Important Notice: Use Dexcom G6 with your t:slim X2 pump. Dexcom G7 integration is not yet available in Canada pending regulatory clearance.
Last Updated: July 19, 2021
Tandem Diabetes Care, Inc. ("Tandem," "us," "we," or "our") takes your privacy very seriously. This Notice of Privacy Practices tells you how Tandem collects and uses information about you.
Tandem Diabetes Care, Inc. and Tandem Diabetes Care Canada, Inc. ("Tandem") respect your right to privacy. Privacy is very important to us. We also understand that privacy is very important to you. This Privacy Notice explains who we are, how we collect, protect, disclose, share, and use personal information about you, and how you can exercise your privacy rights.
This Privacy Notice applies to personal information that we collect through or in relation to the following, which are described in greater detail throughout this Privacy Notice:
If you have any questions or concerns about our use of your personal information, then please contact us using the contact details provided at the bottom of this Privacy Notice.
Tandem is an insulin delivery and diabetes technology company that designs, manufactures, and supplies medical devices, as well as develops and provides mobile and web-based software and technologies for the management of diabetes. Tandem serves several types of users in a variety of countries, and in some countries, we provide our Products through authorized distribution partners.
In general, we will use the personal information we collect about you with your consent or as permitted or required by applicable privacy laws and only for the purposes described in this Privacy Notice or for purposes that we explain to you at the time we collect your personal information. Your consent may be express or implied, depending on the circumstances and the sensitivity of the personal information we seek to collect, use, or disclose. We may also use your personal information for other purposes that are not incompatible with the purposes we have disclosed to you (such as conducting our business operations, scientific or historical research purposes, data security purposes, data anonymization purposes, or statistical purposes) if and where this is permitted by applicable data protection laws. Your provision of personal data to us is entirely voluntary. If you chose not to provide your personal data, you may not be able to use our Products or to engage in our Promotional or Educational Activities.
Specifically, the personal information we collect depends on whether you are:
If you are an employee of Tandem, we will provide you with any required notices during your employment. If you are applying for a job at Tandem, we will provide you with any required notices during your application process.
New or Prospective Patient Information
In connection with your establishment of a potential customer-company relationship with Tandem or your request that Tandem establish your Tandem account, we may collect personal
information over the phone or via electronic or paper forms and communications, such as our Patient Information Forms and Health and Product Questionnaires. We collect your name, date of birth, gender, email, physical, shipping and billing addresses,
telephone number, emergency contact information, insurance or other public health benefit information, Tandem username and password, and/or your HCP contact information. We may also collect special categories of personal information in the form of
your health information, biometrics, medical history, pregnancy status, current diabetes therapy information, lab charts, diagnosis and prescription history, and glucose and insulin data. New or Prospective Patient Information also includes any personal
information, including personal health information, of another you provide to us while acting as a Representative. Our use of this personal information may include:
Order Information
Tandem may collect your personal information in connection with processing and billing you for your orders, or otherwise fulfilling and providing you with Products you request, purchase, acquire,
register for and/or use.This personal information may include your New or Prospective Patient Information, financial information, lot and serial numbers of Products associated with your Tandem account, and any personal information you include in an
open text field on our Website or in our Technologies. We may also collect your credit card information, including credit card number, card expiration data, and CVV code, if you purchase a product or accessory directly from us, or if you are interested
in enrolling in a payment plan. We do not store your full credit card number, and we use a secure third-party vendor to handle your credit card processing. Order Information additionally includes your contact information, Tandem username and password,
and personal health information of any person on whose behalf you order or pay for Products. We may use your Order Information for:
Use Information
In connection with your use of our Products, including our Technologies, or if you provide us your pump for evaluation/troubleshooting, we may collect your personal information and health information. Use Information
includes health information generated from your use of the Products individually or collectively, both automatically and that which you input or provide. Use Information includes Product identification information such as a serial number, as well
as a log of pump operations and your direct and indirect interactions with the pump stored on or transmitted between the pump and the Technologies or between the pump and any third-party products that communicate with the pump such as continuous glucose
monitoring devices, glycemic controllers, or other connected applications or products. Use Information also includes settings, inputs, parameters, and thresholds you set to apply to the pump or any other Product and your interactions with these settings
and resulting notifications.Use Information also includes contact information regarding your designated Followers and HCPs, Order Information associated with your Products, and information about your settings and interactions with the Products. We
