Naeven Logo

Consumer Health Data Policy

Effective Date: 04/15/2025

At Naeven, your privacy and trust are at the heart of everything we do. Because we collect and use sensitive health-related information to provide personalized support for your baby’s nutrition and development, we treat that information with the highest level of care, confidentiality, and security.

This Consumer Health Data Policy outlines how Naeven collects, uses, protects, and shares health data in compliance with applicable U.S. laws, including the Health Insurance Portability and Accountability Act of 1996 (HIPAA).

1. Our Commitment to HIPAA Compliance

Naeven is fully committed to compliance with HIPAA. While not all health-focused services are required to meet HIPAA standards, we choose to uphold them because we believe it’s the right thing to do.

This means:

  • We only collect health data that is relevant and necessary for the services we provide.
  • We apply strict access controls and technical safeguards to protect your health information.
  • We limit access to your data to only those employees or service providers who need it to deliver services or support.
  • We never sell your health data, and we never share it without your explicit permission unless required by law.

2. What Health Data We Collect

When you use Naeven, we may collect health-related information you provide through our website, intake forms, quizzes, or other interactive tools. This may include:

  • Your baby’s age, feeding history, allergies, sensitivities, or dietary needs
  • Family medical history relevant to nutrition
  • Developmental milestones or health concerns
  • Other wellness or lifestyle details you voluntarily provide

We may also collect technical data (such as IP address or device ID) to improve your experience, but this information is kept separate from your health data wherever possible.

3. How We Use Your Health Data

We use the health data you share to:

  • Provide personalized formula recommendations or educational content
  • Tailor product suggestions to your baby’s unique needs
  • Improve our product offerings and service design
  • Support internal research and development (in a de-identified, aggregated format only)
  • Comply with regulatory or legal obligations, if necessary

We will always seek your consent before using your data in any way that goes beyond the purposes stated here.

4. How We Protect Your Data

To keep your information safe, we implement industry-standard physical, administrative, and technical safeguards, including:

  • Data encryption in transit and at rest
  • Access limitations based on user roles and responsibilities
  • Ongoing monitoring of our systems for security risks
  • Secure, HIPAA-compliant hosting and data storage environments

In the event of a data breach affecting your personal health data, we will notify you promptly as required by HIPAA and other applicable laws.

5. Sharing and Third-Party Services

We do not share or disclose your personal health data with any third party except:

  • With service providers who are under contract and bound to maintain the privacy and security of your data (e.g., hosting providers, email platforms, analytics tools)
  • When required by law (e.g., in response to a court order or subpoena)
  • With your explicit consent

When we use tools like Google Analytics or Hotjar, those services may collect non-health-related technical information (like page views or session length) to help us improve the site. These tools do not access or process any of your personal health information.

6. Your Rights

As a U.S. resident, you have certain rights under HIPAA and other data privacy laws, including the right to:

  • Access your personal health data
  • Request that we correct inaccuracies
  • Request that we delete your data, subject to legal retention requirements
  • Revoke your consent to data processing
  • File a complaint if you believe your data has been mishandled

To exercise any of these rights, email us at info@naevenhealth.com. We’ll respond within a reasonable time, and always within legally required timeframes.

7. Data Retention

We retain your health information only as long as necessary to provide our services, fulfill legal obligations, resolve disputes, or enforce our agreements. If you request that your data be deleted, we will do so securely and confirm once it’s complete.

8. Policy Updates

We may update this policy from time to time to reflect new features, regulations, or privacy best practices. We’ll notify you of significant changes via our website or email. Your continued use of Naeven’s services after changes are posted constitutes your acceptance of the updated policy.

9. Contact Us

If you have any questions, concerns, or requests related to your health data or this policy, please reach out:

📩 Email: info@naevenhealth.com

We are here to support you — with privacy, integrity, and care.