HIMSS Privacy Policy

Effective date: July 28, 2025

Introduction

Healthcare Information and Management Systems Society, Inc. and its affiliated entities (collectively, “HIMSS”) is a global advisor, thought leader and member-based society committed to reforming the global health ecosystem through the power of information and technology. When we mention "HIMSS," "we," "us," or "our" in this Policy, we are referring to the relevant company in the HIMSS Group responsible for processing your data. HIMSS is ultimately the data controller or a joint controller along with another company of the HIMSS Group.

Individuals use our platform to connect, share resources and information pertaining to their areas of expertise, and showcase their professional growth. This Privacy Policy (the “Policy”) explains how we collect, use and protect personal data; it applies to registered users and visitors to our site.

HIMSS takes your privacy seriously. This Policy applies to HIMSS-owned websites, HIMSS-branded mobile applications, and all communications and services offered by HIMSS or in conjunction with HIMSS or its services (collectively, the “Services.”)

To best explain your rights and our obligations under this Policy, we have included more information about your rights and our obligations below, along with definitions for key terms that we use throughout the Policy. If you have any questions about this Policy, you can contact us at dpo@himss.org.

International Coverage and Variation

HIMSS operates in the U.S. and globally and many countries have unique data protection laws. This Policy applies to all HIMSS businesses around the world except to the extent country-specific requirements supplement this Policy.

Under certain U.S. state privacy laws, certain sharing of information for advertising purposes may be considered a “sale” of personal data. If you attend our partnered events or download partner content, personal data including your name, email, and phone number may be “sold” to our partners for their own use. Please see more information under “U.S. Privacy Rights.”

Services

This Policy applies to the Services, including, without limitation, off-site Services, such as our ad services, websites, newsletters, webinars, events and content syndication. Additional disclosures required by law may be found in separate privacy disclosures.

Privacy Policy Change

HIMSS reserves the right to modify this Policy and will notify you of any changes and provide you with the ability to opt out or close your account if you object to any changes.

You acknowledge that your continued use of our Services after we notify you of changes to this Policy means that the collection, use and sharing of your personal data is subject to the updated Policy as of its effective date.

Data We Collect

In order to offer you Services, we have to collect certain information about you. That information includes:

Registration Information

To create an account with HIMSS, you will need to provide certain personal data. That information may include some or all of this information: Your name, city, state, country, email address, and/or site password. We may also require verification of your identity through a HIMSS associated identification number or through the provision of a personal link sent to your email address. To register for some Services (e.g., membership, events), we may also ask for payment information. This information is subject to our privacy and security protocol under this Policy. We will never charge you for Services that you do not request.

In addition to the required information, we may ask for additional optional information. Such optional information may include your profession, photo, headline, professional goals, topics of interest, and more. Whether you provide this information or not is entirely up to you, but by providing this information, you allow us to provide you with a better and more tailored experience.

Sponsored Content

When you download sponsored content or attend certain events, we may collect personal data including your name and contact information, order and payment information, online account username, and information about your browsing habits. We collect this information to ensure that our content is better tailored to your interests.

Webinars

When you register for a HIMSS Webinar, we may ask for attendance records, course completion information and metrics related to your access. We do this to ensure that our offerings are engaging, helpful and so partners are aware of opportunities to host additional webinars, and more.

Events

HIMSS hosts several online and in-person events. When you sign up for our online events, we may collect information including but not limited to username and password, first name, middle initial, last name, user's company/organization, title/professional degree or designation, photo, physical address, phone number, email, age bracket, gender, and disability status.

We may also collect demographic information, including but not limited to, professional title, worksite, length of time in the field, purchasing authority, previous conference attendance, name of the hotel (if attending an in-person/live event), and/or discount code.

Newsletters

If you subscribe to HIMSS's Newsletters, we add your name and email address to HIMSS's mailing list, which is managed by Marketo. Please note that the Marketo Privacy Policy governs Marketo’s practices. Each individual newsletter you receive contains a quick and easy unsubscribe link. When you opt out from receiving those emails, HIMSS and Marketo, which manages HIMSS's Newsletters, may retain a record of your past receipt. If you want HIMSS to delete these historical records, contact us directly at dpo@himss.org.

