Greenlight Terms of Service and Privacy Policy
For Participants and Patients
Greenlight Health Data Solutions (Greenlight)
Effective Date: February 10, 2026
Welcome to Greenlight Health Data Solutions, portions of which are available on iOS, Android, and the web (the “Service”). Your use of the Service is governed by these Terms of Service and the Privacy Policy (the “Terms”). By creating an account or using the Service, you agree to these Terms.
Portions of the Service are also known under the Pattern Health brand, which is owned by Greenlight.
Introduction
Greenlight’s mission is to make healthcare more efficient through connected care and research. The Service allows you to track, retrieve, share, and manage your health information, often in connection with your healthcare provider or research study team.
Using the Service
By using the Service, you agree that:
- You are at least 18 years old, or have parental/guardian consent if younger.
- The information you provide is accurate and yours to share.
- You will not access or use anyone else’s account without permission.
- You will keep your account credentials secure.
- You will notify Greenlight if you become aware that your account has been accessed without your authorization.
- You will not use the Greenlight trademarks in connection with any product or service without Greenlight’s prior written consent.
If you are using the Service on behalf of someone else, you must have authority to do so.
Content You Provide
The Service may allow you to enter or share information, including your personal data and health-related data (“Content”).
- You remain the owner of your Content.
- Your Content may be shared with your healthcare provider, research team, or other authorized recipients as part of the Service.
- Content may be retrieved, at your request, from third party sources, like health systems, hospitals, medical practices, device companies, etc. (Health Data Sources).
- Greenlight is not responsible for the accuracy of the original information provided by any Health Data Source.
- Greenlight or your healthcare provider, research team, or other authorized recipients may modify or correct the copy of the data you enter or share as well as the copy of the data that is retrieved from a Health Data Source.
- You may not post Content that violates the rights of others.
Greenlight may use non-personal, aggregated information to improve the Service.
All other content within the Service (other than the Content provided by you, your healthcare provider, or research team) remains the property of Greenlight.
Identity Verification
To use the Service, you may need to verify your identity. You might also need to provide access information for Health Data Sources (called “Access Credentials”). You give Greenlight permission to:
- Use your Access Credentials to retrieve your health data.
- Store your data securely.
- Share your data only as you direct.
No Medical Advice
The Service is not a substitute for medical advice. For health concerns, please consult your healthcare provider directly.
Privacy and Security
Your use of the Service is also subject to the Greenlight Privacy Policy (below). Greenlight takes steps to protect your data, but no system is completely secure.
Communications
We may contact you with important information about the Service by email, in-app messages, or text. You consent to receiving these messages as long as you are using the Service. Standard messaging rates may apply.
Service Changes and Availability
Greenlight may update or change the Service at any time. We cannot guarantee uninterrupted access, and some features may be modified or discontinued.
Feedback
If Greenlight asks you for feedback or suggestions regarding the Service, you agree that Greenlight can use your feedback or suggestions to improve the Service.
Termination
You may stop using the Service at any time. Greenlight may suspend or end your access to the Service at any time. Greenlight may suspend or end your access if you violate these Terms.
Warranty Disclaimer
The Service is provided “as is.” Greenlight does not guarantee that it will always be error-free, available, or meet your needs. We disclaim all warranties, whether expressed or implied, including any warranties for fitness or merchantability.
Limitation of Liability
Greenlight is not responsible for indirect, incidental, special, or consequential damages, including loss of data or profits, plus conditions of contract/tort claims. Our total liability is limited to $100, regardless of the cause of action.
Indemnification
You agree to defend and hold Greenlight harmless from claims or damages arising from:
- Your use of the Service,
- Your violation of these Terms, or
- Unauthorized access to your account.
Third-Party Services
Portions of the Service may connect with third-party apps or services (such as Apple Health or messaging services).
Here is a list of current Greenlight sub-processors: https://greenlighthealth.com/legal/sub-processors-list/
Greenlight is not responsible for their content, policies, or practices. We strongly advise you to read all third party terms, conditions, and privacy policies.
Export Compliance
You agree to follow all U.S. export laws when using the Service. You will not export the Service or data to countries or individuals that are restricted by U.S. law.
Changes to the Terms
We may update these Terms from time to time. If changes are significant, you may be notified and asked to accept them again before continuing to use the Service. Changes in Terms take effect 14 days after they are posted, unless they are required by law or address new features, in which case they may take effect immediately. Continued use after changes take effect means you agree to the updated Terms.
Governing Law
These Terms are governed by the laws of North Carolina. Disputes will be handled in state or federal courts in Wake County, North Carolina.
California Residents
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA). For details on how we handle personal data for California residents, please refer to the Greenlight Privacy Statement (below) and find the California Residents section.
Contact Us
If you have questions about these Terms, you can reach us at:
Email: [email protected]
Mail: Greenlight Health Data Solutions, 801 Corporate Center Drive, Suite 320, Raleigh, NC 27607
Greenlight Privacy Policy
Effective Date: February 10, 2026
At Greenlight, your privacy matters. This Privacy Policy explains what information we collect, how we use it, and the choices you have.
Scope
This Privacy Policy applies to information collected through Greenlight’s services, including its Records Retrieval Platform and Engagement Platform, from devices, and from communications with us regarding the Service. “Personal Data” means information that identifies you or can reasonably be linked to you.
Information We Collect
Information you provide:
- Contact details such as your name, email, or phone number when you register or contact us.
- Health information, photos, notes, and other data you enter into the Service.
- Health information we retrieve from third parties at your request.
- Support requests or feedback you submit.
Information collected automatically:
- Device and browser type, app version, usage patterns, error logs, and non-precise location (e.g., zip code). Cookies help track usage and make your experience smoother. You can turn off cookies in your browser, though some features may not work.
From others:
- Your healthcare provider or research program, if they use our platform and have authorization.
- Health information we retrieve from third parties at your healthcare provider’s request.
Other sources:
- We may supplement your information with public data, such as address updates or demographics, to keep records accurate.
How We Use Your Information
We use your information to:
- Provide and improve the Service.
- Support authorized healthcare providers and research programs using our platform.
- Communicate with you about updates, support.
- Protect system security, prevent fraud, and comply with law.
- Conduct research and analytics to enhance products.
Sharing Information
We do not sell your personal data. We may share it:
- With your healthcare provider, research team, or others you authorize.
- With service providers who help us deliver the Service (e.g., analytics, support tools). Here is a list of current Greenlight sub-processors: https://greenlighthealth.com/legal/sub-processors-list/
- To respond to your questions or support requests.
- To ensure the security of our systems.
- As required by law or legal process.
- As part of a business transaction (e.g., merger or acquisition).
- As de-identified data that cannot identify you.
Your Choices
- You may opt out of marketing emails by clicking “unsubscribe” or replying STOP to texts.
- You may disconnect integrations (like Apple Health) in your device or app settings.
- You may update your profile within the Service or by contacting [email protected].
- You may contact [email protected] to request deletion of your account.
- We protect your data and honor your choices even after you stop using the service.
Data Retention
We keep your data while you use the Service and for a reasonable time afterward, unless required by law or contract to retain it longer.
Children
We do not knowingly collect information from children under 13 except under parental or guardian supervision. If we learn that we have obtained such data without supervision, we will delete it. For programs run by healthcare providers on our platform, those providers are responsible for obtaining parental consent.
Security
We use technical, administrative, and physical safeguards to protect your data. These include encryption, access controls, and staff training. Our team is trained in compliance with privacy laws and security best practices, and access is limited to those who need it. Greenlight products are designed for use by customers, such as healthcare organizations and research organizations, subject to the privacy and security standards defined by the U.S. Health Insurance Portability and Accountability Act (HIPAA) and the E.U. General Data Protection Regulation (GDPR) 2016/679. As defined under GDPR, Greenlight is the controller of the personal data you provide to us and is also a processor for some of our customers.
While we strive to protect your information, no system is completely secure.
We recommend using antivirus and firewall tools, as well as adding a PIN (personal identification number) on your personal devices. You can learn more about security at the FTC’s OnGuard Online site.
International Use
Your data is processed and stored in the United States. If you live outside the U.S., you consent to this transfer by using the Service.
Health records retrieval services, using the Records Retrieval Platform, are intended for U.S. residents only and comply with U.S. laws.
Changes to This Policy
We may update this Policy periodically. If changes are significant, we will notify you by posting the new version within the Service. In the event of a change, you will be asked again to accept the terms on your next use of the Service. Changes in Terms take effect 14 days after they are posted, unless they are required by law or address new features, in which case they may take effect immediately. Continued use after updates means you accept the new Policy.
Contact Us
If you have questions about this Privacy Policy, contact us at:
Email: [email protected]
Mail: Privacy Officer, Greenlight Health Data Solutions, 801 Corporate Center Drive, Suite 320, Raleigh, NC 27607
Your questions will be reviewed by the Security/Privacy/Data Protection Officers at Greenlight.
For California Residents
If you live in California, you may have additional privacy rights. The supplemental privacy notice below applies to California Residents under the California Consumer Privacy Act (CCPA).
Personal Information We Collect
We collect information that may identify or relate to you, including:
- Identifiers (name, address, ID numbers, email)
- Customer record details (medical info, contact data)
- Protected classifications (age, gender, race, health data)
- Biometric data (if applicable)
Sources of Data
We collect data:
- Directly from you
- From your healthcare provider, research team, or other authorized users of the Service
- From third-party health platforms when you give us access
Use of Data
We use or share your information to:
- Fulfill requests and services
- Provide, maintain, and improve the Service
- Communicate with you and offer support
- Comply with legal obligations
- Conduct research and improve our products
- Protect system integrity and prevent fraud
- Provide third-party services you request
- Support business transactions (e.g., mergers)
Sharing Information
We share information only for business purposes with:
- Service providers
- The customers, healthcare providers, and research team members you have authorized (Authorized Recipients)
We do not sell your personal information.
We may share de-identified data, using HIPAA’s safe harbor method.
Your Rights
Under the CCPA, you have rights to:
- Know what personal data we collect
- Request access to or deletion of your data
- Opt out of data sharing
- Receive equal service and pricing
How to Make a Request
Submit requests by:
- Email: [email protected]
- Website: https://greenlighthealth.com
- Mail: Privacy Officer, 801 Corporate Center Dr., Suite 320, Raleigh, NC 27607
Only you or someone you authorize may submit a request. We may need to verify your identity first.
Response Time
We aim to respond within 45 days. If more time is needed (up to 90 days), we will notify you.
Fees
We don’t charge fees when we fulfill your rights under the CCPA unless a request is excessive or repetitive. If so, we’ll provide a cost estimate first.
Non-Discrimination
We won’t deny services or change prices because you exercise your privacy rights.
Changes to This Notice
We may update this notice. The new version will include a revised effective date. Continued use of our Service means you accept any updates.
If you have questions about this notice or your rights, contact us at [email protected].
This document last updated on 1/29/2026
