Privacy Policy

Last updated: Nov – 14 – 2025

Thirst IV Society (“Thirst IV Society,” “we,” “our,” or “us”) owns and operates this website and any related mobile or web applications (collectively, the “Platform”).

Your access to and use of the Platform, its content (“Content”), and any products or services provided through the Platform or otherwise by Thirst IV Society, as well as any affiliated website, software, or application we operate (collectively, the “Service”), are governed by this Privacy Policy unless we state otherwise.

Capitalized terms not defined here have the meanings given in our Terms of Service (“Terms”).

We are committed to respecting and protecting the privacy of users of the Service. This Privacy Policy explains how Thirst IV Society collects, uses, discloses, and safeguards information in connection with providing our Service.

By creating an account, registering, booking a service, or otherwise using the Service, you acknowledge and accept the most recent version of this Privacy Policy. If we make changes, we will post the updated Privacy Policy on this page and adjust the “Last updated” date above.

If you are using the Service on behalf of another individual (for example, a family member), you confirm that you are authorized to act for that person and that they understand and accept the practices described in this Privacy Policy.

Please read this Privacy Notice carefully to understand how we process your information. If you do not agree with our practices, you should not use the Website or Service. By accessing or using the Website, you agree to this Privacy Notice. Your continued use after any changes are posted constitutes your acceptance of those changes, so review this page periodically.

1. Limitations on Use by Minors

Our Service is designed for adults. Generally, individuals must be at least eighteen (18) years of age, or the applicable age of majority in their jurisdiction, to use the Service independently.

Individuals between thirteen (13) and eighteen (18) (or the higher age of majority where required by law) may use certain aspects of the Service only with the consent and active involvement of a parent or legal guardian, and subject to our Terms and any other consent processes we require.

The Service is not intended for children under thirteen (13) years of age, and we do not knowingly collect personal information from children under that age. If we discover that we have received personal information from a child under thirteen via the Platform, we will take reasonable steps to stop using it and remove it from our records, to the extent required by law.

If you believe we may have collected information directly from a child under the applicable age threshold, please contact us using the contact information listed in the Contact Information section below so we can investigate and address the issue.

2. Protected Health Information

When you create an account with Thirst IV Society, you form a direct relationship with us that lets you access and use various features of the Platform and Service. As part of that relationship, you may provide us with basic identifying or contact information—such as your name, email address, phone number, shipping or billing address, and account login details—that we do not treat as “protected health information” under applicable health privacy laws.

However, some of the services we facilitate may involve health-related information. Depending on your jurisdiction and the nature of the services, some of this information may be subject to additional protections under healthcare or privacy laws (for example, laws similar to HIPAA in the United States).

• Certain independent licensed health professionals or medical practices with whom you interact through or alongside our Service may be considered “covered entities” or “business associates” under health privacy laws.
• Thirst IV Society may, in some cases, act as a service provider or business associate to such professionals and may handle your health information on their behalf, subject to relevant legal obligations and any applicable agreements.

For purposes of this Privacy Policy:

• “Protected Information” refers to information about you that is subject to specific protections under applicable health or privacy laws, including any “protected health information” as defined under those laws.
• Protected Information will be used and disclosed only as allowed by those laws, applicable agreements, and this Privacy Policy.
• Information that has been de-identified in accordance with applicable law is not treated as Protected Information.

Any separate Notice of Privacy Practices adopted by independent medical professionals or entities working with you (if applicable) will describe how they use and disclose your Protected Information. That notice is distinct from this Privacy Policy.

Information you provide solely for account setup and general website use—such as your name, username, email address, shipping address, and phone number—is treated as personal data under this Privacy Policy but is not, by itself, considered Protected Information unless applicable law says otherwise.

3. Collection of Information

We may collect a variety of information about you when you use the Service, including but not limited to:

Personal Identifiers & Contact Information

• Name, email address, mailing address, phone number
• Date of birth and other basic demographic information, where relevant (such as gender)

Account & Registration Data

• Username, password, security questions/answers
• Preferences and settings associated with your account

Information You Submit on the Website

• Details you provide while registering, scheduling appointments, completing intake or consent forms, responding to questionnaires or surveys, or requesting additional services
• Information submitted via “Contact Us” forms or support requests

Transaction & Billing Details

• Records of products or services you purchase, book, or consider
• Payment-related information processed via third-party payment providers (such as card type, billing address, transaction amounts)
• Shipping or service-location information necessary to fulfill your orders or mobile IV visits

Communications with Us

• Emails, messages, or other correspondence you send to us
• Records of your interactions with our support or administrative teams

Technical & Device Information

• IP address, device type, operating system, browser type, and version
• Device identifiers and mobile device information
• Information about your connection (network, approximate location from IP, etc.)

Usage Data

• Pages visited, links clicked, time spent on the Platform, features used
• Session data, navigation paths, and similar usage patterns
• Interaction with marketing emails (such as opens and clicks)

Location Data (where enabled)

• If you enable location services, we may receive approximate or precise geolocation data to help provide mobile or on-site services and show relevant availability

Health & Wellness-Related Information (where applicable)

• Information you provide in health questionnaires or consultation forms (for example, general medical history, symptoms, allergies, past reactions to treatments)
• Photos, videos, or other media you upload for evaluation or documentation purposes
• Communications with medical professionals or staff, if facilitated through our systems and as permitted by law

Information from Partners or Service Providers

• Identity verification providers may share information derived from your submitted IDs (like your name, date of birth, or confirmation that your selfie matches your ID photo)
• Marketing or analytics partners may provide aggregate or pseudonymous data about your interactions with our content or ads on other platforms

We do not create or store biometric templates about you for our own use. If we use a third-party identity verification provider, they may generate biometric identifiers (for example, to compare your selfie to your government-issued ID), but we require that such providers use and delete that biometric data in accordance with applicable law and their own policies. Thirst IV Society may receive non-biometric results from that process (such as a confirmation that your identity was verified), which we use solely to help protect against fraud and to comply with regulatory obligations.

4. How Information Is Collected

We collect information through various channels, including:

Directly from You

• When you create an account or update your profile
• When you schedule or modify an appointment, purchase products or services, or request information
• When you complete forms, surveys, or intake questionnaires
• When you communicate with us via email, phone, text, chat, or contact forms

From Healthcare Providers or Related Service Providers (Where Applicable)

• If independent clinicians or related healthcare entities provide services to you in connection with the Service, we may receive health or service-related information from them where permitted by law and your consent (for example, basic encounter details or notes needed to support your use of the platform).

From Third-Party Service Providers

• Identity verification vendors may share limited information to confirm your identity and prevent fraud.
• Analytics and marketing partners may provide aggregate or pseudonymous data about your use of the Platform and your interactions with our content and ads.

Through Cookies and Similar Technologies
We may use a variety of technologies to collect information about how you interact with the Service, including:

• Cookies: Small text files placed on your device that help us recognize your browser, remember your preferences, and track your interactions with the Platform. These may include session cookies (which expire when you close your browser) and persistent cookies (which remain until they expire or are deleted).
• Analytics cookies and tools: Used to understand traffic patterns, measure performance, and improve the Service.
• Web beacons/pixels: Small image files or snippets of code that allow us to see when a page has been visited or an email has been opened and to gather usage statistics.
• Scripts: Code that helps us understand and respond to your clicks, scrolls, and other interactions.

You can usually manage cookies and similar technologies through your browser settings. Blocking or disabling certain cookies may limit some functionality of the Platform.

By using the Service, you consent to our use of these technologies, to the extent permitted by law, and you acknowledge that disabling them may affect your experience.