When users contact HIMSS via phone number or email portal, we may collect personal data included but not limited to first and last name, phone number, time, date, and email address. We will also record the reason for the call or email.

Profile Information

By using HIMSS's Services, you have the opportunity to connect with colleagues, share information about professional development opportunities, maintain professional credentials, enroll in course certifications, register for events and conferences, and more. HIMSS Members can choose to share information such as their photo, headline, current role and workplace, experience level, personal websites, certifications, professional goals and affiliations, and more. Whether or not to fill out certain sections of your profile is up to you, however the more details you provide, the more likely it is that opportunities for collaboration, professional development, and relevant information will find their way to you.

Cookie Notice

The technologies we use for automatic data collection may include cookies, local storage cookies, web beacons, pixel tracking, GIF, IP address, and other technologies. Each of these is discussed below.

Browser Cookies

Browser cookies are small files placed on the hard drive of your computer or mobile device. They may contain certain data, including, but not limited to the name of the server that has placed it there, an identifier in the form of a unique number, and an expiration date (some cookies only). Browser cookies are managed by the web browser (Chrome, Microsoft Edge, Safari, etc.) on your computer or mobile device. Different types of cookies which have different purposes are used in the Services.

Essential Cookies

Essential cookies are essential to allow you to browse the Services and use its functions. Without them, services such as shopping baskets and electronic invoicing would not be able to work.

Performance Cookies

Performance cookies collect information on the use of the Services, such as which pages are consulted most often. This information enables us to optimize the Services and simplify browsing. Performance cookies also enable our affiliates and partners to find out whether you have accessed one of the Services pages from their site and whether your visit has led to the use or purchase of a Product or Service from the Services, including the references for the Product or Service purchased or used. These cookies do not collect any information which could be used to identify you. All the information collected is aggregated, and therefore anonymous.

Functionality Cookies

Functionality cookies enable the Services to remember the choices you have made when browsing. For example, we can store your general geographic area (but not precise geolocation) in a cookie so that the Services corresponding to your geographic area is shown. We can also remember your preferences, such as the text size, font, and other customizable aspects of the Services. Functional cookies also may be able to keep track of the products, pages, or videos consulted to avoid repetition. The information collected by these cookies cannot be used to identify you and cannot monitor your browsing activity on sites which do not belong to us.

Local Storage Cookies

Certain features of the Services may use local stored objects to collect and store information about your preferences and navigation to, from and on the Services. Local storage cookies are not managed by the same browser settings as are used for browser cookies.

Cookie Choices

You can always set your browser not to accept cookies; however, you should be aware that in some cases, some of our Services may not function as a result.

When leaving or coming to our sites, HIMSS may also collect information concerning both the site you came from and the one you go to, as well as the time of your visit. We collect this information in accordance with this Policy, and endeavor to utilize privacy preserving technologies such as Internet Protocol ("IP") masking, which allows us to only collect the information we need, in anonymous or aggregate form, about your site visit.

When using our Services from a mobile device, your device will send us data about your location based on your mobile device's settings. We endeavor to cooperate with "Do Not Track" ("DNT") signals. When you choose to turn on the DNT setting in your browser, your browser sends a signal to websites, analytics companies, ad networks, plug in providers, and other web services you encounter while browsing to stop tracking your activity. DNT signals are not universal, and in special circumstances, HIMSS reserves the right to refrain from complying with signals, such as when the signal is indecipherable or incompatible with our processes. Similar to our note about cookies, if you choose to turn on your DNT setting within your browser, some of our Services may not function as a result; furthermore, we may not be able to send you some of the advertisements or sponsored opportunities you may value.

Unless relevant law provides otherwise, we also collect (or rely on others who collect) information about your device when you have not engaged with our Services (e.g., ad ID, IP address, operating system and browser information) so we can provide you with relevant ads and better understand their effectiveness. You can always opt-out from our use of data from cookies and similar technologies that track your behavior on the sites of others for ad targeting and other ad-related purposes, and you can do so by visiting your Settings.

