Join as a PractitionerLog In
Back to About

Privacy Policy

Effective Date: May 15, 2026

IMPORTANT - PLEASE READ CAREFULLY

This Privacy Policy explains how Rooted Vitality, Inc. ("Rooted Vitality," "we," "us," or "our") collects, uses, discloses, protects, and retains information about you when you access or use our website, web application, platform, and related services, including rootedvitality.health and any related Rooted Vitality content, features, or communications collectively, the "Platform."

By accessing or using our Platform, you acknowledge that you have read, understood, and agree to this Privacy Policy and our Terms of Use. If you do not agree with this Privacy Policy, you must not access or use our Platform.

IF YOU DO NOT AGREE TO THIS PRIVACY POLICY, YOU MUST NOT ACCESS OR USE OUR PLATFORM.

1. Introduction

1.1 Scope of This Privacy Policy

This Privacy Policy applies to personal information collected by Rooted Vitality through the Platform, including account registration, practitioner profiles, client connection requests, platform communications, support requests, analytics, billing-related information, and other interactions with Rooted Vitality.

1.2 Effective Date

This Privacy Policy is effective as of May 15, 2026 and applies to information collected by Rooted Vitality on or after that date.

2. Important Clarifications About Our Services

2.1 We Are Not a HIPAA Covered Entity

IMPORTANT: Rooted Vitality is not a healthcare provider, health plan, healthcare clearinghouse, or business associate as those terms are defined under the Health Insurance Portability and Accountability Act of 1996 ("HIPAA"), 45 C.F.R. Parts 160 and 164. We are not a "Covered Entity" or "Business Associate" subject to HIPAA regulations.

Rooted Vitality operates as a directory, marketplace, and connection platform that helps consumers discover and connect with independent holistic health, wellness, coaching, and related practitioners. Rooted Vitality does not provide medical advice, diagnosis, treatment, healthcare services, or practitioner services.

2.2 Wellness Information and HIPAA

Users may choose to provide wellness-related information through the Platform, such as general wellness goals, areas of interest, themes, preferences, struggles, location information, connection requests, or messages intended to help facilitate a connection with a practitioner. Rooted Vitality treats this information as personal information under this Privacy Policy.

However, because Rooted Vitality is not acting as a healthcare provider, health plan, healthcare clearinghouse, or HIPAA business associate, this information is not maintained by Rooted Vitality as Protected Health Information or "PHI" under HIPAA.

2.3 We Do Not Provide Healthcare Services

Rooted Vitality does not create medical records, provide medical diagnoses, prescribe treatment plans, order laboratory testing, provide medical imaging, manage health insurance claims, or provide healthcare services. Any healthcare, wellness, coaching, or practitioner services are provided directly by independent practitioners and not by Rooted Vitality.

2.4 Practitioner-Client Relationships Occur Independently

Practitioners listed on the Platform are independent providers and are not employees, agents, partners, or representatives of Rooted Vitality. Any practitioner-client relationship, appointment, consultation, treatment discussion, payment arrangement, informed consent process, or health-related communication occurs directly between the user and the practitioner.

Rooted Vitality may provide platform tools that help facilitate initial introductions or communication, but Rooted Vitality is not responsible for the practitioner's services, privacy practices, records, recommendations, advice, or compliance obligations.

2.5 Practitioners' Privacy and Compliance Obligations

Individual practitioners may be subject to HIPAA, state privacy laws, licensing rules, professional confidentiality obligations, or other privacy and compliance requirements depending on their profession, location, and services. Each practitioner is solely responsible for their own privacy practices, legal compliance, client records, informed consent processes, and communications with clients.

We encourage users to review each practitioner's privacy practices, professional policies, and terms before engaging their services.

2.6 Security Practices

Although Rooted Vitality is not required to comply with HIPAA as a covered entity or business associate, we use reasonable technical, administrative, and organizational safeguards designed to protect the personal information we collect. No electronic platform, transmission, or storage method can be guaranteed to be completely secure.

3. Information We Collect

We collect information that is reasonably necessary to operate, maintain, improve, protect, and provide the Platform.