may also collect personal information that is more "technical" in nature when you use our Products. This data may include, without limitation, the pump serial number, current and updated software versions of your pump(s), clinic IDs of your HCPs,
and other globally unique identifiers. Use Information additionally includes contact information, Tandem username and password, and health information of any person on whose behalf you order or pay for Products. Our use of this personal information
may include:
Product Training Information
In connection with your safe and effective use of the Products, you may receive product training from Tandem or one of our Contractors on how to use our Products. This Product training may be provided one-on-one or
in a group setting. Product training may be offered online, in-person, through virtual communication platforms, or through other channels. The personal information we collect from you during training may include your name, date of birth, Product serial
number, pump software version, contact information of your HCP, information about your current health and health history, and information related to your use of our Products and the Product training received. Our use of this personal information may
include:
Requests for Responses Information
In connection with your contacting or communicating with us through any means to ask a question, request information, submit a complaint, or seek customer support from us, we may collect
your name, the reason for your inquiry, information necessary so that we may address the reason for your inquiry, and any other personal information you voluntarily provide us. Our use this of this personal information may include:
Automatically Collected Information
When you visit our Website, use our Products, or participate in Promotional and Educational Activities, we may collect certain information automatically. In some countries, this information may
be considered personal information under applicable data protection laws. Automatically Collected Information may include, for example, your IP address, device type, device operating system, unique device identification numbers, browser-type, broad
geographic location (e.g., country or county), which Tandem-hosted webpages you visited and when, and other similar technical information.We may also collect information about how you or your device has interacted with our Products, Promotional and
Educational Activities, and our Website, including the pages accessed and links clicked. Some of this information may be collected using Cookies and similar tracking technology, as explained and further defined under the heading “Cookies and
Similar Tracking Technology” below. Our use this information may include:
Third-Party Information
In connection with your use of third-party products, software, or applications we may process your personal information or health information when you authorize a third-party to provide information about you to us. This
Third-Party Information may include information from manufacturers or suppliers of your previous or future pumps, manufacturers or suppliers of glucose monitors you use or have used, operators of web or mobile-based diabetes management applications
or other devices, software or applications that integrate with our Products, or those of our Contractors, insurance providers, or HCPs. The types of information we collect from third parties may include your name, your date of birth, gender, glucose
readings, existence of a health condition that may impact your therapy (such as pregnancy status, retinopathy, or neuropathy) eligibility for insurance coverage and payment amounts, evidence that you received Product training, your health care professional’s
name and contact information, and/or details of your use of medical devices for diabetes therapy/medical treatment. Our use of this personal information may include:
In addition to personal information we may process about you in your capacity as a Product User, if you sign up for a Follower account we may also collect your name, contact information, username and password, and a Tandem-assigned ID number, as well as Automatically Collected Information, described above. Our use of this personal information may include:
In addition to personal information we may process about you in your capacity as a Product User, in connection with your establishment of a Tandem HCP Account we may also collect personal information including your name, contact information, your assigned HCP Account ID number, Clinic ID number, and Tandem username and password. We may also collect information about your settings and interactions with the Products. Our use of this personal information may include:
In addition to information we may process about you in your capacity as a Product User, if you visit our Website, our physical offices, participate in Promotional and Educational Activities, register for a Tandem mailing list, sign up for our newsletter, submit information to us via email or a web form, contact us via post, or call us on the phone, we may collect your name, contact information, the reason you contacted us, any personal information you voluntarily provide us, and any additional information you provided us consent to process. We may also collect CCTV security surveillance footage when you are physically present on Tandem premises.
If you interact or engage with us through Social Media platforms, including but not limited to Facebook, Twitter, LinkedIn, Instagram, or YouTube, we may collect the content of your post (which may include photographs or videos you post), the nature of your interaction (such as a “Like” or a “Retweet”), and your screen name. Our use of this information may include:
Depending on where you reside, Tandem may collect your full name, contact details such as phone number, email address, or physical address, Social Security number (in the US), and information collected for purposes of public health (such as body temperature). We may also collect Contractors’ professional information, such as government- or regulatory-maintained disciplinary records (e.g., exclusion lists); and to the extent voluntarily provide by you, your education history, employment history, and curriculum vitae.
