Privacy Policy

 

Revance Privacy Statement and Supplemental California Privacy Policy

Effective Date: November 8, 2023 

This Privacy Statement is intended to explain how and why Revance Therapeutics, Inc., Hint, Inc. (doing business as OPUL and HintMD) and their affiliates (collectively “Revance”) collect, use, and disclose your Personal Information (as defined below). 

This Privacy Statement applies to the operation of Revance’s U.S. websites, mobile applications, and digital services (collectively referred to as “Services”) that post or directly link to this Statement.  Additionally, pursuant to the California Consumer Privacy Act (“CCPA”) we have developed a Supplemental California Privacy Policy for consumers who reside in California, which has general information regarding collection, use, and disclosure of Personal Information of California Consumers.

The Personal Information you provide may be accessible to our affiliates, vendors, and suppliers in other countries. If you are visiting this site from a country other than the United States, your Personal Information collected on this site will be transferred outside of your country. The level of legal protection for Personal Information is not the same in all countries and the laws may be more protective in your country than in countries where we process your information.  However, we will take the security measures described in this Privacy Statement in an effort to keep your data secure. By using this site, you consent to the collection, storage, and processing of your Personal Information in the United States and in any country to which we may transfer your information in the course of our business operations. 

Types of Information and How It Is Collected 

We define Personal Information as information that can (directly or indirectly) identify, locate, or be used to contact you or communicate with you, such as your name, address, telephone number, e-mail address, characteristics, or descriptions (such as gender and date of birth), and other similar and associated information (“Personal Information”).  Personal Information includes certain subsets of Personal Information that are considered “sensitive” pursuant to applicable laws, such as information about health or medical status, and healthcare products used or services received (“Sensitive Personal Information”).   

In most cases, we collect Personal Information directly from you. We will ask you for Personal Information, for example, when you interact with us, such as registering on our websites, using any interactive features or applications, signing up to receive a newsletter or a rebate, or making a direct purchase.  Before providing Sensitive Personal Information to us, we urge you to carefully consider whether to disclose it. If you do provide Sensitive Personal Information to us, you are consenting to its use and disclosure for the purposes and in the manner described at the time of collection and as set forth in this Privacy Statement.

Additionally, when you use the Services, we collect information related to your use by automated means, such as the date and time of your website sessions, movements across our websites, and the browser information and operating system you use (“Usage Data”).   In certain circumstances, where we link Usage Data and Personal Information, Usage Data may be considered Personal Information.

If your interaction with us is online or through a mobile device, we use cookies and other technological tools to collect data about your computer or device, including your IP Address, and your use of our Services. If you use a mobile application that Revance has developed and that links to this Privacy Statement, that application, in most circumstances, will inform you of the data that the mobile application collects and what information it may transfer to Revance.   For more information about how we use cookies and other technologies, please see the “Digital Advertising, Cookies and Other Data Collection Technologies” section below.

We may also collect information about you from our service providers when they assist with our business operations, and they may share the collected information with us, including collecting and sharing information with us to analyze your and other users’ use of the Services, to help us detect and prevent fraud, and to improve user experience with our Services.  We may also collect information from social media sites when linked with certain Services; for example, if you access the Services through a Facebook or other social media account, Revance may (depending on the applicable user privacy settings) automatically have access to information you or others have provided to or through the social media platform. We may also collect information from third parties, such as data aggregators, and others, who provide data to us in order for us to more completely understand our customers.

How Information Is Used 

Revance may use your Personal Information for its business, operational, and legal purposes, such as:

  • To respond to your requests for information, products, services, including managing your online accounts with us; 
  • To provide you with general health information (such as information on certain health conditions) as well as information about our products and services; 
  • To provide you with marketing communications and offers for products and services and to deliver advertising (including targeted advertising) to you on this and other Services; 
  • To administer promotional programs, such as loyalty programs, sweepstakes, rewards, and rebate programs; 
  • To determine if you are eligible for certain products, services, or programs (such as patient savings programs); 
  • If you have a business or professional relationship with Revance or a Revance affiliate, to develop our business relationship with you; 
  • For our research and development efforts; 
  • To anonymize data so that it is no longer Personal Information; 
  • For product safety, such as adverse event reporting, or to communicate product safety information to you; 
  • For other everyday business purposes, such as payment processing and financial account management, product development, contract management, Services administration, fulfilment, analytics, fraud prevention, corporate governance, reporting, legal compliance and to fulfill our legal obligations, and to protect our rights and the rights and safety of our users and others.

We may also enhance or merge information about you, including Personal Information, with information about you obtained from third parties for the same purposes. 

By using a Service, you consent to our use of your information as described in this Privacy Statement. 

Disclosure and Sharing of Personal Information

We may share your Personal Information with Revance’s affiliates, with our business collaborators, and our product co-promotion and co-development partners, marketing and advertising agencies, and social media companies and platforms for the purposes set forth above and elsewhere in this Privacy Statement.

We may share Personal Information with our service providers, who are bound by law or contract to protect Personal Information and only use Personal Information in accordance with our instructions or the agreements we have signed. For example, we may share Personal Information with service providers who provide data processing or fulfilment services for us. Sharing excludes text messaging originator opt-in data and consent; this information will not be shared with any third parties.

We may disclose Information for legal and law enforcement purposes. This includes in response to legal process, for example, in response to a court order or a subpoena, or in response to a law enforcement agency’s request. We also may disclose such Information to third parties: (i) in connection with fraud prevention activities, (ii) where we believe it is necessary to investigate, prevent, or take action regarding illegal activities, (iii) in situations that may involve violations of our terms of use or other rules, (iv) to protect our rights and the rights and safety of others, (v) as needed to support external auditing, compliance and corporate governance functions, and (v) as otherwise required by law.

