Privacy Policy – Level Wellness

Level Wellness (“Level,” “we,” “our,” or “us”) values your privacy. This Privacy Policy (“Policy”) explains how we collect, use, disclose, and safeguard personal information from visitors and users of our website and services, and what we will and will not do with the information we collect. Our Policy reflects our commitment to meet — and exceed — current privacy standards.

We may update this Policy at any time. Please check this page periodically for the latest version. If we make material changes in how we use personally identifiable information, we will notify you (e.g., by email), and you will have the choice to allow or decline the new use.

This Policy applies to Level Wellness and governs data collection and usage by us. By using https://levelwellness.com (the “Site”) or any related online services we provide (collectively, the “Services”), you consent to the practices described in this Policy.

Please note this Policy does not cover information collected by companies Level does not control or by individuals we do not employ or manage. When you visit a site we mention or link to, review its privacy policy before providing information.

Information We Collect

We may collect:

• Voluntarily provided information: name, address, email, phone, payment details, date of birth, preferences, and any other information you provide when you create an account, purchase products, book or receive services, complete forms or surveys, register for events, or contact us.
• Automatically collected information: cookies, analytics data, IP address, device identifiers, browser type, operating system, referring URLs, pages viewed, and access times via server logs and similar technologies.
• Non-personal demographic info: such as age range or general location, when relevant to provide or improve our Services.
  We only collect personal data you knowingly provide via surveys, membership forms, bookings, event registrations, or emails.

Why We Collect Information & How Long We Keep It

We collect information to:

• Provide and manage the Services and transactions you request
• Personalize and improve your experience
• Communicate with you about appointments, memberships, events, and updates
• Send promotional emails (with your consent, where required)
• Conduct surveys, research, and analytics (with your consent, where required)
• Maintain security, prevent fraud, and comply with legal obligations
• We retain data only as long as necessary for the purposes above, to meet legal and regulatory requirements, to enforce our agreements, or for other legitimate business interests.

Use of Information

Level does not sell, rent, or lease your personal information. We may use it to:

• Operate our Site and deliver requested Services
• Provide customer support and respond to inquiries
• Inform you about related services, offers, or events (with your consent, where required)
• Request feedback via surveys or questionnaires
• Conduct analytics to improve the Site and Services
• We may use third-party platforms (e.g., Facebook, Instagram, YouTube, LinkedIn, TikTok, X). These services may collect your IP address and use cookies; their privacy policies govern your data on those platforms.

Disclosure of Information

We may disclose information:

• To service providers and contractors (e.g., payment processors, scheduling platforms, email and analytics providers) who process data on our behalf under confidentiality and data-protection obligations
• As necessary to provide Services you request
• As described in this Policy or with your consent
• In aggregated or de-identified form
• As required by law, subpoena, or legal process
• To protect the rights, safety, or property of Level, our users, or the public
• To auditors, advisors, and prospective or actual acquirers or investors (subject to confidentiality)
• We require service providers handling personal information to use it only for the purposes we specify and to safeguard it appropriately. When those vendors may access Protected Health Information (PHI) (see HIPAA section), we enter into Business Associate Agreements when required by law.

Health Information & HIPAA

Some of our Services relate to health, wellness, fitness, and assessments (e.g., advanced diagnostics, biomarker testing, or other health-related services). Depending on the specific service and the entities involved, certain information we create or receive about you may constitute Protected Health Information (PHI) subject to the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and its implementing regulations.

• When HIPAA Applies: If and when we act as (or on behalf of) a HIPAA “covered entity” (e.g., in coordination with a healthcare provider) or a “business associate” to such an entity, information we maintain or transmit that meets the definition of PHI will be handled in accordance with HIPAA. In those cases, our use and disclosure of PHI will be governed by our Notice of Privacy Practices (NPP) or the covered entity’s NPP, as applicable, and any required Business Associate Agreements.
• Notice of Privacy Practices: If HIPAA applies to a service you receive, you will be provided an NPP describing permitted uses and disclosures of PHI, your rights (e.g., to access, amend, and receive an accounting of disclosures), and our duties under HIPAA. Where HIPAA governs, the NPP controls over any conflicting terms in this Policy with respect to PHI.
• Marketing & Authorizations: We will not use or disclose your PHI for marketing communications or sell your PHI without your prior written authorization, unless such use or disclosure is permitted without authorization under HIPAA. If you authorize a use or disclosure, you may revoke your authorization at any time in writing as described in the NPP.
• Safeguards & Breach Notification: We implement administrative, technical, and physical safeguards to protect PHI. If a breach of unsecured PHI occurs, we will provide notifications as required by HIPAA and applicable law.
• Non-PHI: Information collected on the Site that is not PHI (e.g., general website analytics or marketing preferences) is governed by this Privacy Policy.
  If you have questions about whether a particular service involves PHI or HIPAA rights, please contact us using the information in Contact Us below.

Non-Marketing Notices

We may contact you for essential, non-marketing reasons (e.g., appointment updates, security alerts, account issues, policy changes). Notices may be sent by email, SMS (with your consent), posted on our Site, or by other reasonable means.

Children’s Privacy

Our Site and Services are not directed to children under 13, and we do not knowingly collect personal information from children under 13. If we learn we have collected such information, we will delete it or obtain verified parental consent.

Your Choices

• Email preferences: You may unsubscribe from marketing emails at any time by following the instructions in those emails or contacting us at info@levelwellness.com.
• Cookies & tracking: You can set your browser to refuse cookies or to alert you when cookies are being sent. Some Site features may not function properly without cookies.
• Access/Deletion/Correction: Where applicable by law, you may request access to, deletion of, or correction of your personal information by contacting us.

Links to Other Sites

Our Site may link to other websites. We are not responsible for their privacy practices and encourage you to read their policies.

International Users (Including EU/UK)

We operate primarily in the United States. If you provide information from outside the U.S., you understand your data may be transferred to, stored, and processed in the U.S. and other countries that may have different data-protection laws than your country of residence. Where required, we rely on appropriate safeguards for cross-border transfers (e.g., contractual clauses or applicable frameworks).

Security

We use reasonable administrative, technical, and physical safeguards to protect personal information. Sensitive data (such as payment information) is transmitted using industry-standard encryption (e.g., TLS/SSL). Access to personal information is limited to personnel and service providers who need it to perform their duties and are bound by confidentiality obligations. No method of transmission or storage is 100% secure, and we cannot guarantee absolute security.

Acceptance of Terms

By using the Site or Services, you agree to this Policy. Your continued use after we post updates constitutes acceptance of the revised Policy.

Contact Us

If you have questions about this Privacy Policy or our privacy practices, contact us:

• Email: info@levelwellness.com
• Phone: 615.538.0135
• Mailing Address:
  Level Wellness
  512 Autumn Springs Court
  Franklin, TN 37067

State- or Country-Specific Rights

Depending on your location, you may have additional rights under applicable privacy laws (e.g., rights of access, deletion, correction, portability, opt-out of certain processing). To exercise these rights, contact info@levelwellness.com.

COPPA & Additional Disclosures

If your services are directed to children under 13 or you knowingly collect personal information from them, additional obligations under the Children’s Online Privacy Protection Act (COPPA) apply (e.g., verifiable parental consent and specific disclosures). If applicable to any future offerings, we will update our practices and notices accordingly.

Last Updated

Effective as of: June 1, 2025