About Us




Employer Login

Member Support

Connected Navigation Platform

Guide your employees to high-value care

New call-to-action

Virtual MSK Care Nav Icon

Virtual MSK Care >
Reimagining musculoskeletal care

Bill Review
Bill Review >
A billing advocate on your side

    HealthJoy Virtual Urgent Care

    Virtual Urgent Care >
    Immediate care, any hour of the day

    HealthJoy EAP
    EAP >
    Supporting whole wellbeing

      HealthJoy Behavioral Health

      Behavioral Health >
      Foster a mentally healthy workplace

        HealthJoy Integrations

        Privacy Policy

        Last Updated and Effective: December 2020

        This site (together with any successor site(s), computer systems, cloud-based storage accounts, associated social media websites) is operated by HealthJoy, LLC (“we,” “us,” or “HealthJoy”). We are concerned about privacy issues and want you to be familiar with how we collect, use and disclose information, so that you can make educated and informed decisions. This Privacy Policy describes our practices in connection with information that we collect through our Site, any of our mobile applications, or any other websites or content owned by us that links to this Privacy Policy (collectively, the “Services”).

        Your use of any of the Services is conditioned on your agreement with all the terms of this Privacy Policy. Do not use the Services if you disagree with any part of this Privacy Policy. This Privacy Policy is written in the English language. We do not guarantee the accuracy of any translated versions of this Privacy Policy. To the extent any translated versions of this Privacy Policy conflict with the English language version, the English language version of this Privacy Policy shall control.

        Your use of the Services constitutes acceptance of this Privacy Policy. We urge you to take the time to read our entire Privacy Policy for complete detail about our privacy practices and your information. Our Privacy Policy provides information about:

        Information Collected About You

        We may collect personally identifying information about you – such as your name, address, telephone number, email address as well as protected health information (PHI) such as:

        • Your past, present, or future physical or mental health or condition,
        • Information related to the provision of health care, and
        • The past, present, or future payment for the provision of health care, and that identifies you or could be used to identify you.

        Protected health information may include many common identifiers (e.g., name, address, birth date, Social Security Number) when they can be associated with the health information listed above. Throughout this Policy, we refer to all information we may collect from you as “Personal Information.”

        Certain Personal Information, such as PHI, implicates legal requirements – these legal requirements arise from laws such as the Health Insurance Portability and Accountability Act of 1996 (“HIPPA”). HealthJoy works with its staff and outside consultants on implementing measures to comply with HIPPA and other laws. Compliance may require your express consent – if so, these consent documents closely. Consent may involve you providing us access to your health insurance information so that we can use it in the way you have requested. This Policy includes further information about consent requirements throughout.

        We use Personal Information in the following ways, as permitted by law:

        • When you register for or update an existing profile on our websites or Apps;
        • When you use certain interactive tools and services (i.e., HealthJoy mobile application, TeleHealth Services,);
        • When you sign-up for newsletters or other communications from HealthJoy;
        • When you participate in an online survey.

        We may collect non-personal information – information that is not directly used to identify you – via Cookies, Web Beacons, Pixels, HealthJoy mobile device applications and from external sources, even if you have not registered with or provided any Personal Information to HealthJoy.

        What Choices Do I Have?

        If you do not want your Personal Information used by HealthJoy as provided in this Privacy Policy, you should not use the Services, register as a member or for any specific tool or application that collects Personal Information, nor submit any information in the “Contact Us” form on the HealthJoy website.

        You may correct, update or review Personal Information you have submitted through registration, tools, and applications by signing in and updating your registration information. If you have registered and no longer want HealthJoy to use your Personal Information, you should delete your information as described in this Privacy Policy or contact HealthJoy. Most browser software can be set to reject Cookies, and you can opt out of Cookies for several Ad Servers by visiting the Network Advertising Initiative gateway opt-out site.


        How Information Collected About You Is Used

        We may use information we collect about you to:

        • Administer your account;
        • Provide you with access to particular tools and services;
        • Respond to your inquiries and send you administrative communications;
        • Obtain your feedback on our sites and our offerings;
        • Statistically analyze user behavior and activity;
        • Provide you with more relevant content and services;
        • Conduct research and measurement activities;
        • Send you personalized emails or secure electronic messages about your health interests, including news, announcements, reminders, and opportunities.
        With Whom Do We Share Your Information?

