Privacy Policy

Last updated: August 27, 2024

Thank you for choosing to be part of our community. Your privacy is important to us. This privacy policy (“Privacy Policy”) describes how Everytable, PBC, together with our affiliates and subsidiaries (collectively, “Everytable,” “we,” “us,” or “our”), collect, use, disclose, and process your information. It also explains the rights and choices available to you with respect to your information.

This Privacy Policy applies to information we collect and process when you interact with us and our products and services, such as when you access or use our websites, mobile applications, and other Everytable online services that link to this Privacy Policy (each a “Service” and collectively, the “Services”); visit our retail locations; contact our support staff; engage with our social media features and pages; or otherwise interact with us.

We hope you take some time to read this Privacy Policy carefully.

CONTENTS

INFORMATION WE COLLECT
HOW WE USE INFORMATION
HOW WE SHARE INFORMATION
ANALYTICS AND ADVERTISING SERVICES PROVIDED BY OTHERS
YOUR CHOICES
HOW WE PROTECT INFORMATION
DATA TRANSFERS
CHILDREN’S PRIVACY
THIRD-PARTY LINKS
INFORMATION FOR CALIFORNIA RESIDENTS
INFORMATION FOR NEVADA RESIDENTS
CHANGES TO THIS PRIVACY POLICY
CONTACT DETAILS
ACCESSIBILITY

1. INFORMATION WE COLLECT

We collect different types of information depending on the context of your interactions with us and our Services. Some of the information we collect includes personal information. We use the term “personal information” generally in this Privacy Policy to refer to information that can be used to identify you, either alone or in combination with other information.

Information you provide directly to us

Account and Profile Data. We collect any information or content you provide to us when you sign up for an account, create a user profile, or visit our retail locations, which may include your name, date of birth, contact information (e.g., email and phone number), password, billing and shipping address, payment information (e.g., credit card or debit card), and in some cases emergency contact information and known medical conditions (such as when you sign up for Everytable medically-tailored meals). You may choose to provide additional information about yourself to create a profile, which may include profile pictures, gender, relationship status, interests and hobbies, educational details and employment details.
After you create your user profile, anytime you log in to make purchases, we will collect additional information and add it to your profile.
Communications Data. We collect information when you communicate with us (e.g., by email, text message, chat sessions, or phone calls) or others on our Services, such as when you request additional information about products or services, interact with our member support or inside sales teams, or sign up to receive our e-mail newsletters, notification, or marketing messages. We also collect information when you interact with us on social media, such as by tagging us and/or our products or permitting us to follow your social media profile. Examples of such information include your contact information (e.g., email address, phone number, or mailing address), the date and time of your communications, online identifiers, social media profile, and the content of your communications.
Customer Relationship Data. We collect information relating to our customer relationships, which may include customer name, employer, job title or role, contact details (e.g., email and phone number), and information contained in communications between us and our customers or their employees.
Demographic Data. We may collect specific or general demographic data when you fill out forms or surveys on our Services or sign up for and participate in events, contests, sweepstakes, promotions, and special programs that we provide. Examples of such information include age, gender, zip code, state, and country.
Public Forums. We may offer publicly accessible blogs, social media pages, product review pages, private messages, video chat or community forums. You should be aware that any information you provide or post in these areas may be read, collected, and used by others who access them. When you disclose information about yourself on our blogs, social media pages, product review pages, private messages, community forums, and within video chat sessions, we will collect the information you provide in such submissions, including any personal information. If you choose to submit content on any public sites operated by third parties, such content will be subject to the privacy policy and terms of use of the third-party. To learn how the third-party uses your information, please review the third party's terms of use and privacy policy.
Transaction Data. We collect information relating to transactions, including purchases of products and services, that you enter into with us and/or through our Services. Examples of such information include the type of products or services requested or purchased, order details, delivery information, amount charged, payment method and payment information (e.g., debit or credit card number), billing or shipping information, and information about any products or services you returned or exchanged with us.
Sensitive Data. Some of the information you provide or generate when using the Services may relate to your physical health and wellbeing (such as when you purchase medically-tailored meals), and may fall under a special category for which certain data protection laws require enhanced protection (“Sensitive Data”). To the extent that information we collect is Sensitive Data, we ask for your explicit consent to process the data.

Information provided by third parties

Social media features and widgets. Our Services may include social media features, such as links to Instagram, Facebook, YouTube, and Twitter, that allow you to share information (e.g., via widgets, plugins, or other tools), such as, the “Like” or “Share” button ("Features"). These Features may collect your IP address, which page you are visiting on our site, and may set a cookie to enable the Feature to function properly. They may also allow third-party social media services to provide us information about you, including your name, email address, and other contact information. The information we receive is dependent upon your privacy settings with the third-party social media service. Features are either hosted by a third party or hosted directly on our Services. Your interactions with these Features are governed by the privacy statements of the third-party companies providing them. You should always review and, if necessary, adjust your privacy settings on third-party websites and services before linking or connecting them to our Services.
Third-party sign in. If you access our Services through a third-party application, such as the Apple App Store or Google Play App Store (together with any similar applications, “App Stores”) or a social media or other third-party account, such as Facebook, Instagram, or Google, we may collect information about you from that third-party application that you have made public via your privacy settings. Depending on your privacy settings on the third-party account, information we collect through App Stores or third-party accounts may include your email address, name, username, user identification number, location, gender, birth date, profile picture and your social media network contacts. If you choose to access our Services using a third-party account, you authorize us to collect your information from that third-party service and process it in accordance with this Privacy Policy. Please note that we do not control the third party’s information practices, so please review the third party’s privacy statement and your settings on the third party’s site carefully.

