Privacy Policy

Date Effective

December 15th 2025

Introduction

This Privacy Policy describes how Anterior, Inc. ("Anterior," "we," "us," or "our") handles personal information that we collect through:

  • Websites we operate that link to this Privacy Policy, including our site at anterior.com (collectively, the "Website"), with respect to website visitors;
  • Our web-based application available at platform.anterior.com ("Application"), with respect to the Application's end users; and
  • Our marketing and other activities described in this Privacy Policy, with respect to current and prospective customers.

This Privacy Policy refers to our Website and Application, collectively, as the Service.

What This Privacy Policy Does Not Cover

When providing the Application to our health plan customers, we process certain personal information on their behalf, including protected health information subject to the Health Insurance Portability and Accountability Act (HIPAA). This Privacy Policy does not apply to our processing of this information on behalf of those customers, which is restricted by our agreements with them. For information about how our health plan customers handle this information, you should consult the relevant health plan's privacy notice or contact the health plan.

The Service is designed for health plans and is not intended for use by individuals for personal, family, or household purposes or to collect personal information for those purposes.

Accessibility & Plain Language

This Privacy Notice is written in plain language, readable on mobile devices, follows WCAG 2.1 accessibility guidelines, and is available in all languages in which we conduct business.

Categories of Personal Information We Collect

Anterior collects the following categories of personal information:

  • Protected Health Information (PHI) Processed for Health Plans. Medical history, clinical data, and claims data processed as a HIPAA Business Associate on behalf of healthcare organizations.
  • Employee, Contractor, and Business Contact Information. First and last name, email address, mailing addresses, professional title and company name, phone number, and other contact details.
  • Website and Device Information. IP address, browser type, operating system, device type, unique identifiers, screen resolution, language settings, mobile device carrier, and general location information associated with your IP address.
  • Account and Profile Data. Information you provide to create an Anterior account, including your name, company name, email, and other information you choose to add to your Application profile.
  • Communication Data. The contents of your communications with us, whether through the Service, social media, events, or otherwise, including any feedback you provide about the Service and your responses to surveys.
  • Online Activity Data. Pages viewed, time spent on pages, websites visited before browsing to the Service, navigation paths between pages, access times, and duration of access, and whether you have opened our emails or clicked links within them.

How We Collect Information

Information You Provide. You may provide personal information directly when creating an account, using our services, or communicating with us.

Automatic Data Collection. We and our service providers automatically log information about you, your computer or mobile device, and your interaction with the Service using cookies and similar technologies.

Third-Party Sources. We may combine personal information we receive from you with information from publicly available sources, business contacts, and data providers.

How We Use Your Personal Information

We use your personal information to:

  • Provide Services. Operate and communicate with you about the Service, including support and administrative communications.
  • Improve the Florence AI Platform. Analyze and improve our services and business operations.
  • Marketing. Send direct marketing communications (you may opt out as described below).
  • Comply with Obligations. Meet legal, regulatory, and contractual requirements.
  • Authenticate Users. Verify identity and manage account access.
  • Analytics and Service Improvements. Perform research, analytics, and develop new features.
  • Compliance and Protection. Protect rights, privacy, safety, or property, enforce terms, and take steps to prevent fraud or unauthorized activity.

How We Share Your Personal Information

We may share your personal information with:

  • Affiliates. Our corporate affiliates for purposes consistent with this Privacy Policy.
  • Service Providers. Third parties that provide services on our behalf, such as hosting, IT, customer support, email delivery, marketing, analytics, and cybersecurity.
  • Other Application Users. Other users from your organization may see comments or content you post and your Application profile.
  • Professional Advisors. Lawyers, auditors, bankers, and insurers as necessary for professional services.
  • Authorities and Others. Law enforcement, government authorities, and private parties as necessary for compliance and protection purposes.
  • Business Transferees. Parties to business transactions involving acquisition, merger, or sale of all or part of Anterior.

We Do Not Sell Personal Information

Anterior does not sell personal information. We do not sell, rent, release, disclose, disseminate, make available, transfer, or otherwise communicate personal information to third parties for monetary or other valuable consideration.

In the past 12 months, we have not sold personal information, including that of minors under 18.

If our practices change in the future, we will update this Privacy Notice and provide an opt-out mechanism.

Do Not Sell or Share My Personal Information

If Anterior ever sells or shares personal information, we will provide:

  • A "Do Not Sell or Share My Personal Information" link on our homepage and this Privacy Notice.
  • At least two methods for submitting opt-out requests.

At present, Anterior does not sell or share personal information.

How to Opt Out (If Applicable in the Future)

If Anterior offers an opt-out option in the future, you will have access to:

  • A "Do Not Sell or Share My Personal Information" link.
  • An interactive opt-out form.
  • Instructions for opting out via mobile applications and offline methods.

This section serves as a future placeholder until such an opt-out is required under law.

Your Privacy Rights

Depending on your jurisdiction, you may have the following rights:

  • Right to Access / Know. Request information about the personal data we collect, use, and share about you.
  • Right to Delete. Request deletion of your personal information, subject to certain exceptions.
  • Right to Correct. Request correction of inaccurate personal information.
  • Right to Opt-Out of Sale or Sharing. Not currently applicable because we do not sell personal information.
  • Right to Non-Discrimination. We will not discriminate against you for exercising your privacy rights.
  • Right to Appeal. Appeal a decision regarding your privacy request.

These rights may vary by state or region. You may also have the right to withdraw consent or object to certain processing activities.

How to Submit a Privacy Request

For Website Visitors, Employees, Contractors, or Business Contacts:

You may submit a privacy rights request by email: compliance@anterior.com

We acknowledge requests within 10 business days and respond within 30-45 days, depending on jurisdiction and request complexity, unless an extension is permitted by law.