        In addition to Personal Information that may be shared via pixels as detailed in the Pixels section below, HealthJoy does not disclose any Personal Information, other than:

        • To comply with legal requirements, such as a law, regulation, search warrant, subpoena, or court order;
        • To our vendors and suppliers in the course of their provision of products or services to HealthJoy;
        • In the event of a corporate change in control resulting from, for example, a merger, a sale of assets, or bankruptcy;
        • In exceptional cases, such as in response to a physical threat to you or others.


        How Do We Secure and Retain Your Information?

        We have put in place technical, physical, and administrative safeguards to protect the Personal Information that we collect. PHI, including but not limited to, your credit card number and delivery address is transmitted through the internet using Secure Socket Layers (SSL) technology. SSL is designed to prevent someone other than the operators of our website from capturing and viewing your personal information. Also, online access to your PHI is protected with a password you select. We strongly recommend that you do not disclose your password to anyone. HealthJoy does not ask for passwords by unsolicited communication (including unsolicited correspondence such as letters, phone calls, or email messages).


        How Can You Contact Us?

        Please send us an email using the Contact Us link at the bottom of every page of our site if you have any questions about this Privacy Policy or the Personal Information we maintain about you.

        You can also contact HealthJoy’s Privacy Office at:

        HealthJoy, LLC
        Attn: General Counsel
        215 West Superior St. 5th Floor
        Chicago, IL 60654


        Uses and Disclosures of PHI

        The HIPAA Privacy Rule (“Rule”) establishes national standards to protect individuals’ medical records and other personal health information and applies to health plans, healthcare clearinghouses, and those healthcare providers that conduct certain healthcare transactions electronically. The Rule requires appropriate safeguards to protect the privacy of personal health information, and sets limits and conditions on the uses and disclosures that may be made of such information without patient authorization. The Rule also protects patients’ rights, including rights to examine and obtain a copy of their health records, and to request corrections. HealthJoy may use and disclose your PHI for purposes of (a) treatment and (b) healthcare operations.

        For example:

        • Treatment. HealthJoy may disclose your PHI to another physician or healthcare provider for purposes of consultation or in connection with the provision of follow-up treatment.
        • Health Care Operations. HealthJoy may use and disclose your PHI in connection with its healthcare operations, such as providing health consultations, customer service and conducting quality review assessments.
        • Payment. We document the services and supplies you receive when we are providing care to you so that you, your insurance company or another third-party can pay us. We may tell your health plan about upcoming treatment or services that require prior approval by your health plan.
        • Authorization. HealthJoy is permitted to use and disclose your PHI for the normal business activities that the law sees as falling into the categories of treatment, healthcare operations, and payment. You may revoke any such authorization at any time by contact HealthJoy at



        Access to some HealthJoy interactive tools and the Services may be limited to users who have registered. Some of our tools (such as certain quizzes or calculators) do not retain your Personal Information, while others store your Personal Information per this Privacy Policy. You may also be asked to provide authorization for uses of personal information in addition to what is in this Privacy Policy when you use certain tools, such as providing personal information to a sponsor of the tool. HealthJoy does not use your Personal Information beyond this Privacy Policy unless you provide such additional consent in connection with the specific tool. HealthJoy allows you a secure place to gather, store, manage and share your Personal Information and provides tools and services to manage your health and the health of your family, requires additional registration better. HealthJoy can use Personal Information that you provide to send you personalized emails or secure electronic messages.


        Newsletters & Emails to You

        At registration and at various times as you use HealthJoy, you will be given the option of providing us with Personal Information to receive recurring informational/promotional newsletters – such as a newsletter relating to a specific health condition – via email from HealthJoy or directly from third-parties. From time to time, HealthJoy makes subscriptions to our newsletters available on third-party websites. If you sign up for one of our newsletters on a third-party site, the site provides us with your Personal Information such as your email address and we may use that information as described in this Privacy Policy as though you had provided it directly to HealthJoy.

        When you sign up for our email newsletters on HealthJoy or at any time, you can choose to opt out of receiving additional promotional newsletters from HealthJoy. You can unsubscribe from a newsletter by following the directions included at the bottom of the newsletter.


        Market Research

        From time to time, HealthJoy may conduct online research surveys through email invitations, pop-up surveys and online focus groups. When participating in a survey, we may ask you to enter Personal Information. The Personal Information you submit in a survey may be used by HealthJoy for research and measurement purposes, as described below, including to measure the effectiveness of content, advertising or programs. When our market research surveys collect Personal Information, we do not knowingly accept participants under the age of 13. Market research surveys conducted by or on behalf of HealthJoy will contain a link to this Privacy Policy.