We may also disclose your Personal Information to a third party in connection with the sale, assignment, or other transfer of a Revance asset(s), which may include associated Services to which the information relates.   We will try to assure that no Personal Information that is transferred will be used or shared in a manner inconsistent with this Privacy Statement without your consent. However, in the event of a sale or merger, your continued use of this site signifies your agreement to be bound by the Privacy Statement and other applicable terms of the subsequent owner or operator.

Please note that we may also disclose data about you that is not personally identifiable. For example, we may publish reports that contain aggregate and statistical data about our customers. 

How We Protect Information 

We have put in place reasonable controls designed to help safeguard the Personal Information we collect via the Sites. However, no security measures are perfect, and we cannot assure you that Personal Information that we collect will never be accessed or used in an unauthorized manner.

We are not responsible for any interception or interruption of any communications or for changes to or losses of data through the internet. Users of the Services are responsible for maintaining the security of any password, user ID, or other form of authentication involved in obtaining access to password protected or secure areas of the Services. Any access to the Services through your user ID and password will be treated as authorized by you. If we believe it is necessary or advisable to help protect your Personal Information and/or the integrity of the Services, we may suspend your use of all or part of the Services, without notice. Unauthorized access to any of the Services is prohibited and may lead to criminal prosecution.

We retain information as long as it is necessary and relevant for our business, operational, and legal purposes. In addition, we retain Personal Information to comply with applicable law, prevent fraud, resolve disputes, troubleshoot problems, assist with any investigation, enforce our Terms of Service, and other actions permitted by law. When your Personal Information is no longer needed for Revance’s business, operational, and legal purposes, we dispose of it subject to applicable law.

Digital Advertising, Cookies and Other Data Collection Technologies

When you use our Services, we collect different types of Usage Data by automated means, using technologies such as APIs, web services, scripts, cookies, pixels, tags, web beacons, browser analysis tools, and server logs.

We may collect data about the device you use to access our Services, your operating system type, browser type, domain, and other system settings, as well as the language your system uses and the country, region and time zone where your device is located.  Our server logs also record the IP address of the device you use to connect to the Internet.  An IP address is a unique identifier that devices use to identify and communicate with each other on the Internet.  We may also collect data about the website you were visiting before you came to our website, and the website you visit after you leave our website.  We may also use vendors, such as Adobe and Google, to place cookies and collect data to enable certain services we use, including advertising, visitor tracking, personalization, site analytics and security services, including reCAPTCHA, and the data may be disclosed to our vendors for these purposes.

Other data may be disclosed to vendors providing additional services integrated into our  Services, including performance monitoring, user experience components such as user interface frameworks, images and web fonts, maps, and ecommerce functionality.

When we send email communications, we may place a web beacon or similar tracking technology in the email to know whether your device is capable of receiving HTML emails, or to collect data on whether the email or an attachment or link in the email has been opened or forwarded.

When you use our Services, we may place cookies on your computer.  Cookies are small text files that websites or mobile apps send to your computer or other Internet-connected device to uniquely identify your browser or to store data or settings in your browser.  Cookies allow us to recognize you when you return.  They also help us provide a customized experience and enable us to detect certain kinds of fraud.  Some of our Services may use Web Storage instead of cookies.

We have separated the cookies that we use on our Services into the following general categories as described in our cookie banner: Strictly Necessary Cookies, Analytics Cookies, Functional/Performance Cookies, and Advertising Cookies.

We use cookies from third-party advertising companies that may place an advertising tag on your web browser.  That advertising tag allows these third parties to serve our ads to you on other websites and digital services. These companies may use information obtained from cookies and other data collection tools in order to measure advertising effectiveness and to provide advertisements of interest to you on these other websites.  You can manage your cookie preferences in the cookie banner.

You can also opt-out of receiving targeted advertising from Network Advertisers by clicking the “Ad Options” icon on the advertisements or by going to www.networkadvertising.org. In addition, the Digital Advertising Alliance maintains a web site where consumers can opt out from receiving interest-based advertising from some or all of the network advertising companies participating in the program (www.AboutAds.info/choices).

In many cases, the data we collect using cookies and other tools is only used in a non-identifiable way, without any reference to Personal Information.  However, under some privacy and data protection laws, this data could be considered Personal Information.  This Privacy Statement governs how we use this data when it is considered your Personal Information.  For example, we use the data we collect about all website users, including IP address to optimize our websites and to understand website traffic patterns.

How does our site handle Do Not Track signals? 

Some web browsers incorporate a “do-not-track” (“DNT”) or similar feature that signals to websites with which the browser communicates that a visitor does not want to have their online activity tracked. If a digital service that responds to a particular DNT signal receives the DNT signal, the browser can block that digital service from collecting certain Personal Information about the browser’s user. As of the Effective Date not all browsers offer a DNT option and DNT signals are not yet uniform. For this reason, Revance along with many other digital service operators cannot guarantee that it responds to DNT signals. For more information about DNT signals, visit allaboutdnt.com.

Third-party links 

A link to a third-party website or digital service does not mean that Revance endorses it or the quality or accuracy of information presented on it. If you decide to visit a third-party website or service, you are subject to its privacy practices and not this Privacy Statement. We encourage you to carefully read the privacy policy or statement and other legal notices of each website or service that you visit.

Your Choices
You can always limit the data you provide to Revance, but if you choose not to provide certain requested information, you may be unable to access some of the services, offers, and content on our Services. You can also limit the communications that Revance may send to you by following the instructions in our advertisement/promotional communications to unsubscribe or opt-out of receiving future marketing communications.

Please note that even if you opt-out of promotional communications, we may still need to contact you with important information about your account or your purchase. For example, even if you opt-out of advertisement/promotional emails, we will still send you a confirmation, a notification of changes to, expiration of, or discontinuation of a program you are enrolled in and product safety communications.