During your engagement with Tandem as a Contractor, we may process your bank account and routing numbers if you chose and are able to be paid via direct deposit, training records, Tandem usernames and passwords and similar online identifiers if access to Tandem’s network is necessary, emergency contact telephone numbers, and tax information. With regard to the performance of your services, Tandem may collect personal information reported through a whistleblowing hotline or regulatory reporting channel, and content of professional emails to the extent permitted by applicable law.
If you are permitted to use Tandem’s network as part of your job, we may collect system-generated logs regarding internet, email, and telephone use. Tandem will also collect the date and time of access card use if you are provided with one and CCTV security surveillance footage when you are physically present on Tandem premises. Our use of this information may include:
Tandem, and our Contractors, collect personal information about you when you provide it to us directly. For example, when you complete a form on our Website, call a representative on the phone, write us a letter, post on our social media channels, submit payment for a Product, or otherwise provide us personal information about you.
With your consent, or to the extent permitted by law without your consent, we may communicate with you via text message to alert you about a product shipment, to respond to your questions, or to otherwise assist with your receipt and use of the Products. You can withdraw your consent to being contacted via text message at any time by replying “stop” to the text message.
If you contact us by phone, note that your call may be used for training purposes and it will be recorded. Tandem also records telephone calls we make to you unless you tell us not to. These calls are recorded for quality management, improvement, and training.
Tandem collects personal information about you from third parties when you allow authorized third parties to provide it to us. For example, we may collect information about you from third parties when you integrate a third party’s product with our pump or other Products or otherwise authorize a third party data service to provide information about you to us. We also collect personal information about you from third parties who host social media webpages that we manage, consistent with applicable privacy and data protection regulations.
We use cookies and similar tracking technology (collectively, “Cookies”) to collect and use personal information about you. For further information about what Cookies are, the types of Cookies we use, why we use them, and how you can control them, please see our Cookie Notices page.
In general, we share your personal information with people and organizations to accomplish the purposes of our data collection described in this Privacy Notice. Specifically, we may disclose your personal information to the following categories of recipients. At times, we may share your data in a way that is not described in this Privacy Notice, and if we do, we will inform you of our data sharing practices at the time we collect the information and obtain your consent prior to such sharing.
If you are an individual residing in the European Economic Area or the U.K., our legal basis for collecting and using the personal information described above will depend on the personal information concerned and the specific context in which we collect it.
We will normally collect personal information from you only (i) where we have your consent to do so, (ii) where we need the personal information to perform a contract with you, or (iii) where the processing is in our legitimate interests and not overridden by your rights. In some cases, we may also have a legal obligation to collect personal information from you or may otherwise need the personal information to protect your vital interests or those of another person, e.g., an adverse event relating to the use of a Product.
If we ask you to provide personal information to comply with a legal requirement or to perform a contract with you, we will make this clear at the relevant time and advise you whether the provision of your personal information is mandatory or not (as well as of the possible consequences if you do not provide your personal information).
If we collect and use your personal information in reliance on our legitimate interests (or those of any third party), this interest will normally be to operate our Website and provide Promotional and Educational Activities and/or our Products to you and to communicate with you as necessary regarding the same. In addition, we may rely on our legitimate commercial interest, for instance, when responding to your queries, improving our Products and Technologies, undertaking marketing, protecting against or detecting illegal or unauthorized attempts to process your information, preventing fraudulent Product use, or to protect the physical and electronic security of your data.
Given the nature of our business, we process special categories of your personal information in the form of health information. This information includes diabetes therapy data, such as your glucose levels, biometrics, and lab charts. We will obtain your explicit consent prior to processing such information.
If you have questions about or need further information concerning the legal basis on which we collect and use your personal information, please contact us using the contact details provided under the “How to Contact Us” heading below.
We use appropriate administrative, technical, physical, and organizational measures to protect the personal information that we collect and process about you. The measures we use are designed to provide a level of security appropriate to the risk of processing your personal information. Specific measures we use include, but are not limited to, encryption, user access and authentication controls, and event logging. Unfortunately, no data transmission over the Internet or any wireless network can be guaranteed as being 100% secure.