5. Use of Information

Subject to the limitations described in the Protected Health Information section and applicable law, we and our service providers may use your information for purposes including (but not limited to):

• Identity & eligibility verification
  • Confirming your identity and eligibility to use certain services
  • Verifying required information for health-related services where applicable
• Providing and managing the Service
  • Creating and managing your account
  • Scheduling, modifying, and confirming appointments
  • Providing mobile IV or related services you request
  • Facilitating communications with health professionals where relevant
• Customer support and communications
  • Responding to your inquiries, feedback, and support requests
  • Sending important transactional or administrative messages (e.g., appointment reminders, changes to policies, security alerts)
  • Communicating with you about account activity, billing, and service updates
• Payments and billing
  • Processing payments through third-party payment processors
  • Managing invoices, credit/refund requests, and other transaction-related activities
• Personalization and improvement
  • Tailoring content, recommendations, and offers based on your use of the Service
  • Analyzing usage patterns to improve our website, services, and user experience
• Marketing and promotional activities (where allowed)
  • Sending you information about Thirst IV Society services, wellness programs, or promotional offers we believe may be relevant, in accordance with applicable law and your communication preferences
  • Measuring the effectiveness of our advertising and marketing campaigns
• Research, analytics, and safety
  • Conducting internal research, quality assurance, and product/service development
  • Monitoring usage to detect and address technical issues or potential abuse
  • Protecting our rights, property, users, and the integrity of the Service
• Legal and compliance purposes
  • Complying with applicable laws, regulations, and legal processes
  • Responding to lawful requests from public authorities
  • Enforcing our Terms or other agreements

We may also create de-identified or aggregated data (data that cannot reasonably be used to identify you) and use or share such information for any lawful purpose, including analytics, research, and business planning.

6. Disclosure of Information

Subject to the limitations described in the Protected Health Information section and applicable law, we may share your information with third parties in connection with the provision of the Service or as otherwise allowed or required by law, including:

• Within Thirst IV Society
  • With our internal teams and affiliated entities for operational, administrative, and support purposes
• Service providers (vendors)
  • With third-party companies that perform services on our behalf, such as:
    • Website hosting and maintenance
    • Data storage and backup
    • Customer support tools
    • Email and SMS communication platforms
    • Analytics and performance tools
    • Payment processing
  • These vendors may access your information only as needed to perform services for us and are expected to protect it appropriately.
• Health-related partners or professionals (where applicable)
  • With independent licensed professionals or care providers who render services to you in connection with the Service, as necessary to schedule, coordinate, or fulfill those services, or as required by law.
• Legal, regulatory, and safety purposes
  • When we believe disclosure is appropriate or required to:
    • Comply with applicable laws or legal processes
    • Respond to lawful requests from authorities
    • Enforce our Terms or other agreements
    • Protect the rights, property, or safety of Thirst IV Society, our users, or others (including fraud prevention and risk management)
• Business transfers
  • In connection with, or during negotiations of, any merger, sale of company assets, financing, acquisition, restructuring, or similar event involving Thirst IV Society. In such cases, your personal information may be transferred as part of the business assets.
• With your consent
  • When you explicitly authorize or direct us to share information with a specific third party or for a specific purpose.

We may also share de-identified or aggregated data with third parties for lawful purposes. This data does not reasonably identify you.

7. Data Retention

We retain your information for as long as reasonably necessary to:

• Provide the Service and fulfill the purposes described in this Privacy Policy
• Comply with legal, regulatory, or reporting obligations
• Resolve disputes and enforce our agreements
• Maintain business and financial records consistent with industry and legal requirements

Retention periods may vary depending on the type of information and applicable law (for example, health-related or medical records may need to be retained for a minimum period under local regulations).

When information is no longer needed, we will take reasonable steps to delete, anonymize, or otherwise dispose of it securely, unless a longer retention period is required or permitted by law.

8. Data Security

We implement reasonable administrative, technical, and physical safeguards designed to protect your personal information from unauthorized access, use, disclosure, alteration, or destruction.

These safeguards may include:

• Access controls and authentication mechanisms
• Encryption of data in transit and/or at rest where appropriate
• Security monitoring and logging
• Staff training and confidentiality obligations

Despite our efforts, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.

You are responsible for:

• Keeping your account credentials (such as your password) confidential
• Using unique, strong passwords and updating them regularly
• Not sharing your login information with others
• Promptly notifying us if you suspect any unauthorized use of your account

Any transmission of information is at your own risk, and we are not responsible for circumvention of security measures deployed on or through the Service.

