Demy™ Privacy Policy
Effective June 28, 2024
This Privacy Policy describes the personal data that we collect from or about you in connection with your use of the Demy™ mobile application ("App"); how we use that data; how we protect it; and the choices you may make with respect to it. Except as specifically provided below in the Additional State Disclosures Section, this Privacy Policy does not apply to any other information collected by Pfizer by or through any other means, such as information collected offline. When we refer to ourselves as "we" or "Pfizer", we mean Pfizer Inc. and all of its subsidiary companies. Our App may contain links to third party websites/content/services that are not owned or controlled by Pfizer. Pfizer is not responsible for how these properties operate or treat your personal data so we recommend that you carefully read the privacy policies and terms associated with those third-party properties.
Additional State and Local Disclosures: This Privacy Policy describes how we collect, use, disclose, and retain your personal data. For additional information relating to your rights and our processing of your personal data collected both online and offline, please see the Additional State Disclosures Section below.
Our Privacy Policy is organized in the following sections:
ContentsWe collect personal data about you directly from you, automatically through your use of our App, and from third parties.
Information We Collect Directly From You. When you use the App, we collect personal data to create your account and learn more about you and your migraines. If you do not already have a Global Patient Authentication ("GPA"), then you will need to create an account to use the App, for which you will need to provide your name, email address, and account password. To complete your profile, we will ask you to volunteer personal details, including your month and year of birth, sex assigned at birth, whether you've already been diagnosed with migraine, your zip code, menstrual information, and your goals for using the App. When you use the App, you can choose to provide additional information about your health, symptoms, lifestyle, and habits. We also may collect personal data you choose to provide through surveys, inquiries, coursework, and purchases.
Information We Collect Automatically To the extent permitted by applicable law, we and our third party business partners, including analytics and advertising partners, automatically collect information when you use our App through cookies or similar technologies, such as your interactions with content in the App, links you click, your IP address or other identifiers, and when and for how long you visit our App. Our third-party business partners may use these technologies to collect information about your in-app activities over time and across different services. See also, the Section below on Cookies and Other Tools.
Information We Collect From Other Sources We receive your personal data from third parties to provide you with the App services. In order to allow you access to the App, we receive details about your subscription status, including your subscriber ID, Sku ID, status, and renewal and lapse dates. You also may opt to integrate personal data from your Apple Health or Google Connect platform, in which case Apple or Google will share with us data or insights about your exercise, caloric and water intake, weight, sleep habits, heart rate variability, average resting heart rate, and screen time and brightness. And we may receive additional analytics about how you use the App from our third-party partners and service providers.
If you submit any personal data relating to other people to us, you represent that you have the authority to do so and to permit us to use the information in accordance with this Privacy Policy.
Information We Collect From Your Employer. Your employer will provide us with your personal data that includes your first name, last name, company email address, employee ID, or other unique identifier used for the purpose of validating you as an active employee of your employer.
We may use your personal data in the following ways for our business purposes:
We use your personal data to:
We may provide functionality on the App that will allow you to forward and share certain content with a friend, colleague, or healthcare provider. If you choose to use Pfizer sharing functionality to refer someone to our content, products or services, we will use your data and that of the individual you are sharing with to send the content or link you request.
As with all links to non-Pfizer websites/content/services, we recommend that you read the privacy policies and terms associated with third party properties carefully to learn how those third parties will collect, use, and disclose your personal data.
You must maintain a current and valid subscription to use the App, and also meet certain eligibility criteria (e.g., a minimum age of 18). In such cases, we may verify that you meet such criteria.
We use the information you provide for data analysis, to better understand how our products and services impact you and those you care for, to track and respond to concerns, for fraud prevention and to further develop and improve our products and services. In addition, we use the information you provide to comply with our regulatory monitoring and reporting obligations.
We and our third party business partners, including analytics and advertising partners, may use your personal data to communicate with you about new features, events, or products that may be of interest to you, including based on your interactions with the App or other services, where you instruct us to do so, such as when you grant permission to use cookies associated with these purposes, access services through the GPA, or otherwise consent to receive marketing communications. Our third-party business partners may also use your personal data to analyze and track your interactions and movements around the App and elsewhere on the internet for our and their own purposes. We and our third-party business partners may merge, co-mingle, or otherwise combine information, including your personal data, in furtherance of these purposes. To learn more, refer to the Cookies and Other Tools Section below.
