top of page

Privacy Policy

Effective Date: July 18, 2025

Last Updated: July 18, 2025

​​​

1. Introduction

We respect your privacy and prioritize the protection of your personal data. This Privacy Policy explains how we collect, use, process, disclose, and protect information submitted through our website and services.

 

2. Definitions

  • Personal Data: Any information that identifies, relates to, or could reasonably identify an individual (e.g., name, email address, IP address).

  • Sensitive Data: Special categories of data such as health, biometric, genetic, political, religious, union membership, criminal records, precise geolocation, and other sensitive traits—covered under Georgia’s Personal Data Protection Law

  • Controller / Processor: Parties responsible for determining how and why personal data is processed (Controller) and those who process data on the controller’s behalf (Processor).

 

3. Governing Law & Jurisdiction

This Privacy Policy, and any disputes arising from it or from your use of our services, shall be governed by the laws of the State of Georgia, without regard to its conflict‑of‑law provisions.

​

4. Data We Collect

  • Information you provide: Registration details, contact forms, purchases, communications.

  • Automatically collected data: IP address, browser/device information, usage patterns, cookies, analytics.

  • Third-party sources: Data from publicly available sources or social logins (only with consent).

 

5. Legal Basis for Processing

We rely on lawful grounds including:

  • Your consent (when required).

  • Performance of a contract.

  • Compliance with legal obligations.

  • Our legitimate interests such as fraud prevention and service improvements.

 

6. Purposes of Data Use

We use personal data to:

  • Provide, maintain, and enhance our services.

  • Send service communications and marketing (with your consent).

  • Secure our website against misuse and fraud.

  • Fulfill legal and regulatory obligations.

 

7. Sharing of Personal Data

We may share data with:

  • Service providers and affiliates, bound by contractual protections.

  • Government or law enforcement authorities when required.

  • Consent-based third parties or as permitted under Georgia’s Open Records Act (O.C.G.A. Title 50)

 

8. International Data Transfers

If personal data is transferred outside the U.S., we use legal safeguards (e.g., contractual clauses) and ensure compliance with Georgia’s laws.

 

9. Data Retention

We retain personal data only as needed for the stated purposes, legal obligations, dispute resolution, or enforcement requirements.

 

10. Security Measures

We maintain a suite of technical and organizational safeguards in accordance with Georgia’s Personal Data Protection Law, including:

  • Encryption (TLS/SSL)

  • Access controls and staff training

  • Policies, audits, and security awareness programs 

 

11. Cookies & Tracking Technologies

We use cookies and similar tech to improve user experience. You can control them via browser settings; however, this may impair functionality. We comply with site consent requirements.

 

12. Your Rights Under Georgia Law

Under the Law on Personal Data Protection, you have the right to:

  • Confirm data processing

  • Access your data

  • Correct or delete inaccuracies

  • Port data in machine-readable format

  • Object to automated decisions

  • Withdraw consent 

From July 1, 2026, under SB 473, you will also have the right to:

  • Opt out of sale/sharing for targeted advertising and profiling

  • Appeal adverse decisions with enforcement by the Georgia Attorney General

Response times: We will respond within 45 days (with a possible 45-day extension) or 10 working days for general data rights.

 

13. Data Protection Officer & Accountability

We may appoint a DPO and perform data protection impact assessments (DPIAs), as required under Georgia’s law for large or sensitive data operations.  We also maintain records of data processing activities.

 

14. Breach Notification

If a data breach likely to result in harm occurs, we will notify affected individuals and the Personal Data Protection Service (and Georgia AG after July 1, 2026) within required legal timeframes (typically within 72 hours or as state law mandates).

 

15. Children’s Privacy

Our website is not intended for use by children under 13. We do not knowingly collect information from minors. Should we become aware of such data, we will promptly delete it in compliance with COPPA.

 

16. Compliance with Federal Regulations

Where applicable, we comply with federal laws such as HIPAA (for health data) and GLBA (for financial data), ensuring proper protection and disclosure mechanisms.

 

17. Policy Updates

We may update this policy to reflect legal, regulatory, or operational changes. Major updates will be communicated on our website and, where appropriate, via email.

 

18. Contact Information

To exercise your rights or for inquiries, please contact:

Privacy Officer (DPO)
Email: privacy@qur8hlth.com
Address: Qur8Hlth, LLC., 225 Market Place Connector, #1220, Peachtree City, Georgia, 30269, USA

bottom of page