        Emails and Messages You Send to HealthJoy

        This Privacy Policy does not apply to information, content, business information, ideas, concepts or inventions that you send to HealthJoy by email. If you want to keep content or business information, ideas, concepts or inventions private or proprietary, do not send them in an email to HealthJoy.


        Non-Personal Information

        Even if you do not register with or provide any Personal Information to HealthJoy, we collect Non-Personal Information about your use of HealthJoy. “Non-Personal Information” means information that we cannot use to identify or contact you. We may also acquire Non-Personal Information about our users from external sources. While you may use some of the functionality of HealthJoy without registration, many of the specific tools and services on HealthJoy require that you register.


        Pixels, Cookies and Web Beacons

        HealthJoy may use pixels (also known as tracking pixels or pixel tags) in connection with the HealthJoy website (“Pixels”). The Pixels are only used for visitors to the HealthJoy website, and not for registered members/users of the HealthJoy app. Pixels are tiny graphics with a unique identifier, similar in function to cookies, that are embedded invisibly on web pages. HealthJoy’s pixels may collect or capture certain information from visitors to the HealthJoy website or their browser as the visitors access and use the website, including (i) Personal Information that you knowingly provide on the “Contact Us” form on the website, including email address, name, company affiliation, and phone number, and (ii) information about the browser and hardware you use as you access and use the website, including IP address, network information, device characteristics, browser type, cookie information, referring/exit pages, sites visited and timestamps. By accessing and using the HealthJoy website, you acknowledge and agree that we may (a) use this information internally to provide our software and services to you; (b) use or aggregate this information for our own business purposes (including but not limited to promoting or marketing our software and services to you), and (c) share this information with our partners and with advertisers or outside marketing platforms, for the limited purpose of promoting and marketing our or other services to you. You acknowledge and agree that as a result of your use of the HealthJoy website as a visitor and your provision of information during the same, you may be contacted by third-parties, including our partners or affiliates, or may encounter targeted advertisements or recommendations from them on other sites.

        We also collect Non-Personal Information about your use of HealthJoy and other websites through Cookies and Web Beacons. “Cookies” are small data files that are stored on the hard drive of the computer you use to view a web site. HealthJoy assigns a different cookie to every computer that accesses it. “Web Beacons” are graphic image files embedded in a web page typically used to monitor activity on a web page and send back to its home server (which can belong to the host site, a network advertiser or some other third-party) information from your browser, such as the IP address, the URL of the beacon’s page, the type of browser that is accessing the site and the ID number of any Cookies on your computer previously placed by that server. Third-parties under contract with HealthJoy may use Cookies or Web Beacons to collect Non-Personal Information about your usage of HealthJoy, including which health topics you have viewed. These third-party advertising service providers may use this information, on our behalf, to help HealthJoy deliver advertising on HealthJoy as well as on other sites on the Internet based on your browsing activity on our sites. HealthJoy may further tailor the advertising on these third-party sites based on additional Non-Personal Information to the extent known by HealthJoy or these third-parties.


        Mobile Device Applications and Mobile Optimized Sites

        The HealthJoy mobile device applications and mobile optimized websites (collectively, the “HealthJoy App”) allows you to use many features without being registered but require that you are signed in as a registered user to use certain personalized features. The information that we collect through your use of these HealthJoy Apps will be treated as Personal Information under this Privacy Policy. When you download and install the HealthJoy App onto your mobile device we assign a random number to your HealthJoy App installation. This number cannot be used to identify you personally, and we cannot identify you personally unless you choose to become a registered user of the App. We use this random number in similarly to our use of Cookies as described in this Privacy Policy. Unlike Cookies, the random number is assigned to your installation of the HealthJoy App itself and not a browser, because the HealthJoy App does not work through your browser. Therefore the random number cannot be removed through settings. If you do not want us to use the random number for the purposes for which we use Cookies, please do not use the HealthJoy App.

        The HealthJoy App may also collect information specific to use of your mobile device, such as unique device identifiers and, with your consent, precise geolocation information, motion data (e.g., recording elevation, steps, and other information), gyroscope data, and accelerometer data (tracking movement).