We may aggregate and/or de-identify data and use it for any purpose, including product and service development and improvement activities. These activities may include research purposes, such as when we combine deidentified data across users to identify trends or associations for certain medical conditions. To the extent we deidentify any data originally based on personal data, we will maintain and use such data only in deidentified form and will not attempt to reidentify the data.
Pfizer may disclose your personal data for our business purposes as follows:
Pfizer Inc. and its subsidiary companies may disclose your personal data amongst and between each other for the purposes set forth in this Privacy Policy.
If we sell or transfer a business unit (such as a subsidiary) or an asset (such as a website) to another company (including in connection with any bankruptcy or similar proceedings), we will disclose your personal data to such company and will require such company to use and protect your personal data consistent with this Privacy Policy. We may also disclose your personal data to companies that were formerly wholly or partly included in the Pfizer family of companies to whom we provide services during a transition period following separation.
We may retain other companies and individuals to perform services on our behalf and we may collaborate with other companies and individuals with respect to particular products or services (collectively, "Providers"). These third parties may be provided with access to personal data, including through cookies, pixels, and similar technologies, to perform their functions. Examples of Providers include credit card processing companies, customer service and support providers, email and SMS vendors, advertising vendors, data analytics firms, hosting and development companies and fulfillment companies. Providers also include our co-promote partners for products that we jointly develop and/or market with other companies. Some Providers may collect personal data on our behalf on our App.
We reserve the right to disclose your personal data as required by law, when we believe disclosure is necessary or appropriate to comply with a regulatory requirement, judicial proceeding, court order, government request, or legal process served on us, or to protect the safety, rights, or property of our customers, the public, Pfizer or others.
Pfizer may also disclose aggregate or de-identified data that is not personally identifiable to third parties for any purpose permitted under applicable law. Your employer will also receive aggregated data or de-identified data to help your employer understand overall adoption and usage of the App in their organization, We will ONLY share aggregated or de-identified data, and NEVER share personally identifiable information with your employer.
You may have certain rights regarding our processing of your personal data under applicable local state law, including, for example, if you are a consumer in California or Virginia. If our processing of your personal data is governed by such laws, the following provisions apply to our processing of your personal data, whether collected online or offline. These provisions supplement the other sections of the Privacy Policy. If you are a Washington resident, please visit our Washington Health Data Privacy Policy to review our privacy practices related to your health data (defined below).
We do not “sell” or “share” for cross-contextual behavioral advertising (as those terms are defined under applicable local law) the categories of personal data described below. Instead, where we may use cookies for analytics purposes, for example, we do so at your instruction based on your permission to use cookies associated with this processing. We do not use or disclose sensitive personal data for purposes other than permitted under applicable local law.
As may be required under applicable local law, the chart below provides the categories of personal data that we: (1) collect and have collected in the preceding 12 months; and (2) disclose for a business purpose and have disclosed for a business purpose in the preceding 12 months. For more information about how we disclose your personal data, refer to the How We Disclose Your Personal Data Section above.