9. Transactions

When you make a purchase or schedule a paid service through the Service, you may be asked to provide certain payment-related information (such as card details, billing address, and contact information) to complete the transaction.

We rely on one or more third-party payment processors to handle and securely process transactions. These providers handle your payment information in accordance with their own policies and applicable law. Thirst IV Society does not store full payment card numbers on our systems.

By submitting payment information, you authorize us to share that information with our payment processors and other necessary parties solely to process your transaction and related activities (such as refunds or chargebacks).

10. Jurisdictional Issues

Certain jurisdictions give individuals additional privacy rights. If you reside in a region with specific privacy or data protection laws (such as California or the European Economic Area), you may have rights described in the corresponding addenda included below (e.g., the California Privacy Addendum and the GDPR Website Privacy Addendum).

Where our practices conflict with local law, we will comply with the law in the scope of its applicability.

11. Third Parties

This Privacy Policy does not govern and we are not responsible for the privacy, information, or other practices of third parties, including:

• Independent healthcare providers or entities who may deliver care to you
• The manufacturer of your computer, phone, or other device
• External websites, apps, or services that may be linked to or from our Service

These third parties may collect information from you independently and have their own privacy policies. We encourage you to review the privacy policies and notices of any third-party websites, applications, or services you use.

12. Your Rights Regarding Your Information and Accessing and Correcting Your Information

Depending on your jurisdiction and applicable law, you may have some or all of the following rights regarding your personal information:

• Access and Review – Request a copy or summary of personal data we hold about you.
• Correction / Update – Request that we correct or update inaccurate or incomplete data.
• Restriction – Request that we limit how we process certain information (for example, if you contest its accuracy).
• Deletion (“Right to be Forgotten”) – Request that we delete certain personal data, subject to legal or contractual requirements to retain data (for example, medical record retention laws, tax or accounting rules).
• Objection – Object to certain types of processing, such as direct marketing, where applicable.
• Portability – Request a copy of certain information in a structured, commonly used, machine-readable format in jurisdictions where this right applies.
• Complaints – Lodge a complaint with a relevant supervisory or regulatory authority if you believe we are processing your personal data in violation of applicable law.

To exercise these rights, you may:

• Update certain information directly by logging into your account; and/or
• Contact us using the details in the Contact Information section below.

We may need to verify your identity before fulfilling your request. We may deny a request if we cannot verify your identity, if the request is unreasonable, or if complying would violate law or others’ rights.

13. Do Not Track Signals

Some web browsers may send “Do Not Track” (DNT) signals to websites. There is currently no universally accepted standard for responding to such signals.

At this time, Thirst IV Society does not respond to browser-based DNT signals. However, you can manage certain tracking technologies (such as cookies) through your browser’s settings, and you may have additional rights regarding targeted advertising as described in our regional addendums or applicable law.

14. Changes to Our Privacy Notice

We may modify this Privacy Policy from time to time. When we do:

• We will post the updated version on this page; and
• We will update the “Last updated” date at the top of this document.

If we make material changes to how we handle your personal information, we may also provide additional notice (for example, via email or a prominent notice on the Website) where required by law.

Your continued use of the Service after any changes become effective means you accept the updated Privacy Policy.

15. Contact Information

If you have questions, concerns, complaints, or requests regarding this Privacy Policy or our privacy practices, you may contact us at:

Thirst IV Society

You may also contact us through any contact form provided on our Website.

Privacy Notice Addendum for California Residents (CCPA)

Effective Date: Nov – 14 – 2025
Last Reviewed: Nov – 14 – 2025

This California Privacy Addendum supplements the information in the Thirst IV Society Privacy Notice and applies solely to visitors, users, and others who reside in the State of California (“consumers” or “you”), to the extent the California Consumer Privacy Act (“CCPA”) and related laws apply to Thirst IV Society.

Where this addendum conflicts with the general Privacy Policy and the CCPA applies, this addendum will control for California residents.