        Additional Technologies We Use

        Apart from the tools described in this Policy, our websites and HealthJoy App may contain additional technologies. These additional technologies include social media features, such as the Facebook button, and widgets, such as the Share This button or interactive mini-programs that run on the website. These features may collect your Internet Protocol address, which page you are visiting on our websites, and may set a cookie to enable the feature to function properly. When you engage with our content on or through social media services or other third-party platforms, plug-ins, integrations or applications, you may allow us to have access to certain information in your profile on those services, platforms, plug-ins, integrations or applications. For a description on how social media services and other third-party platforms, plug-ins, integrations or applications handle your information, please refer to their respective privacy policies and terms of use, which may permit you to modify your privacy settings.

        We may also allow third-party service providers to use cookies and other technologies to collect information and to track browsing activity over time on our websites. Also, we may use similar technologies across third-party websites such as web browsers used to read our websites, which websites are referring traffic or linking to the websites, and to deliver targeted advertisements to you on third-party websites. We do not control third-party technologies and their use is governed by separate privacy policies. For more information about third-party advertising networks and similar entities that use tracking technologies, see, and to opt out of such ad networks’ and services’ advertising practices, go to and

        To opt out of Google Analytics for display advertising or customize Google display network ads, you can visit the Google Ads Settings page. Please note that to the extent advertising technology is integrated into the Services, you may still receive advertisements even if you opt out of tailored advertising. In that case, the ads will just not be tailored.


        Collection of information across personal devices and applications 

        Sometimes, we (or our service providers) may use the information we collect—for instance, log-in credentials, IP addresses, hashed email addresses, and unique mobile device identifiers—to locate or try to locate the same unique users across multiple browsers or devices (such as smartphones, tablets, or computers), or work with providers that do this, to better tailor content, features, and advertising (for Rally Health on other sites), and provide you with a seamless experience across the devices you use to access our Services.


        What Choices Do I Have?


        Updating/Removing Your Personal Information

        If you do not want your Personal Information used by HealthJoy as provided in this Privacy Policy, you should not register as a member or for any specific tool or application that collects Personal Information. You can correct, update or review Personal Information you have previously submitted by going back to the specific HealthJoy App, logging-in and making the desired change. You can also update any Personal Information you have submitted by contacting us using the contact information listed below.

        If you have registered and desire to delete any of your Personal Information you have provided to us from our systems, please contact us using the contact information listed below. Upon your request, we will delete your Personal Information from our active databases and where feasible from our back-up media. You should be aware that it is not technologically possible to remove every record of the information you have provided to HealthJoy from our servers. If you decide that you would prefer not to receive personalized email or secure electronic messages from HealthJoy, you may “Opt-out” of the service by clicking on the settings tab on your home page of the HealthJoy App and changing your email preference or following the unsubscribe instructions included in each promotional email.


        Research and Measurement Activities

        Information that HealthJoy collects about you may be combined by HealthJoy with other information available to HealthJoy through third-parties for research and measurement purposes, including measuring the effectiveness of content or

        programs. This information from other sources may include age, gender, demographic, geographic, personal interests, product purchase activity or other information. We may report aggregate information, which is not able to be identified back to an individual user of HealthJoy to our current or prospective business partners.


        We Do Not Sell Personal Information 

        We do not sell any Personal Information. We may provide Personal Information to contractors performing services on our behalf incidentally to those services – the contractor must agree not to use this information received from us for any purpose other than performing services on our behalf. We contractually require that our operations and maintenance contractors: 1) protect the privacy of your Personal and Non-Personal Information consistent with this Privacy Policy and 2) not use or disclose your Personal or Non-Personal Information for any purpose other than providing the limited service or function for HealthJoy.


        Disclosures to Third Party Web Sites

        Certain content, services and advertisements offered to you through HealthJoy are served on, or contain links to, websites hosted and operated by a company other than HealthJoy (“Third Party Websites”). HealthJoy does not disclose your Personal Information to these Third Party Websites without your consent, but you should be aware that any information you disclose to the other websites once you access these other websites is not subject to this Privacy Policy. HealthJoy does not endorse and is not responsible for the privacy practices of these Third Party Websites. You should review the privacy policy posted on the other web site to understand how that Third Party Web Site collects and uses your Personal Information. HealthJoy makes an effort to make it obvious to you when you leave our website and enter a Third Party Web Site, either by requiring you to click on a link or by notifying you on the site before you visit the third-party site. Also, if you see a phrase such as “Powered by” or “in association with” followed by the name of a company other than HealthJoy, then you are on a web site hosted by a company other than HealthJoy.


        How Do We Secure and Retain Your Information?

