Privacy Policy

This notice explains how your personal and health & movement information may be used, shared, and accessed. Please read it carefully to understand your rights and our responsibilities.

Last Updated: May 19th, 2025

MovIQ Health is a registered Doing Business As (DBA) of GaitLab LLC, a Nevada-based healthcare company specializing in objective mobility assessments and movement analytics. As a company that works with sensitive personal and health-related data, we are deeply committed to respecting and protecting your privacy.

Whether you're visiting our website, participating in an in-person assessment, reviewing your MovIQ Report, or interacting with our digital tools, you are entrusting us with important information about your body, health, and identity. We take that responsibility seriously.

This Privacy Policy explains in clear terms:

  • What information we collect from you

  • How we use that information to deliver and improve our services

  • How we store and protect your data

  • When and with whom we may share your data

  • Your rights regarding your personal and health information

We adhere to all applicable privacy laws and healthcare data protection standards, including the Health Insurance Portability and Accountability Act (HIPAA), and aim to provide full transparency in how your information is handled. Our goal is to ensure that your experience with MovIQ Health is not only effective, but also private, respectful, and secure.

If you have any questions about this policy or how we protect your data, we encourage you to reach out using the contact information provided at the end of this document.

1. Who We Are

MovIQ Health provides advanced, data-driven mobility health services that help individuals better understand how they move before issues become injuries, falls, physical decline, or loss of independence. Our services include clinical-grade motion capture assessments, force plate analysis, and balance plate analysis, digital reporting, and ongoing MovAge and MovScore tracking. These tools are designed to quantify and objectively measure your movement to guide proactive decision-making and promote long-term physical independence.

We operate as a registered DBA (Doing Business As) of GaitLab LLC, a healthcare company organized under the laws of the State of Nevada. Our mission is to bring precision and accountability to an often-overlooked aspect of health: movement.

MovIQ Health combines clinical insight with cutting-edge biomechanics technology to deliver accessible, understandable, and actionable mobility evaluations to the public. Our offerings are provided both in person at designated testing locations and digitally through secure online platforms that give clients access to their reports and progress over time.

As a company operating within the healthcare space, we are deeply committed to the privacy and security of your personal health data and maintain full compliance with HIPAA and other applicable regulations.

2. Information We Collect

To deliver safe, accurate, and personalized mobility services, MovIQ Health collects information that falls into two primary categories: Personal Information and Health & Movement Data. This information is essential to the operation of our services and helps us generate meaningful insights into your mobility and physical health.

a) Personal Information

This refers to data that can be used to identify, contact, or authenticate you as an individual. We collect personal information when you:

  • Book an appointment

  • Create or manage an online account

  • Fill out intake or consent forms

  • Communicate with our staff

  • Make a payment

  • Access your reports via our platform

The personal information we may collect includes:

  • Full name

  • Date of birth (to verify eligibility and match assessments to clinical standards)

  • Contact details such as email address, phone number, and mailing address

  • Emergency contact information (required for in-person assessments)

  • Billing and payment details, including partial payment card information or billing address (when applicable)

This information is used to authenticate your identity, schedule and confirm services, deliver results, and ensure continuity and safety in the care we provide.

b) Health & Movement Data

As part of our core services, we collect a variety of physiological and biomechanical data during your in-person assessments. This information helps us analyze your mobility and functional health.

The health and movement data we may collect includes:

  • Motion capture data, including joint kinematics and spatio-temporal metrics

  • Force plate measurements, including force, power, rate of force development, jump height, time to peak height

  • Balance and postural assessments, including sway analysis and weight shift

  • Assessment notes, observations recorded by MovIQ Health staff during your session

  • MovAge, MovScores, and associated health indicators, calculated from your movement data

  • Historical performance data, if you return for reassessments or ongoing tracking

This information is treated as Protected Health Information (PHI) under HIPAA, stored securely, and used exclusively to provide and improve our services, generate personalized reports, and track changes over time.

3. How We Use Your Information

At MovIQ Health, we collect and use your personal and movement-related information exclusively to deliver, support, and enhance the quality of our services. We do not use your information for advertising, resale, or unrelated commercial purposes.

