Last Revised: January 26, 2021


Privacy and security of your personal information are very important to us. This Privacy Policy describes how we, Planet 9 Inc., a corporation governed by the laws of the State of California, USA (“Planet 9,” ”we,” “our,” or “us”), collect, store, use, and disclose personal information (as defined below) of users of the websites found at,, (collectively, “Website”) and the web application associated with it and called HIPAA Vitals (“Web App”). 

We aim to limit our collection of personal information to only such personal information as required for legitimate purposes. We do not sell, rent, trade, or otherwise disclose your personal information to third parties, other than as described in this Privacy Policy. We take appropriate security measures to protect your personal information and we respect your right to access your personal information or have it corrected or deleted, at your request. If you have any questions or want to know exactly what personal information we keep about you, please contact us. All capitalized terms not defined herein are defined in our Terms of Use.

We may amend this Privacy Policy from time to time. We will post any changes to this Privacy Policy here so that you always know what information we gather, how we might use that information, and whether we will disclose that information to anyone. Please refer back to this Privacy Policy on a regular basis. By using the Website and/or Web App, you acknowledge that you accept the practices and policies outlined in this Privacy Policy and you hereby consent that we will collect, store, use, and disclose your personal information as outlined in this Privacy Policy. If you do not agree with any practices in this Privacy Policy, please stop using the Website and Web App.


Personal information,” also known as personal data or personally identifiable information, is any information related to an identifiable person. When you register for an Account, we may collect the following personal information from you: first name, last name, phone number, email, password, photo, entity name, number of employees, entity’s address, and any personally identifiable information that Clients provide to us voluntarily.


We may collect data that is non-personal, anonymous, or pseudonymous, including, but not limited to, your answers to our security assessment questionnaires, the time zone you are in, information on how you first heard about us, browser type, app usage history, number of logins, page views, and time/date of login.  


We only use information about you to support your experience throughout the Website or to communicate with you about our Website or Web App. In particular, we collect information about you: 

  • to recognize you as a registered user;
  • to respond to your inquiries or requests;
  • to provide customer support;
  • to provide you with reports about your business’ security practices;
  • to conduct market research; 
  • to comply with all applicable laws or if we are required by law or by a court order to do so;
  • to analyze non-personal or aggregate information for the sake of Website and Web App improvement; and
  • to transfer information in connection with the sale or merger or change of control of Planet 9.

We reserve the right to use and disclose non-personal information and anonymous aggregate statistics for any purpose and to any third party at our sole discretion.


Planet 9 does not sell, rent, or lease its customer lists or any Personal Information to third parties. However, Planet 9 might share data with trusted partners to help perform statistical analysis, send you emails, postal mail, or provide services. 

Planet 9 may disclose your Personal Information, without notice, if required to do so by law or in the good faith belief that such action is necessary to: (a) conform to the edicts of the law or comply with legal process; (b) protect and defend the rights or property of Planet 9; and/or (c) act under exigent circumstances to protect the personal safety of the public or users of the Website or Web App.


We use services offered by Amazon Web Services (AWS) to safely store your information. The data centers where we store your information are located in the United States. Please keep in mind that the data protection and privacy laws of the United States may not be as comprehensive as the laws in your country. For example, personal data transferred to the United States may be subject to lawful access requests by federal and state authorities in the United States. By providing your personal information, you consent to any transfer of your data and processing in accordance with this Privacy & Cookie Policy.


Planet 9 secures your Personal Information from unauthorized access, use, or disclosure. All personal data always remains encrypted at rest and in transit using strong encryption algorithms. When Personal Information is transmitted, it is protected through the use of encryption, such as the Secure Sockets Layer (SSL) protocol.

We strive to take appropriate security measures to protect against unauthorized access to your Personal Information. Unfortunately, no data transmission over the Internet or any wireless network can be guaranteed to be 100% secure. As a result, while we strive to protect your Personal Information, you acknowledge that: (a) there are security and privacy limitations inherent to the Internet which are beyond our control; and (b) security, integrity, and privacy of any and all information and data exchanged between you and us through our Website or Web App cannot be guaranteed.


If you submit any feedback about Planet 9, the Website, or Web App (collectively, “Feedback”), you hereby assign to Planet 9 all rights in the Feedback and agree that Planet 9 shall have the right to use such Feedback and related information in any manner it deems appropriate. We will treat any Feedback you provide to us as non-confidential and non-proprietary. You agree that you will not submit to us any information or ideas that you consider to be confidential or proprietary.


This Cookie Policy provides information about our use of cookies in connection with your use of and interaction with our Website. 

A “cookie” is a small piece of data sent along with pages of a website and stored by the user’s web browser on the user’s computer or mobile device. Cookies were designed to be a reliable mechanism for websites to remember certain information or to record a user’s browsing activity (including clicking particular buttons, logging in, or recording which pages were visited in the past). Cookies are intended to help you access a website faster and more efficiently because they can store information to help you enter a website without having to log in. In effect, cookies tell the website that your browser has been to the website before. It does not need to know your exact identity. Cookies can also be used to remember arbitrary pieces of information that the user previously entered into form fields such as names, addresses, passwords, and credit card numbers.

Browsers may accept or reject cookies automatically but allow you to change these settings. The help menu on most browsers will tell you how to change your browser’s settings and how to have the browser notify you when you receive a new cookie, and how to disable cookies altogether. You can also disable or delete cookies you have previously accepted if you wish to. 