California Consumers should visit the Supplemental California Privacy Policy for more information regarding privacy rights and the designated methods for making California Consumer Privacy Act data subject rights requests.

Children’s Policy

The Services are not intended for use by children under the age of 18.  If you believe Revance may have any information from or about a child under age 18, please contact our Privacy Office using the contact information at the end of this Privacy Notice.

Changes to this Policy

Revance reserves the right to change the terms of this Privacy Statement. 

You will be notified of any Privacy Statement changes on this Privacy Statement page and where you can find the date this Privacy Statement was most recently updated. We encourage you to periodically check back and review this Privacy Statement so that you always know our current privacy practices.

SUPPLEMENTAL CALIFORNIA PRIVACY POLICY

This Supplemental California Privacy Policy (“CCPA Policy”) section supplements this Privacy Statement and addresses legal obligations and rights arising from the California Consumer Privacy Act (“CCPA”), as well as other laws that apply only to California residents. 

DEFINITION OF PERSONAL INFORMATION UNDER CCPA

CCPA defines “Personal Information” to mean information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household (“CA Personal Information”). CA Personal Information includes, but is not limited to, the categories of personal information identified in the table below if such information identifies, relates to, describes, is capable of being associated with, or could be reasonably linked, directly or indirectly, with a particular consumer or household.

This CCPA Policy provides the information required under the CCPA and applies to both Revance’s online and offline activities relative to our processing of your CA Personal Information. This CCPA Policy and the CCPA does not apply to information that has been de-identified or aggregated pursuant to CCPA. Some of the CA Personal information that we collect, use, and disclose may, pursuant to provisions in the CCPA, be exempt from the CCPA because it is regulated by other federal and state laws that apply to us.

CCPA NOTICE ON COLLECTION OF YOUR CA PERSONAL INFORMATION.  If you are a California resident, the following table provides you with a notice of the CA Personal Information we may collect from or about you, and how we will use, maintain, and disclose it.  Some of this will depend on the nature of our interaction with you but can include the following with respect to CA Personal Information categories that we may have collected in the preceding twelve (12) months:  

