 De-Identified and Aggregated Data

We may disclose de-identified and aggregated data that cannot reasonably identify an individual. This information may be used for marketing, advertising, research, and analytics purposes.

5. Your Choices and Control Over Your Information

5.1 Managing Tracking Technologies

You have control over how cookies and tracking technologies are used when you interact with our services. Each web browser offers settings to restrict, delete, or disable cookies. Browser manufacturers provide detailed instructions on how to manage these settings in their help sections. If you choose to disable cookies, some features of our website may not function properly.

5.2 Opting Out of Targeted Advertising

We do not control third-party data collection for advertising, but these third parties may combine the information they collect from our services with data from their other customers for targeted advertising. If you wish to opt out of targeted advertising in the United States, you can do so by visiting the National Advertising Initiative (NAI) opt-out page and the Digital Advertising Alliance (DAA) opt-out page.

5.3 Marketing and Communication Preferences

If you no longer wish to receive marketing emails or promotional messages from Azodha, you can opt-out at any time by clicking the unsubscribe link included in our emails or marketing communications. This opt-out does not apply to transactional emails related to purchases, account management, or service updates.

Additionally, if our platform offers communication preference settings, you may have the option to manage how and when you receive notifications from us.

If you have any questions or need assistance in managing your preferences, please contact us at [email protected].

6. Your Privacy Rights Regarding Personal Information

As a consumer, data protection laws grant you specific rights over your Personal Information. Depending on your jurisdiction, these rights may include:

• Right to Access – You have the right to confirm whether we process your Personal Information and request access to the data we hold about you.
• Right to Rectification – If your Personal Information is inaccurate or incomplete, you have the right to request corrections.
• Right to Erasure – You may request that we delete your Personal Information, subject to legal and contractual obligations.
• Right to Data Portability – You can request a copy of your Personal Information in a structured, commonly used format and transfer it to another service provider.
• Right to Opt-Out – You have the right to opt out of Targeted Advertising based on your browsing behavior, The Sale of Personal Information (Azodha does not sell your data), Profiling that results in legal or similarly significant effects.

You can exercise these rights by contacting us at [email protected] or calling +1 (860) 830-2362. If your request is denied, you have the right to challenge the decision using the same contact information.

Azodha will respond to verified requests in compliance with applicable data protection laws.

7. Special Notice for California Residents

7.1 Your Rights Under CPRA

• Right to Request Information: You may request details about the categories of personal information Azodha collects, its sources, purposes, and third parties with whom we disclose, sell, or share this data (if applicable).
• Right to Opt-Out of Data Sales or Sharing: If Azodha were to sell or share your personal information for targeted advertising, you would have the right to opt-out. For children under 16, an opt-in is required. Azodha does not sell or share personal information under CPRA definitions.
• Right to Non-Discrimination: Exercising your privacy rights will not result in any denial of services, increased prices, or lower quality of service from Azodha.
• Right to Limit Use of Sensitive Personal Information: You can request that Azodha restricts its use of Sensitive Personal Information solely to the extent necessary to provide services as expected by an average consumer.

7.2 How to Exercise Your CPRA Rights

You can exercise these rights twice a year, free of charge, by:

• Emailing us at: [email protected]
• Calling us at: +1 (860) 830-2362

We will verify your identity before processing your request in compliance with CPRA requirements.

7.3 Data Usage and Disclosure

Azodha does not sell or share your personal information as defined under CPRA. However, if we use or disclose Sensitive Personal Information beyond permitted CPRA purposes, it will only be with service providers or contractors for specified business functions. You can limit the use or disclosure of your Sensitive Personal Information by contacting us at the details provided above.

Azodha may sell or license de-identified datasets derived from user data for lawful purposes, such as research and analytics, but these datasets do not contain Protected Health Information (PHI) as defined by HIPAA.

7.4 Third-Party Marketing Disclosures

California residents have the right to request details on how Azodha discloses personal information to third parties for direct marketing purposes. To request this information, email us at [email protected] with the subject line “California Rights” or send a written request to our mailing address.

8. Children's Privacy

Azodha's Services are not intended for children under the age of 18. We do not knowingly collect, use, or sell Personal Information from individuals under 18. If you are under 18, please do not provide any information on our platform, through our website, or via any of our services.

If we become aware that we have inadvertently collected Personal Information from a child under 18 without verified parental consent, we will take immediate steps to delete the data from our records.

If you are a parent or legal guardian and believe that your child has provided Personal Information to Azodha, you may contact us at [email protected] to request the removal of the data.

9. Do Not Track

Azodha does not currently respond to Do Not Track (DNT) signals from web browsers due to the lack of a standardized industry approach for interpreting and implementing such signals.

For more information about Do Not Track, including how to manage your browser settings, you can visit www.allaboutdnt.com.

