Privacy Policy

• The public website collects business contact information, request details, device and usage information, and analytics information.
• The DOpS Advisor Portal collects named-account information, authentication and security logs, Portal activity, user questions, answers, feedback, and, for Collaborators, source files, drafts, metadata, and authoring activity.
• The public website may use cookies and Google Analytics to understand website traffic and improve the site. The Portal should use only necessary, security, and operational cookies unless we provide a separate notice.
• The Portal is not intended to receive protected health information, electronic protected health information, patient information, member information, claims files, medical records, payment card data, Social Security numbers, or other regulated sensitive personal data unless a separate compliant deployment and written agreement are in place.
• We do not sell personal information for money. As currently planned, we do not share personal information for cross-context behavioral advertising or use Google Analytics Advertising Features unless we update this Policy and provide legally required choices.
• We do not intentionally permit identifiable Portal prompts, answers, uploads, drafts, or usage logs to be used to train public foundation models or third-party AI models unless the affected user or organization expressly opts in through a written agreement or clear product control.

The personal information we collect depends on how you interact with ConverGen.

Information you provide

• Contact and profile information, such as name, business email address, phone number, title, organization, industry, and professional role.
• Briefing, inquiry, and communication information, such as messages you send through the website, email communications, meeting requests, newsletter or Strategic Insights Circle sign-ups, and related business context.
• Portal account information, such as name, email address, organization, invitation sponsor, access role, account status, authentication settings, and terms-acceptance records.
• Portal inputs and feedback, such as questions, prompts, comments, ratings, feedback, support requests, and other information submitted through the DOpS Advisor.
• Collaborator materials, where applicable, such as uploaded source files, notes, citations, metadata, drafts, article contributions, edits, authorship records, source-rights information, and Word Authoring Plug-in activity.

Information from organizations, sponsors, and partners

If you receive an invitation through an organization, sponsor, partner, or relationship owner, we may receive your name, business contact information, role, organization, intended access type, and related access instructions from that party.

Information collected automatically

• Device and browser information, such as IP address, device type, operating system, browser type, user agent, language, approximate location inferred from IP address, and referring page.
• Website usage information, such as pages viewed, links clicked, session timestamps, form interactions, and analytics identifiers.
• Portal usage and security information, such as sign-in events, MFA status, session identifiers, article views, chat interactions, Evidence Cards opened, uploads, downloads if enabled, plug-in events, access changes, security events, watermark identifiers, rate-limit events, and suspected misuse indicators.
• Cookies and similar technologies, as described below.

Information we derive or aggregate

We may create aggregated, de-identified, or internal operational information from the information above, such as website traffic trends, content-quality signals, security metrics, topic gaps, and product usage patterns. We use this information in a form that is not intended to identify an individual.

ConverGen is healthcare-focused, but the public website and the standard DOpS Advisor Portal are not intended to collect or process protected health information (PHI), electronic protected health information (ePHI), patient information, member information, claims files, medical records, provider credentialing files, payment card data, Social Security numbers, precise geolocation, or other regulated sensitive personal data.

We use personal information for the following purposes:

• To operate, maintain, and improve the public website and the DOpS Advisor Portal.
• To respond to briefing requests, inquiries, support requests, and business communications.
• To create, authenticate, administer, monitor, suspend, or terminate Portal accounts.
• To provide Live Articles, source-grounded DOpS Advisor interactions, Evidence Cards, guided pathways, authoring workflows, and related Portal functionality.
• To manage Collaborator contributions, source provenance, authoring activity, attribution, version history, and source-rights controls.
• To analyze public website performance, troubleshoot errors, measure audience engagement, and improve content and usability.
• To protect the Portal, users, ConverGen materials, Confidential Information, and source materials through security monitoring, logging, watermarking, anomaly detection, access controls, and misuse investigations.
• To enforce applicable Terms of Use, contributor terms, confidentiality obligations, access limits, and other agreements.
• To send business updates, event invitations, newsletters, or relationship follow-up where permitted, with unsubscribe or opt-out options where required.
• To comply with legal obligations, respond to lawful requests, preserve rights, and prevent fraud, security incidents, misuse, or unlawful activity.
• To create aggregated or de-identified analytics, quality, security, and product-improvement signals.

AI processing

The DOpS Advisor may use artificial intelligence, retrieval, search, summarization, classification, and source-grounding systems to respond to user questions and support content workflows. Portal inputs, retrieved source context, outputs, feedback, and related logs may be processed by ConverGen systems and approved service providers to provide the Portal, secure it, audit it, troubleshoot it, evaluate answer quality, and improve Portal content and controls.

The public website may use cookies, pixels, local storage, tags, and similar technologies. The Portal may use necessary, authentication, security, preference, and operational cookies and logs. We do not recommend using advertising pixels, remarketing tags, session replay scripts, or third-party marketing trackers inside the authenticated Portal unless we provide a separate notice and obtain any required approvals.

Cookie categories

Google Analytics on the public website

We plan to use Google Analytics on the public website to understand how visitors find and use the site. Google Analytics may collect information such as device and browser data, page URL and title, referring URL, approximate location inferred from IP address, usage events, and analytics cookie identifiers. We configure Google Analytics to avoid collecting personally identifiable information in page URLs, page titles, event labels, search terms, custom dimensions, campaign parameters, or uploaded data.

As currently planned, Google Analytics should not be placed on authenticated Portal pages, Portal login pages, file-upload pages, DOpS Advisor chat pages, or pages that may collect PHI/ePHI or other regulated sensitive data. If that changes, we will update our disclosures and controls before implementation.