Information We Will Collect

We may collect information that identifies, relates to, describes, references, or is reasonably capable of being associated with you or your household (“personal information”). This may include:

• Identifiers – such as name, postal address, email address, IP address, account username, or similar identifiers.
• Customer records information – such as billing details, limited payment information processed by our providers, and medical or health information you choose to provide us or our partners.
• Protected classification characteristics – such as age or medical condition, where relevant and provided by you.
• Commercial information – records of products or services purchased, obtained, or considered.
• Internet or other electronic network activity information – interaction with our Website, application, or advertisements.
• Geolocation data – approximate or precise location information where enabled.

Personal information does not include:

• Publicly available information from government records
• De-identified or aggregated data
• Information governed by other specific privacy laws (for example, certain health or financial information governed by other statutes)

We collect these categories of personal information from the sources and for the purposes described in the main Privacy Policy.

Use of Personal Information

We may use or disclose personal information for one or more business or commercial purposes, such as:

• Providing and maintaining the Website, products, and services
• Processing and fulfilling transactions, including payments, orders, and bookings
• Supporting, personalizing, and developing the Service
• Communicating with you regarding your account, services, and inquiries
• Detecting, investigating, and protecting against security incidents, fraud, and illegal activity
• Debugging to identify and repair errors
• Conducting internal research and analytics
• Complying with law, legal processes, and regulatory obligations
• Evaluating or conducting a merger, reorganization, or other corporate transaction involving Thirst IV Society

We will not use personal information for materially different, unrelated, or incompatible purposes without providing you notice, as required by law.

Sources of Personal Information

We obtain personal information from:

• You directly (for example, forms you complete, appointments you book, or purchases you make)
• Your devices and interactions with our Website and communications
• Service providers (such as payment processors or analytics providers)
• Health-related partners or professionals (where applicable and permitted)

Sharing Personal Information

We may disclose personal information to third parties for a business purpose, consistent with the “Disclosure of Information” section above. When we disclose personal information for a business purpose, we require the recipient to keep that information confidential and use it only for the contractually specified purpose.

Sales of Personal Information

Thirst IV Society does not sell personal information in exchange for money. To the extent that certain advertising or analytics cookies could be considered a “sale” under the CCPA’s broad definition, you may have rights to limit or opt out of such activities. Where applicable, we will honor those rights and any future guidance by regulators.

Your Rights and Choices (California)

If you are a California resident, the CCPA may provide you with specific rights, including:

• Right to Know / Access
  • You can request that we disclose:
    • The categories of personal information collected about you
    • The categories of sources of that personal information
    • The business or commercial purposes for collecting or sharing it
    • The categories of third parties with whom we share it
    • The specific pieces of personal information collected about you
• Right to Deletion
  • You can request that we delete personal information we collected from you, subject to certain exceptions (for example, if we need the information to comply with law, complete a transaction, or maintain security).
• Right to Non-Discrimination
  • We will not discriminate against you for exercising your CCPA rights.
• Right to Opt-Out of “Sales” (if applicable)
  • If our use of certain cookies or similar technologies is considered a “sale,” you may request to opt out of such “sales.”

To exercise these rights, you (or an authorized agent, where allowed) can contact us using the information in the Contact Information section, clearly describing your request and providing enough information so we can verify your identity.

We may need to confirm your identity (for example, via information we already hold about you) before responding to your request. We will respond within the periods required by law.

Non-Discrimination

We will not:

• Deny you goods or services
• Charge you different prices or rates
• Provide you a different level or quality of goods or services

because you exercise any of your CCPA rights. We may, however, offer financial incentives or benefits that are reasonably related to the value of your data, where permitted by law and based on your prior opt-in consent.

Changes to This California Privacy Addendum

We may update this California Privacy Addendum from time to time. When we do, we will post the updated version on this page and update the effective date. Your continued use of the Service after any changes become effective constitutes your acceptance of those changes.

Contact Information (California)

California residents may contact us with questions or to exercise rights under this addendum using the contact details in the Contact Information section of the main Privacy Policy.

GDPR Website Privacy Addendum

1. Introduction

This GDPR Website Privacy Addendum supplements the Thirst IV Society Privacy Policy and applies to individuals located in the European Economic Area (EEA), the United Kingdom, or Switzerland, where the General Data Protection Regulation (“GDPR”) or similar local laws apply.