For Health Plan Members or Patients:

If you are a health plan member or patient whose PHI is processed by Anterior on behalf of a healthcare organization, please contact your health plan directly. Anterior processes this data as a Business Associate/Data Processor; the healthcare organization is the Data Controller.

Identity Verification & Limitations

To process certain privacy requests, we must verify your identity to a reasonable degree of certainty. Verification methods may include matching information you provide against information already maintained by Anterior or using third-party identity verification services.

Verification Standards:

  • For requests to access categories of personal information: verification to a reasonable degree of certainty.
  • For requests to access specific personal information or delete data: verification to a high degree of certainty, based on sensitivity of the information and risk of harm.
  • For customers with password-protected Anterior accounts: verification through existing authentication practices.

If We Cannot Verify Your Identity: If we cannot verify your identity to the required degree of certainty, we may be unable to fulfill your request. In such cases, we will explain the reason for the denial.

Children's Privacy & Parental Verification

The Service is not intended for use by anyone under 18 years of age. We do not knowingly collect personal information from children under 13.

If you are a parent or guardian of a child from whom you believe we have collected personal information in a manner prohibited by law, please contact us. If we learn that we have collected personal information through the Service from a child without the consent of the child's parent or guardian as required by law, we will comply with applicable legal requirements to delete the information.

Anterior does not sell personal information of minors.

For requests involving minors, we may verify parental consent using methods such as:

  • Signed consent documents returned by postal mail, facsimile, or electronic scan.
  • Identity verification through credit card, debit card, or other online payment systems.
  • Toll-free telephone number staffed by trained personnel.
  • Video conference with trained personnel.
  • In-person communication with trained personnel.
  • Verification of government-issued identification against databases, with prompt deletion of the identification after verification.

Cookies and Similar Technologies

We use cookies, browser web storage, and pixels to facilitate automatic data collection. These technologies help us understand site traffic and usage, remember your preferences, and improve your browsing experience.

Your Choices:

  • You can learn more about cookies and how to control them at www.allaboutcookies.org.
  • You can set preferences for which cookies you wish to remove or reject in your browser.
  • Your web browser may provide functionality to clear browser web storage.
  • Most browsers and devices allow you to configure your device to prevent images and any pixels embedded in them from loading.

If you block or reject these technologies, certain areas or features of the Service may not work or be accessible.

Do Not Track. Some Internet browsers may be configured to send "Do Not Track" signals to online services. We currently do not respond to "Do Not Track" signals. To find out more about "Do Not Track," please visit http://www.allaboutdnt.com.

Legal Requirements & Compelled Disclosures

We may disclose personal information when required to do so by law or legal process, such as a subpoena, court order, or regulatory request.

We disclose only the minimum information necessary and notify affected parties when permitted by law. Anterior does not voluntarily provide personal data to law enforcement or regulatory agencies without express written consent from the Data Controller or individual, except as required by valid legal process.

Other Sites and Services

The Service may link to or integrate with websites and other online services operated by third parties. These links and integrations are not an endorsement of, or representation that we are affiliated with, any third party. We do not control websites or other online services operated by third parties and are not responsible for their actions. We encourage you to read the privacy policies of the other websites, mobile applications, and online services you use.

Security

We employ technical, organizational, and physical safeguards designed to protect the personal information we collect, including encryption at rest and in transit, role-based access controls, and comprehensive audit logging. However, security risk is inherent in all internet and information technologies, and we cannot guarantee the security of your personal information.

International Data Transfers

We are headquartered in the United States and may use service providers that operate in the United States and other countries. Your personal information may be transferred to the United States or other locations where privacy laws may not be as protective as those in your state, province, or country.

California Privacy Rights

Your California Privacy Rights. California residents may have additional rights under the California Consumer Privacy Act (CCPA) / California Privacy Rights Act (CPRA), including the rights to know, delete, correct, and opt out of the sale of personal information.

California Privacy Metrics (If Applicable). If Anterior processes personal information of 10 million or more California residents annually, we will publish yearly privacy request metrics, including number of access, deletion, and opt-out requests received and processed, and median response time. At this time, this threshold has not been met.

Annual Review

We review and update this Privacy Notice at least once every 12 months, with the last update reflected in the Effective Date above.

Changes to This Privacy Policy

We reserve the right to modify this Privacy Policy at any time. If we make material changes to this Privacy Policy, we will notify you by updating the date of this Privacy Policy and posting it on the Service or through other appropriate means. Any modifications to this Privacy Policy will be effective upon our posting the modified version (or as otherwise indicated at the time of posting). In all cases, your use of the Service after the effective date of any modified Privacy Policy indicates your acknowledgment that the modified Privacy Policy applies to your interactions with the Service and our business.

How to Contact Us

If you have questions or concerns about this Privacy Policy or our practices, please contact us:

  • Email: compliance@anterior.com
  • Privacy/Security Officer: Tahseen Omar - tahseen@anterior.com

Applicable Laws, Regulations, and Standards

This Privacy Policy is designed to comply with:

  • Health Insurance Portability and Accountability Act (HIPAA)
  • California Consumer Privacy Act (CCPA) / California Privacy Rights Act (CPRA)
  • Virginia Consumer Data Protection Act (VCDPA)
  • Colorado Privacy Act (CPA)
  • Connecticut Data Privacy Act (CTDPA)
  • Utah Consumer Privacy Act (UCPA)
  • Personal Information Protection and Electronic Documents Act (PIPEDA)
  • ISO 27701 Privacy Information Management System (PIMS)
  • HITRUST Common Security Framework (CSF)
  • SOC 2 Type II Privacy Criterion