Privacy Policy

Last Updated: November 20, 2023

Guardant Health, Inc. and its affiliated entities (“Guardant Health”, “Guardant”, “we”, “us”, or “our”) respects the privacy of those who use our Services.  This Privacy Policy (“Policy”) informs you of our policies regarding the collection, use, and disclosure of Personal Data as well as the rights and choices you have with respect to your Personal Data. Personal Data is any information that relates to you, identifies you personally, or could be used to identify you. 

By using our Services, you agree to the applicable Terms of Service (the “Terms”), and you acknowledge that we shall collect and use your Personal Data in accordance with this Policy. If you do not feel comfortable with any part of this Policy or our Terms, you should not use or access our Services.

We may change this Policy so as to reflect new laws, new services, or for other reasons. When we make a change, we will provide you with notice of such updates as required by applicable law, and will revise the date at the top of this Policy. You are advised to review this Policy periodically for any changes.

TABLE OF CONTENTS

  1. Scope
  2. Personal Data We Collect
  3. How We Collect Personal Data
  4. Why and How We Use Your Personal Data
  5. Legal Bases for Processing
  6. Sharing Your Personal Data
  7. Security
  8. Retention
  9. Your Privacy Rights
  10. Marketing Communications
  11. Children
  12. Cookies and Other Tracking Technologies
  13. International Transfers
  14. Third-Party Links
  15. California Notice at Collection
  16. Contact Us
  1. Scope

If you are a Guardant Health patient located in the U.S., this Policy does not apply to or describe how we collect or use your Protected Health Information (as defined by the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”)), which is covered by our Notice of Privacy Practices   (“HIPAA Notice”).  The HIPAA Notice, not this Privacy Policy explains our privacy practices with respect to your Protected Health Information.  

Except with respect to Protected Health Information covered by the HIPAA Notice, this Policy applies to Personal Data we collect in our consumer-facing operations both from you and from third parties, online and offline, and during any written, electronic, and oral communications, including when you:

  • Interact with our websites located at www.guardanthealth.com and www.guardantgo.com, the Guardant Health patient and physician portals, or any Guardant Health mobile applications or websites that reference this Policy (the “Sites”); 
  • Contact us for support or other inquiries;
  • Register for our events; or
  • Obtain a Guardant Health test or participate in a Guardant Health research study (collectively, the “Services”).
  1. Personal Data We Collect

We collect the following categories of Personal Data: 

  • Identifiers, including your name, postal address, Internet Protocol (IP) address, email address, telephone number, and date of birth.
  • Health Information, including health insurance information and test results and analyses.
  • Financial information, to facilitate payment for the Services
  • Commercial information, including the products and services you purchased or considered and your order history.
  • Characteristics of protected classifications, specifically age (as indicated by your date of birth), race, marital status, medical condition, and your sex or gender.
  • Internet activity information, including IP address, internet service provider, operating system, browser information, device information, browsing history, your interactions with the Services.
  • Audio, electronic, visual, thermal, olfactory, or similar information, specifically audio recordings of your voice, which are collected only when you call us to maintain the integrity of your account, provide effective and timely service, and for improvement of our products.
  • Geolocation data, based on your IP address and/or address. 
  • Inferences about your preferences, characteristics, behavior, and attitudes based on the above.
  • Sensitive personal data, specifically your race, genetic data, and information concerning your health. 
  1. How We Collect Personal Data

We collect your Personal Data in the following ways:

  • When you provide it directly. We collect Personal Data directly from you when:
    • You register for an account to receive information about our testing
    • You contact us via email, fax, or telephone
    • You register for one of our events or mailing lists
    • You provide it to us when we visit with you in person
    • You provide feedback or answer surveys (only if you are a physician or client) 
  • When your physician provides it to us. We collect your Personal Data when your physicians provide it to us in the form of a test requisition report and other healthcare reports in order for us to perform laboratory testing for you.
  • When we perform tests. By performing our tests, we generate a test results report that we provide to the requesting physician and you for treatment purposes. Similarly, we may perform tests on pseudonymized samples at the request of pharmaceutical companies and/or other researchers. Depending on the agreement with the pharmaceutical company and/or researcher, we may be either an independent controller or processor with respect to the results of such tests.
  • When we collect it automatically. When you visit our Sites, we automatically log some basic information like how you got to the site, where you navigated within it, and what features and settings you use. We use this information to improve our Sites and services.
  • When we receive it from other third parties. If you are a physician, we may purchase your information from third party vendors to allow us to market our services to you.
  1. Why We Collect Your Personal Data

