OUR APPROACH TO 
PATIENT PRIVACY AND SECURITY

The safety of your personal data is as important to us as your personal health. It's our priority to keep your information safe and secure.

Below is a summary only and we encourage you to read the full privacy notice.

MSECB Certification Badge 2015MSECB Certification Badge 2019MSECB Certification Badge 2022
AICPA SOC Badge
Full Privacy NoticeTerms of Use
PATIENT-OWNED DATA

You own your personal information and we do our part to ensure this is kept confidential between you and your care team.

You own the data you enter into the Thrive Health® platform. You are able to update, edit, and delete info as you see fit and can access your data offline by securely downloading your personal health history. We will always gather your consent before sharing this information with your care team. We do not disclose any of your personal information to marketers of unaffiliated third parties. Thrive Health applications only allow secure communication with registered healthcare providers to deliver a recommendation or a diagnosis.

PRIVACY BY DESIGN

We follow Privacy by Design practices by taking a holistic approach to our product designs.

We follow Privacy by Design practices by enforcing privacy and security measures that consistently meet health organization requirements. We also conduct regular privacy and security training for our employees.

INDUSTRY BEST PRACTICES

We use Industry Best Practices to keep your personal health information safe and secure through data safeguarding controls and standards.

We meet or exceed the requirements of FIPPA and follow data security and privacy standards that align with PIPEDA and HIPAA. The infrastructure we use to store patient’s health information is wholly located in Canada and is implemented in accordance with provincial and federal privacy legislation. Thrive Health and our infrastructure provider are SOC 2 Type II, ISO 27001, 27017, and 27018 certified.