Tandem operates globally and may therefor process or transfer your personal information to countries other than the country in which you reside. Your personal information may be stored on servers outside of your country of residence. If so, your personal information will be subject to these countries’ data protection laws, which may be different from the laws of your country. Those laws may require disclosure of your Personal Information to authorities in that country.
The countries to which your data may be transferred or stored include the United States, Canada, the Netherlands, South Africa, and Australia.
However, we implement appropriate transfer mechanisms and safeguards to require that your personal information will remain protected in accordance with this Privacy Notice. If you live in Canada and would like to receive written information about our policies and practices regarding service providers outside of Canada, please refer to the “How to Contact Us” heading below.
We retain personal information we collect from you in accordance with applicable laws and regulations. In some jurisdictions, we retain your personal information when where we have an ongoing legitimate business need to do so (for example, to provide you with a service you have requested or to comply with applicable legal, tax or accounting requirements). In other jurisdictions, we will retain your personal data for as long as necessary to fulfil the purposes for which that personal information was collected.
When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize it or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.
You may have the data protection rights listed below. To exercise these rights, please contact us in writing using the contact details provided under the “How to Contact Us” heading below:
From time to time, Tandem may host a web page or pages which are available, in part, to children (the age of a “child” differs among countries and states). However, we do not intend to collect information from these individuals unless the information is either collected from a parent or guardian or collected from a child after Tandem has obtained the parent or guardian’s consent to do so.
While we cannot stop a child from accessing a web page, we do not collect any personal information without making it clear that the person providing the information must be at minimum a specific age.
If you are a parent or guardian and believe your child who is underaged has provided us with personal information that you would like to review or request be deleted please contact us at compliance@tandemdiabetes.com. If we learn that we have personal information from a child under the age of 13 (or, if the territory in which the child resides imposes a higher age threshold, under the age at which the child can give valid consent in that territory) without permission from the child's parent or guardian, we will remove and/or delete that information pending receipt of an appropriate consent.
The California Consumer Privacy Act (“CCPA”) applies to California businesses who use California residents’ personal data and gives those residents certain rights relative to their personal data. To the extent required by the CCPA, Tandem will provide you a CCPA notice upon collection of your personal data.
Tandem does not sell, rent, release, disclose, disseminate, make available, transfer, or otherwise communicate orally, in writing, or by electronic or other means, a consumer’s personal information to another business or a third party for monetary or other valuable consideration.
At this time, our Website does not respond to Do Not Track ("DNT") signals sent from your web browser. A uniform standard has not yet been adopted to determine how DNT signals should be interpreted and what actions should be taken by websites and third parties that receive them.
We may update this Privacy Notice from time to time as we deem necessary and in our sole discretion. When we update our Privacy Notice, we will provide notice on our Website or as otherwise required by applicable law. We encourage you to periodically review this Privacy Notice to remain informed about how we collect, use, and share personal information. We will obtain your consent to any material Privacy Notice changes if and where this is required by applicable data protection laws. You can see when this Privacy Notice was last updated by checking the “last updated” date displayed at the top of this Privacy Notice. Any changes to this Privacy Notice take effect immediately after being posted or otherwise provided by Tandem.
If you reside in the United States:
Tandem Diabetes Care
Attn: Legal Department
12400 High Bluff Drive
San Diego, CA 92130
compliance@tandemdiabetes.com
If you reside in the European Economic Area:
Please either contact Tandem directly at DPO@tandemdiabetes.com or Tandem’s EU Representative
at:
Lionheart Squared (Europe) Ltd.
Attn: Data Privacy
2 Pembroke House
Upper Pembroke Street 28-32
Dublin, DO2 EK84, Republic of lreland
TandemDiabetes@LionheartSquared.eu
If you reside in the UK:
Please either contact Tandem directly at DPO@tandemdiabetes.com or Tandem’s UK Representative at:
Lionheart Squared Limited
Attn: Data Privacy
17 Glasshouse Studios
Fryern Court Road
Fordingbridge, Hampshire, SP6 1QX
United Kingdom
TandemDiabetes@LionheartSquared.co.uk
The data controller of your personal information is Tandem Diabetes Care, Inc.
Chief Privacy Officer
privacy@tandemdiabetes.com
858-366-6931
If you are not satisfied with our response to your privacy concerns, you may contact the Office of the Privacy Commissioner of Canada by telephone at 1-800-282-1376 or the Privacy Commissioner of your province of residence.