This Privacy Policy explains how Ezm5 Digital Inc. (“EZM5”, “we”, “our”, or “us”) collects, uses, shares, stores, and protects personal information when you use the EZM5 commercial website at ezm5.com, the EZM5 web app at ezm5.app, the EZM5 mobile app, account features, guest access, SafeShare, and related services (together, the “Services”).
This Privacy Policy should be read together with our Terms of Use and Cookie Policy.
1. Summary
EZM5 helps adults store, organize, view, download, and manage health-related information for themselves and for profiles they manage, including family members and children.
We collect the information needed to provide, secure, support, and improve the Services. This includes account information, profile information, health-related records, uploaded documents, app activity, sharing and guest-access information, commercial website usage data, cookie and consent data, and limited technical information.
We do not sell your health records, uploaded documents, measurements, profile details, SafeShare data, or guest-access data. We do not use that information for advertising, targeted advertising, remarketing, or behavioral advertising.
The Commercial Website may use Google Analytics cookies if you accept analytics cookies, as described in our Cookie Policy. The App and Web app do not use analytics cookies.
2. Definitions
“Account Holder” means a person who creates or uses an EZM5 account.
“App” means the EZM5 web app at ezm5.app and the EZM5 mobile app.
“Commercial Website” means the public EZM5 website at ezm5.com and related public pages used to describe EZM5, its features, product information, support information, or related content.
“Guest” means a person who accesses shared profile information through SafeShare, a guest code, invitation, link, or another guest-access feature without necessarily creating an EZM5 account.
“Pair User” means a person invited to access or help manage profile information through a Subscription membership role.
“Profile” means a record space for one person whose information is managed through the Services.
“SafeShare” means an EZM5 feature that allows temporary or controlled guest access to selected profile information through a guest code or another access method made available by EZM5.
“Services” means the Commercial Website, the App, account services, Profiles, Subscriptions, SafeShare, guest access, support, legal-document access, and related EZM5 services.
“Subscription” means an EZM5 account structure or plan that may define profile capacity, file storage capacity, SafeShare availability, Pair User capacity, Subscription status, or related limits. A Subscription may be free, trial, paid, promotional, or otherwise made available by EZM5.
“Your Content” means information, records, files, images, documents, measurements, notes, comments, profile details, event information, and other material that you submit, upload, create, edit, store, access, transmit, or share through the Services.
3. Who We Are
EZM5 is a company registered in Delaware, United States of America. The Services are designed to help individuals and families organize health-related records, documents, measurements, events, and profile information. Only adults may create an account, but an adult Account Holder may create and manage Profiles for other people, including children, when they have the authority to do so.
4. Scope
This Privacy Policy applies to:
- the Commercial Website;
- the App;
- account registration, login, password reset, and account management;
- Profiles, Subscriptions, events, measures, charts, files, documents, and downloads;
- SafeShare, guest access, invitations, and Pair User access;
- support, email, security, and legal-document services; and
- related EZM5 services that link to this Privacy Policy.
Third-party websites, app stores, payment providers, device platforms, browsers, and external services that are not controlled by EZM5 are governed by their own privacy policies.
5. Information We Collect
We collect information you provide directly, information created through your use of the Services, information needed to operate and secure the Services, and cookie or similar-technology data from the Commercial Website.
5.1 Account and Authentication Information
When you register, log in, reset your password, or use account-based features, we process information such as your email address, password credentials in protected form, verification-code or reset-code activity, authentication tokens, registration date, and account status. The mobile app stores authentication tokens on your device using secure device storage where supported.
5.2 Profile, Subscription, and Membership Information
When you create or manage Profiles, Subscriptions, and memberships, we process information such as profile name, sex, birthdate, comments, Subscription name, Subscription tier or plan, Subscription status, membership role, Pair User invitations, Pair User access status, profile capacity, file storage usage, and SafeShare usage.
5.3 Health-Related Records, Events, Measures, and Documents
EZM5 stores the health-related information you choose to enter or upload through the Services. This may include event names, dates, notes, observations, measurements and their units, chart data, uploaded documents, uploaded images, file names, and related file information.
5.4 Sharing, Guest Access, and SafeShare Information
When you use SafeShare, Pair User access, invitations, guest access, or related access controls, we process information needed to grant, display, use, and revoke access. This may include guest codes, active sharing sessions, Subscription membership details, open invitations, access status, and records showing which Account Holder, Pair User, or Guest has access to which Profile.
