ENAMR HEALTH
Get Started
← Back to home

Privacy Policy

Last updated: June 1, 2026

1. Introduction

Enamr Health ("Enamr Health," "we," "us," or "our") respects your privacy. This Privacy Policy describes how we collect, use, disclose, and protect personal information when you visit https://www.enamrhealth.com, join our waitlist, purchase or use at-home oral health tests, access member or provider portals, or otherwise interact with our services (collectively, the "Services").

Our Services may involve sensitive health-related information, including oral microbiome and related biomarker data. We treat this information with heightened care and only use it as described in this policy and as permitted by law.

If you do not agree with this Privacy Policy, please do not use the Services.

2. Who this policy applies to

This policy applies to visitors, waitlist members, customers, provider partners, and anyone who contacts us through the Services. If you receive our Services through a healthcare provider or employer program, that organization may also have its own privacy practices; where both apply, you should review both policies.

3. Information we collect

3.1 Information you provide directly

  • Contact and account details: name, email address, password (stored in hashed form where applicable), phone number, mailing address, and date of birth where required for testing or age verification.
  • Waitlist and marketing sign-ups: name, email, and optional health-related questions you choose to submit.
  • Orders and fulfillment: shipping address, order history, and communications with customer support.
  • Health and testing information: saliva or other specimen collection details, laboratory accession identifiers, biomarker and microbiome results, clinical history or intake questionnaires you complete, photos or chart information uploaded in provider workflows, and messages you send through our portals.
  • Provider information: practice name, professional credentials, NPI or equivalent identifiers where collected, and referral or patient coordination data.

3.2 Information collected automatically

  • Device and usage data: IP address, browser type, operating system, pages viewed, referring URLs, and approximate location derived from IP.
  • Cookies and similar technologies: see Section 7. Strictly necessary cookies support sign-in and security; optional analytics or marketing technologies are used only if you consent.
  • Log and security data: authentication events, error logs, and anti-abuse signals used to protect the Services.

3.3 Information from third parties

  • Laboratory and fulfillment partners performing sample processing, analysis, or kit shipping.
  • Payment processors handling transactions (we do not store full payment card numbers on our servers).
  • Email and communications platforms (for example, waitlist and transactional email providers).
  • Healthcare providers or partners who refer you to our Services, where applicable and permitted.

3.4 Sensitive and health information

Depending on how you use the Services, we may process information that is considered sensitive under applicable law, including health and biometric-related data derived from laboratory analysis. We collect and use this information to deliver testing and reporting, support clinical collaboration with your providers, improve our products, comply with law, and as otherwise described in this policy.

4. How we use information

  • Provide, operate, and improve the Services, including generating reports and portal experiences.
  • Process orders, collect specimens, coordinate laboratory analysis, and deliver results.
  • Authenticate users, prevent fraud, enforce our Terms, and protect the security of our systems.
  • Communicate with you about orders, results, account activity, and support requests.
  • Send marketing or educational communications where permitted by law and your choices.
  • Conduct research, analytics, and product development using de-identified or aggregated data where possible.
  • Comply with legal obligations, respond to lawful requests, and establish or defend legal claims.

5. How we disclose information

We do not sell your personal information for money. We may share information as follows:

  • Service providers under contract who assist with hosting, laboratories, shipping, payment processing, email, customer support, and security—bound to use data only for our instructions.
  • Healthcare providers you designate or who participate in referral programs, to support care coordination when you or your provider enable such sharing.
  • Professional advisors, auditors, or parties to a business transaction (such as a merger), subject to confidentiality obligations.
  • Law enforcement, regulators, or others when required by law or to protect rights, safety, and integrity of the Services.
  • With your direction or consent, including when you choose to share results or download reports.

De-identified data

We may create and use de-identified or aggregated datasets that cannot reasonably identify you for research, quality improvement, and commercial insights.

6. Cookies and similar technologies

We use cookies and local storage to operate the Services. Essential technologies include signed session cookies for member and provider portals and storage of your cookie preference choice.

Non-essential analytics or advertising cookies, if introduced, will run only after you opt in through our cookie banner. You may change your preferences at any time using Cookie settings in the site footer.

  • Strictly necessary: required for security, load balancing, and authenticated portal access.
  • Analytics (optional): helps us understand how the site is used.
  • Marketing (optional): helps measure campaigns or personalize outreach, where enabled.

7. Your choices and rights

  • Access, correction, or deletion: contact us to request access to, correction of, or deletion of personal information, subject to legal exceptions.
  • Marketing opt-out: unsubscribe using links in emails or contact us; waitlist membership can be removed on request.
  • Portal data: use in-product tools or contact support for account-related requests.
  • Cookie preferences: manage non-essential cookies through our cookie banner or footer link.

California residents (CCPA/CPRA)

If you are a California resident, you may have additional rights to know, delete, correct, and opt out of certain sharing. We do not sell personal information for monetary consideration. To exercise rights, email us at the address below. We will verify requests as required by law and will not discriminate against you for exercising privacy rights.

Other U.S. state privacy laws

Residents of Colorado, Connecticut, Virginia, Utah, and other states with comprehensive privacy laws may have similar rights. Contact us to submit a request.

8. Data retention

We retain personal information for as long as needed to provide the Services, meet legal and regulatory requirements (including laboratory record retention where applicable), resolve disputes, and enforce agreements. Retention periods vary by data type; health and test-related records may be kept longer where required for quality, safety, or legal compliance.

9. Security

We implement administrative, technical, and physical safeguards designed to protect personal information, including encryption in transit (HTTPS), access controls, and secure handling of credentials and session tokens. No method of transmission or storage is completely secure; please use strong passwords and notify us promptly of suspected unauthorized access.

10. Children's privacy

The Services are not directed to individuals under 18, and we do not knowingly collect personal information from children. If you believe we have collected information from a child, contact us and we will take appropriate steps to delete it.

11. International users

We are based in the United States. If you access the Services from outside the U.S., your information may be processed in the U.S. or other countries where our service providers operate, which may have different data protection laws than your jurisdiction.

12. Changes to this policy

We may update this Privacy Policy from time to time. We will post the revised policy on this page and update the "Last updated" date. Material changes may be communicated by email or prominent notice where required by law.

13. Contact us

Privacy inquiries: privacy@enamrhealth.com

Legal notices: legal@enamrhealth.com

Customer support: support@enamrhealth.com

Enamr Health — Privacy Office