Last Updated and Effective: November 29, 2018
Policy Scope and Links to Other Websites
The Information We Collect and How We Use It
Sonic Boom collects personal information about you in order to:
- identify you each time you wish to have a Service provided;
- improve our Services;
- fulfill orders and collect payment;
- customize your experience;
- carry out research on the demographics, interests, and behavior of our users;
- send you information we think you may find useful, including information about new Sonic Boom products and Services; and
- track content and users as necessary to comply with the California Online Privacy Protection Policy Act, the Digital Millennium Copyright Act, and other applicable laws.
Depending on the Service, personal information we collect from you, your employer, or a third-party may include:
- first name;
- last name;
- email address;
- phone number;
- time zone;
- profile image;
- date of birth;
- names and information concerning dependents;
- other contact information;
- employer information;
- activity-tracker data;
- biometric data;
- health assessment data; and
- third-party service login credentials.
In some cases, the last 4 digits of your social security number or your employee identification number will be used in connection with the Sonic Boom registration process. This information is strictly used to authenticate your identity and is not used, shared to, or discoverable by other users. However, your name and other information you choose to provide on the Site may be viewable and discoverable by other users, in accordance with your personal settings on the Site.
In some cases, your organization may authorize us to integrate your health-related data from external sources, which will be subject to federal Health Insurance Portability and Accountability ACT (“HIPAA”) guidelines to protect your personally identifiable information and your protected health information (“PHI”). In order to exchange data with, or integrate data from, an external vendor, we establish a Business Associate Agreement (“BAA”) with each vendor, contractually obligating each party to fully comply with the privacy-protection laws required by HIPAA. Your PHI is not viewable by your employer, and any aggregate data shared with your employer will be de-identified.
Third-Party Service Credentials
Our Service allows you to integrate and import data from third-party activity tracker services such as Fitbit and HumanAPI (“Third-Party Services”). In order to take advantage of this feature, you may need to authenticate, register for or log into Third-Party Services through the Service or on the websites of their respective providers. When you enable linking between Third-Party Services through the Service, we collect relevant information necessary to enable the Service to access the Third-Party Service and your data and content contained within that Third-Party Service (“Login Credentials”). We store your Login Credentials long enough to enable linking to the Third-Party Service.
We may retain certain personal non-identifiable information related to the data or content linked between Third-Party Services (for example, date sent, link configuration, names of the Third-Party Services), for the purpose of improving our Services.
You may also provide us information by posting it to the Site or mobile application. Your information and metadata (which is a set of data that describes and gives information about other data) about your information may be viewed by other users in accordance with your settings on the Site. Sonic Boom can, but has no obligation to, monitor the information you post on the Site. We can remove any information you post for any reason. Unless such information is made non-viewable in accordance with your settings on the Site, Sonic Boom and Sonic Boom employees may view your information:
- to communicate with you about various matters pertaining to the Site and the Services;
- to process orders and shipments;
- to maintain, provide, or improve the Site;
- to help you and resolve your support requests;
- to provide you with health-coaching services; or
- to answer questions related to progress toward incentives, which may include outcomes-based activities linked to biometric results or improvements.
Through the Sonic Boom Site
As is true of most other websites, the Site collects certain information automatically and stores it in log files. The information may include (i) internet protocol (“IP”) addresses; (ii) the region or general location where your computer or device is accessing the internet; (iii) browser type; (iv) operating system; and (v) other usage information about the use of the Site, including a history of the pages you view. We use this information to help us design our Services to better suit our users’ needs. We may also use your IP address to help diagnose problems with our server and to administer our Site, analyze trends, track visitor movements, and gather broad demographic information that assists us in identifying visitor preferences. We do not link IP addresses to your name or email address.
When you use the Site, we may employ web beacons which are used to track the online usage patterns. In addition, we may also use web beacons in HTML-based emails sent to our users to track which emails are opened by recipients. The information is used to enable more-accurate reporting and make Sonic Boom better for our users and the public.
