MediMergent LLC

Privacy Notice

Effective: October 27, 2025

Overview

Personal Data We Collect

Categories of Personal Data We Collect

How We Use Your Personal Data

How We Obtain Your Personal Data        

        Who We Share Your Personal Data With

Your Rights Regarding Personal Data

        Accessing, Modifying, Rectifying, and Correcting Collected Personal Data

        Your California Privacy Rights

        Your Nevada Rights

Your Choices

        Clinical Trials

        Cookies, Web Tracking, and Advertising

Protecting Personal Data

Retention of Personal Data

Other Important Information About Personal Data and the Services

        Collection of Personal Data from Children

        Third-Party Websites and Services

        Business Transfer

        International Use

Modifications and Updates to this Privacy Notice

Applicability of this Privacy Notice

Additional Information and Assistance

1. Overview

MediMergent LLC, and each of its affiliates (collectively, “MediMergent,” “we,” “us,” “our”) respect your privacy and are committed to protecting the personal data we hold about you. If you have questions, comments, or concerns about this Privacy Notice or our processing of personal data, please see the bottom of this Privacy Notice for information about how to contact us.

This Privacy Notice explains our practices with respect to personal data we collect and process about you. This includes information we collect through, or in association with, our websites located at www.medimergent.com and www.mmresearchplatform.com, our products and services that we may offer from time to time via our website, or otherwise through your interactions with us (the website, products, and services, collectively, the “Services”).

Please review the following to understand how we process and safeguard personal data about you. By using any of our Services, whether by visiting our website or otherwise, and/or by voluntarily providing personal data to us, you acknowledge that you have read and understand the practices contained in this Privacy Notice. This Privacy Notice may be revised from time to time, so please ensure that you check this Privacy Notice periodically to remain fully informed.

2. Personal Data We Collect

We collect information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household (“personal data”). In addition, we may collect data that is not identifiable to you or otherwise associated with you, such as aggregated data, and is not personal data. To the extent this data is stored or associated with personal data, it will be treated as personal data; otherwise, the data is not subject to this notice.

1. Categories of Personal Data We Collect

The types of personal data we collect about you depends on your interactions with us and your use of the Services. We have collected the below categories of personal data from our users:

1. Your real name, alias, email address, account name, age, or phone number.
2. Electronic medical records and health information.
3. Medical claims information.

We will not collect additional categories of personal data other than those categories listed above. If we intend to collect additional categories of personal data, we will provide you with a new notice at or before the time of collection.

2. How We Use Your Personal Data

We collect and process your personal data for the following business purposes:

1. Providing, predicting, or performing, including maintaining or servicing accounts, providing customer service, processing, or fulfilling orders and transactions, and verifying customer information.
2. Communicating with you by email if you register your account or contact us through our websites.
3. Auditing related to a current interaction with the consumer and concurrent transactions, including, but not limited to, tracking and understanding user trends and preferences.
4. Detecting security incidents, protecting against malicious, deceptive, fraudulent, or illegal activity, and prosecuting those responsible for that activity.
5. Debugging to identify and repair errors that impair existing intended functionality.
6. Undertaking internal research for technological development and demonstration.
7. Undertaking activities to verify or maintain the quality or safety of the services or devices owned, manufactured, manufactured for, or controlled by us, and to improve, upgrade, or enhance the services or devices owned, manufactured, manufactured for, or controlled by us.
8. Complying with applicable laws, regulations, rules and requests of relevant law enforcement and/or other governmental agencies, or for other purposes, as permitted or required by law.
9. As necessary or appropriate to protect the rights, property, and safety of our users, us, and other third parties.

We will not use the personal data we collected for materially different, unrelated, or incompatible purposes without providing you with notice and obtaining your consent.

3. How We Obtain Your Personal Data

We collect your personal data from the following categories of sources:  

• Directly from you. When you provide it to us directly by email.

4. Who We Disclose Your Personal Data To

We disclose de-identified data with the following categories of third parties:

• Our contracted pharmaceutical and biotech business partners and/or associates for adverse event reporting.
• Our contracted partners, or prospective partners, in order to provide them with information about the use of the Services and levels of engagement with the Services, to allow us to enter into new business relationships.
• Government agencies or regulators when permitted or required to do so by law; in response to a request from a law enforcement agency or authority or any regulatory authority; and/or to protect the integrity of the Services or our interests, rights, property, or safety, and/or that of our users and others.

3. Your Rights Regarding Personal Data

You have certain rights regarding the collection and processing of personal data. You may exercise these rights, to the extent they apply to you, by contacting us at the information provided at the end of this Privacy Notice, or by following instructions provided in this Privacy Notice or in communications sent to you.

5. Accessing, Modifying, Rectifying, and Correcting Collected Personal Data

We strive to maintain the accuracy of any personal data collected from you and will try to respond promptly to update our records when you tell us the information in our records is not correct. However, we must rely upon you to ensure that the information you provide to us is complete, accurate, and up-to-date, and to inform us of any changes. Please review all of your information carefully before submitting it to us, and notify us as soon as possible of any updates or corrections through the contact methods listed below.

