Privacy Policy

This Privacy Policy explains how QueryNow, Inc. ("QueryNow", "Juncture", "we", "us" or "our") collects and handles personal data in connection with the Juncture website at juncture.health and the Juncture service (together, the "Service"). QueryNow is the controller of the personal data described here.

Because our customers operate in regulated and often European markets, we have written this policy to be aware of the requirements of the EU and UK General Data Protection Regulation (the "GDPR"). If you have questions, our contact details are at the end of this policy.

We collect a limited set of personal data, in three broad categories:

• Contact data you give us. When you request a demo, complete a form, or email us, we collect the details you provide, such as your name, work email, company, role, and the content of your message.
• Usage and device data. When you visit the website, we collect basic, mostly aggregate analytics, such as pages viewed, referring source, approximate location derived from your IP address, browser and device type, and the time of your visit.
• Cookie and similar data. We use a small number of cookies and similar technologies to make the site work and to understand its performance, as described under "Cookies" below.

We do not use the website to collect special-category personal data, and we ask that you do not submit it through our forms. Content you process inside the Service under a separate customer agreement is governed by that agreement and any data processing terms attached to it, not by this website policy.

We use personal data to:

• respond to your enquiries, arrange and run demos, and provide the Service you ask for;
• operate, secure, maintain and improve the website and the Service;
• send you service and, where permitted, relevant business communications, which you can opt out of at any time; and
• comply with our legal obligations and protect our legal rights.

We do not sell your personal data, and we do not use it for automated decision-making that produces legal or similarly significant effects on you.

Where the GDPR applies, we rely on the following lawful bases for processing:

• Performance of a contract, or steps taken at your request before entering a contract, when we respond to a demo request or provide the Service.
• Legitimate interests, when we operate, secure and improve the Service and send business communications to existing contacts, balanced against your rights and interests.
• Consent, where we ask for it, for example for certain analytics or marketing cookies. You may withdraw consent at any time without affecting processing already carried out.
• Legal obligation, when we must process data to comply with the law.

We use cookies and similar technologies that are strictly necessary to deliver the website, and a limited set of analytics cookies to understand how the site performs. Where required by law, we ask for your consent to non-essential cookies before setting them. You can control cookies through your browser settings, though disabling some cookies may affect how the site works.

We share personal data only as needed to run the Service:

• Service providers and processors who host our infrastructure, deliver email, and provide analytics, acting on our instructions under contracts that require appropriate safeguards.
• Professional advisers, such as lawyers and auditors, where reasonably necessary.
• Authorities or other parties where required by law, to enforce our terms, or to protect the rights, safety and property of QueryNow, our customers or others.
• A successor entity in connection with a merger, acquisition or sale of assets, subject to this policy.

We are based in the United States and may process personal data in the United States and other countries. Where we transfer personal data out of the European Economic Area or the United Kingdom, we rely on an appropriate transfer mechanism, such as the European Commission Standard Contractual Clauses and the UK Addendum, or an adequacy decision, to protect that data. You may request more information about these safeguards using the contact details below.

We keep personal data only for as long as we need it for the purposes set out in this policy, and then delete or anonymize it. Demo and enquiry data is retained for as long as needed to follow up and for a reasonable period afterward for our records, unless you ask us to delete it sooner. We may keep some data longer where the law requires it or to establish, exercise or defend legal claims.

Subject to applicable law, you have the right to:

• access the personal data we hold about you and receive a copy of it;
• correct inaccurate or incomplete data;
• erase your data in certain circumstances;
• restrict or object to certain processing, including direct marketing;
• receive your data in a portable format, where the right to portability applies; and
• withdraw consent at any time where we rely on consent.

To exercise any of these rights, contact us using the details below. We will respond within the time the law allows. You also have the right to lodge a complaint with your local data protection authority, though we would welcome the chance to address your concern first.

We maintain administrative, technical and organizational measures designed to protect personal data against unauthorized access, loss, misuse and alteration. No method of transmission or storage is completely secure, so we cannot guarantee absolute security, but we work to protect your data and to limit access to those who need it.

The Service is intended for business and professional use and is not directed to children. We do not knowingly collect personal data from anyone under the age of sixteen. If you believe a child has provided us with personal data, please contact us and we will delete it.

We may update this policy from time to time. When we make material changes, we will update the "Last updated" date above and, where appropriate, provide additional notice. Your continued use of the Service after a change takes effect means you accept the revised policy.

You can reach us about this policy or your personal data at privacy@juncture.health, or by writing to QueryNow, Inc., attention Privacy.