Your cookie choices

• You can manage non-essential cookies through the website cookie banner or Cookie Preference Center: [INSERT COOKIE PREFERENCE CENTER LINK].
• You can set your browser to block or delete cookies. Some features may not work without necessary cookies.
• You can use available Google Analytics opt-out tools where supported by your browser.
• Where required, we will request consent before setting non-essential analytics or advertising cookies and will provide a way to change or withdraw consent.

We may disclose personal information to the following categories of recipients:

• Service providers and subprocessors that help us provide, host, secure, analyze, support, and improve the website and Portal, such as cloud hosting, identity, authentication, logging, security, analytics, email, customer relationship management, storage, document processing, authoring, and AI service providers.
• Organization sponsors or relationship owners, where needed to administer invitations, access status, role assignments, account governance, misuse investigations, or the business relationship. We do not routinely share the content of individual Portal prompts or chats with a sponsor unless needed to provide or secure the Portal, investigate misuse, comply with law, or as provided in a written agreement.
• Professional advisers, such as lawyers, accountants, auditors, insurers, and consultants, where reasonably necessary for business, legal, security, or compliance purposes.
• Authorities, courts, counterparties, or other third parties where required by law, subpoena, court order, governmental request, or to protect rights, safety, security, confidentiality, and the integrity of our services.
• Parties involved in a business transaction, such as a merger, financing, restructuring, acquisition, diligence process, or asset transfer.
• Other parties with your consent or as directed by you or your organization.
• Recipients of aggregated or de-identified information that does not reasonably identify you.

We do not sell personal information for money. As currently planned, we do not share personal information for cross-context behavioral advertising. If we later enable targeted advertising, remarketing, Google Analytics Advertising Features, Google Signals, or similar advertising uses, we will update this Policy and provide legally required opt-out choices before doing so.

We use administrative, technical, and organizational safeguards designed to protect personal information and Confidential Information. These may include access controls, authentication, MFA, encryption, network and application security, audit logs, watermarking, monitoring, source-permission checks, least-privilege access, and incident-response procedures.

No system is perfectly secure. You are responsible for using your own account credentials, maintaining MFA where required, protecting invitation links and access credentials, and promptly notifying us if you believe your account or information may have been compromised.

We retain personal information for as long as reasonably necessary for the purposes described in this Policy, including to provide the website and Portal, maintain account and terms-acceptance records, protect security and Confidential Information, preserve source provenance, comply with legal obligations, resolve disputes, enforce agreements, and maintain appropriate business records.

Retention periods vary by information type. For example, website analytics may be retained according to Google Analytics settings and cookie lifetimes; Portal account and terms-acceptance records may be retained while access is active and for a reasonable period afterward; security logs may be retained as needed to protect the Portal; Collaborator uploads and drafts may be retained according to the applicable Terms of Use, contribution workflow, source-rights requirements, or written agreement.

When personal information is no longer needed, we will delete, de-identify, aggregate, or archive it according to our retention practices and legal obligations.

ConverGen is based in the United States. If you access the website or Portal from outside the United States, your personal information may be processed in the United States and other countries where our service providers operate. These countries may have privacy laws different from those in your location. Where required, we use appropriate safeguards for international transfers.

Depending on where you live and the laws that apply, you may have rights to request access to, correction of, deletion of, or a copy of certain personal information; to object to or restrict certain processing; to opt out of certain disclosures or targeted advertising; to limit certain uses of sensitive personal information; to withdraw consent; or to appeal a privacy-rights decision.

To make a privacy request, contact us at contact@convergen.ai. We may need to verify your identity and authority before responding. If you are accessing the Portal through an organization, some requests may need to be coordinated with that organization or handled under the applicable agreement.

• Marketing communications: You may unsubscribe from non-transactional marketing emails using the unsubscribe link or by contacting us.
• Cookie choices: You may manage non-essential cookies through the Cookie Preference Center or your browser settings.
• Account information: Portal users may request help updating account information through support or their access sponsor.
• Authorized agents:Where applicable, an authorized agent may submit a request on your behalf if we can verify the agent’s authority.

This section applies to the extent U.S. state privacy laws, including the California Consumer Privacy Act as amended (CCPA), apply to ConverGen and to your personal information. The categories below describe personal information we may have collected, disclosed, or used during the preceding 12 months.

We do not knowingly sell or share personal information of individuals under 16. We do not use or disclose sensitive personal information for purposes that would require a right to limit under California law unless we provide the required notice and choice.

Where legally required, we will honor browser-based opt-out preference signals, such as Global Privacy Control, for legally covered sales or sharing. Because our current standard implementation does not use targeted advertising or cross-context behavioral advertising, this primarily becomes relevant if advertising or remarketing technologies are later enabled.

The website and Portal are intended for business users and are not directed to children. We do not knowingly collect personal information from children under 13, or from minors where a higher age threshold applies. If you believe a child has provided personal information to us, contact us so we can review and delete it where appropriate.

The website or Portal may link to third-party websites, publications, tools, or services. Their privacy practices are governed by their own notices and policies. We are not responsible for third-party privacy practices.

We may update this Policy from time to time. The “Last updated” date shows when it was last revised. If we make material changes, we will provide notice as required by law, which may include posting an updated Policy, updating the Portal notice, or asking Portal users to accept updated terms.

Questions about this Policy or your personal information? Reach us at: