Mendel Health Inc. Privacy Notice
Last Updated: June 17, 2025
This Privacy Notice applies to the processing of personal information byMendel Health Inc. (“Mendel,” “we,” “us,” or “our”)including through our Hypercube web interface, on our website available at www.mendel.ai,and our other online or offline offerings which link to, or are otherwisesubject to, this Privacy Notice (collectively, the “Services”).
Disclosure Regarding Customer Data. This PrivacyNotice does not apply to the personal information that we process on behalf ofour customers pursuant to a written agreement we have entered into with suchcustomers (“Customer Data”). Our customers’ respective privacy noticesor policies govern their collection and use of Customer Data. Our processing ofCustomer Data is governed by the contracts that we have in place with ourcustomers, not this Privacy Notice. Any questions or requests relating toCustomer Data should be directed to our customer.
1. UPDATES TO THIS PRIVACY NOTICE
2. PERSONAL INFORMATION WE COLLECT
3. HOW WE USE PERSONAL INFORMATION
4. HOW WE DISCLOSE PERSONALINFORMATION
5. YOUR PRIVACY CHOICES AND RIGHTS
6. INTERNATIONAL TRANSFERS OFPERSONAL INFORMATION
7. CHILDREN’S PERSONAL INFORMATION
8. THIRD-PARTY WEBSITES/APPLICATIONS
We may update this Privacy Notice from time to time in our solediscretion. If we do, we’ll let you know by posting the updated Privacy Noticeon our website, and/or we may also send other communications.
We collect personalinformation that you provide to us, personal information we collectautomatically when you use the Services, and personal information fromthird-party sources, as described below.
A. Personal Information You Provideto Us Directly
We may collectpersonal information that you provide to us.
· Account Information. We may collect personal information in connection with the creation oradministration of your account. This personal information may include, but isnot limited to, your name, email address, phone number, and other informationyou store with your account.
· Your Communications with Us. We, and our service providers, may collect the information youcommunicate to us, such as through email.
· Surveys. We may contact you to participate in surveys. If you decide toparticipate, we may collect personal information from you in connection withthe survey.
· Interactive Features. We and others who use our Servicesmay collect personal information that you submit or make available through ourinteractive features (e.g., messaging features, commenting functionalities,forums, blogs, and social media pages). Any information you provide using the public sharing features of theServices will be considered “public.”
· Sweepstakes or Contests. We may collect personalinformation you provide for any sweepstakes or contests that we offer. In somejurisdictions, we are required to publicly share information of sweepstakes andcontest winners.
· Conferences, Trade Shows, and OtherEvents. We maycollect personal information from individuals when we attend or hostconferences, trade shows, and other events.
· Business Development and StrategicPartnerships. We maycollect personal information from individuals and third parties to assess andpursue potential business opportunities.
· Job Applications. If you apply for a job with us, we will collect any personal informationyou provide in connection with your application, such as your contactinformation and CV.
B. Personal Information Collected Automatically
We may collectpersonal information automatically when you use the Services.
· Device Information. We may collect personal information about your device, such as yourInternet protocol (IP) address, user settings, cookie identifiers, other uniqueidentifiers, browser or device information, Internet service provider, andlocation information (including, as applicable, approximate location derivedfrom IP address and precise geo-location information).
· Usage Information. We may collect personal information about your use of the Services,such as the pages that you visit, items that you search for, the types ofcontent you interact with, information about the links you click, the frequencyand duration of your activities, and other information about how you use theServices.
· Cookie Notice (and OtherTechnologies). We, as well as third parties, may use cookies, pixeltags, and other technologies (“Technologies”) to automatically collectpersonal information through your use of the Services.
o Cookies. Cookies are small text files stored in device browsers.
o Pixel Tags/Web Beacons. A pixel tag (also known as a web beacon) is a piece of code embeddedin the Services that collects personal information about use of or engagementwith the Services. The use of a pixel tag allows us to record, for example,that a user has visited, a particular web page or clicked on a particularadvertisement. We may also include web beacons in e-mails to understand whethermessages have been opened, acted on, or forwarded.
See “Your PrivacyChoices and Rights” below to understand yourchoices regarding these Technologies.
C. Personal Information Collected from Third Parties
We may collect personalinformation about you from third parties. For example, if you access the Services using a Third-Party Service(defined below), we may collect personal information about you from thatThird-Party Service that you have made available via your privacy settings. Inaddition, users of the Services may upload or otherwise provide personalinformation about others.
We usepersonal information for a variety of business purposes, including to providethe Services, for administrative purposes, and to provide you with marketingmaterials, as described below.
A. Provide the Services
We use personalinformation to fulfill our contract with you and provide the Services, such as:
· Managing your information;
· Providing access to certain areas, functionalities,and features of the Services;
· Answering requests for support;
· Communicating with you;
· Sharing personal information with third parties asneeded to provide the Services;
· Processing applications if you apply for a job we poston our Services; and
· Allowing you to register for events.
B. Administrative Purposes
We use personal information forvarious administrative purposes, such as:
· Pursuing our legitimate interests such as directmarketing, research and development (including marketing research), network andinformation security, and fraud prevention;
· Detecting security incidents, protecting againstmalicious, deceptive, fraudulent or illegal activity, and prosecuting thoseresponsible for that activity;
· Carrying out analytics;
· Measuring interest and engagement in the Services;
· Improving, upgrading, or enhancing the Services;
· Developing new products and services;
· Creating de-identified and/or aggregated information. If we create orreceive de-identified information, we will not attempt to reidentify suchinformation, unless permitted by, or required to comply with, applicable laws;
· Ensuring internal quality control and safety;
· Authenticating and verifying individual identities,including requests to exercise your rights under this Privacy Notice;
· Debugging to identify and repair errors with theServices;
· Auditing relating to interactions, transactions, andother compliance activities;
· Enforcing our agreements and policies; and
· Carrying out activities that are required to complywith our legal obligations.
C. Marketing
We may use personal information to tailor and provide you withmarketing and other content. We may provide you with these materials aspermitted by applicable law.
CaliforniaShine the Light: If you are a California resident, you mayannually submit a request to us to find out whether we have shared yourpersonal information with third parties for the third parties’ direct marketingpurposes. If you would like to submit such a request, please “Contact Us.”
If you have any questions about ourmarketing practices, you may contact us at any time as set forth in “Contact Us” below.
D. With Your Consent or Direction
We may use personalinformation for other purposes that are clearly disclosed to you at the timeyou provide personal information, with your consent, or as otherwise directedby you.
E. Automated Decision Making
We may engage in automated decision making, includingprofiling. Mendel’s processingof your personal information will not result in a decision based solely onautomated processing that has a legal or other similarly significant effect onyou unless such a decision is necessary as part of a contract we have with you,we have your consent, or we are permitted by law to engage in such automateddecision making.
If you have questions about ourautomated decision making, you may contact us as set forth in “Contact Us” below.
We disclosepersonal information to third parties for a variety of business purposes,including to provide the Services, to protect us or others, or in the event ofa major business transaction such as a merger, sale, or asset transfer, asdescribed below.
A. Disclosures to Provide theServices
We may disclose any of the personal information we collect to thecategories of third parties described below.
· Service Providers. We may disclose personal information to third-party service providersthat assist us with the provision of the Services. This may include, but is notlimited to, service providers that provide us with hosting, customer service,analytics, marketing services, IT support, and related services. In addition,personal information and chat communications may be disclosed to serviceproviders that help provide our chat features.
Some of the service providers wemay use include:
o Google Analytics. For more information about how Google uses yourpersonal information, please visit GoogleAnalytics’ Privacy Policy. To learn more about how toopt-out of Google Analytics’ use of your personal information, please click here.
o LinkedIn Analytics. For more information about how LinkedIn uses your personalinformation, please visit LinkedInAnalytics’ Privacy Policy. To learn more about how toopt-out of LinkedIn’s use of your information, please click here.
· Third-Party Services You Share orInteract With. The Services may link to or allow you to interface,interact, share information with, direct us to share information with, accessand/or use third-party websites, applications, services, products, andtechnology (each a “Third-Party Service”).
Any personal information shared with a Third-PartyService will be subject to the Third- Party Service’s privacy policy. We arenot responsible for the processing of personal information by Third-PartyServices.
· Business Partners. We may share your personal information with business partners toprovide you with a product or service you have requested. We may also shareyour personal information with business partners with whom we jointly offerproducts or services.
Onceyour personal information is shared with our business partner, it will also besubject to our business partner’s privacy policy. We are not responsible forthe processing of personal information by our business partners.
· Mendel Customers (Authorized Users Only).] In cases where you use our Services as an employee, contractor,or other authorized user of a Mendel customer, that customer may accessinformation associated with your use of the Services including usage data andthe contents of the communications and files associated with your account. Yourpersonal information may also be subject to the Mendel customer’s privacypolicy. We are not responsible for the Mendel customer’s processing of yourpersonal information.
· Affiliates. We may share your personal information with our corporate affiliates.
· Advertising Partners.We may share your personal information with third-party advertising partners.These third-party advertising partners may set Technologies and other trackingtools on our Services to collect information regarding your activities and yourdevice (e.g., your IP address, cookie identifiers, page(s) visited, location,time of day). These advertising partners may use this information (and similarinformation collected from other services) for purposes of deliveringpersonalized advertisements to you when you visit digital properties withintheir networks. This practice is commonly referred to as “interest-basedadvertising”, “personalized advertising”, or “targeted advertising.”
B. Disclosures to Protect Us orOthers
We may access,preserve, and disclose any information we store associated with you to externalparties if we, in good faith, believe doing so is required or appropriate to:comply with law enforcement or national security requests and legal process,such as a court order or subpoena; protect your, our, or others’ rights,property, or safety; enforce our policies or contracts; collect amounts owed tous; or assist with an investigation or prosecution of suspected or actualillegal activity.
C. Disclosure in the Event ofMerger, Sale, or Other Asset Transfers
If we areinvolved in a merger, acquisition, financing, reorganization, bankruptcy,receivership, purchase or sale of assets, transition of service to anotherprovider, or other similar corporate transaction, your personal information maybe disclosed, sold, or transferred as part of such a transaction.
Your PrivacyChoices. The privacychoices you may have about your personal information are described below.
· Email Communications. If you receive an unwanted email from us, you can use the unsubscribefunctionality found at the bottom of the email to opt out of receiving futureemails. Note that you will continue to receive transaction-related emails. Wemay also send you certain non-promotional communications regarding us and theServices, and you will not be able to opt out of those communications (e.g.,communications regarding the Services or updates to this Privacy Notice).
· Do Not Track Signals. Some web browsers incorporate other"do-not-track" (“DNT”) or similar features that signals towebsites with which the browser communicates that a visitor does not want tohave their online activity tracked. As of the Effective Date, not all browsersoffer a DNT option and DNT signals are not yet uniform. For this reason, wealong with many other digital service operators do not respond to all DNTsignals.
· Cookies and Tracking Technologies. You may stop or restrict theplacement of Technologies on your device or remove them by adjusting yourpreferences as your browser or device permits. However, if you adjust yourpreferences, the Services may not work properly.
Please note that cookie-based opt-outs are not effective on mobileapplications. However, you may opt-out of certain tracking on some mobileapplications by following the instructions for Android, iOS, and others.
The online advertising industry also provides mechanisms that may allowyou to opt out of receiving targeted ads from organizations that participate inself-regulatory programs. To learn more, visit the Network Advertising Initiative, the Digital Advertising Alliance, and the European Digital AdvertisingAlliance.
Please note you must separately opt out in each browser and on eachdevice.
Your Privacy Rights. In accordance with applicable law, you may have the right to:
· Confirm Whether We Are Processing Your PersonalInformation;
· Request Access to or Portability of Your PersonalInformation;
· Request Correction of Your Personal Information;
· Request Deletion of Your Personal Information;
· Request Restriction of or Object to our Processing of YourPersonal Information;
· Withdraw Your Consent to our Processing of Your PersonalInformation. Please note that yourwithdrawal will only take effect for future processing, and will not affect thelawfulness of processing before the withdrawal.
If you would like to exercise any of these rights, please contact us asset forth in “Contact Us” below. We willprocess such requests in accordance with applicable laws.
All personalinformation processed by us may be transferred, processed, and stored anywherein the world, including, but not limited to, the United States or othercountries, which may have data protection laws that are different from the lawswhere you live.
The Services are not directed to children under 16 (or other age as required bylocal law outside the United States), and we do not knowingly collect personalinformation from children.
If you are a parent or guardian and believe your child hasuploaded personal information to the Services in violation of applicable law,you may contact us as described in “Contact Us” below.
The Services may contain links to other websites/applications and otherwebsites/applications may reference or link to our Services. These third-partyservices are not controlled by us. We encourage our users to read the privacypolicies of each website and application with which they interact. We do notendorse, screen, or approve, and are not responsible for, the privacy practicesor content of such other websites or applications. Providing personalinformation to third-party websites or applications is at your own risk.
Mendel is the controller of the personal information we process underthis Privacy Notice.
If you have any questions about our privacy practices or this PrivacyNotice, or to exercise your rights as detailed in this Privacy Notice, pleasecontact us at: privacy@mendel.ai.