Information collected through tracking technology

We collect certain information automatically when you access and use our Services or visit our retail locations. The types of information we collect may include:

Audio and Visual Data. We may capture your visual image, likeness and voice recording (e.g., via photographs and/or video) if you visit our retail locations and/or call our member support or inside sales teams. For example, we record and store member support and sales calls to train support and sales agents to help resolve member questions, for quality purposes and as required by law.
Device and Network Data. We collect certain information about the device you use to access our Services. Examples of such information include your device’s hardware model, browser type, Internet protocol (IP) address, operating system version, language settings, unique device identifiers, advertising identifiers, serial numbers, device motion data, and mobile network data.
Location Data. Based on your interaction with the Services, the type of device you use to access the Services, and your device’s connectivity, we may collect location-based information including your IP address, GPS location, longitude/latitude, city, county, zip code and region, and your location and your smart device’s proximity to “beacons,” and/or other proximity systems. We may use this type of information to enhance your user experience, to better understand your interaction with our products and services in our retail locations. Unless you provide us with your consent to do otherwise, this information will only be used by us and our third-party service providers to provide you with the Services you request or in an aggregated and anonymized format that does not identify you. If you no longer wish to have this location information collected and used by us, you may opt-out by disabling the location and Bluetooth features in the operating system of your device.
Usage Data. We collect information about your activity on our Services via log files, cookies, web beacons, and other similar tracking technologies. Examples of such information include your access times, pages viewed, the routes by which you access our Services, app crashes and other system activity, your use of any hyperlinks available within our Services, your Internet service provider (ISP), Mobile Advertising ID, media access control (MAC) address, and identifiers associated with browser cookies, web beacons, and similar technologies we deploy on our Services. We may use third-party service providers, such as Google Analytics, to collect this usage data. Learn more about how Google collects and uses data here. To opt-out of Google Analytics please use this link.

For more information about our and our third-party partners' use of cookies and similar tacking technologies to collect information automatically, and any choices you may have in relation to its collection, please read our Cookie Policy.

Other types of information

Inferences and Derived Data. We may derive information or draw inferences about you based on the other types of personal information we collect. For example, we may infer your location based on your IP address, or your purchasing habits based on your browsing behavior on our Services.

2. HOW WE USE INFORMATION

We use personal information for a variety of purposes as described in more detail below.

To Provide and Maintain our Products and Services. We use the information we collect to operate and maintain our Services and to provide our products and the features and functionality of our Services. These activities may include, among other things, using information to:

administer your account and provide you access to the Services and features you request;
debug, identify and repair errors that impair existing intended functionality of our Services
complete transactions you request, including to process payments and to fulfill and manage your orders, returns, and exchanges;
contact you about your account, transactions, and/or use of the Services (e.g., account management, customer service, delivery updates, product updates and warranty information, policy changes, security updates, or system maintenance);
enforce our terms, conditions, policies and other agreements;
respond to or follow-up on your questions, comments, reviews, and other requests, including to provide customer service; and
verify individual identity.

To Improve, Personalize, and Develop Our Products and Services. We use the information we collect to improve and personalize our Services, product offerings, marketing and promotional efforts, and to develop new ones. These activities may include, among other things, using information to:

enable and enhance your use of our Services, including to identify your product and services preferences, provide personalized information, and assist with your usage trends; and
perform research and development activities, which may include, for example, conducting data analysis in order to develop new or improve existing products and services, and performing quality control activities.

We use cookies and similar tacking technologies for the purposes described above. For more information, please read our Cookie Policy.

To Provide Customer Support. When you contact us for customer support or any other reason (e.g., to help you complete the account registration process, diagnose or fix technology problems, respond to a dispute, etc.), we may use or request information, including Sensitive Information, as necessary to answer your questions, resolve disputes, and/or investigate and troubleshoot problems or complaints.

To Conduct Feedback Surveys and Obtain Testimonials. From time to time we (or third parties acting on our behalf) may contact you to participate in feedback surveys or to provide reviews and testimonials. We use such information to improve our products, our Services, and in any manner consistent with this Privacy Policy. If you decide to participate, you may be asked to provide certain information, which may include personal information. You are in control of the information you would like to share with us. Prior to posting a testimonial, we will obtain your permission to use your name and testimonial. If you wish to update, or delete your testimonial, please contact us at [email protected] in the United States and Canada and be sure to include your name, testimonial location, and contact information.

To Send You Marketing and Promotional Communications. By creating an Everytable account, you are agreeing that we may send you product and promotional emails or notifications about our Services, and offers on new products, services, promotions or contests. You may also opt-in to receiving similar notifications on the Services. We may provide you with these materials by phone, postal mail, text or email, as permitted by applicable law. Such uses include:

To develop and display content and advertising (and work with third parties who do so) tailored to your interests and/or location; and
To notify you about offers, products and services that may be of interest to you or about which you have previously expressed an interest.

You can opt-out of receiving our marketing communications at any time as further described in the “YOUR CHOICES” section.

To Comply with Legal or Regulatory Obligations or In Connection with a Legal Process. This may include using information as we believe to be necessary or appropriate to: (i) comply with judicial proceedings, court orders or legal processes or to respond to proper governmental request or investigation; (ii) detect, prevent, or otherwise address fraud, security or technical issues; (iii) protect against malicious, deceptive, fraudulent, or illegal activity, including attempts to manipulate or violate our policies, procedures, and terms and conditions; and (iv) to protect yours, ours or others’ rights, property or safety;

With Your Consent. We may process your information for a purpose not otherwise described in this Privacy Policy in accordance with your consent or instructions.