If there is any conflict between this addendum and the main Privacy Policy for individuals in these regions, this addendum will prevail.

2. Data Controller, Data Protection Officer, and Representative

For purposes of this Website, Thirst IV Society is the controller of the personal data you provide or that we collect through the Website, to the extent applicable law defines us as such.

Where required by law, we will designate a data protection officer or local representative and provide those details in this section or upon request.

3. Lawful Basis for Processing Your Personal Data

We rely on one or more of the following legal bases to process your personal data:

• Consent – where you have given clear consent for us to process data for specific purposes (for example, certain marketing activities).
• Contract – where processing is necessary to perform a contract with you or to take steps at your request before entering into a contract (for example, to provide services you request).
• Legitimate Interests – where processing is necessary for our legitimate business interests (for example, improving our services, securing our systems, preventing fraud), provided those interests are not overridden by your rights and freedoms.
• Legal Obligations – where processing is necessary to comply with applicable laws.

We will inform you when we rely on consent and will give you the ability to withdraw that consent at any time, without affecting the lawfulness of processing based on consent before withdrawal.

4. Special Categories of Information

In limited cases, we may process personal data considered “special categories” under the GDPR (for example, health information you choose to provide). We will only do so when:

• You have given explicit consent, or
• The processing is necessary for health or social care purposes, the establishment or defense of legal claims, or another lawful basis permitted under the GDPR.

We handle such information with additional safeguards and only for the purposes for which it was collected.

5. Automated Decision Making

We do not use your personal data to make decisions that are based solely on automated processing (including profiling) that produce legal effects concerning you or similarly significantly affect you, unless we are legally allowed to do so and we provide you with required notices and safeguards.

6. Your Rights Regarding Your Information and Accessing and Correcting Your Information (EEA/UK/CH)

Where the GDPR or similar laws apply, you may have the following rights (in addition to any rights described in the main Privacy Policy):

• Right of Access – to obtain confirmation as to whether we process your personal data and, if so, to receive a copy.
• Right to Rectification – to request correction of inaccurate or incomplete data.
• Right to Erasure (“Right to be Forgotten”) – to request deletion of personal data in certain circumstances.
• Right to Restrict Processing – to request limitations on processing under certain conditions.
• Right to Data Portability – to receive certain personal data in a structured, commonly used and machine-readable format and to transmit that data to another controller.
• Right to Object – to object to processing based on legitimate interests or for direct marketing.
• Right to Withdraw Consent – where processing is based on consent, you can withdraw consent at any time.
• Right to Lodge a Complaint – with a supervisory authority in your country of residence, place of work, or where an alleged infringement occurred.

To exercise these rights, contact us using the methods described in the Contact Information section. We may need to verify your identity and may decline requests where permitted by law (for example, when necessary to comply with legal obligations).

7. Consent to Processing of Personal Data Outside the EEA

Thirst IV Society may process your personal data in countries outside the EEA, the UK, or Switzerland, including in countries that may have different data protection standards than your country.

Where required, we will implement appropriate safeguards (such as standard contractual clauses or equivalent mechanisms) to protect your personal data when it is transferred internationally. By using the Service and/or providing us with your information, you acknowledge that your data may be processed in such locations, in accordance with applicable law.

8. Data Retention Periods

We retain personal data for as long as necessary to:

• Provide and improve the Service
• Comply with legal and regulatory requirements
• Resolve disputes
• Enforce our agreements

Retention periods may vary depending on the nature of the data and applicable legal requirements. When data is no longer needed, we will delete or anonymize it, or segregate it securely, unless a longer retention period is required by law.

9. Changes to this GDPR Website Privacy Addendum

We may amend this GDPR Website Privacy Addendum from time to time. Any changes will be reflected on this page with an updated effective date. If required by law, we will notify you of significant changes through the Website or by other appropriate means.

Contact Information (GDPR)

If you have questions or concerns about this GDPR Website Privacy Addendum, or if you wish to exercise your rights, you may contact us using the contact details provided in the Contact Information section of the main Privacy Policy. Where required by law, we will also provide details for contacting our data protection officer or representative.