Pixel Tracking

In addition to using Cookies, the Services may employ “pixel tracking”, a common process which may be used in connection with advertisements on other sites. Pixel tracking involves the use of pixel tags that are not visible to the user and consist of a few lines of computer code. Pixel tracking measures the effectiveness of advertisements and compiles aggregate and specific usage statistics. A “pixel tag” is an invisible tag placed on certain pages of websites that is used to track an individual user’s activity. We may access these pixel tags to identify activity and interests that may allow us to better match our goods, services, and other offers with your interests and needs. For example, if you visit our Services from an advertisement on another website, the pixel tag will allow the advertiser to track that its advertisement brought you to the Services. If you visit our Services, and we link you to another website, we may also be able to determine that you were sent to and/or transacted with a third-party website. This data is collected for use in our marketing and research.

Meta Pixel

We incorporate “pixels” provided by Meta Platforms, Inc. on our Services. This enables us to track user behavior after a user clicks on a Facebook ad and is redirected to our website. By doing so, we can assess the effectiveness of Facebook ads for statistical and market research purposes and sometimes retarget certain users. Please note that the data collected through this process remains anonymous to us, meaning we do not have access to personal data of individual users. However, Facebook stores and processes this data. Therefore, we are providing you with this information based on our current understanding. It is important to be aware that Facebook may associate this information with your Facebook account and utilize it for its own promotional activities, in accordance with Facebook’s Data Usage Policy available here.

Other Pixels

We also use additional pixels, including:

  • Microsoft Ads Pixel
  • TikTok Pixel
  • X (formerly Twitter) Pixel
  • ZoomInfo
  • PulsePoint Pixel

GIF

We may use tiny images known as clear GIFs to track behavior of users, including statistics on who opens our emails.

IP Address

Our servers automatically record certain log file information reported from your browser when you access the Services. These server logs may include information such as which pages of the Service you visited, your internet protocol (“IP”) address, browser type, and other information on how you interact with the Services. These log files are generally deleted periodically.

Tags

We may use third party tags on our Services for purposes of improving our visitors experiences and tracking website traffic, including:

  • Siteimprove tag
  • Marketo Munchkin tag
  • Leverage Lab tag
  • LinkedIn Insights tag

Google Tools

  • Google Analytics
    We use, and/or some of our third-party Service Providers may use, Google Analytics or other analytics services to help us understand the use of the Services. Google Analytics is a web analysis service provided by Google. Google utilizes data it collects to track and examine the use of the Services to prepare reports on its activities and share them with other Google services. Google may use the data collected to contextualize and personalize the ads of its own advertising network. The personal data collected and processed may include cookies, usage data, and other internet information.
  • Google AdSense Advertising
    We use Google AdSense Advertising (or other search engine or display network advertising) on our Services. Google’s advertising requirements and principles are available here. They are put in place to provide a positive experience for users.
  • Google Tag Manager
    We use Google Tag Manager to gain insights from activities such as conversion events, file downloads, and page scroll depth.

Partners and Related Offering Information

HIMSS shares personal data with partner organizations, sponsors, vendors, third-party service providers and agents who work on our behalf or closely with us to offer content such as courses, training opportunities, webinars, advertisements, conferences, and career­ specific newsletters. We may tailor these opportunities to the specific information you have provided to us, as well as information HIMSS has gathered based on your previous interactions with our Services.

In certain instances, your employer or another organization may provide you with access to HIMSS Services. In those cases, those entities will only receive aggregate information, and not personal data about your engagement with our Services. For example, we may share that a majority of employees registered with HIMSS have fulfilled a certain certification course; however, we will not provide employers with information about which of their employees fulfilled a particular course or which employees are open to recruitment opportunities. HIMSS reserves the right to alert your employer or other organization to your having been banned from HIMSS Services. These instances will occur only following a breach of our Terms of Service or community standards (i.e., egregious harassment of another member, repeated instances of fraud, etc.).