CATEGORY AND SOURCES OF PERSONAL INFORMATION REPRESENTATIVE DATA ELEMENTS  PURPOSE FOR COLLECTING AND SHARING THE PI CATEGORIES OF THIRD PARTIES TO WHOM THIS TYPE OF PERSONAL INFORMATION IS SHARED OR DISCLOSED FOR A BUSINESS PURPOSE
CONTACT INFORMATION
We collect this type of information from:
You
Third parties, such as ad delivery companies who place cookies containing advertising IDs on your devices for us Healthcare providers  Health insurance companies (health plans) and other payors Authorized/legal representatives, family members, and caregivers Third parties who provide benefit verification, program enrollment, and product fulfillment services in connection with our products and services Consumer reporting agencies and other third parties who verify the information you provide Third parties who help us maintain the accuracy of our data and data aggregators that help us complete and enhance our records Third parties who provide digital marketing and analytics services for us using cookies and similar technologies that contain a unique identifier, such as an advertising ID
Data elements in this category include: Full name, or unique pseudonym Honorifics and titles, preferred form of address Postal address Email address Phone number Fax number Contact information for related persons, such as authorized users of your account Company ID number (e.g., customer number, account number, subscription number) System identifiers (e.g., usernames or online credentials) We use this type of information: To identify you and communicate with you To send transactional messages such as confirmations or responses for assistance To send marketing communications, surveys and invitations To personalize our communications and provide customer service To administer and manage events To identify you or your device, including to associate you with different devices that you may use For record-keeping and reporting, including for data matching For metrics and analytics, To track your use of products, services, websites, including for ad delivery and personalization To troubleshoot product issues To determine and verify program, product, and service eligibility and coverage To enroll you in our programs and provide our products and services to you To administer, manage, analyze, and improve our programs, products, and services To procure vendor/supplier products and services, including to manage and satisfy related vendor/supplier contractual obligations To analyze and better understand your needs, preferences, and interests, as well as those of other consumers To conduct internal business analysis and market research Advertising and product promotion, including to contact you regarding programs, products, services, and topics that may be of interest or useful To engage in joint marketing initiatives To administer, provide access to, monitor, and secure our information technology systems, websites, applications, databases, and devices To provide access to, monitor, and secure our facilities, equipment, and other property To monitor, investigate, and enforce compliance with our policies, product/service terms and conditions, and legal and regulatory requirements To comply with legal and regulatory obligations To identify you and your device(s) for any/all purposes identified above, including to monitor your use of and interactions with programs, products, services, and advertisements for such purposes To evaluate a potential employment or contractor relationship with you To perform background checks and verify past employment, educational history, and professional standing and qualifications To evaluate, determine, and arrange compensation, payroll, and benefits To assess your fitness for work To contact you regarding your application and potential employment or contractor relationship with us For our everyday business purposes We may disclose this type of information to our Affiliates and Service Providers and to: Service Providers, including to social media companies such as Facebook which use the data only to identify which of our customers use their platforms so that we can deliver ads to you on the platform Service providers such as companies who help manage and coordinate events Third parties who deliver our communications, such as the postal service and couriers Other third parties (including government agencies) as required by law, such as pursuant to legally binding subpoenas, court orders, and similar instruments) Service providers, including companies who assist with our information technology and security programs Third party advertising network companies, when you opt-in via our cookie banner to have such Personal Information disclosed for advertising (see Third Party Advertising below) Third parties who assist with fraud prevention, detection and mitigation Healthcare providers (including specialty pharmacies) Health insurance companies (health plans) and other payors Authorized/legal representatives, family members, and caregivers Third parties with whom we have joint marketing and similar arrangements Third parties who provide benefit verification, program enrollment, and product fulfillment services in connection with our products and services Payment processors, financial institutions, and others as needed to complete transactions and for authentication, security, and fraud prevention Other third parties as necessary to complete transactions and provide our products/services, including delivery companies, agents, and manufacturers Third parties who provide marketing and data analytics services, such as social media platforms used to deliver our ads, website/email optimization providers, email marketing vendors, and data analytics vendors Consumer reporting agencies Our lawyers, auditors, and consultants Legal and regulatory bodies and other third parties as required by law
OTHER UNIQUE IDENTIFIERS
We collect this type of information from: You  Healthcare providers  Health insurance companies (health plans) and other payors Authorized/legal representatives, family members, and caregivers Third parties, such as ad delivery companies who place cookies containing advertising IDs on your devices for us Consumer reporting agencies and other third parties who verify the information you provide Third parties who help us maintain the accuracy of our data and data aggregators that help us complete and enhance our records Third parties who provide digital marketing and analytics services for us using cookies and similar technologies that contain a unique identifier, such as an advertising ID Service Providers who provide benefit verification, program enrollment, and product fulfillment services in connection with our products and services
Data elements in this category include: Government issued identifiers, such as Social Security Numbers, Birth Certificate Number, Driver’s or Operator’s license number, Passport Number, Alien Number or I-94 Number Device identifier Advertising ID Customer number IP address Service Request ID number Cookie ID Online User ID We use this type of information: To identify you and communicate with you To send transactional messages such as confirmations or responses for assistance To send marketing communications, surveys and invitations To personalize our communications and provide customer service To administer and manage events To identify you or your device, including to associate you with different devices that you may use For record-keeping and reporting, including for data matching For metrics and analytics, To track your use of products, services, websites, including for ad delivery and personalization To troubleshoot product issues To determine and verify program, product, and service eligibility and coverage To enroll you in our programs and provide our products and services to you To administer, manage, analyze, and improve our programs, products, and services To procure vendor/supplier products and services, including to manage and satisfy related vendor/supplier contractual obligations To analyze and better understand your needs, preferences, and interests, as well as those of other consumers To conduct internal business analysis and market research Advertising and product promotion, including to contact you regarding programs, products, services, and topics that may be of interest or useful To engage in joint marketing initiatives To administer, provide access to, monitor, and secure our information technology systems, websites, applications, databases, and devices To provide access to, monitor, and secure our facilities, equipment, and other property To monitor, investigate, and enforce compliance with our policies, product/service terms and conditions, and legal and regulatory requirements To comply with legal and regulatory obligations To identify you and your device(s) for any/all purposes identified above, including to monitor your use of and interactions with programs, products, services, and advertisements for such purposes To evaluate a potential employment or contractor relationship with you To perform background checks and verify past employment, educational history, and professional standing and qualifications To evaluate, determine, and arrange compensation, payroll, and benefits To assess your fitness for work For our everyday business purposes We may disclose this type of information to our Affiliates and Service Providers and to: Service Providers, including to social media companies such as Facebook which use the data only to identify which of our customers use their platforms so that we can deliver ads to you on the platform Service providers such as companies who help manage and coordinate events Third parties who deliver our communications, such as the postal service and couriers Other third parties (including government agencies) as required by law, such as pursuant to legally binding subpoenas, court orders, and similar instruments) Service providers, including companies who assist with our information technology and security programs Third party advertising network companies, when you opt-in via our cookie banner to have such Personal Information disclosed for advertising (see Third Party Advertising below) Third parties who assist with fraud prevention, detection and mitigation Healthcare providers (including specialty pharmacies) Health insurance companies (health plans) and other payors Authorized/legal representatives, family members, and caregivers Third parties with whom we have joint marketing and similar arrangements Third parties who provide benefit verification, program enrollment, and product fulfillment services in connection with our products and services Payment processors, financial institutions, and others as needed to complete transactions and for authentication, security, and fraud prevention Other third parties as necessary to complete transactions and provide our products/services, including delivery companies, agents, and manufacturers Third parties who provide marketing and data analytics services, such as social media platforms used to deliver our ads, website/email optimization providers, email marketing vendors, and data analytics vendors Consumer reporting agencies Our lawyers, auditors, and consultants Legal and regulatory bodies and other third parties as required by law.
CHARACTERISTICS OR DESCRIPTION OF INDIVIDUALS
We collect this type of information from: You  Healthcare providers  Health insurance companies (health plans) and other payors Authorized/legal representatives, family members, and caregivers Third parties who provide benefit verification, program enrollment, and product fulfillment services in connection with our products and services Third parties that provide access to information you make publicly available, such as social media platforms Third parties who provide us with supplemental consumer data or data analytics and market research services, such as data aggregators
Data elements in this category include:
Height Weight Hair & eye color Age/Date of Birth Gender Race, Ethnicity, Nationality Religious belief Information concerning sexuality or sex life Disability Personal characteristics and preferences, marital and family status, shopping/product preferences, languages spoken Other similar data elements
We use this type of information: To help manage emergency incidents that occur on the premises or involve company property To determine and verify program, product, and service eligibility and coverage To administer, manage, analyze, and improve our programs, products, and services To analyze and better understand your needs, preferences, and interests, as well as those of other consumers To conduct internal business analysis and market research To comply with legal and regulatory obligations For our everyday business purposes We may disclose this type of information to our Affiliates and Service Providers and to: Emergency personnel Service Providers which use the data only to assist in incident management and reporting Service providers, including those who help administer our call center hosting platforms and phone systems Healthcare providers (including specialty pharmacies) Health insurance companies (health plans) and other payors Authorized/legal representatives, family members, and caregivers Third parties with whom we have joint marketing and similar arrangements Third parties who provide benefit verification, program enrollment, and product fulfillment services in connection with our products and services Other third parties as necessary to complete transactions and provide our products/services Our lawyers, auditors, and consultants Legal and regulatory bodies and other third parties as required by law
COMMERCIAL INFORMATION
We collect this type of information from: You Third parties that provide access to information you make publicly available, such as social media Third parties that provide information that helps us understand our customers, including data aggregators and public records providers We may also infer information about you based on information that you have given us and your past interactions with us and other companies Healthcare providers (including specialty pharmacies) Health insurance companies (health plans) and other payors Consumer reporting agencies Third parties who provide benefit verification, program enrollment, and product fulfillment services in connection with our products and services Other third parties who facilitate, process, and complete transactions for us, such as resellers, sales agents, and program partners
Data elements in this category include: Propensity scores obtained from third parties, such as likelihood that you may be interested in certain purchases or experiencing life events Products or services you have purchased Records of products or services purchased, obtained, or considered Records of program enrollment and activity We use this type of information: To better understand you and to understand our customers generally To design products, services and programs including subscription and special offer programs To identify prospective customers For internal business purposes, such as quality control, training and analytics To enroll you in our programs and provide our products and services to you To administer, manage, analyze, and improve our programs, products, and services To communicate with you regarding our programs, products, and services To procure vendor/supplier products and services, including to manage and satisfy related vendor/supplier contractual obligations To analyze and better understand your needs, preferences, and interests, as well as those of other consumers To conduct internal business analysis and market research To engage in joint marketing initiatives To monitor, investigate, and enforce compliance with our policies, product/service terms and conditions, and legal and regulatory requirements To comply with legal and regulatory obligations For our everyday business purposes We may disclose this type of information to our Affiliates and Service Providers and to: Third parties with whom we have joint marketing and similar arrangements Service Providers, including companies who assist us in program administration Our lawyers, auditors and consultants Healthcare providers (including specialty pharmacies) Health insurance companies (health plans) and other payors Authorized/legal representatives, family members, and caregivers Third parties with whom we have joint marketing and similar arrangements Third parties who provide benefit verification, program enrollment, and product fulfillment services in connection with our products and services Payment processors, financial institutions, and others as needed to complete transactions and for authentication, security, and fraud prevention Other third parties as necessary to complete transactions and provide our products/services Third party network advertising partners Consumer reporting agencies Legal and regulatory bodies and other third parties as required by law
TRANSACTION AND INTERACTION INFORMATION
We collect this type of information from: You Third parties that provide access to information you make publicly available, such as social media Automatically, such as when you interact with our websites or mobile apps
Data elements in this category include: Personal characteristics and preferences, such as your age range, marital and family status, shopping preferences, languages spoken Subscription program data Household demographic data Data from social media profiles, such as Facebook, Twitter, LinkedIn and similar platforms Education information Professional information Hobbies and interests We use this type of information: To fulfill our business relationship with you, including customer service For recordkeeping and compliance, including dispute resolution For internal business purposes, such as finance, quality control, training, reporting and analytics For risk management, fraud prevention and similar purposes For our everyday business purposes We may disclose this type of information to our Affiliates and Service Providers and to: Third parties with whom we have joint marketing and similar arrangements Service providers, including third parties as needed to complete the transaction, including delivery companies, agents and manufacturers Our lawyers, auditors and consultants Customers, in connection with their audits of Company Other third parties as required by law
INFERRED AND DERIVED INFORMATION 
We create inferred and derived data elements by analyzing our relationship and transactional information We draw inferences from the information we collect from and about you, such as your preferences, characteristics, attributes, and abilities We also may collect this type of information from: Service Providers Third parties with whom we have joint business agreements for marketing and development and similar agreements Third party network advertising partners
Data elements in this category include: Propensities, attributes and/or scores generated by internal analytics programs and used for marketing Propensities, attributes and/or scores generated by internal analytics programs and used for information security and fraud purposes Preferred language Inferences reflecting a consumer’s wellness, health, preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes, or other inferred data We combine inferred data with other relationship information and use this type of information: To better understand you and to understand our customers generally To design products, services and programs that interest our customers, including subscription programs To identify prospective customers For internal business purposes, such as quality control, training and analytics To administer, manage, analyze, and improve our programs, products, and services To analyze and better understand your needs, preferences, and interests, as well as those of other consumers For advertising and product promotion, including to contact you regarding programs, products, services, and topics that may be of interest or useful To engage in joint marketing initiatives To administer, provide access to, monitor, and secure our information technology systems, websites, applications, databases, and devices To comply with legal and regulatory obligations For our everyday business purposes We may disclose this type of information to our Affiliates and Service Providers and to: Service providers, including those who analyze data on our behalf and who help execute programs Our lawyers, auditors and consultants Third parties with whom we have joint marketing and similar arrangements Legal and regulatory bodies and other third parties as required by law
INTERNET AND ONLINE/ ELECTRONIC TECHNICAL INFORMATION
We collect this type of information from: You and from your computer or devices when you interact with our platforms, websites and applications; for example, when you visit our websites, our server logs record your IP address and other information Automatically, via technologies such as cookies, web beacons, when you visit our website or other websites Third parties, including computer security services and advertising partners We also associate information with you using unique identifiers collected from your devices or browsers Third parties who provide website and online security services
Data elements in this category include: IP Address MAC Address, SSIDs or other device identifiers or persistent identifiers Online user ID Password Device characteristics (such as browser information) Web Server Logs Application Logs Browsing and search history Viewing Data (site and app usage) First Party Cookies Third Party Cookies Web beacons, clear gifs and pixel tags Internet service provider Referring/exiting URL Request/response date and time Clickstream data Ads and web pages viewed Time spent on a web page or mobile app Other information regarding your interactions with our websites, applications, emails, and advertisements We use this type of information: For system administration, technology management, including optimizing our websites and applications For information security and cybersecurity purposes, including detecting threats For recordkeeping, including logs and records that are maintained as part of Transaction Information To better understand our customers and prospective customers and to enhance our Relationship Information, including by associating you with different devices and browsers that they may use For online targeting and advertising purposes subject to choices made via the Cookie Banner To administer, manage, analyze, and improve our programs, products, and services To conduct internal business analysis and market research For advertising and product promotion, including to contact you regarding programs, products, services, and topics that may be of interest or useful To engage in joint marketing initiatives To administer, provide access to, monitor, and secure our information technology systems, websites, applications, databases, and devices To monitor, investigate, and enforce compliance with our policies, product/service terms and conditions, and legal and regulatory requirements To comply with legal and regulatory obligations To identify you and your device(s) for any/all purposes identified above, including to monitor your use of and interactions with programs, products, services, and advertisements for such purposes For our everyday business purposes We may disclose this type of information to our Affiliates and Service Providers and to: Service providers including companies who assist with our information technology and security programs, including companies such as network security services who retain information on malware threats detected Service providers who assist with fraud prevention, detection and mitigation Third party advertising network companies, when you opt-in via our cookie banner to have such Personal Information disclosed for advertising (see Third Party Advertising below) Our lawyers, auditors and consultants Third parties who provide marketing and data analytics services, such as social media platforms used to deliver our ads, website/email optimization providers, email marketing vendors, and data analytics vendors Legal and regulatory bodies and other third parties as required by law
AUDIO VISUAL INFORMATION
We collect this type of information from: You Automatically, such as when we record calls to our call center and use CCTV cameras in our facilities Companies conducting non-clinical research such as market research companies Third parties that provide access to information you make publicly available, such as social media
Data elements in this category include: Photographs Video images CCTV recordings Call center recordings and call monitoring records Voicemails We use this type of information: For internal business purposes, such as call recordings used for training, coaching or quality control For relationship purposes, such as use of photos and videos for social media purposes For premises security purposes and loss prevention For our everyday business purposes We may disclose this type of information to our Affiliates and Service Providers and to: Service providers, including companies who assist with our information technology and security programs, and our loss prevention programs Service providers, including companies who conduct market research on our behalf Our lawyers, auditors and consultants Other third parties as required by law
FINANCIAL INFORMATION
We collect this type of information from: You Payment processors and other financial institutions Healthcare providers (including specialty pharmacies) Health insurance companies (health plans) and other payors Authorized/legal representatives, family members, and caregivers Third parties who provide benefit verification, program enrollment, and product fulfillment services in connection with our products and services Third parties who assist with fraud prevention, detection, and mitigation
Data elements in this category include: Bank account number and details (if you use automated payments) Payment card information Debit or credit card number Bank account number and routing information Payment and reimbursement amounts We use this type of information: To fulfill our business relationship with you, including processing payments, issuing refunds and collections For recordkeeping and compliance, including dispute resolution For internal business purposes, such as finance, audits, training, reporting and analytics For risk management, fraud prevention and similar purposes To determine and verify program, product, and service eligibility and coverage To enroll you in our programs and provide our products and services to you To administer, manage, analyze, and improve our programs, products, and services To issue invoices and collect payments Reimburse customers, satisfy warranty obligations, and fulfill payment obligations To procure vendor/supplier products and services, including to manage and satisfy related vendor/supplier contractual obligations To monitor, investigate, and enforce compliance with our policies, product/service terms and conditions, and legal and regulatory requirements To comply with legal and regulatory obligations For our everyday business purposes We may disclose this type of information to our Affiliates and Service Providers and to: Service providers, including payment processors, financial institutions and others as needed to complete the transactions and for authentication, security, and fraud prevention Our lawyers, auditors and consultants Customers, in connection with their audits of Company Healthcare providers (including specialty pharmacies) Health insurance companies (health plans) and other payors Authorized/legal representatives, family members, and caregivers Third parties who provide benefit verification, program enrollment, and product fulfillment services in connection with our products and services Payment processors, financial institutions, and others as needed to complete transactions and for authentication, security, and fraud prevention Other third parties as necessary to complete transactions and provide our products/services Consumer reporting agencies Legal and regulatory bodies and other third parties as required by law
HEALTH INFORMATION
We collect this type of information from: You Healthcare providers Health insurance companies  Healthcare providers (including specialty pharmacies) Authorized/legal representatives, family members, and caregivers Third parties who provide benefit verification, program enrollment, and product fulfillment services in connection with our products and services We may also infer health information about you based on other information, including and lifestyle factors.
Data elements in this category include: Information about physical or mental health, disease state, medical history or medical treatment or diagnosis, medicines taken Name/Contact of a patient’s healthcare providers General disease or product interest Health insurance company Insurance account number Information on payment for healthcare services (EOB forms, HSA statements, claims data, claims assistance records) Health plan beneficiary names/numbers Information needed to accommodate disabilities Information about workplace accidents and occupational safety Medical record information, such as medical diagnosis, disease information, and treatment history Health values and sensor readings data, such as steps taken, blood glucose levels, heart rate, and blood pressure Drug allergies Prescriptions and dosing Medical appointment dates We use this type of information: To determine and verify program, product, and service eligibility and coverage To enroll you in our programs and provide our products and services to you To administer, manage, analyze, and improve our programs, products, and services To procure vendor/supplier products and services, including to manage and satisfy related vendor/supplier contractual obligations To analyze and better understand your needs, preferences, and interests, as well as those of other consumers To conduct internal business analysis and market research To monitor, investigate, and enforce compliance with our policies, product/service terms and conditions, and legal and regulatory requirements To comply with legal and regulatory obligations For our everyday business purposes We may disclose this type of information to our Affiliates and Service Providers and to: Healthcare providers (including specialty pharmacies), health insurance companies (health plans), other payors and others as needed to provide the contemplated services or transactions involving the data, such as for processing health care payments Our lawyers, auditors and consultants Other third parties as permitted by HIPAA and/or CMIA for treatment, payment and authorization Authorized/legal representatives, family members, and caregivers Third parties who provide benefit verification, program enrollment, and product fulfillment services in connection with our products and services Other third parties as necessary to complete transactions and provide our products/services Legal and regulatory bodies and other third parties as required by law
