If Healthy.io becomes aware of any unlawful access to Customer/Partner Data stored by Healthy.io that results in loss, disclosure, or alteration of Customer/Partner Data (each a 'Security Incident'), Healthy.io will promptly:
Notify Customer/Partner of the incident.
Investigate the Security Incident and provide the Customer/Partner with detailed information about the incident.
Take reasonable steps to mitigate the effects and minimize any damage resulting from the incident.
Healthy.io will deliver Notification(s) of Security Incidents to one or more of the Customer/Partner’s administrators by any means it selects, including via email, all in accordance with our specific contractual or lawful obligations. The Customer/Partner’s sole responsibility is to ensure that their administrators maintain accurate contact information.
Healthy.io’s obligation to report or respond to a Security Incident under this section is not an acknowledgment by Healthy.io of any fault or liability regarding the Security Incident.
Customers must notify Healthy.io promptly of any possible misuse of its accounts or authentication credentials or any security incident related to Healthy.io Services.