Privacy Policy
Last Updated: July 24, 2025
This Privacy Policy explains how NerveVue (operating the website neuropathy.nervevue.com, referred to as “we,” “us,” or “our”) collects, uses, and shares your personal information, and the choices you have. We are committed to protecting your privacy and complying with all applicable U.S. laws, including the California Consumer Privacy Act (CCPA). By using our site or services, you agree to the practices described in this Privacy Policy.
Information We Collect
We collect personal information that you provide to us when you use our website, make a purchase, or otherwise contact us. This includes:
- Contact Information: Your name, email address, phone number, and shipping/billing address
- Payment Information: Credit or debit card details (processed securely via Stripe; we do not store your full card number).
- Account Credentials: If you create an account, a username and password.
- Communications: Records of correspondence, such as customer support inquiries or survey responses.
- Automatically Collected Data: When you visit our site, we (or our service providers like Shopify) automatically collect information such as your IP address, browser type, device identifiers, and browsing behavior via cookies or similar tracking technologies. This helps us understand how users navigate our site and personalize your experience.
We do not knowingly collect personal information from children under 13. Our website and services are intended for adults. If we learn we have collected information from a child under 13, we will delete it promptly in accordance with the Children’s Online Privacy Protection Act (COPPA).
Information We Collect
We use the collected information for the following purposes:
- To Process Orders and Provide Services: We use your personal data to process payments, fulfill your purchases, handle returns or refunds, and deliver products to you. For example, we use your shipping address to ship your order and payment details (name, billing address, card number) to charge you for the products
- Communication: We use your email and/or phone number to send you confirmations, invoices, shipping updates, and customer support messages related to your orders.
- Marketing (With Consent): With your permission, we may use your contact information to send you promotional emails and A2P (Application-to-Person) SMS text messages about new products, special offers, or newsletters. We will only send marketing text messages if you have opted in to receive them. (See “SMS/Text Communications and Consent” below for more on our A2P SMS practices.)
- Improve Our Services: We may analyze how customers use our site to improve our interface, product offerings, and customer experience. This may include using cookies and analytics tools to understand website traffic and user behaviors.
- Legal Compliance and Security: We may use and retain your information as needed to comply with legal obligations (such as tax and accounting requirements), to enforce our Terms of Service, or to detect and prevent fraud, security breaches, or other harmful activities.
Legal Basis (for U.S. Compliance): We collect and process personal information for purposes that are considered “business purposes” under applicable U.S. laws, including the CCPA. These purposes include fulfilling your transactions, providing customer service, marketing (with consent), improving our services, and compliance with law. We rely on your consent for sending marketing communications (you have the right to opt out at any time), and on contractual necessity for processing orders/payments (i.e. we need the data to fulfill our agreement with you when you make a purchase). We do not collect sensitive personal data except as needed to process your payments (e.g. credit card info), and we limit our use of such data to those necessary purposes.
Cookies and Tracking Technologies
Our website uses cookies and similar tracking technologies to enhance your browsing experience and for analytics and advertising purposes. Cookies are small text files placed on your device that enable site features and functionality. For example, cookies allow us to remember what’s in your shopping cart, understand which pages of our site are popular, and deliver relevant ads on third-party platforms. We may utilize both first-party cookies (placed by our domain) and third-party cookies (placed by Shopify or analytics providers).
You can control or delete cookies through your browser settings. However, note that disabling certain cookies may affect the functionality of our site (for instance, the site may not remember your cart or language preferences). We do not currently respond to “Do Not Track” signals from web browsers, as there is no consensus on a DNT standard.