We will only use your Personal Data as described in this Policy or as disclosed to you prior to such processing taking place. We use your Personal Data for the following commercial and business purposes:

  1. To maintain your account through our patient and physician portals
  2. To maintain a patient’s medical record per applicable regulations
  3. To obtain payment for our services
  4. To contact physicians to provide educational information about our services
  5. To perform testing services as requested by physicians through our network systems.
  6. To respond to any direct inquiries from you
  7. To respond to inquiries and requests from your doctor, including contacting physicians regarding patient test results and any information that may be missing from a test order
  8. To provide you with customer support
  9. To maintain and improve our Services
  10. To ensure your compliance with our Terms and other agreements
  11. To prevent, investigate, and provide notice of fraud and or unlawful or criminal activity
  12. If you are a physician, to market our services to you
  13. To comply with legal processes and our legal obligations
  14. For research purposes to which you consent
  15. For surveys or feedback purposes
  16. For any other purpose to which you consent

We may also aggregate or deidentify any Personal Data that we collect in connection with our Services, such that the information is no longer personally identifiable or attributable to you. We may use such aggregated or de-identified information for our own legitimate business purposes without restriction.

For individuals who are located in the European Economic Area, the United Kingdom, Switzerland (collectively “EEA Residents’”), Japan, or Singapore at the time their Personal Data is collected, our legal bases for processing your information under: (i) the EU General Data Protection Regulation (“GDPR”); (ii) the UK Data Protection Act 2018 (“UK GDPR”); (iii) the Swiss Federal Act on Data Protection (“Swiss FADP”); (iv) Japan’s Act on the Protection of Personal Information (“APPI”); or (v) the Singapore Personal Data Protection Act (“PDPA”) will depend on the specific context in the which the Personal Data is collected and the purposes for which it is used. When we process your Personal Data, depending on the context, we may rely on a variety of different legal bases to process, including: (i) to perform a contract with you (or to take steps at your request prior to entering into a contract with you); (ii) necessity for our legitimate interests; (iii) to comply with our legal obligations and/or (iv) your consent. Below is a list of how we use your Personal Data, as described above in Section 4, with the corresponding legal bases for processing.

Purpose of ProcessingLegal Bases for Processing
a. To maintain your account through our patient and physician portalsc. To obtain payment for our servicesd. To contact physicians to provide educational information about our servicese. To perform testing services as requested by physicians through our network systems. g. To respond to inquiries and requests from your doctorContract. Based on our contract with you or to take steps at your request prior to entering into a contract. In Singapore, this is a form of consent by contractual necessity.
f. To respond to any direct inquiries from youh. To provide you with customer supporti. To maintain and improve our Servicesj. To ensure your compliance with our Terms and other agreementsk. To prevent, investigate, and provide notice of fraud and or unlawful or criminal activityLegitimate Interests.  Based on our legitimate interests. We rely on our legitimate interests or those of third parties where they are not outweighed by your rights and freedoms. Appropriate Notice (Japan Only). These processing activities, which relate to only non-sensitive personal data, are done pursuant to appropriate notice, as given in this Privacy Policy.
b. To maintain a patient’s medical record per applicable regulationsm. To comply with legal process and our legal obligationsLegal Obligations.  Based on our legal obligations, the public interest, or in your vital interests.
l. If you are a physician, to market our services to youn. For research purposes to which you consento. For surveys and feedback purposesp. For any other purpose to which you consentConsent.  Based on your consent.

If you have questions about or need further information concerning the legal basis on which we collect and use your Personal Data, please contact us using the contact details provided under the Contact Us Section below.

  1. Sharing Your Personal Data

We may share your Personal Data in the following ways:

  • To Facilitate Healthcare Services. We may share your information with your healthcare providers and doctors and your health insurance provider to facilitate your treatment and/or facilitate payment for services you have received.
  • Service Providers. We may occasionally hire third-party service providers to provide limited services on our behalf, such as our billing vendor.  Guardant Health will give these service providers only the Personal Data they require to perform the contracted-for services, and we require such providers to agree to contractual terms to maintain the confidentiality of the information they receive. We may use service providers to: (1) send you customized notifications if you have provided us your email address; (2) analyze trends; (3) administer the Services; (4) improve the design of our Services; and (5) otherwise enhance, monitor, and troubleshoot the Services we provide.
  • Affiliates.  We may share your Personal Data with our affiliates, in which case we will require those affiliates to honor this Privacy Policy. Affiliates include any parent company or other subsidiaries, joint venture partners or other companies that we control or that are under common control with us.
  • Merger, Sale, or Other Asset Transfers. We may share or disclose or otherwise transfer your Personal Data to the Company’s professional advisors, potential transactional partners, or other third-parties in connection with the consideration, negotiation, or completion of a corporate transaction in which we are acquired by or merged with another company or we sell, liquidate, or transfer all or a portion of our assets.
  • As Required By Law, Subpoena or Similar Government Order. We may access, preserve, share, or disclose your Personal Data if we believe doing so is required or appropriate to: (i) comply with all laws or regulations, including any of our tax reporting requirements; (ii) comply with any other law enforcement requests or legal process, such as a court order or subpoena; (iii) respond to your requests; or (iv) protect your, our, or others’ rights, property, or safety. We may be required to disclose your information to (a) taxing authorities as part of our tax reporting requirements, (b) healthcare regulatory agencies; or (c) law enforcement authorities or other governmental agencies or via subpoena.
  • Our Outside Professional Advisors. We may share or disclose your Personal Data with any of our professional advisors such as attorneys or accountants (“Outside Professionals”) to facilitate the professional advice from those Outside Professionals. 
  • With Your Consent. When you provide your consent to share your Personal Data, we will share it in the way(s) you specify, including when you request it be shared with others. For example, when a physician orders a test on your behalf, we share your test results with said physician as they have obtained your consent to order the test. Similarly, where you have consented to the use of your results in a research study, your results may be shared with the researcher for that study.
  • Other Third Parties. If you are a physician, where permitted by applicable law, we may share your Personal Data with third parties in order for those third parties to market to you. 
  1. Security

The security of your Personal Data is important to us, which is why we maintain administrative, technical and physical safeguards designed to protect your information’s security, confidentiality and integrity. These safeguards include, among other things, facility and data access control, password protection, security monitoring tools and protocols and the appointment of a Security Officer, a Privacy Officer and a Data Protection Officer who oversee and manage privacy and security.

The safety and security of your information also depends on you. Where we have given you (or where you have chosen) a password for access to certain parts of our Sites, you are responsible for keeping this password confidential. You should not share your password with anyone. We urge you to be careful about giving out information in public areas of the Sites like message boards. The information you share in public areas may be viewed by any user of the Sites.

Unfortunately, the transmission of information via the internet is not completely secure. Although we do our best to protect your Personal Data, we cannot guarantee the security of your Personal Data transmitted to our Sites. Any transmission of Personal Data is at your own risk. We are not responsible for circumvention of any privacy settings or security measures contained on the Sites.

  1. Retention

We will only retain your Personal Data for as long as necessary to fulfil the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting obligations or to resolve disputes. Note, retention requirements may vary based on the location where you reside.

  1. Your Privacy Rights

Depending on applicable law where you reside or are located, you may be able to assert certain rights identified below with respect to your Personal Data. If any of the rights listed below are not provided to you under the law that governs the processing of your Personal Data, we have absolute discretion in providing you with those rights. 

Your rights in relation to your Personal Data are not absolute. Depending upon the applicable law, access to your rights under the applicable law may be denied: (a) when denial of access is required or authorized by law; (b) when granting access would have a negative impact on another’s privacy; (c) to protect our rights and properties; (d) where the request is frivolous or vexatious, or (e) for other reasons.

 Your rights may include: 

  1. Right to Know/Access. You may have the right to obtain a copy, or a list of categories of the Personal Data that we hold about you, as well as other supplementary information, such as the purposes of processing, and the entities to whom we disclose your Personal Data.
  2. Right to Correct. You may have the right to correct any of your Personal Data in our records and systems. You may request us to rectify, correct or update any of your Personal Data held by us that is inaccurate. In addition to the methods described below, you can correct your Personal Data through the Guardant Health physician and patient portals.
  3. Right to Delete. Under certain circumstance, you may have the right to request that we delete the Personal Data that we hold about you. This right is not absolute, and we may refuse such a request if there are compelling legitimate grounds for keeping your Personal Data or as required by law. In addition, in the event your deletion request is honored, we may retain a record of your deletion request as required under applicable law. 
  4. Right to Portability. You may have the right to receive a copy of the Personal Data we have collected about you in a structured, commonly used and machine-readable format.
  5. Right to Opt-Out of Selling and Sharing for Targeted Advertising. You may have the right to opt-out of: (i) the sale of your Personal Data to a third party; and (ii) the sharing of your Personal Data for cross-contextual behavioral advertising to a third party. 