10. Data Collection Technologies

Azodha uses cookies, pixel tags, log files, and other similar technologies (collectively referred to as “Data Collection Technologies”) to operate our services, personalize content, analyze user interactions, and enhance your overall online experience.

These technologies help us to:

• Remember user preferences and settings
• Improve website functionality and performance
• Deliver relevant advertisements and personalized content
• Monitor site traffic and user engagement for analytics

You can find more details about how we use these technologies and how to manage your preferences by visiting our Cookie Notice.

11. California “Shine the Light” Law (California Civil Code Section 1798.83)

California residents have the right under California Civil Code Section 1798.83 (also known as California's “Shine the Light” law) to request information about how their Personal Information has been shared with third parties for direct marketing purposes.

Azodha does not share personal information with third parties for their own direct marketing purposes. However, if you are a California resident and would like to inquire about how we disclose personal data under this law, you can contact us at:

• Email: [email protected]
• Mailing Address: 8 harvest ln, Ellington CT 06029
• Phone: +1 (860) 830-2362

In your request, please include “California Shine the Light Request” in the subject line or message. We will respond as required by law.

12. Links to Other Websites

Azodha's Services may include links to third-party websites that are not owned or controlled by us. These external sites may have their own privacy policies and data collection practices, which Azodha does not oversee.

We encourage users to exercise caution when navigating away from our platform and to review the privacy policies of any third-party websites they visit. Azodha is not responsible for the privacy practices, security, or content of these external sites.

13. Changes to This Privacy Policy

Azodha reserves the right to modify or replace this Privacy Policy at any time. We encourage users to review this page periodically to stay informed about any updates. The “Last Updated” date at the top of this policy reflects the most recent changes.

If we make material changes that may impact your privacy rights or how we handle your data, we will make reasonable efforts to notify you, such as:

• Posting an update notice on our website.
• Sending an email notification (if you have provided your email address).

By continuing to use our Services after changes are made, you acknowledge and accept the updated Privacy Policy. If you do not agree with any modifications, please discontinue use of our Services.

14. Data Security

Azodha takes the security of your Personal Information seriously. We have implemented administrative, technical, and physical safeguards designed to protect your data from accidental, intentional, unlawful, or unauthorized access, alteration, destruction, disclosure, or misuse.

However, no method of data transmission over the Internet is 100% secure. While we strive to use industry-standard security measures to protect your information, we cannot guarantee absolute security. Any transmission of Personal Information through our services is at your own risk.

If you have been assigned or have chosen a password to access certain parts of our services, it is your responsibility to keep this password confidential. We are not responsible for unauthorized access resulting from weak or compromised passwords.

Additionally, Azodha is not responsible for the circumvention of any privacy settings or security measures contained within our platform, your operating system, or your device.

15. Data Retention

Azodha retains your Personal Information only for as long as necessary to fulfill the purposes for which it was collected and processed. This includes meeting legal, regulatory, accounting, and reporting obligations, as well as resolving disputes and enforcing our terms, conditions, and policies.

The duration for retaining Personal Information is determined based on several factors, including:

• The nature, sensitivity, and volume of the data.
• The potential risks associated with unauthorized use or disclosure.
• The purposes for which the data was processed and whether those purposes can be achieved through alternative means.

Once the retention period expires, we will securely delete, anonymize, or archive your data in compliance with applicable laws and regulations. If you request the deletion of your Personal Information, we will process your request in accordance with legal and contractual obligations.

16. International Data Transfers

Azodha is based in the United States, and the information we collect is governed by U.S. law. If you are accessing our Services from outside the U.S., please be aware that your Personal Information may be transferred to, processed, stored, and used in the U.S. or other jurisdictions where data protection laws may differ from those in your country of residence.

By using our Services or providing your Personal Information, you consent to the transfer, processing, usage, sharing, and storage of your information in accordance with this Privacy Policy and applicable U.S. laws.

As necessary, we will implement appropriate safeguards to protect your data when transferring it internationally.

Azodha as a Data Controller

For purposes of data protection laws, Azodha, Inc., a company incorporated and operating under the laws of the United States of America, is the “data controller” for personal information that is collected and processed through your direct use of our Services. This Privacy Policy applies only in instances where Azodha determines the purposes and means of processing your Personal Information.

For details regarding how we process personal data, third parties with whom we may share information, and your rights to access, limit use, and restrict disclosure of your data, please refer to this Privacy Policy.

Azodha as a Data Processor

When our Customers use Azodha's platform to submit, manage, or process content related to their end users, Azodha acts as a “data processor” and processes such information solely on behalf of and under the instruction of the respective Customer, who is the data controller. In these instances, Azodha does not control how the data is processed, and this Privacy Policy does not apply to such processing.

If you are an end user of a service provided by one of Azodha's Customers and have questions about how your Personal Information is handled, please contact the respective Customer directly, as they are responsible for managing your data in accordance with their own privacy policies.