How We Share Your Information
We value your privacy and do not sell your personal information to third parties for their own marketing purposes. We only share your information in the following circumstances:
- Service Providers: We share data with trusted third-party service providers who perform services on our behalf, only to the extent necessary to carry out their functions. This includes Shopify (our website hosting and e-commerce platform) and Stripe (our payment processor). For example, because our store is hosted on Shopify, personal information required to process transactions (like your name, email, address, and order details) is shared with Shopify’s system Likewise, when you make a purchase, Stripe will receive your payment card information to process the transaction securely. Stripe’s processing of your payment information (such as your card number) is subject to Stripe’s own Privacy Policy and security standards; we do not receive or store your full financial account numbers. We may receive limited payment confirmation data from Stripe (e.g. a payment token or confirmation of payment) for record-keeping. According to Allbirds’ policy, when a company uses a third-party payment processor, the use and storage of your financial information is governed by that third party’s terms and privacy policy. We apply a similar approach – any financial information we handle or receive from Stripe is treated in accordance with this Privacy Policy.
- Shipping and Fulfillment Partners: If we use third-party logistics or carriers to ship your order, we share the minimum necessary information (such as your name and address) with them to deliver your products.
- Communication Providers: We may share your phone number or email with our third-party messaging platforms (e.g., SMS gateway services or email marketing platforms) solely to send communications you have agreed to receive. For example, if you opt in to our SMS alerts, your number is used by our SMS service provider to send texts on our behalf. We ensure any such provider is contractually bound to protect your data and use it only for our authorized purposes. Importantly, no mobile phone information will be shared with third parties or affiliates for their own marketing or promotional purposes – text message opt-in data and consents are only used to facilitate the messaging services. (In other words, we won’t sell or disclose your phone number to unrelated parties for their marketing.)
- Legal Requirements and Protection: We may disclose personal information if required to do so by law or legal process, or if we have a good-faith belief that such action is necessary to (i) comply with applicable laws or respond to valid legal requests (e.g. subpoenas or court orders), (ii) protect and defend our rights or property, (iii) prevent fraud, security, or technical issues, or (iv) protect the safety of our users or the public.
- Business Transfers: In the event we consider a business transaction such as a merger, acquisition, reorganization, or sale of all or part of our assets, personal information may be disclosed to potential or actual purchasers (under a duty of confidentiality) as part of the evaluation or completion of that transaction. If such a transfer occurs, the acquiring entity’s handling of your personal information will still be subject to this Privacy Policy (unless you’re notified of changes and consent to them).
Aside from the above, we do not share, sell, rent, or trade your personal information with third parties for their independent use. If in the future we ever need to share personal data in a way that materially differs from this policy, we will update you and obtain any required consent or give you the opportunity to opt out.
SMS/Text Communications and Consent
If you provide your phone number and opt in to receive SMS text messages from us, you consent to receive automated text messages for the purposes you agreed to (e.g. order updates, promotional offers). We follow all applicable laws and industry guidelines for A2P (Application-to-Person) messaging, including the Telephone Consumer Protection Act (TCPA) and CTIA best practices. This means:
- Opt-In: We will only send you marketing text messages if you have explicitly agreed (opted in). For example, entering your phone number at checkout and affirmatively agreeing to receive texts, or texting a designated keyword to our number, signifies your consent. We will make clear what types of messages to expect and that you are consenting to receive them. Your consent to receive marketing texts is not a condition of purchasesupport.yotpo.comallegrow.co – you can make a purchase from us without agreeing to SMS marketing.
- Opt-Out: You can opt out of receiving text messages at any time. To stop receiving messages, reply STOP to any of our texts (or follow any other opt-out instructions provided). When we receive a STOP request, we will send a final SMS to confirm that you have been unsubscribed (no further messages will be sent after this). You can also opt out by contacting us at our support email or phone number and requesting removal from SMS communications.
- Help: If you need assistance or more information regarding our SMS program, you can reply HELP to any of our messages, or contact us via email at [email protected]. Upon a HELP request, we will send you a message with instructions on how to manage your subscriptions or where to get support
- Third-Party Involvement: We use a third-party service to send these text messages (an SMS platform or aggregator). As noted above, we share your number only with that service and solely for sending texts you agreed to. We do not share your opt-in data or phone number with any third parties for their marketing. All messages will come from our designated number or shortcode; we will identify ourselves as NerveVue or a related brand in the message content.