Other Reasonable Business Purposes. As permitted by applicable law, we may use information to carry out other reasonable purposes related to our business or your ongoing relationship with us. This may include using information to obtain or maintain insurance coverage, manage risk, obtain professional advice, and perform other internal functions such as accounting and auditing.

3. HOW WE SHARE INFORMATION

In addition to the specific situations discussed elsewhere in this Privacy Policy, we share information in the following situations:

Affiliates and Subsidiaries. We may share some or all of your information with our group of companies that are under common ownership or control (this means our affiliates, subsidiaries, holding company, or any other subsidiaries owned by our holding company) for the purposes, and on the legal bases, set out in this Privacy Policy.
Business Transactions. We may share or transfer your information in connection with, or during negotiations of a business transaction, such as a merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.
Professional Advisors. We share information with our legal, financial, insurance, and other professional advisers in connection with the management of all or part of our business or operations. Examples include obtaining or maintaining insurance coverage, managing risks, obtaining professional advice, or the establishment, exercise or defense of legal claims, whether in court proceedings or in an administrative or out-of-court procedure.
Public Forums. Some of our Services or some of the features and functionality of our Services provide the opportunity to post content or share information such as messages, photos, and videos with others. If you decide to submit information to any public area of the Services, that information may be publicly available.
Service Providers. We share information with third-party suppliers, vendors, service providers, contractors or agents who perform services for us or on our behalf, including order fulfillment and shipping, payment processing, customer support, administering our marketing and reviews platform, hosting, information technology and security, fraud prevention, mail and email distribution, events, contests, and promotion administration, marketing, advertising, and analytics services. This excludes text messaging originator opt-in data and consent; this information will not be shared with any third parties.
Where Required or Permitted by Law or Legal Process. We may disclose information where we believe disclosure is necessary or required (i) to comply with applicable law, regulation, or legal process, or in response to requests by law enforcement authorities, government or public agencies or officials, or regulators; (ii) to exercise, establish or defend our legal rights or to investigate, prevent, or take action regarding possible illegal activities, suspected fraud, safety of person or property, or a violation of our policies.
Third-Party Partners and Co-Sponsors. We may offer contests, sweepstakes, events, or other promotions with third-party partners or co-sponsors. If you decide to enter a contest, sweepstakes, or promotion that is sponsored by a third-party partner, the information you provide will be shared with us and with them. Their use of your information is not governed by this Privacy Policy.
Other Disclosures with Your Consent. We may share your information with third-parties for purposes not described elsewhere in this Privacy Policy with your consent or at your direction.

4. ANALYTICS AND ADVERTISING SERVICES PROVIDED BY OTHERS

We use cookies and similar tracking technologies (such as web beacons, pixels, and local storage) to automatically collect information, including your email address, through our Services (e.g., the website uses cookies in order to track items and activity in your shopping cart, including tracking when you have abandoned your shopping cart, for the purposes of determining when to send “abandoned cart” reminder messages via SMS). We also work with third-party partners who provide analytics and advertising services or other functionality on our Services. These third parties may also use cookies and similar tracking technologies to collect information about you when using our Services (for instance through a browser) and may combine the information with other information they have access to such as your mailing address so that we may serve relevant marketing offers to you via email or direct mail. Where required by law, we base the use of cookies and similar tracking technologies upon consent. If you wish to change your cookies and similar tracking technologies settings, please visit the cookie banner on our homepage. For more information about how we use such technologies and how you can refuse certain cookies, please read our Cookie Policy.

5. YOUR CHOICES

Access to your account

You may access, correct or update most of your account and profile information on your own through the Services within your Profile Settings of the membership website:

https://everytable.com/Account/Manage/Settings.

Simply login to the website, navigate to the My Account section to update your email, password, phone number and address or to manage your email and privacy setting and delete your account.

Marketing Communications

Email. You may choose to stop receiving our newsletter or marketing emails by following the unsubscribe instructions included in these emails or you can contact us at [email protected] in the United States and Canada. If you opt-out of receiving promotional communications from us, we may still send you non-promotional communications, such as those about your account, your orders, or our ongoing business relations.
Text Messages. To opt-out of receiving text messages, follow the opt-out instructions in the text messages that you receive from us.

Device Permissions

Mobile platforms have permission systems for specific types of device data and notifications, such as camera and microphone as well as push notifications. Where applicable, you can change your settings on your device to either consent or oppose the collection of the corresponding information or the display of the corresponding notifications. Depending on the manner in which you make changes to your settings, certain Services may lose partial or full functionality.

Uninstall the Application

If you have downloaded our mobile application, you can stop all information collection by applications by disabling call forwarding and deactivating your account by following the instructions on the Service’s Settings screen and then uninstalling the applications using the standard uninstall process for your device. If you uninstall the applications from your mobile device, the unique identifier associated with your device will continue to be stored. If you reinstall the applications on the same mobile device, we will be able to re-associate this identifier to your previous transactions and activities.

Managing Cookies

For more information about how you can refuse certain cookies, please read our Cookie Policy.

“Do Not Track” Features

Some web browsers incorporate a Do Not Track (“DNT”) or a similar feature. DNT is a way for users to inform websites and services that they do not want certain information about their webpage visits collected over time and across websites or online services. Please note that we do not respond to or honor DNT signals or similar mechanisms transmitted by web browsers.