| CATEGORIES OF PERSONAL DATA WE COLLECT AND DISCLOSE | DISCLOSED TO WHICH CATEGORIES OF THIRD PARTIES |
|---|---|
| A. NAME, CONTACT INFORMATION AND IDENTIFIERS: Identifiers such as a real name, alias, postal address or zip code, unique personal identifier, online identifier, Internet Protocol address, email address, account name, month and year of birth, or other similar identifiers. | Pfizer Inc.'s subsidiary companies; Providers; professional advisors; government entities as required by law |
| B. PROTECTED CLASSIFICATIONS: Characteristics of protected classifications under applicable state or federal law such as sex, gender, age, and disability. | Pfizer Inc.'s subsidiary companies; Providers; professional advisors; public and government entities as required by law |
| C. PURCHASE HISTORY AND TENDENCIES: Commercial information, including records of products or services considered, purchased or owned. | Pfizer Inc.'s subsidiary companies; Providers; professional advisors; public and government entities as required by law |
| D. BIOMETRIC INFORMATION: Physiological, biological or behavioral characteristics that can be used alone or in combination with each other to establish individual identity, including sleep, health, or exercise data that contain identifying information. | Pfizer Inc.'s subsidiary companies; Providers; professional advisors; public and government entities as required by law |
| E. USAGE DATA: Internet or other electronic network activity information, including, but not limited to, browsing history, search history, screen time, and information regarding interaction with the App or in-app advertisements. | Pfizer Inc.'s subsidiary companies; Providers; professional advisors; public and government entities as required by law |
| F. GEOLOCATION DATA: Precise geographic location information about a particular individual or device. | Pfizer Inc.'s subsidiary companies; Providers; professional advisors; public and government entities as required by law |
| G. AUDIO/VISUAL: Audio, electronic, or visual recordings, or similar information. | Pfizer Inc.'s subsidiary companies; Providers; professional advisors; public and government entities as required by law |
| H. SENSITIVE INFORMATION: as defined under applicable local law, such as certain characteristics of protected classifications, precise geolocation, account login credentials, health, medical or diagnosis information. | Pfizer Inc.'s subsidiary companies; Providers; professional advisors; public and government entities as required by law |
| I. PROFILES AND INFERENCES: Inferences drawn from any of the information identified above to create a profile about a user reflecting the user's preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes. | Pfizer Inc.'s subsidiary companies; Providers; professional advisors; public and government entities as required by law |
As described in the Data We Collect And Use Section above, we collect this personal data directly from you, automatically through your use of our App and other third parties when they share the information with us. For example, we may use such third-party information to confirm your App subscription or lapse thereof, understand how you use the App, and learn more about your health, activities, sleep, and habits.
Also as described above in the How We Use Personal Data Section, we may use this personal data to serve you; to connect you with third parties; to validate your ability to use the App; to provide and improve products and services; to protect users; in accordance with special program terms; to operate, manage, and maintain our business; to respond to your inquiries and fulfill your requests; to send administrative information to you; to send you certain marketing communications; to personalize certain experiences; and to facilitate social sharing or messages services when available. We may also use your personal data for our business purposes and objectives, including, data analysis; audits; developing new products; improving existing products; identifying usage trends; researching health or medical conditions (such as migraine); determining the effectiveness of promotional campaigns; preventing fraud; and expanding our business activities. Additionally, we may use this personal data to comply with applicable law, legal process, respond to requests from public and government authorities, and to protect our rights, operations, and enforce our terms of service.
As described in the Retention Period Section below, we may retain your personal data for as long as needed or permitted in light of the purpose(s) for which it was obtained and as outlined in this Privacy Policy, depending on the length of our relationship with you, whether there is a legal obligation to which we are subject; or whether retention is advisable in light of our legal position.
Subject to certain exceptions and depending on where you live, you may have the right to make the following requests, at no charge:
You have the right to be free from unlawful discrimination for exercising your rights under applicable state law.
Submitting Requests. You may submit requests to delete, correct, access a copy and/or know personal data we have collected about you by accessing our webform at www.pfizer.com/individualrights, or by contacting us at 833-991-1933 (toll free). You will be asked to provide certain personal data when submitting your request including your relationship with Pfizer, first and last name, email address, telephone number and postal address in order for us to determine if your information is in our systems.
We will further verify and respond to your request consistent with applicable law, taking into account the type and sensitivity of the personal data subject to the request. We may need to request additional personal data from you, such as your date of birth or government identifier, in order to protect against fraudulent or spoofed requests. If you want to make a request as an authorized agent on behalf of an individual under applicable local law, you may use the submission methods noted above. As part of our verification process, we may request that you provide us with proof that you have been authorized by the individual on whose behalf you are making the request under applicable local law, which may include signed permission provided by such individual.
Appeals. You may have a right to appeal a decision we make relating to requests to exercise your rights under applicable local law. To appeal a decision, please access our webform at www.pfizer.com/individualrights.
Please contact us according to the Contact Us Section below, if you have any questions regarding this Section.