Physicians. If you are a physician, where permitted by applicable law, we may sell your Personal Data .  You may have the right to opt-out of such sales by contacting us in accordance with the procedure outlined below. 

Patient or Visitor. If you are a patient or visitor, we do not sell your Personal Data, and we will only disclose your Personal Data, specifically your internet activity information, to third parties for cross-contextual targeted behavioral advertising if you direct us to do so by accepting the cookies and other tracking technology on our Sites. If you would like to change your choice, you can do so through the consent tool on the particular Site. Depending on the Site, this can be done by clicking: “Manage consent” or clicking the cookie icon on the bottom left of the page. Note, in no circumstances will we “sell” or “share” any of your Protected Health Information.

  1. Right to Limit Use and Disclosure of Sensitive Personal Data. If you are a California resident, to the extent your Sensitive Personal Data, as that terms is defined under California privacy law, is used to infer characteristic about you to create a profile, you have the right to object to our processing of your Sensitive Personal Data. We do not process any Sensitive Personal Data to infer characteristics about you without your consent.
  2. Right to Opt-Out of Automated Decision-making or Profiling. You may have the right not to be subject to a decision which significantly impacts your rights that is based solely on automated processing (where a decision is taken about you using an electronic system without human involvement). No decision will be made by us about you solely on the basis of automated decision making which has a significant impact on you.
  3. Right Against Discrimination. You may have the right not to be discriminated against for exercising any of the rights described in this section. We will not discriminate against you for exercising your rights.
  4. Right to Appeal.  In certain jurisdictions, you may have the right to appeal if we refuse to take action on your rights request. Instructions on how to appeal will be provided to you upon such a denial, but in any event, such instructions will be substantially similar to those provided below for submitting requests.
  5. Shine the Light. If you are a California resident, you have the right to ask us for a notice describing what, if any, Personal Data we share with third parties or corporate affiliates for those third parties’ or corporate affiliates’ direct marketing purposes. That notice will identify the categories of Personal Data shared with third parties and used for direct marketing purposes and the name and address of the third parties that received such Personal Data.
  6. Right to Object. You may have the right to object to processing of your Personal Data for direct marketing purposes or if we are processing your Personal Data on the basis of our legitimate interest.  You can stop receiving promotional emails by following the unsubscribe instructions in emails that you receive, or by contacting us and requesting to object to the processing of your Personal Data for direct marketing. Please note that “unsubscribe” requests may not take effect immediately and may take a reasonable amount of time to receive, process and apply, during which time your information shall remain subject to this Privacy Policy. Additionally, you should be aware that any information provided to third-parties prior to your election to unsubscribe will not be retrieved or rescinded, unless required by applicable law.
  7. Right to Restrict. In some jurisdictions, applicable law may give you the right to restrict or object to us processing or transferring your Personal Data under certain circumstances. We may continue to process your Personal Data if it is necessary for the defense of legal claims, or for any other exceptions permitted by applicable law.
  8. Right to Withdraw Consent.  In certain jurisdictions, to the extent the processing of your Personal Data is based on your consent, you may withdraw your consent at any time. Your withdrawal will not affect the lawfulness of our processing based on consent before your withdrawal.
  9. Right to Lodge a Complaint. You may have the right to lodge a complaint with your local data protection authority about our processing of your Personal Data. Contact details for data protection authorities in the European Economic Area are available here, and contact details for the United Kingdom’s ICO are available here.
  10. Right to Cease. You may have the right to request the cessation of processing if your Personal Data is business used for a purpose that was not originally stated or if your Personal Data was acquired by fraudulent or other unlawful means. You may also have the right to cease processing and/or transferring of your Personal Data if: (i) we no longer need to use your Personal Data; (ii) a data breach has occurred; or (iii) there is a likelihood of infringement of your rights or lawful interests due to our handling of your information.
  11. Right to Records of Transfers. You may have a right to access a record of transfers of your Personal Data that was transferred to third parties.

To determine which rights you have, please refer to the table below that references the rights as described above.  If your state or country is not listed, you may contact us for information about whether the law in your jurisdiction provides you with privacy rights. Note, your jurisdiction may be omitted because: (i) it does not have a privacy law granting you such rights; or (ii) we may not be subject to the law in your jurisdiction.