ELECTRONIC AND SENSOR DATA
We collect this type of information automatically when you use our internet-enabled products such as mobile apps and connected devices from: You (directly from participant) When you contact or visit us (automatically), such as when we record calls to our call center or use CCTV cameras in our facilities Your mobile devices and other internet-connected devices and applications (automatically) Third parties that provide access to information you make publicly available, such as social media platforms
Data elements in this category include: Smart device records IoT products Health values and sensor readings data, such as steps taken, blood glucose levels, heart rate, and blood pressure Recording of a customer service call Recording from a CCTV camera in our facilities We use this type of information: To enable product functionality For internal business purposes, such product development, security, and quality control To administer, manage, analyze, and improve our programs, products, and services To analyze and better understand your needs, preferences, and interests, as well as those of other consumers To administer, provide access to, monitor, and secure our information technology systems, websites, applications, databases, and devices To monitor, investigate, and enforce compliance with our policies, product/service terms and conditions, and legal and regulatory requirements To provide access to, monitor, and secure our facilities, equipment, and other property To comply with legal and regulatory obligations To identify you and your device(s) for any/all purposes identified above, including to monitor your use of and interactions with programs, products, services, and advertisements for such purposes For our everyday business purposes We may disclose this type of information to our Affiliates and Service Providers and to: Service providers, including companies who assist with our information technology and security programs, including network security services and cybersecurity Service providers, including companies who assist with fraud prevention, detection and mitigation Third party network advertising partners Our lawyers, auditors and consultants Healthcare providers (including specialty pharmacies), health insurance companies (health plans), other payors and others as needed to provide the contemplated services or transactions involving the data, such as for processing health care payments Authorized/legal representatives, family members, and caregivers Third parties who provide benefit verification, program enrollment, and product fulfillment services in connection with our products and services Third parties who provide marketing and data analytics services, such as social media platforms used to deliver our ads, website/email optimization providers, email marketing vendors, and data analytics vendors Third parties who assist with our information technology and security programs Third parties who assist with fraud prevention, detection, and mitigation Other third parties as necessary to complete transactions and provide our products/services Other third parties as required by law
GEOLOCATION DATA
We collect this type of information automatically from your mobile device and computer when you visit or interact with our websites, applications, and online platforms
Data elements in this category include: Precise location data Geofencing data We use this type of information: Provide the information, products or services requested For information security and fraud prevention For our everyday business purposes To administer, manage, analyze, and improve our programs, products, and services To conduct internal business analysis and market research For advertising and product promotion, including to contact you regarding programs, products, services, and topics that may be of interest or useful To administer, provide access to, monitor, and secure our information technology systems, websites, applications, databases, and devices To monitor, investigate, and enforce compliance with our policies, product/service terms and conditions, and legal and regulatory requirements To comply with legal and regulatory obligations We may disclose this type of information to our Affiliates and Service Providers and to: Third parties who assist with our information technology and security programs Third parties who assist with fraud prevention, detection and mitigation Our lawyers, auditors and consultants Third parties who provide marketing and data analytics services, such as social media platforms used to deliver our ads, website/email optimization providers, email marketing vendors, and data analytics vendors Legal and regulatory bodies and other third parties as required by law
COMPLIANCE DATA 
We collect this type of information from: You Third parties, including companies that help us conduct internal investigations Third parties, such as consumer reporting agencies and data aggregators who conduct background screening for us
Data elements in this category include: Compliance program data, including customer screening records, and other records maintained to demonstrate compliance with applicable laws, such as tax laws, ADA, et al. Occupational and environmental safety records Records relating to complaints and internal investigations, including compliance hotline reports Records of privacy and security incidents, including any security breach notifications We use this type of information: To comply with and demonstrate compliance with applicable laws For legal matters, including litigation and regulatory matters, including for use in connection with civil, criminal, administrative, or arbitral proceedings, before regulatory or self-regulatory bodies, including service of process, investigations in anticipation of litigation, execution or enforcement of judgments and orders For internal business purposes, such as risk management, audit, internal investigations, reporting, analytics For our everyday business purposes We may disclose this type of information to our Affiliates and Service Providers and to: Our lawyers, auditors and consultants Customers, in connection with their audits of Company Other third parties (including government agencies, courts and opposing law firms, consultants, process servers and parties to litigation) in connection with legal matters
PROFESSIONAL INFORMATION
We collect this type of information from: You (directly from participant)
Data elements in this category include: Employer and job title Medical license Employer location Information included in a patient’s IRS 1040 form We use this type of information: To determine and verify program, product, and service eligibility and coverage To conduct internal business analysis and market research To comply with legal and regulatory obligations For our everyday business purposes We may disclose this type of information to our Affiliates and Service Providers and to: Third parties who provide benefit verification, program enrollment, and product fulfillment services in connection with our products and services Our lawyers, auditors, and consultants Legal and regulatory bodies and other third parties as required by law
BIOMETRIC IDENTIFIERS We collect this type of information from: You (directly from participant) Healthcare providers  Health insurance companies (health plans) and other payors Authorized/legal representatives, family members, and caregivers Third parties who provide benefit verification, program enrollment, and product fulfillment services in connection with our products and services Data elements in this category include: Your digital or electronic signature on a patient consent form or program enrollment form Biometric information, such as full face, fingerprint, voice print, retina or iris image, or other unique physical representation We use this type of information: To determine and verify program, product, and service eligibility and coverage To enroll you in our programs and provide our products and services to you To procure vendor/supplier products and services, including to manage and satisfy related vendor/supplier contractual obligations To engage in joint marketing initiatives To monitor, investigate, and enforce compliance with our policies, product/service terms and conditions, and legal and regulatory requirements To comply with legal and regulatory obligations For our everyday business purposes We may disclose this type of information to our Affiliates and Service Providers and to: Healthcare providers (including specialty pharmacies), health insurance companies (health plans), other payors and others as needed to provide the contemplated services or transactions involving the data, such as for processing health care payments Authorized/legal representatives, family members, and caregivers Third parties with whom we have joint marketing and similar arrangements Payment processors, financial institutions, and others as needed to complete transactions and for authentication, security, and fraud prevention Other third parties as necessary to complete transactions and provide our products/services Our lawyers, auditors, and consultants Legal and regulatory bodies and other third parties as required by law