Pfizer and its third-party business partners, including analytics and advertising partners, collect information about you by using cookies and other technologies (collectively, "Tools") when you visit or interact with our App, including where you direct us to do so through your device settings. We use this information to better understand, customize and improve user experience with our online properties, services and offerings as well as to manage our advertising and analytics purposes. For example, we use analytics services that leverage these Tools to help us to understand how users engage with and navigate our App, e.g., how and when content is viewed and by how many users. We are also able to offer our users a more customized, relevant experience using these Tools by delivering content and functionality based on your preferences and interests. If we or our third-party business partners have collected your personal data, e.g., through a registration or a request for certain materials, we may associate this personal data with information gathered through the Tools. This allows us to offer increased personalization and functionality on the App.
You can change your settings for these Tools, including opting out of their use for advertising, by adjusting your device settings. To find out more about cookies, visit www.aboutcookies.org.
Certain information is collected automatically through your device, such as your Media Access Control (MAC) address, computer type (Windows or Macintosh), screen resolution, operating system name and version, device manufacturer and model, language and Internet browser type and version. We use this information to ensure that the services function properly.
Your IP address is a number that is automatically assigned to the computer or mobile phone that you are using by your Internet Service Provider. An IP address may be identified and logged automatically in our server log files whenever a user accesses the App, along with the time of the visit and the pages visited. Collecting IP addresses is standard practice and is done automatically by many websites, applications and other services. We use IP addresses for purposes such as calculating usage levels, diagnosing server problems and administering the App. We may also derive your approximate location from your IP address.
We may use Adobe Analytics, which uses cookies and similar technologies to collect and analyze information about use of the App and report on activities and trends. This service may also collect information regarding the use of other apps and online resources. You can learn about Adobe's practices by going to https://www.adobe.com/privacy.html and opt out of them by going to the Adobe Privacy Center.
We use technical, administrative and procedural measures designed to safeguard your personal data from unauthorized access or use. No such measure is ever 100% effective though, so we do not guarantee that your personal data will be secure from theft, loss, or unauthorized access or use, and we make no representation as to the reasonableness, efficacy, or appropriateness of the measures we use to safeguard such data.
You may update your personal data and your preferences. Different programs and services may offer different phone numbers, links or preference managers that allow you to inform us of your updates and choices, including opting out of particular communications. These contact options are available on our App or in the emails or texts we send, but you may always contact our Privacy Officer for assistance at [email protected] if you have any difficulty finding these tools or otherwise updating your data or preferences. Please remember that limited communications may be necessary in order to complete your transaction or for you to participate in a particular program or service.
We will retain your personal data for as long as needed or permitted in light of the purpose(s) for which it was obtained and as outlined in this Privacy Policy. The criteria used to determine our retention periods include: (i) the length of time we have an ongoing relationship with you and provide the App to you; (ii) whether there is a legal obligation to which we are subject; or (iii) whether retention is advisable in light of our legal position (such as in regard to the enforcement of the App Terms of Use, applicable statutes of limitations, litigation or regulatory investigations).
The App is intended only for users in the United States. The App is controlled and operated by us from the United States and is not intended to subject us to the laws or jurisdiction of any state, country or territory other than that of the United States. Any information you provide to Pfizer through use of the App may be stored and processed, transferred between and accessed from the United States and other countries which may not guarantee the same level of protection of personal data as the one in which you reside. However, Pfizer will handle your personal data in accordance with this Privacy Policy regardless of where your personal data is stored/accessed.
The App is not directed to individuals under the age of eighteen (18), and we do not knowingly collect personal data from children under the age of 18.
The company responsible for collection, use and disclosure of your personal data under this Privacy Policy is Pfizer Inc.
If you would like to exercise any individual rights, please contact us by accessing our webform at www.pfizer.com/individualrights, or by contacting us at 833-991-1933 (toll free). We will respond to your request consistent with applicable law.
If you have questions about this Privacy Policy, please contact us by emailing the Privacy Officer, or write to the following address:
Pfizer Inc.From time to time, we may update this Privacy Policy. Any changes will be effective when we post the revised Privacy Policy in the App. This Privacy Policy was last updated as of the effective date listed at the top of the page. If the Privacy Policy changes in a way that significantly affects how we handle personal data, we will not use the personal data we previously gathered in the manner described in the new policy without providing notice and/or obtaining your consent, as appropriate and required by law. Minor changes to the policy may occur that will not significantly affect our use of personal data without notice or consent. We encourage you to periodically review this page for the latest information on our privacy practices.