Privacy Policy for Dodo

Last updated: 05/11/2025

Thank you for choosing Dodo AI (“Dodo,” “We,” “Us,” or “Our”). We value Your trust and are committed to protecting Your privacy. This Privacy Policy describes how We collect, use, disclose, and safeguard Your information when You visit Our website located at https://dodo.health and https://vetdodo.com (“Website” or “Service”). It also outlines Your privacy rights and how the law protects You.

By accessing or using Our Service, You agree to the collection and use of information in accordance with this Privacy Policy. If You do not agree with Our policies and practices, please do not use Our Service.

1. Interpretation and Definitions

1.1 Interpretation

Capitalized words have specific meanings defined below. Definitions apply whether the terms appear in singular or plural form.

1.2 Definitions

• Account: A unique account created for You to access Our Service or parts of Our Service.

• Affiliate: An entity that controls, is controlled by, or is under common control with a party. “Control” means direct or indirect ownership of 50% or more of the shares, equity, or voting interests of the entity.

• Business (for the purpose of CCPA/CPRA): The legal entity (Dodo) that determines the purposes and means of the processing of Consumers’ personal information, does business in the State of California, and is subject to the CCPA/CPRA.

• CCPA/CPRA: The California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA).

• Company (referred to as “the Company,” “We,” “Us,” or “Our” in this Agreement): Dodo, [Address], [City], [State], [ZIP].

• Consumer (under CCPA/CPRA): A natural person who is a California resident, including any individual who is (1) in the USA for anything other than a temporary or transitory purpose, or (2) domiciled in the USA but currently outside the USA for a temporary or transitory purpose.

• Cookies: Small files placed on Your computer or other device that store information about Your use of a website.

• Country: The United States of America, or as otherwise applicable.

• Device: Any device that can access the Service, such as a computer, smartphone, or tablet.

• Do Not Track (DNT): A concept that allows internet users to control the tracking of their online activities across websites.

• Personal Data: Any information that relates to an identified or identifiable individual. Under CCPA/CPRA, it means any information that identifies, relates to, describes, or is capable of being linked directly or indirectly with a particular consumer or household.

• Service: The Website operated by Dodo.

• Service Provider: Any person or entity that processes data on behalf of Dodo, including third-party companies or individuals employed to facilitate the Service, provide the Service on Our behalf, or analyze how the Service is used.

• Usage Data: Data collected automatically, generated by the use of the Service or from the Service infrastructure itself (e.g., page visit duration).

• Website: Dodo’s website, accessible at https://dodo.health.

• You (or “Your”): The individual accessing or using the Service, or the company or other legal entity on behalf of which such individual is accessing or using the Service.

2. Collecting and Using Your Personal Data

2.1 Types of Data Collected

Personal Data

While using Our Service, We may ask You to provide certain personally identifiable information that can be used to contact or identify You. This may include, but is not limited to:

• Email address

• First name and last name

• Phone number

• Address (street, state, province, ZIP/postal code, city)

• Usage Data

Usage Data

Usage Data is collected automatically when You use Our Service. It may include:

• Your Device’s Internet Protocol (IP) address

• Browser type and version

• The pages You visit and the time and date of each visit

• Time spent on each page

• Unique device identifiers and other diagnostic data

When You access the Service on a mobile device, We may collect additional information automatically, such as the type of mobile device, its unique ID, IP address, operating system, mobile internet browser type, unique device identifiers, and other diagnostic data.

2.2 Tracking Technologies and Cookies

We use cookies and similar tracking technologies (e.g., beacons, tags, scripts) to track activity on Our Service and store information to improve and analyze it. These technologies may include:

• Cookies or Browser Cookies: Small files placed on Your Device to collect and track information. You can instruct Your browser to refuse all cookies or to alert You when a cookie is being sent. If You do not accept cookies, some portions of the Service may not be fully accessible.

• Web Beacons: Small electronic files used to count page visits or determine if emails were opened, among other usage statistics.

Cookies can be “Persistent” (remain on Your device when You go offline) or “Session” (deleted once You close Your web browser). We use both types for:

1. Necessary / Essential Cookies (Session Cookies)

   • Administered by Us.

   • Purpose: Provide key functionalities and security of Our Service; authenticate users; and prevent fraud.

2. Cookies Policy / Notice Acceptance Cookies (Persistent Cookies)

   • Administered by Us.

   • Purpose: Identify if You have accepted the use of cookies.

3. Functionality Cookies (Persistent Cookies)

   • Administered by Us.

   • Purpose: Remember choices such as login details or language preferences.

4. Tracking and Performance Cookies (Persistent Cookies, from third parties)

   • Purpose: Track traffic to the Website and user interactions, and test new features.

For more details on cookies and how to manage them, please see Our separate Cookies Policy or the cookies section in this Privacy Policy.

3. Use of Your Personal Data

Dodo may use Personal Data for various business purposes:

1. To Provide and Maintain Our Service: Including to monitor usage and troubleshoot performance.

2. To Manage Your Account: Allowing You to register, log in, and use certain features.

3. For Contract Performance: Fulfilling contractual obligations such as payment processing or delivering services You have requested.

4. To Contact You: Sending administrative or promotional communications via email, phone, or push notifications.

5. To Provide You with Offers and Updates: Offering news, special offers, or general information about Our services, unless You opt out.

6. To Manage Your Requests: Handling and responding to Your questions, feedback, or complaints.

7. For Business Transfers: If We engage in a merger, acquisition, or sale of assets, Your information may be transferred.