- Carriers: Please note that your wireless carriers (e.g. AT&T, Verizon, T-Mobile, etc.) are not liable for delayed or undelivered messages. Once we send a text, delivery is largely dependent on your network and device.
- Privacy: Any personal information we obtain through the SMS program (such as your phone number and any other info you provide via text) will be handled in accordance with this Privacy Policy. We will not use that information for any purpose outside the scope of the text program to which you subscribed. If you have privacy-related questions, you can refer to this Privacy Policy or contact us for more information.
You have the same rights regarding your personal information in texts as detailed below in Your Rights and Choices. If you need further help with our text messaging services, contact our customer support at [email protected] or by replying HELP as noted.
(For additional terms governing the SMS program, please see the “SMS/MMS Messaging” section in our Terms of Service.)
Your Rights and Choices
You have certain rights and choices regarding your personal information, which we honor in compliance with U.S. law. These include:
- Access and Portability: You may request details about the personal information we have collected about you, and obtain a copy of that information in a portable format (to the extent required by law).
- Correction: You have the right to request that we correct or update any inaccurate personal information we hold about you.
- Deletion: You may request that we delete personal information we have collected from you. Please note we may need to retain certain information for legitimate business or legal reasons (for example, to complete transactions you’ve requested, for record-keeping, or to comply with law), in which case we will inform you.
- Opt-Out of Sale/Sharing: We do not sell your personal information for monetary value. In the context of CCPA, “sale” or “sharing” broadly includes certain disclosures of data for advertising. We currently do not disclose personal information to third parties for cross-context behavioral advertising or for money. If in the future we contemplate selling or sharing your data in a way that triggers your opt-out rights, we will provide a clear “Do Not Sell or Share My Personal Information” mechanism. As of now, this is not applicable because we don’t engage in those practices.
- Opt-Out of Marketing: You have the right to opt out of our marketing communications. You can unsubscribe from marketing emails by clicking the “unsubscribe” link in any promotional email, or by contacting us. For SMS, you can reply STOP as described above. Once we process your opt-out request, we will stop using your contact information for promotional purposes (it may take a few days to fully remove you from all marketing lists). Even if you opt out of marketing messages, we may still send you transactional communications (e.g. order updates or customer service responses) as these are not promotional.
- Non-Discrimination: We will not discriminate against you for exercising any of these privacy rights. For example, we will not deny you goods or services, charge different prices, or provide a different level of quality because you exercised your rights under applicable law (except to the extent permitted, such as offering a different price if you direct us to delete your data and that data was needed to provide a personalized discount).
- Other State Privacy Rights: If you are a resident of certain states (such as California, Virginia, Colorado, Connecticut, or Utah), you may have additional rights under those states’ privacy laws. We aim to honor all applicable rights. For instance, Virginia residents can opt out of certain data processing, and Colorado residents have rights similar to CCPA rights. You can exercise these rights in the same way as described here.
- California Residents: Under the CCPA (as amended by the CPRA), California consumers have specific privacy rights, including: (1) the right to know what personal information we collect, how we use it, and the categories of third parties with whom we share it; (2) the right to access the specific pieces of personal information we have collected about you; (3) the right to delete personal information (subject to exceptions); (4) the right to opt-out of the sale or sharing of personal information; (5) the right to correct inaccurate personal information; (6) the right to limit the use of your sensitive personal information (if we collect any; we only use sensitive info like payment details for necessary transactions); and (7) the right to non-discrimination for exercising these rights. California’s “Shine the Light” law also permits you to request certain information about our disclosure of personal data to third parties for their direct marketing purposes; however, as noted, we do not share personal data with third parties for their independent marketing, beyond the service provider relationships disclosed.