Location Applicable Rights
European Economic Area, United Kingdom, or Switzerland (if you are located in these jurisdictions at the time your Personal Data is collected)(a) Right to Know/Access; (b) Right to Correct; (c) Right to Delete; (d) Right to Portability; (g) Right to Opt-Out of Automated Decision-making or Profiling; (h) Right Against Discrimination; (k) Right to Object; (l) Right to Restrict; (m) Right to Withdraw Consent; and (n) Right to Lodge a Complaint.
California (if you are a resident)(a) Right to Know/Access; (b) Right to Correct; (c) Right to Delete; (d) Right to Portability; (e) Right to Opt-Out of Selling and Sharing for Targeted Advertising; (f) Right to Limit Use and Disclosure of Sensitive Personal Data; (g) Right to Opt-Out of Automated Decision-making or Profiling (upon issuance of regulations by the California Privacy Protection Agency); (h) Right Against Discrimination; and (j) Shine the Light.
Japan (if you are a located in Japan at the time your Personal Data is collected)(a) Right to Know/Access; (b) Right to Correct; (c) Right to Delete; (d) Right to Portability; (o) Right to Cease; and (p) Right to Records of Transfers.
Singapore (if you are located in Singapore at the time your Personal Data is collected)(a) Right to Know/Access; (b) Right to Correct; (d) Right to Portability; and (m) Right to Withdraw Consent.

How to Exercise Your Rights.  If the applicable law provides you with these privacy rights, you may seek to exercise your rights by contacting us by phone, email, or mail at the appropriate location as indicated in the Contact Us Section below.

Before fulfilling your request, we are required by law to have you verify the Personal Data we already have on file to confirm your identity. If we cannot verify your identity based on the information we have on file, we may request additional information from you, which we will only use to verify your identity, and for security or fraud-prevention purposes. 

In certain jurisdictions, you may be able to use an authorized agent to submit a rights request on your behalf.  If the applicable law permits you to use an authorized agent to submit requests on your behalf, we will require you to directly verify your identity with us, or have you directly confirm with us that the authorized agent has been authorized to act on your behalf.

  1. Marketing Communications

You may choose to provide us with your email address to allow us to send free newsletters and other promotional materials. You can stop receiving promotional emails by following the unsubscribe instructions in emails that you receive or contacting us directly to opt-out of promotional emails. If you decide not to receive promotional emails, we may still send you service-related communications. 

For users in the EEA Residents, to the extent we can rely on legitimate interest under the applicable law, we will only send you marketing communications about our Services that are similar to those which were the subject of a previous sale or negotiations of a sale to you.  Otherwise, we will contact you by electronic means for marketing purposes only if you have consented to such communication. Please note that “unsubscribe” requests may not take effect immediately and may take a reasonable amount of time to receive, process and apply, during which time your information shall remain subject to this Policy. Additionally, you should be aware that any information provided to third-parties prior to your election to unsubscribe will not be retrieved or rescinded, unless required by applicable law.

  1. Children

Guardant Health’s Sites are directed toward adults. On the Sites, we do not knowingly collect any Personal Data from children under the age of 16. However, we may collect Personal Data of children under the age of 16 if, with the consent of their parent, a physician orders a Guardant Health test for a child under the age of 16. In such cases, we may provide parents access to our patient portal on the Sites to access their children’s test results and receive other information from us. Guardant Health does not sell or share the Personal Data of children under the age of 16.

  1. Cookies and Other Tracking Technologies

We use cookies and other similar tracking technologies to collect additional Personal Data as you interact with the Sites and to personalize your experience. Tracking technologies we may use include web beacons, tags, and scripts. For more information, please see our Cookie Policy.

  1. International Transfers

Your Personal Data may be transferred to, and maintained on, computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction. If you are located outside United States and choose to provide information to us, please note that we transfer the data, including Personal Data, to United States and process it there.

We will take all the steps reasonably necessary to ensure that your Personal Data is treated securely and in accordance with this Privacy Policy and no transfer of your Personal Data will take place to an organization or a country unless there are appropriate safeguards in place as required under the applicable data protection laws, and ensuring the security of your Personal Data maintained. If you do not want your information transferred to or processed or maintained outside of the country or jurisdiction where you are located, you should not use the Sites or Services.

To the extent your Personal Data is subject to the GDPR, UK GDPR, or the Swiss FADP, please note that when we transfer your Personal Data to our service providers or other third parties, we do so subject to appropriate safeguards as permitted under those data protection laws, including:  (i) through the use of standard contractual clauses approved by an appropriate regulatory authority, such as the European Commission or the U.K. Information Commissioner’s Office; (ii) an Article 49 derogation in specific situations; or (iii) any other compliant transfer mechanism.  We may also rely on an adequacy decision of the appropriate regulatory authority confirming an adequate level of data protection in the jurisdiction of the party receiving the information. 

