Privacy Policy

Last Updated: September 6th, 2025

This Privacy Policy (“Policy”) describes how Heart & Harbor, LLC, a New Hampshire limited liability company (“Heart & Harbor,” “Company,” “we,” “us,” or “our”), collects, uses, discloses, and safeguards personal information obtained through its website, online community Navigate Heart Health, and any related services (collectively, the “Services”).

By accessing or using the Services, you acknowledge that you have read, understood, and agree to the terms of this Policy. If you do not agree, you must discontinue use of the Services.

1. Information We Collect

Information You Provide Directly. This includes, but is not limited to, your name, email address, billing and payment information (processed by third-party payment processors), responses to surveys, and any user-generated content you submit within the Services, such as photographs, comments, posts, poll responses, or other contributions.

Information Collected Automatically. When you access or interact with the Services, certain information may be collected automatically by our service providers, including your IP address, browser type, device identifiers, operating system, referring URLs, and usage data. This information may be collected through cookies or similar technologies.

Health-Related Information. Certain optional surveys or interactions may solicit limited health-related details (e.g., time since a cardiac event). Submission of such information is entirely voluntary and is not required to use the Services. Such information is not used for the provision of individualized medical treatment. The Services are not a covered entity under the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”), and information submitted through the Services is not considered protected health information under HIPAA.

2. Use of Information

We may use the information we collect for the following purposes:

  • To provide, operate, and maintain the Services.

  • To process transactions and manage memberships.

  • To communicate with you, including sending newsletters, promotional materials, and administrative notices.

  • To personalize content, offers, and communications.

  • To conduct research, analytics, and improvements to the Services.

  • To comply with legal, regulatory, and accounting obligations.

3. Disclosure of Information

We do not sell personal information. We may disclose personal information as follows:

Service Providers. To trusted third-party vendors and platforms engaged to perform business functions on our behalf, including but not limited to: Mighty Networks (community hosting), EatLove (meal planning services, HIPAA-compliant), Stripe and Squarespace (payment processing), Kit (email marketing), Typeform/Tally (surveys), and Google Workspace (business operations). These third parties are authorized to use personal information only as necessary to provide services to us.

Legal Requirements. As required by law, regulation, legal process, or governmental request.

Business Transfers. In connection with a merger, acquisition, reorganization, or sale of assets.

4. Cookies and Similar Technologies

The Services, and certain third-party providers acting on our behalf, may use cookies, pixels, and similar technologies to collect usage data, analyze trends, and improve functionality. Cookies may also be used in marketing emails to track engagement.

You may configure your browser to refuse cookies; however, certain features of the Services may be limited as a result.

5. Data Retention

We retain personal information for as long as necessary to fulfill the purposes outlined in this Policy, unless a longer retention period is required or permitted by law.

If you deactivate or delete your account, some user contributions (such as posts or comments within the community) may remain visible within the platform but will no longer be attributed to your profile. Limited personal information, such as name, email address, and transaction records, may be retained for business, accounting, or legal purposes, and for continued communications unless you opt out.

6. Data Security

We implement commercially reasonable technical and organizational measures to protect personal information against unauthorized access, use, alteration, or disclosure. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

Please note that while EatLove is HIPAA-compliant, the Navigate Heart Health community and related Services are not HIPAA-regulated entities.

7. Your Rights

Depending on applicable law, you may have the right to:

  • Access personal information we hold about you.

  • Request correction, update, or deletion of such information.

  • Object to or restrict certain processing activities.

  • Withdraw consent where processing is based on consent.

  • Opt out of receiving promotional communications by following the unsubscribe instructions in our emails.

To exercise these rights, please contact us at melanie@navigatehearthealth.com. In cases where data is controlled by third-party platforms (e.g., Mighty Networks), we will provide reasonable assistance in directing such requests to the appropriate provider.

8. Children’s Privacy

The Services are not directed to individuals under the age of 13, and we do not knowingly collect personal information from children under 13. If we learn that we have collected such information, we will take steps to delete it.

9. International Users

If you access the Services from outside the United States, you acknowledge and agree that your information may be transferred to, processed, and stored in the United States, which may have different data protection laws than your country of residence.

Residents of the European Union, the United Kingdom, and other jurisdictions with applicable data protection laws may have additional rights under those laws, including the right to lodge complaints with supervisory authorities.

10. Changes to This Policy

We reserve the right to amend or update this Policy at any time in our sole discretion. Changes will be effective immediately upon posting, unless otherwise stated. Your continued use of the Services constitutes acceptance of the revised Policy.

11. Contact Information

If you have questions regarding this Privacy Policy or our privacy practices, please contact us at:

Heart & Harbor, LLC
20 Portsmouth Ave Ste 1 #293
Stratham, NH 03885
Email: melanie@navigatehearthealth.com