Onward transfers and Liability

When we transfer personal data received from the EEA & UK, to third parties, we comply with the DPF's Onward Transfer Provisions. This means:

• We transfer such data only for limited and specified purposes consistent with the consent provided by the individual.
• We ensure the third party is obligated to provide at least the same level of privacy protection as required by the DPF Principles.
• We maintain contracts with these third parties restricting their access, use and disclosure of personal data in compliance with our Data Privacy Framework obligations, including the onward transfer provisions, and Azodha remains liable if they fail to meet those obligations and we are responsible for the event giving rise to the damage, unless we prove that we are not responsible for the event giving rise to the damage.
• Upon notice, we will take reasonable and appropriate steps to stop and remediate unauthorized processing by third parties.

Your rights as a European Economic Area (EEA) resident

Under the General Data Protection Regulation (GDPR) (EU) 2016/679, individuals in the European Economic Area (EEA) and the United Kingdom (UK) have additional rights regarding their Personal Data. These rights are outlined in the “Your Privacy Rights Regarding Personal Information” section of this Privacy Policy and include access, correction, erasure, data portability, and the right to object to certain types of processing.

In addition to these general rights given under Section 6 Your Privacy Rights Regarding Personal Information, EEA/UK residents have:

• Right to Restrict Processing – You can request that we limit how we process your data under certain conditions.
• Right to Object – You can object to processing based on legitimate interests, direct marketing, or automated decision-making.
• Right to Lodge a Complaint – If you believe we are processing your data unlawfully, you have the right to file a complaint with your local Data Protection Authority (DPA).

EU Representative Contact Information

Under Article 27 of GDPR, Azodha has appointed a representative in the European Union to address data protection inquiries from EU residents. You may contact our EU representative at:

Rickert Rechtsanwaltsgesellschaft mbH
Azodha Inc.
Colmantstraße 15
53115 Bonn, Germany
Email: [email protected]

Legal Bases for Processing Personal Information

Azodha processes Personal Data of individuals in the European Economic Area (EEA) based on the following legal grounds under applicable data protection laws:

• Contractual Necessity – We process personal data to fulfill our contractual obligations with users or to take necessary steps before entering into a contract. For example, when you sign up for our platform, we process your personal data to create and manage your account.
• Consent – In certain cases, we process personal data based on your express or implied consent, as required by law. You may withdraw your consent at any time where applicable.
• Legitimate Interests – We process personal data when it is necessary for our legitimate business interests, provided they are not overridden by the rights and freedoms of individuals. These interests include:
  • Operating and improving our platform, products, and services.
  • Ensuring security and fraud prevention on our website and applications.
  • Marketing our services, processing payments, and maintaining customer relationships.
• Legal Compliance – In some cases, we must process personal data to comply with legal obligations, such as tax laws, regulatory requirements, and lawful government requests.

Data Privacy Framework (DPF)

Azodha complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the UK Extension to the EU-U.S. DPF as set forth by the U.S. Department of Commerce. Azodha has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union in reliance on the EU-U.S. DPF and from the United Kingdom (and Gibraltar) in reliance on the UK Extension to the EU-U.S. DPF.

Inquiries and Dispute Resolution

If there is any conflict between this Privacy Policy and the DPF Principles, the DPF Principles shall govern. To learn more about the Data Privacy Framework (DPF) program and to view our certification, please visit https://www.dataprivacyframework.gov.

In compliance with the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF, Azodha is committed to resolving complaints about how we handle personal data under the DPF.

If you are an EU or UK resident and have inquiries or complaints regarding how we handle personal data under the DPF, you should first contact Azodha at [email protected]

If you do not receive a timely response from us, or if we have not addressed your DPF Principles-related complaint to your satisfaction, Azodha has committed to refer unresolved complaints to JAMS, an alternative dispute resolution provider based in the United States. You may file a complaint with JAMS at https://www.jamsadr.com/DPF-Dispute-Resolution. The services of JAMS are free of charge.

If neither Azodha nor JAMS resolves your complaint, you may have the option to engage in binding arbitration through the Data Privacy Framework Panel. More details about this process are available in Annex I of the EU-U.S. Data Privacy Framework Principles.

U.S. Federal Trade Commission Enforcement

Azodha's compliance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the UK Extension to the EU-U.S. DPF is subject to enforcement by the U.S. Federal Trade Commission (FTC).

Compelled Disclosure

Azodha may be required to disclose Personal Data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

Contact us

If you have any questions, concerns, complaints or suggestions regarding our Privacy Policy or otherwise need to contact us, you may contact us at the contact information below or through the “Contact Us” page on the Platform.

Contact Information:
Azodha Inc.
[email protected]
251 Little Falls Dr, Wilmington, DE 19808