3.1 Information You Provide Directly

Account Registration Information. When you create an account, we may collect:

  • Full name
  • Email address
  • Password, which is encrypted and not accessible to us in plain text
  • Phone number
  • Zip code, city, state, or general location
  • User type, such as client, consumer, practitioner, or administrator

Client or Consumer Information. If you use the Platform to seek wellness support or connect with a practitioner, we may collect:

  • General wellness interests or categories
  • Subcategories, themes, preferences, or areas of support you select
  • General descriptions of what you are looking for or currently experiencing
  • Location or travel preferences
  • Preferred connection method
  • Messages or connection requests sent through the Platform

Practitioner Profile Information. If you are a practitioner, you may provide:

  • Professional name and business name
  • Professional credentials, certifications, licenses, or training information
  • Business description, biography, and services offered
  • Specializations, categories, and subcategories
  • Photos, profile images, or business images
  • Website and social media links
  • Pricing, membership, availability, and service information
  • Location, service area, and virtual service availability

Communications. When you contact us or communicate through the Platform, we may collect:

  • Messages sent through contact forms
  • Customer support requests
  • Administrative messages
  • Connection requests between users and practitioners
  • Platform messages or responses sent through available messaging tools

Reviews, Feedback, and Testimonials. You may choose to provide:

  • Ratings, reviews, or feedback about practitioners or the Platform
  • Survey responses
  • Testimonials, only with your permission for public display where required

Payment and Billing Information. If you purchase paid features, memberships, subscriptions, or other paid services through Rooted Vitality, we may collect:

  • Billing name
  • Billing email
  • Billing address
  • Subscription status
  • Payment history and transaction records

Payment card information is processed by third-party payment processors, such as Stripe. Rooted Vitality does not store complete credit card numbers.

Fees for practitioner services may be handled directly between users and practitioners unless otherwise stated. Rooted Vitality is not responsible for payment arrangements made directly between users and practitioners.

3.2 Information Collected Automatically

When you access or use the Platform, we may automatically collect certain technical and usage information, including:

  • Device type
  • Operating system
  • Browser type and version
  • IP address
  • General geographic location, such as city or state level information
  • Pages viewed
  • Time spent on pages
  • Features used
  • Searches, filters, or interactions with the Platform
  • Referring website or source
  • Date and time of access
  • Crash reports, logs, and error information

3.3 Cookies and Similar Technologies

We may use cookies, pixels, web beacons, local storage, and similar technologies to operate the Platform, remember preferences, understand usage, improve performance, support analytics, and assist with marketing.

Types of cookies and similar technologies may include:

  • Essential cookies: Required for login, security, account access, and basic Platform functionality
  • Analytics cookies: Help us understand how users interact with the Platform
  • Functional cookies: Remember preferences and settings
  • Advertising or marketing technologies: Help us understand campaign performance and deliver relevant content where permitted by law

You can control cookies through your browser settings. Disabling certain cookies may limit your ability to use some Platform features.

3.4 Information From Third-Party Sources

We may receive limited information from third-party sources, including:

  • Payment processors
  • Email and messaging service providers
  • Analytics and performance tools
  • Advertising and marketing platforms
  • Publicly available sources used for practitioner verification or business review
  • Third-party services used for background checks, if applicable to practitioner approval processes

4. How We Use Your Information

We use the information we collect for legitimate business and operational purposes, including the purposes described below.

4.1 Platform Operations and Service Delivery

  • Create and manage user accounts
  • Facilitate connections between users and practitioners
  • Display practitioner profiles and directory listings
  • Provide search, filtering, matching, and connection functionality
  • Process subscriptions, memberships, and billing records
  • Deliver requested content, educational materials, and Platform features
  • Maintain and improve user experience

4.2 Customer Support and Communications

  • Respond to inquiries and support requests
  • Send account confirmations, password resets, billing notices, and other transactional messages
  • Provide customer service and technical support
  • Send important notices about changes to our services, Terms of Use, or Privacy Policy

4.3 Platform Improvement and Analytics

  • Analyze usage patterns and trends
  • Improve Platform functionality and performance
  • Develop and test new features
  • Identify and fix bugs or technical issues
  • Generate aggregated or de-identified statistics and insights

4.4 Safety, Security, and Fraud Prevention

  • Verify accounts and prevent fraudulent activity
  • Detect and prevent abuse, unauthorized access, or security threats
  • Investigate violations of our Terms of Use
  • Protect the rights, property, and safety of Rooted Vitality, users, practitioners, and the public
  • Maintain Platform integrity and availability

4.5 Marketing and Promotional Communications

Where permitted by law, we may use your information to:

  • Send newsletters, educational content, and Platform updates
  • Promote new features, services, or practitioner opportunities
  • Measure and improve marketing campaigns
  • Request feedback or survey responses

You may opt out of marketing emails at any time by clicking the unsubscribe link in promotional emails or contacting us. Opting out of marketing communications will not affect transactional or administrative messages necessary for Platform operation.