Depending on the laws that apply to you, you may obtain from us certain personal data in our records. If you wish to access, review, or make any changes to personal data you have provided to us through the Services, please contact us at the information provided at the end of this Privacy Notice. We reserve the right to deny access as permitted or required by applicable law.

6. Your California Privacy Rights

California’s “Shine the Light” law, permits our users who are California residents to request and obtain from us a list of what personal data (if any) we disclosed to third parties for their own direct marketing purposes in the previous calendar year and the names and addresses of those third parties. Requests may be made only once per year per person, must be sent to the email address below, and are free of charge. However, we do not disclose personal data protected under the “Shine the Light” law to third parties for their own direct marketing purposes.

7. Your Nevada Privacy Rights 

Nevada law permits our users who are Nevada consumers to request that their personal data not be sold (as defined under applicable Nevada law), even if their personal data is not currently being sold. Requests may be sent to the email address below.

4. Your Choices

You have choices about certain information we collect about you, how we communicate with you, and how we process certain personal data. When you are asked to provide information, you may decline to do so; but if you choose not to provide information that is necessary to provide some of our Services, you may not be able to use those Services. In addition, it is possible to change your browser settings to block the automatic collection of certain information.

8. Clinical Trials. If you volunteer to participate in a clinical trial only deidentified data is used in clinical trials. Please note that you may opt out of at any time through the contact methods listed below.

9. Cookies, Web Tracking, and Advertising. Most web browsers automatically accept cookies by default, but you can alter how your browser responds to cookies by adjusting the settings. You may opt out of certain tracking technologies through your device’s or browser’s cookie and/or advertising settings (including by blocking, deleting, or restricting cookies, or resetting your device’s applicable advertising ID). Consult your device or browser documentation for more information about how to do this.

5. Protecting Personal Data

We use reasonable and appropriate physical, technical, and organizational safeguards designed to promote the security of our systems and protect the confidentiality, integrity, availability, and resilience of personal data. All data is stored on AWS servers and access-based controls are in place. All personal data is encrypted at rest and in transit at the application level.

However, no method of safeguarding information is completely secure. While we use measures designed to protect personal data, we cannot guarantee that our safeguards will be effective or sufficient. In addition, you should be aware that Internet data transmission is not always secure, and we cannot warrant that information you transmit utilizing the Services is or will be secure.

6. Retention of Personal Data

We retain personal data to the extent we deem necessary to carry out the processing activities described above, including but not limited to compliance with applicable laws, regulations, rules and requests of relevant law enforcement and/or other governmental agencies, and to the extent we reasonably deem necessary to protect our and our partners’ rights, property, or safety, and the rights, property, and safety of our users and other third parties. Data is destroyed utilizing HIPAA and NIST SP 800-88 standards. We may retain deidentified data for analytic purposes.

7. Other Important Information About Personal Data and the Services.

1. Collection of Personal Data from Children. Children under 16 years of age are not permitted to use the Services, and we do not knowingly collect information from children under the age of 16. By using the Services, you represent that you are 18 years of age or older or are 16 years of age or older and have valid parental consent to do so.

2. Third-Party Websites and Services. As a convenience, we may reference or provide links to third-party websites and services. When you access these third-party services, you leave our Services, and we are not responsible for, and do not control, the content, security, or privacy practices employed by any third-party websites and services. You access these third-party services at your own risk. This Privacy Notice does not apply to any third-party services; please refer to the Privacy Notices or policies for such third-party services for information about how they collect, use, and process personal data.

3. Business Transfer. We may, in the future, sell or otherwise transfer some or all of our business, operations or assets to a third party, whether by merger, acquisition or otherwise. Personal data we obtain from or about you via the Services may be disclosed to any potential or actual third-party acquirers and may be among those assets transferred.

4. International Use. Your personal data will be stored and processed in the United States. If you are using the Services from outside the United States, by your use of the Services you acknowledge that we will transfer your data to, and store your personal data in, the United States, which may have different data protection rules than in your country, and personal data may become accessible as permitted by law in the United States, including to law enforcement and/or national security authorities in the United States.

8. Modifications and Updates to this Privacy Notice

This Privacy Notice replaces all previous disclosures we may have provided to you about our information practices with respect to the Services. We reserve the right, at any time, to modify, alter, and/or update this Privacy Notice, and any such modifications, alterations, or updates will be effective upon our posting of the revised Privacy Notice. Your continued use of the Services following our posting of any revised Privacy Notice will constitute your acknowledgement of the amended Privacy Notice.

9. Applicability of this Privacy Notice

This Privacy Notice is subject to the Terms of Service that govern your use of the Services. This Privacy Notice applies regardless of the means used to access or provide information through the Services.

This Privacy Notice does not apply to information from or about you collected by any third-party services, applications, or advertisements associated with, or websites linked from the Services. The collection or receipt of your information by such third parties is subject to their own privacy policies, statements, and practices, and under no circumstances are we responsible or liable for any third party’s compliance therewith.

10. Additional Information and Assistance

If you have any questions or concerns about this Privacy Notice and/or how we process personal data, please contact us at:

MediMergent, LLC

9210 Corporate Boulevard, Suite 100

Rockville, MD  20850

Attn: Privacy Officer

https://www.medimergent.com/contact/