6. HOW WE PROTECT INFORMATION

We have implemented reasonable and appropriate technical and organizational security measures designed to protect the security of any personal information we process. However, please also remember that no method of transmission over the Internet, or method of electronic storage, is fully secure. Although we will do our best to protect your personal information, we cannot guarantee its absolute security. In the event we are required by law to inform you of a breach to your personal information we may notify you electronically, in writing, or by phone, if permitted to do so by law.

If you create an account as part of using our Services, you will be prompted to create a password. You are responsible for maintaining the confidentiality of your password, selecting a strong password and constructing a unique password. You are also responsible for any access to or use of your account by someone else that has obtained your password, whether or not such access or use has been authorized by you. Please notify us of any unauthorized use of your password or account.

7. DATA TRANSFERS

For the reasons and purposes described in this Privacy Policy, the information we collect may be transferred to, stored, and otherwise processed in the United States and other countries. Wherever possible we take steps to treat personal information using the same privacy principles that apply pursuant to the law of the country in which we first received your information. By accessing and/or using the Services or otherwise providing your personal information, you are agreeing to the transfer of your information to the United States

8. CHILDREN'S PRIVACY

Our Services are intended for general audiences over the age of 18 years old. We do not knowingly collect information from children under the age of 18 years old. If you are not over 18 years old, then DO NOT DOWNLOAD OR USE THE SERVICES. We also do not knowingly sell the personal information of individuals under the age of 16.

9. THIRD-PARTY LINKS

For your convenience and information, we may provide links to websites and other third-party content that is not owned or operated by us. The websites and third-party content to which we link may have separate privacy notices or policies. Please note, we have no control over the privacy practices of websites or services that we do not own. We encourage you to review the privacy policies of any third-party website or application for details about what information is collected and how it is used and/or shared.

As part of the functionality of our Services, we may integrate with certain third-party services. If you choose to link your account with such applications, you can decide to share the health information we collect about you while you use the Services. You may opt-out of tracking at any time by configuring your privacy settings on such applications. Your interactions with third-party services or other health applications are governed by the privacy policy of the company providing the service.

10. INFORMATION FOR CALIFORNIA RESIDENTS

California law requires us to disclose the following information related to our privacy practices. If you are a California resident, this section applies to you in addition to the rest of this Privacy Policy.

Categories of Personal Information Collected	Categories of Recipients to Whom Information Is Disclosed for A Business Purpose	Categories of Recipients to Whom Information Is Disclosed for a Commercial Purpose
Identifiers– this may include real name, alias, postal address, unique personal identifier, online identifier, email address and account name.	Affiliates or subsidiaries Business partners Data analytics providers Internet service providers Operating systems and platforms Service Providers Payment processors and financial institutions Social networks	Advertising networks
Additional categories of personal information described in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)) – this may include signature, credit card number, debit card number, and other financial information.	Affiliates or subsidiaries Data analytics providers Internet service providers Service providers Payment processors and financial institutions
Characteristics of protected classifications– this may include age, sex and physical condition (if purchasing medically-tailored meals).	Affiliates or subsidiaries Data analytics providers Internet service providers Service providers	Advertising networks Insurance plans
Commercial information – this may include information about products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.	Affiliates or subsidiaries Business partners Data analytics providers Service Providers Payment processors and financial institutions	Advertising networks
Internet or other electronic network activity information – this may include browsing history, search history, and information regarding an individual’s interaction with an internet website, application, or advertisement.	Affiliates or subsidiaries Business partners Data analytics providers Internet service providers Operating systems and platforms Service Providers Payment processors and financial institutions Social networks	Advertising networks
Geolocation data	Affiliates or subsidiaries Data analytics providers Internet service providers Service providers	Advertising networks
Audio, electronic, visual, thermal, olfactory, or similar information	Affiliates or subsidiaries Service providers
Professional or employment-related information	Affiliates or subsidiaries Service providers
Inferences drawn from any of the information listed above	Affiliates or subsidiaries Data analytics providers Internet service providers Service providers	Advertising networks

Categories of Personal Information We Collect, Use, and Disclose

The table below identifies the categories of personal information we have collected in the past twelve (12) months and which we continue to collect. It also lists the categories of third parties to whom we disclose personal information for a business purpose. For more information, including the sources from which we obtain personal information, please see the “INFORMATION WE COLLECT” section of this Privacy Policy.

Categories of Personal Information Collected

Categories of Recipients to Whom Information Is Disclosed for A Business Purpose

Categories of Recipients to Whom Information Is Disclosed for a Commercial Purpose

Identifiers– this may include real name, alias, postal address, unique personal identifier, online identifier, email address and account name.Affiliates or subsidiaries
Business partners
Data analytics providers
Internet service providers
Operating systems and platforms
Service Providers
Payment processors and financial institutions
Social networks
Advertising networks
Additional categories of personal information described in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)) – this may include signature, credit card number, debit card number, and other financial information.Affiliates or subsidiaries
Data analytics providers
Internet service providers
Service providers
Payment processors and financial institutions

Characteristics of protected classifications– this may include age, sex and physical condition (if purchasing medically-tailored meals).Affiliates or subsidiaries
Data analytics providers
Internet service providers
Service providers
Advertising networks
Insurance plans
Commercial information – this may include information about products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.Affiliates or subsidiaries
Business partners
Data analytics providers
Service Providers
Payment processors and financial institutions
Advertising networks

Internet or other electronic network activity information – this may include browsing history, search history, and information regarding an individual’s interaction with an internet website, application, or advertisement.Affiliates or subsidiaries
Business partners
Data analytics providers
Internet service providers
Operating systems and platforms
Service Providers
Payment processors and financial institutions
Social networks
Advertising networks

Geolocation dataAffiliates or subsidiaries
Data analytics providers
Internet service providers
Service providers
Advertising networks

Audio, electronic, visual, thermal, olfactory, or similar informationAffiliates or subsidiaries
Service providers

Professional or employment-related informationAffiliates or subsidiaries
Service providers

Inferences drawn from any of the information listed aboveAffiliates or subsidiaries
Data analytics providers
Internet service providers
Service providers
Advertising networks

We use and disclose these categories of personal information for the purposes described in the “HOW WE USE INFORMATION” and “HOW WE SHARE INFORMATION” sections in this Privacy Policy.