4.6 Legal and Compliance Purposes

  • Comply with applicable federal, state, and local laws
  • Respond to subpoenas, court orders, legal processes, or lawful government requests
  • Enforce our Terms of Use and other agreements
  • Establish, exercise, or defend legal claims

5. How We Share Your Information

We do not sell your personal information. We share information only in the limited circumstances described in this Privacy Policy.

5.1 With Practitioners

When you request to connect with a practitioner, we may share information needed to facilitate that connection, such as your name, preferred contact method, general wellness interests, selected categories or subcategories, location preferences, and information you choose to include in your connection request or Platform message.

Practitioners are independent from Rooted Vitality. Once you engage with a practitioner, any additional information you choose to share directly with that practitioner is governed by that practitioner's own privacy practices, policies, and legal obligations.

5.2 With Service Providers and Business Partners

We may share information with trusted third-party service providers who perform services on our behalf, including:

  • Cloud hosting and database providers, such as Vercel and Supabase
  • Payment processors, such as Stripe
  • Email service providers, such as Resend
  • SMS and messaging providers, such as Twilio
  • Analytics and product experience tools, such as Pendo or similar providers
  • Marketing and advertising platforms, such as Meta or similar providers
  • Customer support, monitoring, security, and operational tools

These providers are authorized to use information only as needed to provide services to Rooted Vitality or as otherwise permitted by their agreements with us and applicable law.

5.3 For Legal Compliance and Protection

We may disclose information when we believe in good faith that disclosure is necessary to:

  • Comply with applicable laws, regulations, or legal processes
  • Respond to subpoenas, court orders, or government requests
  • Enforce our Terms of Use or other agreements
  • Protect the rights, property, or safety of Rooted Vitality, users, practitioners, or the public
  • Detect, prevent, or investigate fraud, security breaches, or illegal activity

5.4 Business Transfers

If Rooted Vitality is involved in a merger, acquisition, financing, reorganization, bankruptcy, sale of assets, or similar business transaction, your information may be transferred as part of that transaction. If required by law, we will provide notice before your information becomes subject to a materially different privacy policy.

5.5 With Your Consent

We may share your information with third parties when you give us consent to do so, such as when you authorize a testimonial, participate in a partner program, or request that we share information with a specific person or organization.

5.6 Aggregated and De-Identified Information

We may share aggregated, anonymized, or de-identified information that cannot reasonably be used to identify you. This may include statistics, trends, insights, and Platform usage information for research, marketing, reporting, or business development purposes.

6. Data Security and Protection

6.1 Security Measures

We use reasonable technical, administrative, and organizational safeguards designed to protect personal information from unauthorized access, use, alteration, or disclosure. These safeguards may include:

  • Encryption of data in transit using HTTPS, SSL, or TLS protocols
  • Secure password hashing and storage
  • Access controls and authentication mechanisms
  • Role-based access controls where appropriate
  • Monitoring, logging, and security review practices
  • Employee or contractor access limitations
  • Data backup and recovery procedures

6.2 Limitations on Security

No method of electronic transmission or storage is one hundred percent (100%) secure. We cannot guarantee absolute security of your information. You acknowledge and accept that you provide information at your own risk. If you believe your account has been compromised or that there has been unauthorized access to your information, please contact us immediately at support@rootedvitality.health.

6.3 Your Security Responsibilities

You are responsible for:

  • Maintaining the confidentiality of your account credentials
  • Using a strong, unique password
  • Logging out of your account when finished
  • Not sharing your account credentials with others
  • Promptly notifying us of suspected unauthorized access

7. Data Retention

We retain personal information for as long as reasonably necessary to fulfill the purposes for which it was collected, provide the Platform, comply with legal obligations, resolve disputes, enforce agreements, maintain business records, and protect our rights.

7.1 Retention Periods

  • Active accounts: Information is retained while your account remains active
  • Closed accounts: Certain information may be retained after account closure as needed for legal, tax, accounting, security, dispute resolution, or business purposes
  • Transaction records: Payment and billing records may be retained as required by law or standard business practices
  • Marketing data: Marketing preferences may be retained until you opt out or as otherwise permitted by law
  • Aggregated data: De-identified or aggregated data may be retained indefinitely

7.2 Deletion or Anonymization

When information is no longer needed, or when deletion is required by applicable law, we will delete, de-identify, or anonymize personal information in accordance with our retention practices and legal obligations.