Like many other websites, we also use cookies on our Website and Web App. By using the Website and Web App, you agree that we may set the cookies listed below. These cookies ensure that certain parts of the Website and Web App work properly and that your user preferences remain known. You do have the right to opt-out and to object against the further use of any cookies. However, if you do so, please keep in mind that our Website and Web App may no longer function properly for you.

The following are examples of cookies that may be used on our Website:

a) Application Session Cookies. This cookie is used to store and identify a users’ unique session ID for the purpose of managing user sessions on the Web App. This cookie is a session cookie and is deleted when all the browser windows are closed.

b) Google Analytics Cookies. This cookie is installed by Google Analytics and is used to store information of how visitors use the Website and Web App and helps in creating an analytics report about the Website and Web App. The data collected including the number of visitors, the source where they have come from, and the pages visited in an anonymous form.


Planet 9 does not knowingly collect personally identifiable information from children under the age of thirteen. If you are under the age of majority, you must ask your parent or guardian for permission to use our Website and Web App.


With your consent, you will receive updates, newsletters, surveys, offers, ads, and other promotional materials from us via your email. You may indicate a preference to stop receiving further communications or notifications from us by following the unsubscribe link provided in the email you receive. Despite your indicated preferences, we may send you service-related communication, including notices of any updates to our Terms of Use, Privacy Policy, or other statements.


Subject to certain exceptions set out below, on receipt of a verifiable request from you, we will permit you to make changes or updates or delete your personal information for legitimate purposes. We request identification prior to approving such requests. We reserve the right to decline any requests that are unreasonably repetitive or systematic, require unreasonable time or effort of our technical or administrative personnel, or undermine the privacy rights of others. You may send us your request by contacting us at

Please note that we may not be able to comply with requests to delete your Personal Information if it is necessary to:

  • detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity or prosecute those responsible for that activity;
  • debug to identify and repair errors that impair existing intended functionality;
  • comply with the California Electronic Communications Privacy Act;
  • enable solely internal uses that are reasonably aligned with your expectations based on your relationship with us;
  • comply with existing legal obligations; or
  • otherwise use your Personal Information internally, in a lawful manner that is compatible with the context in which you provided the information.


The European General Data Protection Regulation (“GDPR”) is a regulation in EU law on data protection and privacy for all natural persons accessing the Internet from the European Union and the European Economic Area, whatever their nationality or place of residence is. It also addresses the transfer of personal data outside the EU and EEA areas. Our collection, processing, and protection of personal information of those who access the Website from a European country is compliant with GDPR. 

If you are accessing and using the Website or Web App from the European Union and the European Economic Area, you have the following rights with regard to your personal information:

  • the right to be informed about what kind of information about you is collected, stored, processed, and disclosed by us (that is why we have compiled this Privacy Policy for you);
  • the right of access (you can request us to provide you verbally or in writing with the type of information we store about you and we have a month to respond to your request); 
  • the right to rectify (amend/correct) any personal information about you that is inaccurate;
  • the right to erasure (some conditions apply, see Data Retention section below);
  • the right to restrict processing your personal information, however, if you restrict us from processing a part of your personal information that is essential to our provision of the Website and Web App, you may be asked to terminate your Account and stop using the Website and Web App;
  • the right to data portability (the right to data portability allows users of the Website and Web App to obtain and reuse their personal information for their own purposes across different services; you may request us to transmit your personal information directly from our servers to another company’s servers and we will do so if it is technically feasible);
  • the right to object (for example, you have an absolute right to stop us from using your personal information for direct marketing – read our opt-out instructions below; you may express your objection verbally or in writing and we have a month to respond to any such objection; we might still continue processing your personal information if we are able to show that we have a compelling reason for doing so);
  • the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or that affects you significantly.

We represent and warrant that your personal information is:

  • processed lawfully, fairly, and transparently;
  • collected only for specific legitimate purposes; 
  • collection of personal data is adequate, relevant, and limited to what is necessary;
  • accurate and kept up to date (with your help); 
  • stored only as long as is necessary; and
  • is secure and kept in confidence.

Data Retention: Generally, your personal information will be erased when (i) it is no longer needed for its original processing purpose, (ii) you withdraw your consent for us to store by deleting your Account, (iii) there is no preferential justified reason for the processing of your personal information and you object to our processing of your personal information, or (iv) erasure of your personal information is required in order to fulfill a statutory obligation under the EU law or the right of the EU Member States. Therefore, we will make sure your personal information will be erased under all of the above-mentioned circumstances. You may request us to erase your personal information verbally or in writing and we have one (1) month to respond to any such request. 

Data Breach Notification: Should there be a personal data breach leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored, or otherwise processed, we will notify you and appropriate supervisory authority without undue delay and, where feasible, not later than seventy-two (72) hours after having become aware of it.


Planet 9 reserves the right to change this Privacy Policy from time to time. We will notify you about significant changes in the way we treat Personal Information by sending a notice to the primary email address specified in your Account, by placing a notice on our Website or in our Web App, and by updating any privacy information on this page. Your continued use of the Website and/or Web App after such modifications will constitute your: (a) acknowledgment of the modified Privacy Policy; and (b) agreement to abide and be bound by that Policy.


Planet 9 welcomes your questions or comments regarding this Privacy Policy. If you believe that Planet 9 has not adhered to this Privacy Policy, please contact Planet 9 at:


Phone:  888.437.3646