Privacy Rights

As a California resident, you have certain rights, such as:

Access to Information. You may request information regarding the categories of personal information we have collected about you; the categories of sources from which the information was collected; the purposes for which we collected, disclosed, or sold personal information; and the categories of third parties to whom we have sold or disclosed personal information for a business purpose and the categories of personal information disclosed or sold. You may also request access to the specific pieces of personal information we have collected in the 12 months preceding your request, including, where applicable, in an electronic and readily-usable format.
Your access rights under California law are not absolute. Specifically, you have the right to make a request no more than twice in a twelve (12) month period and the information you can request is limited to personal information collected in the 12-month period preceding our receipt of the request.
Deletion. You may request that we delete the personal information we have collected from you. If required by law we will grant a request to delete information, but you should note that in certain situations, and to the extent permitted by law, we may be required to keep your personal information to comply with our legal obligations, resolve disputes, enforce our agreements, or for another one of our business purposes.
Opt-Out of Sales. You have the right to opt-out of any sales of personal information that may be occurring. We share personal information, and over the preceding twelve months may have shared personal information, for other benefits which are a sale of information, as defined by California law. This includes sharing of identifiers, commercial information, and internet or other electronic network activity usage data with advertising partners and networks, and website analytics companies. Additional information is available on our Do Not Sell My Information page, including information about how to manage or block these cookies. We do not knowingly sell personal information about persons under the age of 16. If you wish to exercise this right, you may submit a request by email at [email protected] or by phone at (888) 806-2882.
Non-discrimination. You have the right not to be discriminated against for exercising your rights under California law. We do not discriminate against California consumers who exercise their rights described in this section. However, we may charge a different price or rate, or offer a different level or quality of good or service, to the extent that doing so is reasonably related to the value of the applicable data. In addition, we may offer you financial incentives for the collection, sale and retention and use of your personal information as permitted by the CCPA that can, without limitation, result in reasonably different prices, rates, or quality levels. The material aspects of any financial incentive will be explained and described in its program terms. We may add or change incentive programs and/or their terms by posting notice on the program descriptions and terms linked to above so check them regularly.

Please note that not all these rights are absolute, and they do not apply in all circumstances. While we will make reasonable efforts to accommodate your request, we also reserve the right to impose certain restrictions and requirements on such requests, if allowed or required by applicable laws. Any request you submit to us is subject to an identification and residency verification process.

Exercising Your Privacy Rights

For the most part, we enable exercise of the privacy rights described in the paragraphs above directly through our Services when logged in.

If you are a California resident and you would like to make a request for access, portability, or deletion of your information, you may submit a request through the CCPA Request Form, by email at [email protected] or by phone at (888) 806-2882.

In order to process your request, we must be able to verify your identity to make sure you are the person about whom we have collected personal information or an authorized representative. Depending on the type of request, we may conduct the verification process by email or phone using information that matches our records. The information you must provide as part of the verification process may include: name, email address, mailing address, phone number, user name, state and/or country of residency, and/or proof of residency. We may also ask for additional information as needed based on your relationship with us.

You may also designate an authorized agent to exercise these rights on your behalf by providing the authorized agent signed permission to submit the request on your behalf. If an authorized agent submits a request on your behalf, we may need to contact you to verify your identity and protect the security of your personal data. Please note, we cannot process your request or provide you with personal information if we cannot verify your identity or authority to make the request and confirm that the personal information relates to you.

California’s “Shine the Light” Law.

California's “Shine the Light” law requires us to respond to requests from California customers asking about our practices related to disclosing certain types of personal information to third parties for their direct marketing initiatives. You may make such a request by completing and submitting a STL Request Form.

11. INFORMATION NEVADA RESIDENTS

Pursuant to Nevada law, you may direct a business that operates an internet website not to sell certain personal information a business has collected or will collect about you. We do not sell your personal information as defined under Nevada law. For more information about how we handle and share your personal information or your rights under Nevada law, please contact us at [email protected].

12. CHANGES TO THIS PRIVACY POLICY

We may also provide additional “just-in-time” disclosures or additional information about the data collection, use and sharing practices of specific Services. Such notices may supplement or clarify our privacy practices or may provide you with additional choices about how we process your Personal Information.

13. CONTACT DETAILS

If you have any questions, complaints, or comments about this Privacy Policy or our privacy practices, you may email us at [email protected] or by mail at:

Everytable, PBC

Attn: Chief Security Officer

1101 West 23rd Street

Los Angeles, CA 90007

14. ACCESSIBILITY

Persons with disabilities may obtain this Privacy Policy in an alternative format, upon request, by contacting us at the appropriate address above. If you are visually impaired, you may access this notice through your browser’s audio reader.

15. ENGLISH LANGUAGE

Pursuant to Canadian law, the parties declare that they have required that this Privacy Policy and all documents related hereto, either present or future, be drawn up in the English language only.