8. Your Privacy Rights and Choices

Depending on your location and applicable law, you may have certain rights regarding your personal information.

8.1 Access and Portability

You may request access to personal information we hold about you and, where applicable, request a copy of your information in a portable format.

8.2 Correction and Updates

You may correct, update, or modify inaccurate or incomplete personal information through your account settings where available or by contacting us.

8.3 Deletion

You may request deletion of your personal information, subject to legal exceptions and records we are permitted or required to retain. To request deletion, contact us at support@rootedvitality.health. We will respond within a reasonable period of time and in accordance with applicable law.

8.4 Opt-Out of Marketing

You may opt out of marketing emails at any time by clicking the unsubscribe link in promotional emails or contacting us. You may still receive transactional, administrative, billing, security, or service-related messages.

8.5 Cookie Preferences

You can manage cookies through your browser settings. If we provide additional cookie preference tools, you may also use those tools to manage certain tracking preferences. Disabling cookies may affect Platform functionality.

8.6 Do Not Track Signals

Some web browsers offer a "Do Not Track" feature. Because there is no uniform industry standard for responding to these signals, we do not currently respond to Do Not Track signals.

8.7 California Privacy Rights

If you are a California resident, you may have additional rights under California privacy laws, including the right to know what personal information we collect, use, disclose, or share; the right to request deletion; the right to correct inaccurate information; the right to opt out of certain sharing or sales of personal information, if applicable; and the right not to be discriminated against for exercising privacy rights.

Rooted Vitality does not sell personal information as that term is commonly understood. To exercise applicable California privacy rights, contact us at support@rootedvitality.health. We may need to verify your identity before processing your request.

8.8 European Union and United Kingdom Privacy Rights

If you are located in the European Union, United Kingdom, or another jurisdiction with similar privacy laws, you may have rights to access, correct, erase, restrict or object to processing, request data portability, withdraw consent where processing is based on consent, and lodge a complaint with a supervisory authority.

9. Children's Privacy

The Platform is not intended for individuals under eighteen (18) years of age. We do not knowingly collect personal information from individuals under eighteen (18). If we become aware that we have collected personal information from an individual under eighteen (18), we will take reasonable steps to delete that information.

If you are a parent or guardian and believe that a child has provided personal information to us, please contact us at support@rootedvitality.health.

10. International Data Transfers

Rooted Vitality is based in the United States. If you access the Platform from outside the United States, your information may be transferred to, stored in, and processed in the United States or other countries where our service providers operate. These countries may have data protection laws that differ from those in your country of residence.

Where required by applicable law, we will use appropriate safeguards for cross-border data transfers.

11. Third-Party Websites and Services

The Platform may contain links to third-party websites, applications, services, practitioner websites, social media platforms, payment processors, or other resources that are not owned or controlled by Rooted Vitality.

This Privacy Policy applies only to information collected by Rooted Vitality through the Platform. We are not responsible for the privacy practices, policies, security, or content of third-party websites or services. We encourage you to review the privacy policies of any third-party services you use.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or operations. When we make material changes, we may provide notice by:

  • Updating the effective date or last updated date
  • Posting the revised Privacy Policy on the Platform
  • Sending notice by email where appropriate
  • Displaying a notice on the Platform where appropriate

Your continued use of the Platform after the updated Privacy Policy becomes effective means you acknowledge the updated Privacy Policy. If you do not agree to the updated Privacy Policy, you must discontinue use of the Platform.

13. Contact Information and Complaints

If you have questions, concerns, requests, or complaints about this Privacy Policy or our privacy practices, please contact us at:

Rooted Vitality, Inc.
Attention: Privacy Officer
2122 E Old Wellington Rd
Price, Utah 84501
Email: support@rootedvitality.health

We will respond to privacy inquiries within a reasonable period of time and in accordance with applicable law.

13.1 Filing Complaints With Authorities

If you are located in a jurisdiction that provides the right to lodge a privacy complaint with a government or data protection authority, you may have the right to contact that authority regarding your privacy concerns.

BY USING OUR PLATFORM, YOU ACKNOWLEDGE THAT YOU HAVE READ AND UNDERSTOOD THIS PRIVACY POLICY.