Third Party Advertising

If you click “Accept All” on our Cookie Banner or accept certain cookies in our Cookie Settings center, we will disclose CA Personal Information about you (as set forth in the table above) to third party advertising companies. We use third party advertising companies to place ads on other websites, including network advertising companies with whom we work who place their own cookies on your browser when you visit our website. This enables these third party advertising companies to collect and use data from their cookie on your browser, which may include information about your visits to this and other websites. These advertising companies use and further disclose this information in order to deliver advertisements about our goods and services to you when you are on other websites. These advertisements will often be tailored to you. These advertisers may in turn disclose the information about you collected from their cookies to other advertisers to allow those advertisers to display ads to you as well. Under the CCPA, these additional disclosures by these other entities may be considered a sale of CA Personal Information by these entities.

For further information about how else we use cookies and other digital technologies, please see the “Digital Advertising, Cookies and Other Data Collection Technologies” section of the Privacy Statement.

Revance does not sell and will not sell your Personal Information at this time. In the event that this changes, we will modify this California Supplemental Privacy Policy and take the additional steps required under the CCPA.

Your CCPA Data Privacy Rights

Based on our collection, use disclosure of your CA Personal Information, the CCPA provides you (as a California resident) with specific data rights subject to certain exceptions.

  • The Right to Know.  You have the right under the CCPA to request that we disclose to you what CA Personal Information we collect, use or disclose to others.  However, please note that we may not be required to provide you access to the specific pieces of CA Personal Information we have collected about you if we are unable to verify your identity. 
  • The Right to Deletion.  You have the right under the CCPA to request deletion of any CA Personal Information about you that we have collected from you.  However, please note that we may not be required to delete CA Personal Information under certain circumstances.  Specifically, the CCPA includes exemptions that provide that we do not have to delete data that, for example, is necessary to comply with legal obligations (including those pertaining to the quality, safety or effectiveness of a product or activity regulated by the Food and Drug Administration or health information under the Health Insurance Portability and Accountability Act), to detect security incidents, or for certain other internal purposes.
  • The Right to Opt-Out of Sale of CA Personal Information.  As we state above, since we do not engage in the Sale of your CA Personal Information, you do not have a need to exercise this right.  
  • The Right to Non-Discrimination.   You have the right under the CCPA not to be discriminated against for exercising any of your rights. 

How to Submit a Data Privacy Rights Request

To submit a request pursuant to your data privacy rights under the CCPA, we have designated the following two options for you to use:  you can complete the data privacy rights request form by clicking here; or, you may call Revance at 1-844-916-1305.  If you send a data privacy rights request through a different means or mechanism, we may direct you back to one of these designated pathways.

To process your data privacy rights request for access or deletion, we must be able to verify your identity to a reasonable degree of certainty. To verify your identity, you must provide the required information when completing the online request form or making a request.  We will ask you to provide your contact information and additional identifiers based on your relationship with us.  Before we process your request, we may match these data points with a third-party identity verification service and data points we currently maintain to verify your identity and your relationship with us.

You may designate an authorized agent to assist you in exercising any of your rights stated above.  When you use an authorized agent to submit a request to exercise your rights, you must provide the authorized agent with written permission to do so, and, in certain circumstances, we may ask you to verify your own identity directly with us.  We may deny a request from an authorized agent that does not submit proof that they have been authorized by you to act on your behalf.  

Right of non-discrimination for exercise of your privacy rights 

Revance will not discriminate against any person exercising his or her rights under the CCPA, as described above.  Discrimination, in this context, includes that, as a result of exercising any of your CA data privacy rights, you are denied goods or services, charged different prices for goods or services, or provided a different level of quality.

California residents who are unable to review or access this CCPA Supplemental Privacy Policy due to a disability may contact us to request access to this CCPA notice in an alternative format. Please call 1-844-916-1305 or email us at privacy@revance.com.

Nevada Residents

Revance does not sell Covered Information as defined under Nevada law. If you would like to make a further inquiry regarding the selling of your Covered Information, as defined under Nevada law, please send an email to the Privacy Office at the email address provided below.

For More Information 

If you have any questions or comments about this Privacy Statement, please contact us by writing to: 

Revance 

Attn: Privacy

Lead Corporate Counsel
1222 Demonbreun Street

Suite 2000 
Nashville, TN 37203 

Or email us at privacy@revance.com.