Your data may be used for the following legitimate and authorized purposes:

a) Generate Personalized Movement Reports

We use your assessment data from motion capture, force plate, and balance plate to generate individualized reports that summarize your mobility status. These reports highlight areas of strength, functional limitations, and risk factors relevant to your movement health.

b) Calculate Your MovAge and MovScores

We use your biomechanical data to calculate a proprietary MovAge and MovScores, standardized metrics designed to quantify your mobility status across multiple domains such as gait, strength, and balance. This score helps benchmark your performance and track changes over time.

c) Track Changes in Your Mobility Over Time

If you return for follow-up assessments or ongoing monitoring, we use historical data to:

  • Compare past and present results

  • Identify trends or early signs of decline

This long-term view helps guide proactive health decisions and informs your personalized care recommendations.

d) Provide Insights and Recommendations

Based on your data, we may offer tailored suggestions related to:

  • Physical activity and mobility maintenance

  • Balance training or fall prevention strategies

  • When to follow up or reassess

  • Referral to a healthcare provider, physical therapist, or other specialist (with your consent)

Our insights are for informational and wellness purposes only and are not a substitute for medical advice or treatment.

e) Communicate Appointment, Account, or Membership Information

We may use your contact information to:

  • Confirm or remind you of upcoming appointments

  • Provide instructions for assessments or report access

  • Notify you of account activity, service changes, or program updates

All communication will be conducted in a respectful and privacy-conscious manner.

f) Comply with Legal and Regulatory Requirements

We are required by law to retain certain data and records, especially health-related data collected during assessments. We use and store your information to:

  • Comply with HIPAA and other applicable healthcare data protection laws

  • Fulfill documentation and audit obligations

  • Respond to lawful requests by public authorities, courts, or regulators when necessary

We do not use your identifiable data for research or external purposes without your explicit written consent.

4. Legal Basis for Data Use (HIPAA + Applicable Laws)

MovIQ Health takes your privacy and data security seriously. As a provider of wellness and health-related services, we operate in compliance with the Health Insurance Portability and Accountability Act of 1996 (HIPAA), as well as all applicable state-level data privacy laws, including those in the State of Nevada where we are based.

HIPAA governs how we collect, use, store, and share Protected Health Information (PHI), which includes any individually identifiable information related to your physical health, healthcare services, or assessment results.

We only collect and use your personal and health-related data based on the following legal grounds:

a) With Your Explicit Consent

In most cases, we collect and process your information only after obtaining your clear, informed, and voluntary consent, typically provided when:

  • You complete our intake or registration forms

  • You sign consent-to-assess documents at your appointment

  • You create an account or agree to our Terms of Use and Privacy Policy

You have the right to withdraw your consent at any time; however, doing so may limit your access to our services.

b) As Required to Deliver Our Services

Certain data is essential for us to:

  • Schedule and conduct assessments

  • Generate your MotionIQ Score

  • Maintain accurate records for progress tracking

  • Communicate your results with you or authorized third parties (only with your permission)

  • Provide secure access to your digital reports

We collect and use only the data that is reasonably necessary to perform these services effectively and safely.

c) As Required by Law

We may also collect, retain, or disclose your information if required to comply with legal obligations, such as:

  • Medical records retention laws, which may mandate keeping your data for a minimum number of years (e.g., 6+ years under HIPAA guidelines)

  • Regulatory audits or investigations by state or federal health agencies

  • Public health or safety requirements, such as reporting certain health risks (if applicable)

  • Law enforcement or court orders, provided they are legally valid and properly issued

In all such cases, we limit disclosure to the minimum amount necessary and ensure it aligns with HIPAA’s “minimum necessary” rule.

Your Assurance

MovIQ Health will never collect, access, or share your sensitive data without a legitimate purpose or your authorization, unless required by law. We follow strict internal access protocols, ensure staff are trained in HIPAA compliance, and regularly review our policies to protect your rights.

5. Data Sharing & Disclosure

At MovIQ Health, your trust is foundational to everything we do. We are committed to maintaining the confidentiality of your personal and health-related information and do not sell, rent, or trade your data to third parties under any circumstances.

However, in limited and controlled situations, we may need to share certain portions of your information with trusted third parties in order to provide services, comply with legal obligations, or support operational integrity. We do so only in ways that are compliant with HIPAA and other applicable data privacy regulations.

We may share your data only in the following situations:

a) With Your Healthcare Providers (With Your Consent)

At your request, or with your express written or verbal consent, we may share your mobility assessment data, reports, or MovIQ Report with:

  • Your primary care physician

  • Physical therapist

  • Specialist healthcare provider

  • Caregiver or legal guardian

This sharing is optional and fully controlled by you. We will never release your information to a medical professional or third party without your permission unless legally required.

b) With Authorized Third-Party Service Providers

To operate our services efficiently and securely, we may share limited data with select vendors who help us:

  • Host and encrypt our digital systems (e.g., HIPAA-compliant cloud servers)

  • Process internal analytics and performance metrics

  • Provide secure appointment scheduling or payment processing

  • Deliver customer support tools or secure user authentication

All third-party vendors that may process or access Protected Health Information (PHI) on our behalf are required to follow HIPAA-compliant protocols and, where applicable, enter into Business Associate Agreements (BAAs) with us. These agreements contractually obligate them to:

  • Keep your data confidential

  • Use it only for the services they provide

  • Maintain appropriate administrative, technical, and physical safeguards

We conduct due diligence to ensure our partners uphold strong data protection standards.

c) As Required by Law or Legal Process

We may be legally obligated to disclose your information in response to:

  • A court order, subpoena, or warrant

  • A lawful request from a regulatory, law enforcement, or public health authority

  • A legal requirement for fraud investigation, compliance reporting, or public safety matters

In such cases, we will limit the disclosure to what is legally required and, if permitted, notify you of the request.

d) Internal Use Within GaitLab LLC (MovIQ Health)

Your data may be accessed by authorized personnel within MovIQ Health (a DBA of GaitLab LLC) for:

  • Service delivery

  • Support and troubleshooting

  • Quality control and internal review

  • Ongoing product improvement

All internal data access is subject to strict role-based permissions and employee HIPAA training.

We will never share your personal information with advertisers, marketers, or data brokers. Your health information remains private, and we are committed to protecting it at every level of our operations.

6. De-Identified and Aggregated Data

In addition to protecting your personally identifiable and health-related information, MovIQ Health may use de-identified and aggregated data, information that has been stripped of all personal identifiers, for a variety of internal and analytical purposes. This data no longer qualifies as Protected Health Information (PHI) under HIPAA and cannot be used to identify you in any way.

De-identified data is created through processes that remove or obscure all personal markers, such as:

  • Name

  • Date of birth

  • Contact information

  • Exact test dates

  • Account identifiers or unique metadata

Once anonymized, your data may be combined with other users’ data to form larger datasets used to enhance our understanding of mobility patterns, improve operational efficiency, and contribute to the broader field of mobility health.

We may use de-identified, aggregated data to:

  • Improve Our Services: We analyze trends in anonymized user outcomes to refine our assessments, scoring algorithms (such as the MotionIQ Score), and reporting structure to better serve all clients.

  • Conduct Internal Research: We use de-identified data to conduct research on population mobility health, balance and fall-risk profiles, and biomechanical behavior across different age groups. This helps us stay evidence-informed and clinically relevant.

  • Analyze Public Health and Functional Trends: Aggregated insights help us monitor mobility health trends, detect shifts in age-related decline, and evaluate functional movement norms across large, non-identifiable datasets.

  • Develop and Publish Educational Content: De-identified case studies, performance benchmarks, and usage trends may be used in publications, white papers, presentations, or academic research, never in a way that could reveal your identity.

  • Support Strategic Decision-Making: Operational decisions (e.g., service enhancements, new features, regional program expansions) are informed by insights drawn from aggregate data, not from individual profiles.

Your Privacy Remains Fully Protected

All de-identification processes follow industry best practices and HIPAA de-identification standards (45 CFR §164.514). Once your data is de-identified:

  • It is no longer considered PHI

  • It is not subject to individual access or deletion rights under HIPAA

  • It may be stored and used indefinitely for permissible operational and research purposes

We never re-identify or attempt to trace de-identified data back to individuals. Should we wish to use your identifiable data for any research, marketing, or publication purposes, we will first obtain your explicit, written consent.

7. Data Security

At MovIQ Health, protecting the privacy, integrity, and security of your personal and health-related information is a top priority. We maintain a comprehensive data security program designed to prevent unauthorized access, misuse, loss, or disclosure of the information you share with us.

We implement industry-standard administrative, technical, and physical safeguards that align with best practices for healthcare organizations and comply with the requirements of the Health Insurance Portability and Accountability Act (HIPAA).

Our data security measures include, but are not limited to:

a) Encrypted Storage and Transfer

  • All personal and health data is stored on encrypted servers using secure cloud infrastructure hosted by HIPAA-compliant providers.