8. For Other Purposes: Data analysis, usage trends, marketing effectiveness, and improvement of Our products and services.

3.1 Sharing Your Personal Data

• No Sale of Personal Data: We do not sell Your Personal Data to third parties.

• Service Providers, Business Partners, and Others: We may share information with trusted third parties that perform functions on Our behalf (e.g., data storage, analytics, payment processing). These parties are contractually obligated to protect Your data. If Dodo is subject to HIPAA, such third parties may sign Business Associate Agreements (BAAs) with Us to ensure compliance. A list of subprocessors is available upon request.

• Business Transfers: In the event of a merger, acquisition, bankruptcy, or other change in corporate structure, Your information may be transferred as part of that transaction.

• Aggregate or De-Identified Information: We may share aggregated or de-identified information that cannot reasonably be used to identify You.

4. Retention of Your Personal Data

We retain Your Personal Data only as long as needed for the purposes outlined in this Privacy Policy, or as required by law. Usage Data is generally retained for shorter periods, unless it’s needed for security purposes, improving Our Service’s functionality, or as required by law.

5. Transfer of Your Personal Data

Your information may be processed at Dodo’s operating offices and in other locations where parties involved in data processing are based. By submitting Your information, You consent to this transfer, provided We have adequate security measures in place to protect Your data.

6. Delete Your Personal Data

You have the right to request deletion of the Personal Data We have collected about You. You may do so by:

• Logging into Your Account (if applicable) and accessing the account settings.

• Contacting Us directly at founders@dodo.health.

We may retain certain data where required by law or to fulfill legitimate business needs (e.g., preventing fraud, auditing).

7. Disclosure of Your Personal Data

7.1 Business Transactions

If We are involved in a merger, acquisition, or asset sale, Your Personal Data may be transferred. We will provide notice before any data is transferred under a new Privacy Policy.

7.2 Law Enforcement

We may disclose Your Personal Data if required by law, court order, or valid governmental request.

7.3 Other Legal Requirements

We may disclose Your Personal Data in good faith if such action is necessary to:

• Comply with a legal obligation

• Protect and defend Our rights or property

• Investigate or prevent possible wrongdoing

• Protect the personal safety of users or the public

• Protect against legal liability

8. Security of Your Personal Data

We use commercially acceptable measures to protect Your Personal Data. However, no method of transmission or electronic storage is 100% secure, and We cannot guarantee absolute security.

9. Third-Party Services and Processing

9.1 Analytics

We may use third-party analytics providers such as Google Analytics to monitor and analyze how Our Service is used. Google Analytics may collect data on Your activities and is subject to Google’s own privacy policy.

9.2 Email Marketing

We may use third-party email service providers (e.g., SendGrid) to send marketing or promotional emails. These parties are obligated to protect Your information and let You opt out of further emails.

9.3 Payments

We may use third-party payment processors (e.g., Stripe, Square) to handle payments. We do not store Your payment card details; that information is transmitted directly to the payment processors per their privacy policies and PCI-DSS compliance requirements.

10. CCPA/CPRA Privacy Notice (California Privacy Rights)

If You are a California resident, You have certain rights regarding Your Personal Data under the CCPA/CPRA, including the right to know, access, correct, delete, or limit the use of sensitive personal information. Please see sections below for more detail:

• Right to Notice: Categories of Personal Data collected and purposes for collection.

• Right to Know/Access: Request specific information about Our collection and use of Your Personal Data over the past 12 months.

• Right to Delete: Request the deletion of Personal Data, subject to certain exceptions.

• Right to Opt Out of the Sale/Sharing of Data: We do not sell Personal Data as typically understood, but California law’s definition of “sale” may include certain data-sharing activities. You may opt out if applicable.

• Right to Correct: Request correction of inaccurate Personal Data.

• Right to Limit Use of Sensitive Personal Data: Restrict certain uses/disclosures of Sensitive Personal Data, unless they are essential for providing the services You requested.

• Non-Discrimination: We will not discriminate against You for exercising any of these rights.

To exercise these rights, or designate an authorized representative, please contact Us at founders@dodo.health.

11. “Do Not Sell My Personal Information” and “Do Not Track”

We do not sell Personal Data for monetary or other valuable consideration. Some third-party tools We use may collect Personal Data and could be considered a “sale” under California law. If You wish to opt out, please contact Us. We do not respond to “Do Not Track” browser signals.

12. Children’s Privacy

Our Service is not intended for anyone under 13. We do not knowingly collect Personal Data from children under 13. If You become aware that a child has provided Us with Personal Data, please contact Us so We can delete it. If We rely on consent as a legal basis for processing Your information and Your country requires parental consent, We may request consent from a parent or guardian.

13. Links to Other Websites

Our Service may contain links to external websites not operated by Dodo. If You click on a third-party link, You will be directed to that party’s site. We recommend reviewing the privacy policy of any site You visit. We assume no responsibility for the content, policies, or practices of third-party sites or services.

14. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. We will post the new Privacy Policy on this page and update the “Last updated” date. If We make significant changes, We will notify You via email or a prominent notice on the Website before the changes become effective.

You are advised to review this Privacy Policy periodically to stay informed of any modifications. Changes are effective upon posting to this page.

15. Contact Us

If You have any questions about this Privacy Policy or Our data practices, please contact Us by email: founders@dodo.health

Thank You for trusting Dodo with Your Personal Data. We are committed to maintaining the security and privacy of Your information.