How We Use Your Data

By choosing to provide HIMSS with your personal data, we can connect you with colleagues and employers, find opportunities and share resources, and share news about conferences and trainings and more. Without data such as your name, email address, and password, HIMSS would be unable to provide our Services, including the ability to register you for events, verify your credentials, and more.

How we use your data depends on the HIMSS Services you use, how you choose to use or engage with those Services, and the choices you make upon registering and within your user-specific settings.

Personalizing Your Experience

HIMSS may use your data to personalize your experience, including offering you specific opportunities and bettering HIMSS's automated systems and inferences, so that our Services can be more relevant and useful to you.

HIMSS offers personalized experiences through tailored career guidance, specific course offerings, and by suggesting individuals who you may know. HIMSS and its vendors, partners or publishers may also tailor advertisements to you.

Marketing

HIMSS uses data and content for invitations, communications and promoting our Services. HIMSS shares your personal data with sponsors for marketing purposes, unless you opt out. HIMSS will add your personal data to mailing lists, where you might receive promotional materials such as newsletters, educational materials, information on other HIMSS activities, services, and/or partner solicitations for events or services.

HIMSS offers opportunities to speak and participate in events. We reserve the right to communicate those offers directly to you. The choice over whether to register for an event or serve as a speaker is entirely up to you. If you do decide to speak at a HIMSS-related event, including events such as the HIMSS Global Health Conference, we may request additional data from you, such as a new headshot, preferred title, and more. The collection and use of this information will be within the context of the particular opportunity for which you have registered, and we reserve the right to make that information public for marketing and similar purposes.

HIMSS reserves the right to show you sponsored content, which may or may not look like non-sponsored content, although we will alert you to the nature of the content by adding a tag (such as "sponsored content" or "advertisement"). If you choose to comment, share or similarly engage with sponsored content, your action may be viewable by your connections on your feed as well as by the sponsor. The choice over whether to engage with sponsored content is yours.

HIMSS's advertising practices align with industry best practices for internet-based advertising. We provide you with the ability to opt out of tailored or targeted advertising; however, by opting out of such advertising through your settings, you are not opting out of advertising altogether. You will continue to receive advertisements; however, those advertisements may not be tailored to your specific interests. If you would like, you can choose to opt-out of specific uses of certain categories of personal data while allowing advertising uses of other categories.

HIMSS may generate insights based on information that does not identify you or is not personal to you. For example, HIMSS may monitor usage patterns across our Services in order to make platform improvements or monitor our content in order to ensure that the tools and services we provide are of interest to you (e.g., how often users watch the videos we offer or click sponsored content.) In such cases, we do not use this data in a way that would identify you. However, if you view or click on an ad, either on or off of our Services, the ad provider may get a signal that someone visited a page which displayed the ad, and they may, through the use of their own mechanisms such as cookies, determine that the user is you. In such instances, we endeavor to ensure that the advertising services that operate on HIMSS's platforms comply with this Policy and, if the advertiser has their own policy, we encourage you to consult that policy as well.

Pursuant to this Policy, HIMSS may contract with Google Analytics (or other such services) to utilize anonymous data (such as: ad serving domains, browser type, demographics, language settings, page views, and the time/date a site has been visited), and pseudonymous data (IP address).

Other Instances (Monitoring for Fraud, Complying with Lawful Requests for Data, and More)

In certain circumstances, we may be required by law to provide information about you and your engagement with HIMSS. We will never turn over your data to the government or to law enforcement unless we are required by subpoena, warrant or other legal process or legal order.

In those cases, we will turn over your personal data only when we have a good faith belief that we are required by law to do so and that the disclosure is narrowly tailored and reasonably necessary to (1) investigate or prevent suspected or actual illegal activity; (2) enforce our agreements with you; (3) defend ourselves against legal claims or allegations; (4) protect the security of our Services (such as preventing a similar fraud across different departments); and (5) to exercise or protect the rights and safety of HIMSS, our Members, personnel or others. We attempt to notify users about legal requests for their personal data when appropriate and permitted, unless prohibited by law or court order or when the request is an emergency. We may dispute such requests that we believe, in our discretion, are overbroad, vague or lack proper authority, but we do not promise to challenge every demand.

Finally, we may be required to share personal data for archival purposes to maintain HIMSS, or third-parties' records (for example, maintaining a list of individuals registered for an event, or those who have achieved an expert-level certification for verification purposes).

We may disclose your personal data to a potential or actual buyer or acquirer of assets or equity of our company or other successor for the purpose of considering or undergoing a merger, divestiture, restructuring, reorganization, dissolution, change in control, or sale or transfer of some or all of our assets whether as a going concern or as part of bankruptcy, liquidation or other court proceeding, in which personal data held by us is among the assets transferred.

Our Obligations and Your Choices

Based on the applicable laws of your country and state, under this Policy, you maintain certain rights.

For example, in some regions, such as the European Economic Area, you have rights under the EU General Data Protection Regulation (the "GDPR") which allow you greater access to and control over your personal data. These rights include the right to access and port your data, delete your data, change or correct your data, as well as the right to object to or limit the ways in which your data is used.

Depending on your state of residence within the United States, your privacy rights and our obligations may differ. For example, residents of California, under the California Consumer Privacy Act (the "CCPA") have the right to know which categories of data HIMSS holds about them, as well as the categories of third-parties to which that data is sold or shared. Furthermore, California residents are able to opt-out of the disclosure of their sensitive personal data upon registration and can exercise that right anytime throughout their engagement with HIMSS Services by accessing their settings. Californians may also designate a representative to act on their consumer rights, although HIMSS retains the right to verify that the representative is acting under your direction. Residents of Nevada too, have heightened privacy rights over their personal data when used in combination with another identifier (like a financial account number). Rest assured that, regardless of your state of residence, HIMSS upholds our obligation to protect your personal data to the fullest extent of applicable law.

We aim to fulfill every request from you, unless those requests are frivolous or would be impractical to address, jeopardize the rights of others, or if we are not required to by law. However, in such circumstances, we will still respond to notify you of such a decision. In some cases, we may also need you to provide us with additional information, which may include personal data, in order to verify your identity. HIMSS will never deny you the use of our Services or provide you with a different level or quality of Services for exercising any of your rights.

US Privacy Rights

Certain states in the U.S. (e.g. Colorado, Delaware, Maryland, and New Jersey), may provide (now or in the future) their state residents with rights related to their personal data. Although some of these rights apply generally, certain rights will only apply to limited individuals or circumstances. To the extent that these laws apply, you may exercise the following rights:

Right to Know and Access Information

Note that much of the information you are entitled to know or access is disclosed in this Privacy Policy. With this said, you have the right to know about our information practices. You also have the right to access the categories of data we collect, with whom we share or sell that information, and, in some cases, what specific personal data we associate with you or your account.

Right to Data Portability

If you request a copy of your specific information, then we will provide it in an easily accessible format.

Right to Deletion

You may request that we delete the information we have collected about you. Depending on the applicable law, in some cases we are required or permitted to retain your information, even if you validly request that we delete or erase it. Upon receipt of a verifiable request to delete, HIMSS will delete personal data from our records and notify our service providers to delete the same personal data from their records. Please note, HIMSS may delete some information and de-identify some information. In cases where HIMSS de-identifies information, HIMSS implements technical safeguards and business processes as outlined in “Security of Information”. HIMSS may not be able to comply with a deletion request if it is necessary for HIMSS to keep information in order to, among other things, provide goods or services requested, maintain an ongoing business relationship, comply with legal obligations, protect against fraudulent or illegal activity, or perform other necessary activities as permitted under applicable law.

Right to Correct Information

You may request we correct or rectify inaccurate information we have collected about you.