Guests may be able to view information shared with them through the Services. We may process guest technical and access information, such as IP address, browser or device information, access time, guest-code activity, and security logs, to provide and protect guest access.
5.5 Commercial Website Information
When you visit the Commercial Website, we may process website usage and technical information such as IP address, browser type, device information, pages visited, referring page, approximate location derived from technical data, cookie identifiers, consent preferences, and interactions with website content. If you contact us by email or through a website feature, we collect the information you choose to send.
5.6 Technical and Usage Information
Across the Services, we process limited technical and usage information needed to operate, secure, debug, support, and improve the Services. This may include server logs, device and browser information, IP address, authentication events, API requests, error logs, file download or viewing activity, and records of actions such as creating, editing, sharing, accessing, or deleting data.
6. How We Use Information
We use personal information to:
- provide and maintain the Services;
- authenticate users and protect accounts;
- create and manage accounts, Profiles, Subscriptions, memberships, events, documents, measures, charts, downloads, SafeShare sessions, guest access, and Pair User access;
- operate the Commercial Website and manage cookie preferences;
- measure Commercial Website performance and usage where permitted and, when required, with consent;
- secure the Services, prevent unauthorized access, and investigate misuse;
- troubleshoot problems, fix errors, and respond to support requests;
- send service-related communications, including verification codes, password reset messages, account notices, and security notices;
- send product updates, newsletters, or feature information where permitted by law or with your consent;
- process account requests and privacy-rights requests;
- maintain necessary business records; and
- comply with applicable legal obligations.
You can unsubscribe from marketing emails at any time. Service, security, and account messages may still be sent when needed to provide or protect the Services.
7. Service Providers
We use third-party service providers to operate the Services. These providers may process personal information only as needed to provide services to EZM5 and must protect the information under contractual obligations.
7.1 Heroku
Heroku provides platform-as-a-service infrastructure used for hosting and operating parts of the App. Communications are encrypted in transit using HTTPS. Heroku processes information only as necessary to operate the platform securely and efficiently.
7.2 Amazon Web Services (AWS)
AWS provides cloud infrastructure used to store and manage data associated with your account, including uploaded documents and structured records. Data is encrypted in transit and at rest. AWS processes information only as necessary to provide infrastructure services used by EZM5.
7.3 Website, Cookie, and Analytics Providers
The Commercial Website may use third-party services for functional website operations, caching, cookie consent, security, fonts, and analytics. The Cookie Policy identifies the cookie categories we use, including essential cookies and optional Google Analytics cookies. Non-essential analytics cookies are handled according to the Cookie Policy and applicable consent choices.
8. Legal Bases for Processing
Where privacy laws require a legal basis, we process personal information because:
- processing is necessary to provide the Services and perform our agreement with you;
- you have provided information or consent for a specific purpose;
- we have legitimate interests in operating, securing, supporting, maintaining, and improving the Services;
- processing is necessary to protect users, Guests, Pair Users, EZM5, or the Services; or
- processing is necessary to comply with legal obligations.
When health-related information is treated as sensitive information under applicable law, we process it only as needed to provide the Service features you use, with your consent, or under another legal basis permitted by law.
9. Cookies and Similar Technologies
The Commercial Website uses cookies and similar technologies as described in the Cookie Policy. These include essential cookies for website operation, caching, and cookie-consent preferences, and optional analytics cookies through Google Analytics if you accept them.
The App may use essential cookies when necessary for login, security, session management, guest access, and basic operation. The mobile app uses secure device storage for authentication tokens and related session information where supported.
The App does not use analytics cookies. EZM5 does not use cookies for third-party advertising, behavioral advertising, or remarketing.
You can manage Commercial Website cookie choices through the cookie banner or preference tools where available, and you can also control cookies through your browser settings. If you block or delete essential cookies or local storage, some Services may not work properly, including login, session security, guest access, and website functionality.
10. Data Ownership and User Control
Your Content remains under the control of the Account Holder or authorized user who manages it. EZM5 does not claim ownership of the health records, documents, measurements, notes, or other content that users upload or enter into the Services.
Users may access, export, share, revoke access to, or delete information using the tools provided by the Services, subject to role permissions, technical limits, legal requirements, and security needs.