  • Data transmitted between you and our platform—whether via our website, apps, or client portal—is encrypted using SSL/TLS protocols, which help prevent interception or tampering during transmission.

b) Role-Based Access Controls

  • Only authorized personnel with a legitimate need-to-know basis can access your data.

  • We apply role-based permissions to restrict access to sensitive information based on job function (e.g., assessment staff, technical administrators, support).

  • Access to administrative systems is logged, audited, and periodically reviewed to ensure compliance.

c) Secure Login and Authentication Protocols

  • Client accounts and staff portals are protected with secure login credentials and may include multi-factor authentication (MFA) where appropriate.

  • Passwords are stored using modern encryption and hashing techniques; we never store plaintext passwords.

d) Physical Safeguards

  • Our physical testing locations implement measures such as secure devices, locked cabinets, and restricted access to equipment used during in-person assessments.

  • Devices used to collect or store data locally (if any) are password-protected and regularly monitored.

e) Vendor and Third-Party Risk Management

  • All third-party vendors with access to Protected Health Information (PHI) must enter into Business Associate Agreements (BAAs) and demonstrate robust security controls.

  • We review vendor practices to ensure they meet or exceed our data protection standards.

f) Staff Training and Policies

  • All employees and contractors receive training in HIPAA compliance, privacy best practices, and secure data handling.

  • Internal policies govern data access, incident response, and data retention.

Important Notice

While we take all reasonable steps to secure your data, no digital system can be guaranteed 100% secure. Cybersecurity risks such as hacking, phishing, or technical failures can still occur despite best efforts.

If you suspect that your personal or health information has been accessed without authorization or compromised in any way, please contact us immediately at info@moviqhealth.com

We will initiate an investigation and take appropriate steps to mitigate any potential harm in accordance with HIPAA breach notification requirements.

8. Your Rights

As a client of MovIQ Health, you have important rights regarding your personal and health-related information. These rights are designed to give you greater transparency, control, and accountability over how your data is collected, used, and stored.

You may exercise these rights at any time by contacting us at privacy@motionlyhealth.com. We will respond to your request in accordance with applicable laws, including the Health Insurance Portability and Accountability Act (HIPAA) and relevant state regulations.

Your rights include:

a) Right to Access

You have the right to request a copy of the personal and health data we hold about you. This may include:

  • Basic personal information (e.g., name, contact details)

  • Assessment reports and MotionIQ Scores

  • Notes or records from your sessions

Upon verification of your identity, we will provide your records in a readable and portable format within a reasonable time frame, as required by law.

b) Right to Correct Inaccurate Information

If you believe that any of the information we hold about you is incomplete or inaccurate, you have the right to request a correction.
This includes:

  • Contact details

  • Personal identifiers

  • Errors in your assessment record (if applicable)

We will review your request and make corrections where appropriate, or provide a written explanation if we are unable to make the change.

c) Right to Request Deletion

You may request the deletion of your personal or health data in our possession. However, please note:

  • Certain data may need to be retained to comply with legal, regulatory, or contractual obligations, such as healthcare record retention laws (typically 6 years or more under HIPAA).

  • We will inform you of what data can and cannot be deleted, and confirm when your request has been processed.

Deletions apply only to identifiable data. De-identified data may be retained indefinitely.

d) Right to Withdraw Consent

If our processing of your data is based on your consent (e.g., sharing reports with another provider), you have the right to withdraw that consent at any time.
Withdrawal will not affect any use of your data that occurred before the withdrawal was received.

Please note that withdrawing certain types of consent may affect our ability to continue providing services to you.

e) Right to File a Complaint

If you believe that your privacy rights have been violated, you may:

  • Contact us directly at privacy@motionlyhealth.com, and we will promptly investigate the issue.

  • File a complaint with the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR).

We are committed to addressing concerns quickly and in full compliance with the law. You will not be penalized or retaliated against for exercising your rights.

How to Make a Request

To submit a privacy request, please contact us at info@moviqhealth.com

Please include your full name, the email associated with your account, and a clear description of your request. For your protection, we may need to verify your identity before processing certain types of requests.

9. Data Retention

At MovIQ Health, we retain your personal and health-related information only for as long as it is necessary to provide services, meet legal obligations, fulfill our operational requirements, and maintain accurate records of your interactions with our platform.

a) Retention of Personal and Health Data

We retain identifiable data including personal details, health records, assessment reports, and scores for the duration of your active membership, and beyond that period only as required by applicable laws and regulations.