Right to Opt out of Targeting Advertising, Sales, or Profiling

You may opt out of our use of your personal data for targeted advertising, sales, or profiling in furtherance of decisions that produce legal or similarly significant effects. At this time, we do not engage in profiling. HIMSS will attempt to provide the requested information or confirm completion of a request to delete personal data within the time period required by law. HIMSS will notify you within that time period if we will need additional time to process your request.

We do not charge a fee to process or respond to your request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.

If we deny your rights request, you may have the right to request an appeal of our decision. To initiate an appeal, follow the instructions provided in the communication denying your request, or contact us at the contact information provided in this Privacy Policy.

EEA Privacy

Depending on your country of residence, you have the following rights in relation to the personal data we hold about you:

Your right of access

If you ask us, we will confirm whether we are processing your personal data and, if necessary, provide you with a copy of that personal data (along with certain other details). If you require additional copies, we may charge a reasonable fee.

Your right to correction (rectification)

If the personal data we hold about you is inaccurate or incomplete, you are entitled to request to have it corrected. If you are entitled to have information corrected and if we have shared your personal data with others, we will let them know about the rectification where possible. If you ask us, we will also tell you, where possible and lawful to do so, with whom we have shared your personal data so that you can contact them directly.

Your right to erasure

You can ask us to delete or remove your personal data in some circumstances, such as where we no longer need it or if you withdraw your consent (where applicable). If you are entitled to erasure and if we have shared your personal data with others, we will let them know about the erasure where possible. If you ask us, we will also tell you, where it is possible and lawful for us to do so, with whom we have shared your personal data with so that you can contact them directly.

Your right to restrict processing

You can ask us to restrict the processing of your personal data in certain circumstances, such as where you contest the accuracy of that personal data or you object to us processing it. If you are entitled to restriction and if we have shared your personal data with others, we will let them know about the restriction where it is possible for us to do so. If you ask us, we will also tell you, where it is possible and lawful for us to do so, with whom we have shared your personal data so that you can contact them directly.

Your right to data portability

You have the right, in certain circumstances, to receive a copy of personal data we’ve obtained from you in a structured, commonly used and machine-readable format (e.g., Microsoft Word or Microsoft Excel), and to reuse it elsewhere or to ask us to transfer this to a third party of your choice.

Your rights in relation to automated decision-making and profiling

You have the right not to be subject to a decision when it’s based on automatic processing, including profiling, if it produces a legal effect or similarly significantly affects you, unless such profiling is necessary for entering into, or the performance of, a contract between you and us.

Your right to withdraw consent

If we rely on your consent (or explicit consent) as our legal basis for processing your personal data, you have the right to withdraw that consent at any time.

Your right to lodge a complaint with the supervisory authority

If you have a concern about any aspect of our privacy practices, including the way we’ve handled your personal data, you can report it to the relevant supervisory authority. Please note that some of these rights may be limited where we have an overriding legitimate interest or legal obligation to continue to process the personal data, or where the personal data may be exempt from disclosure due to applicable law.

Lawful Bases for Processing

Pursuant to the GDPR, which governs the collection, use, and transfer of personal data within the European Economic Area and in certain other circumstances, HIMSS processes personal data in line with specific lawful bases. Those bases include performance of a contract (e.g., the new Member registration process), when necessary to comply with our legitimate interests (e.g., to manage past payments or to collect owed money, keep our services updated, and inform our market and marketing strategies) when necessary to comply with legal obligations (e.g., notifying you when our Privacy Policy changes, or when responding to your inquiries).

Depending on your country of residence, we may be subject to other obligations not mentioned here. Furthermore, there may be other sector-specific privacy and security laws (for example, those governing health and financial data) that we do not mention within this Policy, but do have bearing on how we collect, use and share your data.

If we are relying on your consent to process your personal data, you have the right to withdraw that consent at any time. Please note however that this will not affect the lawfulness of the processing that occurred before your withdrawal, nor will it affect the processing of your personal data conducted in reliance on lawful processing grounds other than consent.

Security & Data Retention

HIMSS implements appropriate technical and organizational security measures designed to protect the security and safety of your personal data.