11. How We Share Information
We do not sell your health records, uploaded documents, measurements, profile details, SafeShare data, or guest-access data. We do not use or disclose that information for advertising, targeted advertising, remarketing, or behavioral advertising.
We share information only in the situations described below.
When you choose to share information, the Services may make profile data available to people you authorize. For example, SafeShare allows Guest access through a valid guest code or other access method, and Pair User access allows invited users to access profile information according to their role. You can revoke sharing sessions, cancel invitations, revoke Pair User access, or leave Pair User access where the Services provide those controls.
We share information with service providers that help us operate the Services, such as hosting, cloud infrastructure, storage, security, email delivery, website operations, cookie consent, analytics, and technical support providers.
The Commercial Website may use Google Analytics cookies if you accept analytics cookies. Google Analytics is used for website statistics and product-improvement insight, not advertising or remarketing. Depending on where you live, cookie-based analytics disclosures may be subject to privacy choices or opt-out rights. Those choices are described in the Cookie Policy.
We may disclose information if required by law, or when we believe disclosure is necessary to protect the rights, safety, security, or integrity of users, Guests, Pair Users, EZM5, or the Services.
If EZM5 is involved in a merger, acquisition, financing, reorganization, sale of assets, bankruptcy, or similar corporate transaction, personal information may be reviewed or transferred as part of that process. Before user health data is transferred to a new controller or owner in a way that materially changes who controls it, we will give affected users advance notice and a reasonable opportunity to export, delete, or otherwise decide what to do with their data, unless the law prevents us from doing so.
12. Storage, Security, and Retention
We use technical and organizational safeguards designed to protect personal information, including encryption in transit and encryption at rest for stored data. Administrative access to cloud and data systems is restricted and protected by multi-factor authentication where available.
Data associated with the App is stored and processed in the United States. Commercial Website data may also be processed in the United States or in other locations where our website, cookie, and analytics providers operate. If you use the Services from outside the United States, your information may be transferred to, stored in, and processed in the United States or other countries where privacy protections may differ from those in your country of residence.
We keep personal information for as long as needed to provide the Services, maintain your account, comply with legal obligations, resolve disputes, enforce agreements, protect security, prevent fraud or misuse, and maintain necessary business records. Health-related records and uploaded documents are retained while they remain in your account or in a Profile you manage, unless you delete them or request deletion.
When you delete individual records, files, events, Profiles, or your account, we remove them from active systems according to the Services’ deletion process. Deleted information may remain for a limited time in encrypted backups or system logs before it is automatically overwritten or deleted, unless a longer period is required by law, security, fraud-prevention, dispute-resolution, or necessary business-record needs.
Cookie retention periods and website cookie details are described in the Cookie Policy where available.
13. Your Choices and Rights
You can use Services controls to create, edit, download, share, revoke access to, or delete certain information, depending on your role and permissions.
Depending on where you live, you may have rights to access, correct, delete, export, restrict, or object to the use of your personal information, withdraw consent where processing is based on consent, opt out of marketing communications, opt out of certain cookie-based analytics disclosures, and limit certain uses of sensitive personal information.
To exercise these rights, contact us using the details below or use available cookie preference tools for Commercial Website cookies. We may need to verify your identity and authority before completing a request, especially when the request involves health-related information or another person’s Profile.
14. Children and Family Profiles
Only adults who are at least 18 years old may create an EZM5 account. The App does not knowingly collect information directly from children. Adults may create and manage Profiles for children or other family members when they have the appropriate authority and responsibility to do so.
The Commercial Website is not directed to children under 13.
15. Your Role in Protecting Information
Please use a strong password, keep your login credentials private, protect your device with a passcode or biometric lock, keep your device and software updated, and log out when using a shared device. Keep guest codes, invitations, links, and shared access confidential. EZM5 will not ask for your password by email.
If you believe your account, device, Profile, guest code, invitation, link, or shared access has been compromised, contact us promptly.
16. Changes to This Policy
We may update this Privacy Policy to reflect changes in the Services, legal requirements, or our privacy practices. If we make material changes, we will provide notice on the Commercial Website, in the App, by email, or by another appropriate method before the changes take effect when required by law.
17. Contact Us
If you have questions about this Privacy Policy or want to exercise your privacy rights, contact us at:
Ezm5 Digital Inc.
Dover, DE 19901, USA
Email: info@ezm5.com