- Exercising Your Rights: To exercise any applicable privacy rights (access, correction, deletion, etc.), please contact us using the information in the Contact Us section below. We may need to verify your identity before fulfilling your request (for example, by asking you to provide information matching what we have on file). For certain requests (like access or deletion), we will require a verified request to ensure we are interacting with the correct person. If you have an authorized agent making a request on your behalf, we will take steps to verify the agent’s authority and possibly still verify your identity directly, as required by law. We will respond to privacy requests within the timeframes required by law (generally within 45 days for CCPA requests, with the possibility of a 45-day extension, which we will communicate to you if needed).
Data Retention
We retain personal information only for as long as necessary to fulfill the purposes for which we collected it, and as required or permitted by law. This means:
- If you make a purchase, we will retain your information for as long as needed to process the transaction, provide any applicable warranty or support, and maintain records for legal or financial reporting purposes. For example, we may retain order records and basic contact info for a number of years to comply with tax and accounting regulations.
- If you create an account or subscribe to our communications, we will keep your information until you delete your account or unsubscribe, or after a period of inactivity.
- If you request deletion of your data, we will delete or anonymize your information, except for information we are required or permitted to keep (for example, records of transactions may be kept for auditing and legal purposes).
- We periodically review the data we hold and securely dispose of or anonymize information that is no longer needed.
When determining retention periods, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure, the purposes of processing, whether we can achieve those purposes through other means, and all applicable legal requirements.
Data Security
We take the security of your personal information seriously and implement reasonable administrative, technical, and physical safeguards to protect it from unauthorized access, disclosure, alteration, or destruction. Examples of the measures we take include:
- Encryption: Our Shopify-hosted website uses HTTPS encryption (TLS/SSL) to secure the transmission of data. Sensitive information (like payment details) is handled by Stripe, which is PCI-DSS compliant and encrypts card numbers.
- Access Controls: Personal data stored in our systems or those of our service providers is accessible only by authorized personnel who need it to perform their duties. We use passwords and authentication steps for accounts. We also encourage you to choose a strong password for your account and keep it confidential.
- Network & Application Security: Shopify, as our platform provider, maintains security measures such as firewalls, intrusion detection systems, and regular security patching to protect the website and its backend. We rely on Shopify’s robust security infrastructure as well as our own precautions.
- Monitoring and Testing: We monitor for potential vulnerabilities and attacks, and we may perform security testing on our systems. Shopify and Stripe also regularly audit their systems for security.
- Employee and Contractor Training: We train our team about the importance of confidentiality and privacy of customer data.
Despite our efforts, please note that no method of transmission over the Internet or method of electronic storage is 100% secure. Therefore, while we strive to protect your personal information, we cannot guarantee its absolute security. You should also take care with how you handle and disclose your personal information. In particular, do not share your website account password with anyone. If you have reason to believe that your interaction with us is no longer secure (for example, if you suspect your account has been compromised), please immediately contact us.
In the event of a data breach that affects your personal information, we will notify you and any applicable regulators as required by law.
Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or for other operational reasons. If we make material changes, we will notify you by (for example) posting a prominent notice on our website or emailing you, and indicating at the top of the policy when it was last updated. We encourage you to review this Privacy Policy periodically. Your continued use of our site or services after any update constitutes your acceptance of the revised Privacy Policy.
Changes to This Privacy Policy
If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your personal information, please contact us:
NerveVue Privacy Team
(469)-286-0897
Email: [email protected]
(Please note: The phone number and address above are provided for privacy inquiries. For general customer service or order issues, you may use the contact form on our website or the support email.)
We will respond to your inquiries as soon as reasonably possible, typically within 30 days. If you are not satisfied with our response to a privacy concern, you may have the right to contact your state’s Attorney General or regulatory agency.
Thank you for trusting NerveVue. We are dedicated to protecting your privacy and providing a safe and enjoyable experience on our website.