        We take reasonable security measures to protect the security of your Personal Information. Despite HealthJoy’s efforts to protect your Personal Information, there is always some risk that an unauthorized third-party may find a way around our security systems or that transmissions of your information over the Internet may be intercepted. If you have reason to believe that your interaction with us is no longer secure (for example, if you feel that the security of any account you might have with us has been compromised), please immediately notify us of the problem by contacting us via email at

        The security of your Personal Information is important to us. When you enter Personal Information (including personal health information in various tools on our website), we encrypt the transmission of that information or use SSL connections (Secure Socket Layer) technology.
        We retain your Personal Information as long as your account is active or needed to provide you services. At any time you can remove your Personal Information or instruct us to remove it, but you should be aware that it is not technologically possible to remove every record of the information you have provided to HealthJoy from our servers. HealthJoy tools that collect and store Personal Information allow you to correct, update or review information you have submitted by going back to the specific tool, logging-in and making the desired changes. We will also retain Personal Information as necessary to comply with legal obligations, resolve disputes and enforce our agreements.



        We are committed to protecting the privacy of children. HealthJoy is not designed or intended to attract children under the age of 13. HealthJoy does not collect Personal Information from any person we know is under the age of 13. A parent or guardian, however, may HealthJoy to establish a personal health record and a HealthJoy home page for a minor. The parent or guardian is solely responsible for providing supervision of the minor’s use of HealthJoy. The parent or guardian assumes full responsibility for ensuring that the registration information is kept secure and that the information submitted is accurate. The parent or guardian also assumes full responsibility for the interpretation and use of any information or suggestions provided through HealthJoy for the minor.

        If you are a California resident under the age of 18 and your parent or guardian registered you for our Services, you may request that we remove from our Services any content you post to our Services that can be accessed by any other User (whether registered or not). Please note that any content that is removed from our Services may remain on our servers and in our systems. To request removal of content under this provision, please email and provide us with a description of the content and the location of the content on our Services, and any other information we may require to consider your request. Please note that removal of content under this provision does not ensure complete or comprehensive removal of the content or information posted on the Services by you.

        California Privacy Provisions

        California law permits customers of HealthJoy who are California residents to request certain information regarding our disclosure of personal information to third-parties for their direct marketing purposes. To make such a request, please write us via email at or the Personal Information we maintain about you.

        You can also contact HealthJoy’s Privacy Office at:
        HealthJoy, LLC
        Attn: General Counsel
        215 West Superior St., 5th Floor
        Chicago, IL 60654


        We will provide a list of the categories of personal information, if any, disclosed to third-parties during the immediately preceding calendar year for third-party direct marketing purposes, along with the names and addresses of these third-parties. This request may be made no more than once per calendar year. We reserve our right not to respond to requests submitted other than to the email or postal address specified above. You should put “California Privacy” in the subject line and in your request. You must provide us with specific information regarding yourself so that we can accurately respond to the request.


        California Do-Not-Track Disclosure Requirements 

        We are committed to providing you with meaningful choices about the information collected on our Services for third-party purposes. However, we do not recognize or respond to browser-initiated Do Not Track signals.


        Contacting HealthJoy About Your Personal Information or Privacy

        Please send us an email by using the Contact Us link at the bottom of every page of our site if you have any questions about this Privacy Policy, via email at or the Personal Information we maintain about you.

        You can also contact HealthJoy’s Privacy Office at:

        HealthJoy, LLC
        Attn: General Counsel
        215 West Superior St., 5th Floor
        Chicago, IL 60654

        You may:

        • (i) request certain restrictions on the use of your PHI;
        • (ii) receive an accounting of disclosures of use of your Protected Health Information;
        • (iii) amend your PHI;
        • (iv) file a complaint if you believe your privacy has been violated; and
        • (v) revoke your authorization to HealthJoy to use and disclose your Protected Health Information.


        Changes to This Privacy Policy

        We reserve the right to change or modify this Privacy Policy or any of our tools or services at any time, and any changes are effective upon being posted unless we advise otherwise. If we make any material changes to this Privacy Policy, we will notify you by email (sent to the email address specified when you register) or post notice on this website before the change becomes effective. We encourage you to periodically review this website for the latest information on our privacy practices. If you do not accept the terms of this Privacy Policy, we ask that you do not register with us and that you do not use HealthJoy. Please exit HealthJoy immediately if you do not agree to the terms of this Privacy Policy.