Aggregated Service Data
In an ongoing effort to better understand and serve Sonic Boom’s customers, at times Sonic Boom conducts research on its customer demographics, interests and behavior based on the personal information and other information provided to us. This research may be compiled and analyzed on an aggregate basis and Sonic Boom may share this aggregate data with its affiliates, agents, and business partners. This aggregate information does not identify you personally and is not considered to be personal information.
When and How We Share Personal Information with Others
We only share personal information with third parties who are facilitating the delivery of Services. We will not sell, disseminate, or lease any personal information to third parties unless we have specifically requested your permission or are required to do so in response to lawful requests by public authorities, including meeting national security or law-enforcement requirements.
Your Choices About Your Information
You may, of course, decline to submit personal information through the Site, in which case Sonic Boom may not be able to provide certain services to you. You may update or correct your account information at any time by logging into your User Account.
You may opt out of any future contact or notifications from us, change your notification preferences, or make any of the following requests at the contact information provided below:
- see what data we have about you, if any;
- change or correct any data we have about you;
- have us delete any data we have about you; and/or
- express any concern you have about our use of your data.
You can contact us directly at firstname.lastname@example.org to review and correct the information about you that Sonic Boom keeps on file, or to change your notification preferences.
When you sign up for our Services, we will retain your personal information for as long as your account is in existence or as long as we need it to provide the Services to you. If you would like to cancel your Sonic Boom User Account you may do so by emailing email@example.com. When you request cancellation of your User Account, pending your employer’s approval, your personal information will be deleted, including but not limited your email address, name, photo(s), height, weight, and achievements. Archival copies of your account information that exist within our back-up system will be deleted in accordance with our normal back-up expiration schedule. Following cancellation or termination of your User Account, Sonic Boom may continue to utilize de-identified and anonymized historical data associated with your use of the Sonic Boom Site and Services.
How We Protect Your Information
The security of your information is important to us. We maintain physical, technical, and administrative safeguards to protect your personal information. When you enter any information (such as height or weight) as part of the Site and the Services, we encrypt the transmission of that information using secure socket layer technology (SSL). Sonic Boom uses commercially reasonable physical, managerial, and technical safeguards to preserve the integrity and security of your personal information once we receive it. For example, we regularly back up your data to help prevent data loss and aid in data recovery. We also guard against common web attack vectors, host servers and data in secure SSAE 16-audited data centers, and implement firewalls and access restrictions on our servers to secure our network and better protect your information. In addition, our business practices are reviewed periodically for compliance with policies and procedures governing the security and confidentiality of our information. However, no method of electronic transmission of storage is 100% secure and we cannot ensure or warrant the absolute security of any information you transmit or store in the Site.
Your access to the Services and certain Content is password protected. We advise that you do not disclose your password to anyone. In addition, we recommend that you sign out of password-protected services at the end of your session. You must immediately notify us of any unauthorized use of your password or User Account.
Compromise of Personal Information
International Data Transfer
Sonic Boom Wellness Blog & Community
The Site offers publicly accessible community services including blogs, and our marketing site. You should be aware that any information you provide in these areas, which may include but is not limited to personal stories, photos, names, recipes, and other personal or proprietary information, may be read, collected, and used by others who access them. Your posts may remain even after you cancel your User Account. Any information you provide in these areas becomes public information. You should exercise caution when disclosing any personal information in these public areas.
Protecting the privacy of young children is especially important. Neither the Site nor the Services are directed to persons under the age of 18. Sonic Boom does not knowingly collect or solicit personal information from anyone under the age of 18 without parental consent, or knowingly allow such persons to register with the Site or the Services. If we become aware that we have collected personal information from a child under the age of 18 without verification of parental consent, we take steps to remove that information. If you believe that we might have any information from or about a child under the age of 18, please contact us at firstname.lastname@example.org.
“Do Not Track” Policy
Sonic Boom does not track its customers over time and across third-party websites to provide targeted advertising and therefore does not respond to Do Not Track (DNT) signals.
Impact of Sale or Merger
Attn: Sonic Boom Wellness
140 West 3rd Avenue
Escondido, CA 92025