Conformément à Droit canadien, les parties déclarent par les présentes qu’ils exigent que cette entente et tous les documents y afférents, soit pour le présent ou l’avenir, soient rédigés en langue anglaise seulement.

Notice for Privacy Practices for PHI

THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE REVIEW IT CAREFULLY. NOTE: THIS POLICY ONLY APPLIES TO EVERYTABLE CUSTOMERS WHO PURCHASE MEDICALLY-TAILORED MEALS THROUGH A QUALIFIED HEALTH PLAN.

Last Modified: May 6, 2022

INTRODUCTION

During the course of providing services and care to you, Everytable, PBC (“Everytable”) gathers, creates, and retains certain personal information about you that identifies who you are and relates to your past, present, or future physical or mental condition, the provision of health care to you, and payment for your health care services. This personal information is characterized as your “protected health information.” Protected health information consists of any information relating to your physical or mental health, to any health care provided to you, or to payment for such care and that either identifies you or provides information that can be used to identify you. This Notice of Privacy Practices describes how Everytable maintains the confidentiality of your protected health information, and informs you about the possible uses and disclosures of such information. It also informs you about your rights with respect to your protected health information.

EVERYTABLE’S RESPONSIBILITIES

Everytable is required by federal and state law to maintain the privacy of your protected health information. Everytable is also required by law to provide you with this Notice of Privacy Practices that describes Everytable’s legal duties and privacy practices with respect to your protected health information. Everytable will abide by the terms of this Notice. Everytable reserves the right to change this or any future Notice and to make the new notice provisions effective for all protected health information that it maintains, including protected health information already in its possession. If the change reflects a material change in its privacy policies and procedures, Everytable will provide the new Notice to you or your legal representative. In all other situations, it will provide you with the new Notice upon request. In addition, the new Notice will be posted in a clear and prominent place in the facility and on Everytable website.

USE AND DISCLOSURE WITH YOUR AUTHORIZATION

Everytable will require a written authorization from you before it uses or discloses your protected health information, unless a particular use or disclosure is expressly permitted or required by law without your authorization. An authorization is generally required for the following uses or disclosures, except in very limited circumstances: (1) uses or disclosures of psychotherapy notes; (2) uses or disclosures of protected health information for marketing purposes; and (3) disclosures of protected health information that constitute its sale.

Everytable has prepared an authorization form for you to use that authorizes Everytable to use or disclose your protected health information for the purposes set forth in the form. You are not required to sign the form as a condition to obtaining treatment or having your care paid for. If you sign an authorization, you may revoke it at any time by written notice. Everytable then will not use or disclose your protected health information, except where it has already relied on your authorization.

HOW EVERYTABLE MAY USE AND DISCLOSE YOUR PROTECTED HEALTH INFORMATION WITHOUT YOUR AUTHORIZATION

Everytable may use or disclose your protected health without your written authorization in the following circumstances:

Your Care and Treatment. Everytable may use or disclose your protected health information to provide you with or assist in your treatment, care and services. For example, Everytable may disclose your health information to health care providers who are involved in your care to assist them in your diagnosis and treatment, as necessary.
Billing and Payment
Medicare, Medi-Cal and Other Public or Private Health Insurers – Everytable may use or disclose your protected health information to public or private health insurers (including medical insurance carriers, HMOs, Medicare, and Medi-Cal) in order to bill and receive payment for your treatment and services that you receive. For example, the information on or accompanying a bill may include information that identifies you, as well as your diagnosis, procedures, and supplies used.
Health Care Providers – Everytable may also disclose your protected health information to health care providers in order to allow them to determine if they are owed any reimbursement for care that they have furnished to you and, if so, how much is owed.
Individuals Involved in Your Care or Payment for Your Care. Unless you specifically object, Everytable may disclose to a family member, other relative, a close personal friend, or to any other person identified by you, all protected health information directly relevant to such person’s involvement with your care or directly relevant to payment related to your care. Everytable may also disclose your protected health information to a family member, personal representative, or other person responsible for your care to assist in notifying them of your location, general condition, or death.
Health Care Operations. Everytable may use your protected health information for its health care operations. These uses and disclosures are necessary to manage Everytable and to monitor our quality of services and care. For example, we may use your protected health information to review our services and to evaluate the performance of our staff in caring for you.
Reporting. Everytable will disclose protected health information about a patient who is suspected to be the victim of child, dependent adult, or elder abuse to the extent necessary to complete any oral or written report mandated by law. Under certain circumstances, Everytable may disclose further protected health information about the patient to aid the investigating agency in performing its duties. Everytable will promptly inform the patient about any disclosure unless Everytable believes that informing the patient would place the patient in danger of serious harm, or would be informing the patient’s personal representative, whom Everytable believes to be responsible for the abuse, and believes that informing such person would not be in the patient’s best interest.
Legal Process. Everytable will disclose protected health information in accordance with an order of a court or of an administrative tribunal of a government agency. In addition, Everytable will disclose protected health information in accordance with a valid subpoena issued by a party to adjudication before a court, an administrative tribunal, or a private arbitrator. Reasonable efforts will be made to notify you of the subpoena, or attempts will be made to obtain an order or agreement protecting your protected health information.
Law Enforcement Agencies. Everytable will disclose protected health information to law enforcement agencies in accordance with a search warrant, a court order or court-ordered subpoena, or an investigative subpoena or summons. In addition, it may disclose such information as necessary to assist law enforcement officials investigating crimes involving patients.
National Security and Intelligence Activities. Everytable will disclose protected health information about a patient to authorized federal officials conducting national security and intelligence activities or as needed to protect federal and foreign officials.
Licensing and Accreditation. Everytable may disclose your protected health information to any government or private agency, such as to the Medical Board of California, responsible for licensure or accreditation, so that the agency can carry out its oversight activities. These oversight activities include audits; civil, administrative, or criminal investigations; inspections; licensure or disciplinary actions; civil, administrative, or criminal proceedings or actions; or other activities necessary for appropriate oversight.
Public Health Activities. Everytable may disclose your protected health information to any public health authority that is authorized by law to collect it for purposes of preventing or controlling disease, injury, or disability.
Business Associates. Everytable may contract with certain individuals or entities, called "business associates," to provide services on its behalf. Examples include data processing, quality assurance, legal, or accounting services. Everytable may disclose your protected health information to a business associate, as necessary, to allow the business associate to perform its functions. Everytable will have a contract with each business associate that obligate the business associate to maintain the confidentiality of your protected health information.
Research. Everytable may disclose your protected health information for research purposes, provided that an outside Institutional Review Board overseeing the research approves the disclosure of the information without a written authorization.
Coroner. Everytable will disclose protected health information to a coroner where the coroner requests the information to identify a decedent; to notify next of kin; or to investigate deaths that may involve public health concerns, suspicious circumstances, elder abuse, or organ or tissue donation. In other cases, Everytable may disclose protected health information to the coroner to allow the coroner to perform its duties.
Organ Procurement. If you are an organ donor, Everytable may disclose your protected health information following your death to an organ procurement agency or tissue bank in order to aid in using your organs or tissues in transplant.
Hospital Peer Review. Everytable may disclose your protected health information to hospital medical staffs to aid in the credentialing of applicants and in the peer review of members.
Workers’ Compensation. Everytable may disclose your protected health information in order to comply with California workers’ compensation laws.
Preventing Danger to Identified Persons. Everytable may disclose your protected health information to prevent an immediate, serious threat to the safety of an identified person.
Disaster Relief. Everytable may disclose your protected health information to a public or private entity authorized to assist in disaster relief efforts.
Marketing. Everytable may use protected health information or disclose it to business associates in certain limited circumstances in order to encourage you to use a service or product. This includes, for example, making face-to-face communications with you about the service or product, providing you with a promotional gift of nominal value, or communicating about drug refills. Otherwise, it will obtain a specific written authorization from you before using or disclosing protected health information for marketing purposes.
Fundraising. Everytable may use certain protected health information to contact you in an effort to raise money for Everytable and its operations. Everytable may disclose the protected health information to business associates or to related foundations that it uses to raise funds for its own benefit. The information to be used or disclosed for these purposes will be limited to certain demographic information, the dates of treatment, the department where services were provided, the treating physician, outcome information, and health insurance status. Each fundraising communication will provide a means by which you can opt out of receiving further such communications.
Sale of Protected Health Information.
Everytable may disclose your protected health information for remuneration in certain very narrow circumstances such as where a governmental agency reimburses it for its expenses in providing information for public health purposes. Otherwise, it will obtain a specific written authorization from you or your personal representative before receiving reimbursement for using or disclosing your protected health information.
Disclosures Otherwise Required by Law. Everytable will disclose protected health information about a patient when otherwise required by law.

YOUR RIGHTS REGARDING PROTECTED HEALTH INFORMATION

You have the following rights with respect to your protected health information. To exercise these rights, contact Everytable at 1101 West 23rd Street, Los Angeles, CA 90007, Attention: Customer Service or [email protected].

Right to Receive a Copy of the Notice of Privacy Practices. You have the right to request and receive a copy of Everytable’s Notice of Privacy Practices for Protected Health Information in written or electronic form.
Right to Request Special Privacy Protections. You have the right to request restrictions on the use and disclosure of your protected health information for treatment, payment or health care operations, or providing notifications regarding your identity and status to persons inquiring about or involved in your care. Everytableis not required to grant your request except where you ask it not disclose information to your health plan regarding care paid for by you or someone else out of pocket. Whenever Everytable agrees to comply with your request, it will do so, unless there is an emergency or until Everytable or you terminate the restriction. You also have the right to request that Everytable communicate protected health information to you or another recipient by alternative means or at alternative locations.
Right to Request Access. You have the right to inspect and copy your health records maintained by Everytable. This includes the right to have electronic records made available in electronic format to you or to someone whom you designate. In certain limited circumstances, Everytable may deny your request as permitted by law. However, you may be given an opportunity to have such denial reviewed by an independent licensed health care professional.
Right to Request Amendment. You have the right to request an amendment to your health records maintained by Everytable. If your request for an amendment is denied, you will receive a written denial, including the reasons for such denial, and an opportunity to submit a written statement disagreeing with the denial.
Right to an Accounting. You have the right to receive an accounting of disclosures of your protected health information created and maintained by Everytable over the six (6) years prior to the date of your request or for a lesser period of time. Everytable is not required to provide an accounting of certain routine disclosures or of disclosures of which you already are aware.

NOTIFICATION OF SECURITY BREACHES

Everytable will provide you with written notification in the event of a security breach involving your protected health information. The notification will describe what happened, the types of information involved, the steps that Everytable is taking to deal with the situation, what you should do to protect yourself against any harmful consequences, and contacts for obtaining further information.