In particular, as a healthcare service provider, we are subject to federal and state record retention requirements, including but not limited to:

  • The Health Insurance Portability and Accountability Act (HIPAA)

  • Nevada state health records laws

  • Professional standards for health documentation

Under these standards, we are generally required to retain medical and health-related records for a minimum of six (6) years from the date of the last interaction or assessment, or longer in certain cases involving minors, legal disputes, or audits.

b) Retention of De-Identified Data

De-identified data (information that has been stripped of all personal identifiers and can no longer be linked to you) may be retained and used indefinitely for:

  • Internal research and development

  • Service improvement and quality assurance

  • Benchmarking and trend analysis

  • Academic or clinical research (without the need for re-identification)

This data is not subject to deletion requests under HIPAA, as it no longer qualifies as Protected Health Information (PHI).

c) Data Deletion and Account Closure

If you request to delete your account or terminate your relationship with Motionly Health, we will:

  • Deactivate your account and restrict access to your personal data

  • Retain the minimum data required to comply with legal and regulatory obligations

  • Confirm any remaining data that can be deleted will be securely erased from our systems

Note: We may retain limited personal information for fraud prevention, dispute resolution, enforcement of our Terms of Use, and security monitoring—only for as long as reasonably necessary.

If you have questions about how long we store your data or would like to request deletion of specific records, please contact at info@moviqhealth.com

10. Children’s Privacy

MovIQ Health is committed to protecting the privacy of all users, including minors. However, our services are intended solely for individuals aged 18 and older. We do not knowingly collect, use, or disclose personal information from children under the age of 18.

a) No Intended Use by Minors

Our mobility assessments, digital tools, and membership services are designed for adult clients and are not targeted to or intended for use by individuals under the age of 18. We do not offer pediatric or adolescent assessment services, and we do not knowingly solicit or accept personal data from individuals in that age group.

b) Parental Consent Requirement

If a parent or legal guardian wishes to request services for a minor in the future (e.g., if MovIQ Health launches child-specific programs), explicit parental or guardian consent would be required in accordance with applicable federal and state privacy laws, including the Children’s Online Privacy Protection Act (COPPA), where applicable.

c) Actions If Minor Data Is Discovered

If we become aware that we have inadvertently collected personal or health-related information from a child under the age of 18 without verified parental consent, we will:

  • Immediately delete the data from our records

  • Disable any associated accounts

  • Take appropriate measures to prevent future collection

If you believe that a child under 18 has provided us with information without proper authorization, please contact us immediately at info@moviqhealth.com

We will act swiftly to investigate and resolve the matter in accordance with our compliance obligations.

11. Changes to This Privacy Policy

We may update or revise this Privacy Policy from time to time to reflect changes in our services, legal requirements, data handling practices, or technological advancements. Any changes will be posted to this page, and the “Effective Date” at the top of the policy will be updated accordingly.

a) Notification of Material Changes

If we make material changes to how we collect, use, share, or protect your personal information, we will provide a clear notice using one or more of the following methods:

  • Sending an email to the address associated with your account

  • Displaying a prominent notification on our website or platform dashboard

  • Including an in-app or portal message at your next login (if applicable)

Material changes may include (but are not limited to):

  • Expansion of data usage purposes

  • Changes in third-party data sharing practices

  • New user rights or opt-out options

  • Updates due to changes in applicable laws such as HIPAA or state privacy regulations

b) Continued Use Constitutes Acceptance

By continuing to use Motionly Health’s services after the updated Privacy Policy becomes effective, you acknowledge and accept the revised terms. If you do not agree with the changes, you may choose to discontinue use of our services and request account deletion or data restriction, where legally applicable.

We encourage you to review this Privacy Policy periodically so you remain informed about how we protect your information.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy, our data practices, or how your personal and health-related information is handled, please reach out to us. We are committed to responding promptly and respectfully to all inquiries related to your privacy and data rights.

You can contact us at:

MovIQ Health
A DBA of GaitLab LLC
9408 Del Webb Blvd, Las Vegas, NV 89134

📧 Email: info@moviqhealth.com
📞 Phone: (702) 268-5090
🌐 Website: www.moviqhealth.com

Whether you need help accessing your data, correcting information, withdrawing consent, or simply understanding how your information is used, our team is here to support you.