Please note that our Sites may contain links to third-party websites, such as delivery services and social media pages. These links are intended for your convenience only. These third-party websites and services are not related to Guardant Health and may have separate privacy policies and data collection practices. We have no responsibility for the third-party websites or their privacy practices and encourage you to read the privacy policies of all websites you visit.

  1. California Notice at Collection

If you are a California resident, then this Notice at Collection applies to you in accordance with requirements under the California Consumer Privacy Act (“CCPA”). Note, as a covered entity subject to HIPAA, we process your Protect Health Information in accordance with our HIPAA Notice, and such information is exempt from CCPA.

Categories of Personal Data We Collect About You

  • Identifiers, including your name, postal address, Internet Protocol (IP) address, email address, telephone number, and date of birth.
  • Health Information, including health insurance information and test results and analyses.
  • Financial information, to facilitate payment for the Services
  • Commercial information, including the products and services you purchased or considered and your order history.
  • Characteristics of protected classifications, specifically age (as indicated by your date of birth), race, marital status, medical condition, and your sex or gender.
  • Internet activity information, including IP address, internet service provider, operating system, browser information, device information, browsing history, your interactions with the Services.
  • Audio, electronic, visual, thermal, olfactory, or similar information, specifically audio recordings of your voice, which are collected only when you call us to maintain the integrity of your account, provide effective and timely service, and for improvement of our products.
  • Geolocation data, based on your IP address and/or address. 
  • Inferences about your preferences, characteristics, behavior, and attitudes based on the above.
  • Sensitive personal data, specifically your race, genetic data, and information concerning your health. 

Purposes for Collection (for more information, see the “Why and How We Use Your Personal Data” section of this Policy:

  • To maintain your account through our patient and physician portals
  • To maintain a patient’s medical record per applicable regulations
  • To obtain payment for our services
  • To contact physicians to provide educational information about our services
  • To perform testing services as requested by physicians through our network systems
  • To respond to any direct inquiries from you
  • To respond to inquiries and requests from your doctor, including contacting physicians regarding patient test results and any information that may be missing from a test order
  • To provide you with customer support
  • To maintain and improve our Services
  • To ensure your compliance with our Terms and other agreements
  • To prevent, investigate, and provide notice of fraud and or unlawful or criminal activity
  • If you are a physician, to market our services to you
  • To comply with legal processes and our legal obligations
  • For research purposes to which you consent
  • For surveys or feedback purposes

Retention: We will only retain your Personal Data for as long as necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting obligations or to resolve disputes. 

Selling/Sharing Personal Data: If you are a physician, we may sell your Personal Data, which may include identifiers and commercial information. When you are asked to provide consent, you will be informed of the categories of Personal Data that will be sold. To change your consent preference, please contact us via phone, email, or mail at the locations provided in the “Contact Us” section below or via the form provided here. 

If you are a patient or visitor to our Sites or Services, we do not sell your Personal Data, and we will only disclose your Personal Data, specifically your internet activity information, to third parties for cross-contextual targeted behavioral advertising if you direct us to do so by accepting the cookies and other tracking technology on our Sites. If you are a patient or visitor to our would like to change your choice, you can do so by clicking here. Note, in no circumstances will we “sell” or “share” any of your Protected Health Information

Click here to read our full Privacy Policy.

  1. Contact Us

If you have questions or concerns regarding this Privacy Policy, want to submit a rights request, or if you have a complaint, please contact us by: (i) sending an email to one of the addresses below; or (ii) calling us at the number below. Please include your contact information and a detailed description of your request or privacy concern.

To contact our US Privacy Officer, please email:  privacy@guardanthealth.com.You may also write to us at Guardant Health, Data Protection Officer, 505 Penobscot Drive, Redwood City, CA, USA 94063, or contact us at (833) 442-3001.  

For our EEA/UK/Swiss Data Protection Officer, please email:  dpo@guardanthealth.com. Additionally, Guardant has appointed DataRep as its Data Protection Representative in the  EEA and in the UK so that you can contact them directly in your home country. If you want to raise a question to Guardant Health, Inc., or otherwise exercise your rights in respect of your Personal Data, you may do so by:

For the EEA:

For the UK:

  • Same instructions as above for the EU, or
  • Sending a letter by mail to  DataRep, BPM 335368, 372 Old Street, EC1V 9AU, London, United Kingdom.

Your Privacy Choices