COMPLAINTS

If you believe that your privacy rights have been violated, you may file a complaint with Everytable at 1101 West 23rd Street, Los Angeles, CA 90007, ATTN: Customer Service or [email protected]. You also have the right to submit a complaint to the Secretary of the U.S. Department of Health and Human Services, 90 7th Street, Suite 4-100, San Francisco, CA 94103, Telephone: (415) 437-8310, Fax: (415)437-8329, TDD: (415) 437-8311, Attention OCR Regional Manager. Everytable will not retaliate against you if you file a complaint.

FURTHER INFORMATION

If you have questions about this Notice of Privacy Practices or would like further information about your privacy rights, contact Everytable at 1101 West 23rd Street, Los Angeles, CA 90007, ATTN: Customer Service or [email protected].

The effective date of this Notice of Privacy Practices is May 5, 2022.

Notice to California Residents

Last updated: May 6, 2022

Para español, haz clic aquí.

INFORMATION FOR CALIFORNIA RESIDENTS

1. Categories of Personal Information We Collect, Use, and Disclose

Categories of Personal Information Collected	Categories of Recipients to Whom Information Is Disclosed for A Business Purpose	Categories of Recipients to Whom Information Is Disclosed for a Commercial Purpose
Identifiers– this may include real name, alias, postal address, unique personal identifier, online identifier, email address and account name.	Affiliates or subsidiaries Business partners Data analytics providers Internet service providers Operating systems and platforms Service Providers Payment processors and financial institutions Social networks	Advertising networks
Additional categories of personal information described in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)) – this may include signature, credit card number, debit card number, and other financial information.	Affiliates or subsidiaries Data analytics providers Internet service providers Service providers Payment processors and financial institutions
Characteristics of protected classifications– this may include age, sex and physical condition (if purchasing medically-tailored meals).	Affiliates or subsidiaries Data analytics providers Internet service providers Service providers	Advertising networks Insurance plans
Commercial information – this may include information about products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.	Affiliates or subsidiaries Business partners Data analytics providers Service Providers Payment processors and financial institutions	Advertising networks
Internet or other electronic network activity information – this may include browsing history, search history, and information regarding an individual’s interaction with an internet website, application, or advertisement.	Affiliates or subsidiaries Business partners Data analytics providers Internet service providers Operating systems and platforms Service Providers Payment processors and financial institutions Social networks	Advertising networks
Geolocation data	Affiliates or subsidiaries Data analytics providers Internet service providers Service providers	Advertising networks
Audio, electronic, visual, thermal, olfactory, or similar information	Affiliates or subsidiaries Service providers
Professional or employment-related information	Affiliates or subsidiaries Service providers
Inferences drawn from any of the information listed above	Affiliates or subsidiaries Data analytics providers Internet service providers Service providers	Advertising networks

We use and disclose these categories of personal information for the purposes described in the “HOW WE USE INFORMATION” and “HOW WE SHARE INFORMATION” sections in the Privacy Policy .

2. Privacy Rights

As a California resident, you have certain rights, such as:

Access to Information. You may request information regarding the categories of personal information we have collected about you; the categories of sources from which the information was collected; the purposes for which we collected, disclosed, or sold personal information; and the categories of third parties to whom we have sold or disclosed personal information for a business purpose and the categories of personal information disclosed or sold. You may also request access to the specific pieces of personal information we have collected in the 12 months preceding your request, including, where applicable, in an electronic and readily-usable format.
Your access rights under California law are not absolute. Specifically, you have the right to make a request no more than twice in a twelve (12) month period and the information you can request is limited to personal information collected in the 12-month period preceding our receipt of the request.
Deletion. You may request that we delete the personal information we have collected from you. If required by law we will grant a request to delete information, but you should note that in certain situations, and to the extent permitted by law, we may be required to keep your personal information to comply with our legal obligations, resolve disputes, enforce our agreements, or for another one of our business purposes.
Opt-Out of Sales. You have the right to opt-out of any sales of personal information that may be occurring. We share personal information, and over the preceding twelve months may have shared personal information, for other benefits which are a sale of information, as defined by California law. This includes sharing of identifiers, commercial information, and internet or other electronic network activity usage data with advertising partners and networks, and website analytics companies. Additional information is available on our Do Not Sell My Information page, including information about how to manage or block these cookies. We do not knowingly sell personal information about persons under the age of 16. If you wish to exercise this right, you may submit a request by email at [email protected] or by phone at (888) 806-2882.
Non-discrimination. You have the right not to be discriminated against for exercising your rights under California law. We do not discriminate against California consumers who exercise their rights described in this section. However, we may charge a different price or rate, or offer a different level or quality of good or service, to the extent that doing so is reasonably related to the value of the applicable data. In addition, we may offer you financial incentives for the collection, sale and retention and use of your personal information as permitted by the CCPA that can, without limitation, result in reasonably different prices, rates, or quality levels. The material aspects of any financial incentive will be explained and described in its program terms. We may add or change incentive programs and/or their terms by posting notice on the program descriptions and terms linked to above so check them regularly.

3. Exercising Your Privacy Rights

For the most part, we enable exercise of the privacy rights described in the paragraphs above directly through our Services when logged in.

If you are a California resident and you would like to make a request for access, portability, or deletion of your information, you may submit a request through the CCPA Request Form by email at [email protected] or by phone at (888) 806-2882.

4. California’s “Shine the Light” Law. California's “Shine the Light” law requires us to respond to requests from California customers asking about our practices related to disclosing certain types of personal information to third parties for their direct marketing initiatives. You may make such a request by completing and submitting a STL Request Form.

{{cart.subscriptionName}}

Privacy Policy

Privacy Policy

Notice for Privacy Practices for PHI

Notice to California Residents

Title Goes Here