General Privacy Policy
Effective Date: January 15, 2026
What is this Document?
This General Privacy Policy explains how we, Teladoc Health, collect, use, and disclose the Personal Information of visitors, like you, to our publicly available websites: Teladochealth.com and MyStrength.com and their associated public domains and mobile applications (collectively, the “Websites”). This policy is informational. It is not a contract.
When do other Privacy Policies apply?
This General Privacy Policy does not apply to information collected from visitors who register and log-in (“Members”) to the password-protected and secure portions of our sites (“Secure Platforms”). All Information collected and stored by Teladoc or added by our Members into such Secure Platforms is considered Protected Health Information (“PHI”) and/or medical information, as defined by HIPAA or other applicable law. To learn how we use and disclose PHI, including data you’ve consented to import from HealthKit or Health Connect into the Secure Portal, please review our HIPAA Notice of Privacy Practices. Teladoc does not use, disclose, or sell this data for advertising or data mining and does not combine it with other data. However, any technology or data needed to enable the HealthKit/Health Connect connections is subject to this General Privacy Policy.
The HIPAA Notice of Privacy Practices also applies to the extent that any Personal Information collected on our Websites is considered PHI under HIPAA. The supplemental Consumer Health Data Privacy Policy applies to the extent that any Personal Information collected on our Websites is considered Consumer Health Data under applicable law.
If you want to learn more about how we handle the Personal Information of current or former Teladoc Health job applicants, employees or contractors, please see the U.S. Employees’ Notice of Privacy Practices.
Our privacy policies explain our privacy practices; they do not create any contractual rights or obligations.
Will this Document be updated?
We may periodically update this General Privacy Policy. When we make significant changes, we will notify you. We encourage you to periodically review this page for the latest information.
Section 1
Data Collection, Use, and Sharing
What data do we collect, use, and share?
To provide the Websites, we process information about you. Consistent with the limitations described in this document, we may disclose your Personal Information for legitimate business purposes, subject to strict restrictions on how our partners may use or disclose the data we provide. We may also disclose your information at your request or as otherwise permitted under applicable laws. Here is a summary of the categories of Personal Information we may have collected about you over the past 12 months; how we may use the information; and with whom we may share the information.
| Name of Category of Personal Information | Information that is collected and what it is used for | How we may share Personal Information |
|---|---|---|
| Visitor Data | What is collected: When you visit the Websites, we process information like the pages visited or which features you interacted with, the amount of time on the Websites, Website errors, information about the type of device and browser you’re using. We may process IP address and email address, External Identifiers and Internal Identifiers (if available based on the settings of your device). We may share the information with Third Parties, if you opt-in/consent to advertising and cookies. What it is used for:
Legal Basis for processing:
| Who we may share information with:
Why we may share information:
|
| Registration Data | What is Collected: To register for an account with the Secured Platform or to complete a webform seeking information, you must first fill out online form(s) where you may provide your name, title, contact information, phone number, date of birth, sex assigned at birth, state, country, zip code, your health plan, and email address or login dentification information. What it is used for:
Legal Basis for processing:
| |
Customer Service and Communications Data | What is Collected: We process communications you have with our customer service team. What it is used for:
Legal Basis for processing:
|
What data do Teladoc Health devices collect and how is it used?
Eligible Teladoc Health Members may choose to use a Teladoc Health device or a third-party device (including wearable devices if relevant to program), such as a smart scale, blood glucose monitor, or another type of device. These devices rely on Bluetooth and location services for readings to appear in the Member’s app. Members can disable these features in their device settings; however, doing so may limit app functionality. Teladoc Health does not use location data required for device syncing for targeted advertising. As for the data collected, the devices collect PHI (weight, glucose levels, etc.) that you share via use of the device- please see our HIPAA Notice of Privacy Practices for more detail.
How are automated tools used?
To support the operation of the Websites and related business activities, we may use automated tools, including artificial intelligence technologies. These tools may assist with functions such as analytics, quality improvement, administrative activities, and system management, and are used in accordance with applicable law.
How do we handle links to other platforms?
Our Websites may contain links to third-party platforms or services (such as Facebook, LinkedIn, and Twitter). We do not control these platforms and are not responsible for their content, privacy practices, or use of your information. Any information you share directly with these third parties is governed by their privacy policies. We encourage you to review those policies before providing your information.
Section 2
Cookies and Similar Technologies
How do we Use Cookies and Similar Technologies?
We use cookies and similar technologies to provide and improve our Websites. These technologies help us:
- Ensure our Websites function properly and securely
- Remember your preferences and settings
- Understand how you use our Websites to make improvements
- Measure the effectiveness of our communications
- Provide relevant advertising and measure advertising effectiveness, where you have consented
If you provide explicit opt-in consent, some cookies and similar technologies may collect Visitor Data that may reveal consumer health data. To protect your privacy, we use server-side privacy enhancing technology to ensure no Protected Health Information (PHI) is shared with Third Party Advertisers. Find a list of our Third Party Advertisers in the Cookie Preference Center by clicking on “Your Privacy Choices” in the footer.
You may disable or delete browser cookies through your browser settings. Cookies generally are easy to disable or delete, but the method varies between browsers. If you disable or delete cookies, or if you are running third-party software that intercepts or deletes cookies, please note that some parts or functionality of our Websites may not work properly.
Each type of web browser offers ways to restrict or delete cookies. For more information on how to manage cookies using your browser, please see https://www.aboutcookies.org/how-to-manage-and-delete-cookies.
You can opt out of third parties collecting your Personal Information for targeted advertising purposes in the United States by visiting the National Advertising Initiative’s (NAI) opt-out page and the Digital Advertising Alliance’s (DAA) opt-out page.
Does Teladoc honor global opt-out signals?
We recognize and honor the following universal opt-out signals:
- Global Privacy Control (GPC)
- Do Not Track (DNT) browser settings
When we detect the above noted opt-out signal, we automatically apply your preference to reject non-essential cookies and prevent associated sharing of your personal information.
How can you manage your cookie preferences?
Teladoc Health maintains a cookie preference center which allows you to customize your cookie preferences when visiting the Websites. You can manage your preferences, including limiting use of sensitive data, at any time by clicking “Your Privacy Choices” in the footer or clicking the cookie icon of any page and adjusting your preferences.
Please note that rejecting certain cookies may impact your experience with our Websites and limit available features.
Section 3
Children’s Privacy
How do we handle children’s Personal Information?
Our Websites are not intended for children under 13 years of age, and we do not knowingly collect or sell Personal Information from children under 13. If you are under 13 and you are not an emancipated minor, please do not use or provide any information on our Websites without parental consent. If you are a parent or guardian who believes your child under 13 has provided us with Personal Information, please contact us using the information below to request its deletion.
Security
How do we protect your Personal Information?
We use administrative, technical, and physical safeguards designed to protect Personal Information from accidental, unlawful, or unauthorized destruction, loss, alteration, access, disclosure, or use. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security. If you use a password to access certain parts of our services, you are responsible for keeping it confidential.
Retention of Personal Information
How long do we keep your Personal Information?
We retain Personal Information only for as long as necessary to fulfill the purposes described in this General Privacy Policy, including to provide Websites, maintain business operations, comply with legal and regulatory obligations, resolve disputes, and enforce our agreements.
Where specific retention periods are required by law, we comply with those timeframes; otherwise, we apply the criteria above to determine how long to retain the information. When Personal Information is no longer needed for the purposes for which it was collected, we securely delete, anonymize, or put it beyond use. Because we maintain our Websites and systems to protect against accidental or malicious loss or destruction, residual copies of Personal Information may remain in backup or archival systems for a limited time before being deleted or rendered inaccessible.
Section 4
International Users
What if you are visiting the Websites from outside the United States?
Our Websites are controlled and operated by us from the United States and are not intended to subject us to the laws or jurisdictions of any state, country, or territory outside the United States. Information you provide through our Websites may be stored, processed, and accessed in the United States or other countries that may not provide the same level of data protection as your place of residence. Regardless of where your Personal Information is stored or accessed, we will handle it in accordance with this General Privacy Policy.
Jurisdiction-Specific Privacy Notices
Privacy Notice for California Residents
If you are a California resident, certain Personal Information that we collect about you is subject to the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA).
Please note that these laws may not apply to, among other things:
- Information that is lawfully made available from federal, state, or local government records
- Consumer information that is deidentified or aggregated
- Protected health information that is collected by a covered entity or business associate governed by HIPAA
- Medical information maintained by a provider of health care governed by California's Confidentiality of Medical Information Act (CMIA)
Collection of Personal Information
Section 1 above describes the Personal information we collect, use, and share. The information referenced in that section may fall into certain categories defined by CCPA and CPRA. Accordingly, we may collect:
- Identifiers
- Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e))
- Protected classification characteristics under California or federal law
- Commercial information
- Biometric information
- Internet or other similar network activity
- Geolocation data
- Sensory data
- Sensitive Personal Information
- Professional or employment-related information
- Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99))
We are not paid by anyone for any data. However, California laws define “sale” broadly to include the sharing of information in exchange for anything of value. If you opt-in/consent to our use of advertising cookies and similar technologies, the use may be considered a “sale” of personal information under specific state consumer privacy law (including in California).
Teladoc does not collect or share Personal Information on the Websites from any person we know to be under the age of 16.
Teladoc collects Personal Information from the following categories of sources:
- Directly and indirectly from you, including through your interaction with the Websites
- Social media platforms
- Third party partners such as analytics or marketing providers
- Automatically through tracking technologies. Please note, if you have enabled a Global Privacy Control on your browser, our Websites are configured to recognize and respect those preferences with respect to Personal Information that falls under the CCPA/CPRA. You may set your cookie preferences by clicking on “Your Privacy Choices” in the footer
Your California Rights Include:
- Right to know what personal information we collect
- Right to delete personal information
- Right to opt-out of sale or sharing
- Right to correct inaccurate information
- Right to limit use of sensitive personal information
- Right to data portability
- Non-discrimination for exercising rights
How can I exercise my privacy rights?
Depending on your state of residency, you may have some or all of the following rights:
- Right to Know: The right to request details about the Personal Information we collect, use, or disclose, as well as information about our data practices. In some states, this may also include a list of third parties (as defined by applicable law) with whom we have shared your Personal Information
- Right to Request Correction: The right to request correction of any inaccurate Personal Information we maintain about you
- Right to Request Deletion: The right to request deletion of the Personal Information we have collected from or about you
- Right to Opt-out of Targeted Advertising: The right to opt out of the use of your Personal Information for purposes considered “targeted advertising” under applicable U.S. privacy laws, including data collected from your activities on nonaffiliated websites or apps
- Right to Non-Discrimination: The right not to be subject to discrimination for exercising your privacy rights
To exercise your rights and, as applicable, to appeal a consumer rights decision, please submit this webform.
Note- If your Personal Information is considered Protected Health Information (PHI), the rights described above do not apply. Instead, your rights are governed by HIPAA and described in our HIPAA Notice of Privacy Practices.
How to Contact Teladoc with questions
If you have questions about this Policy or have questions, complaints or requests regarding your information, you can contact us online or at PrivacyRights@teladochealth.com