In general, our retention of personal data is reasonably necessary and proportionate to achieve the purposes for which the personal data was collected or processed, or for another disclosed purpose that is compatible with the context in which the personal data was collected, and not further processed in a manner that is incompatible with those purposes.

Data Localization and Cross-Border Data Transfers

As a multinational organization, HIMSS recognizes the need to meet GDPR requirements, and ensure that your personal data is protected when transferred across borders. The GDPR restricts the transfer of personal data outside of the European Economic Area, except in cases where adequate protections are in place to guarantee that your personal data is sufficiently protected.

Children

HIMSS Services are not intended to be used by children. By using HIMSS Services, you affirm that you are an adult over eighteen years of age. If we learn that we have collected personal data from a child, we will delete that information as quickly as possible. If you believe that a child may have provided us with their personal data, please contact us at dpo@himss.org.

Chapters

HIMSS supports many chapters and works to bring health professionals together. Each HIMSS Chapter is a separate legal entity. HIMSS Members receive the benefit of being a member of one HIMSS chapter of your choice. When you register for a HIMSS chapter, we may collect information included but not limited to profession, headline, professional objectives, and topics of interest. We collect this information to ensure our platform includes applicable chapter activities. Users have discretion in providing all or some of this information, but providing this information is aimed at providing you with a more tailored user experience. Visit your local HIMSS chapter for more information and specific privacy policies.

Media

HIMSS's platform provides full-service media and events on the relationship between technology and innovation. HIMSS users will have access to account-based marketing and custom content.

Additionally, this Service includes access to HIMSS TV and HIMSS Global Health Conference Solutions.

Account-Based Marketing

HIMSS Media and Account-Based Marketing Service provides clients with unparalleled insights into key account activities across media, mobile, video, and other high-impact channels.

Custom Content

The HIMSS Custom Content studies buyer personas and the buying process through an in-depth analysis of research.

HIMSS Editorial Brands

Healthcare IT News, Healthcare Finance News, and MobiHealthNews provide users with news, commentary, research, and insights for the digital health community. These platforms provide daily news updates on digital health and health care innovation coverage on a breadth of issues.

We may be required to share personal data for archival purposes to maintain HIMSS, or third-parties' records.

List of Data Processors

HIMSS uses the following types of data processors to design, create, and implement IT processes and symptoms that would enable the data controller to gather personal data about HIMSS users. While HIMSS uses many data processors, below is a list of the categories of processors we use to gather your data.

  1. User Experience: Data Processors will implement tools to analyze user engagement and interaction on the HIMSS' platform. These tools will analyze our products and service utility, ease of use, and efficiency.
  2. Brand Management: Data Processors will implement techniques and tools to increase the HIMSS’ platform brand value. These processors will work towards building out strong brand associations.
  3. Content Strategy: Data Processors will collect analytics and data around user's interactions and engagement with HIMSS content.

Key Terms

Anonymous or Aggregate Information

Anonymized data is information that has been irreversibly altered in such a way that an individual can no longer be identified directly or indirectly by its use. Aggregate information, similarly, cannot identify an individual, and is the process of combining data sets in order to obscure the identity of an individual.

Cookies

A cookie is a small file containing a string of characters that is sent to your computer when you visit a website. When you visit the site again, the cookie allows that site to recognize your browser. Cookies may store user preferences and other information. You can configure your browser to refuse all cookies or to indicate when a cookie is being sent. However, some website features or services may not function properly without cookies.

IP Address

Every device connected to the Internet is assigned a number known as an Internet protocol (IP) address. These numbers are usually assigned to geographic blocks. An IP address can often be used to identify the location from which a device is connected to the Internet.

Pixel Tag

A pixel tag is a type of technology placed on a website or within the body of an email for the purpose of tracking certain activity, such as views of a website or when an email is opened. Pixel tags are often used in combination with cookies.

Partner or Partner Organization

HIMSS works with vendors, third-party advertisers and sponsors, healthcare organizations, and employers to offer content, conferences, courses, and more. Our partners are held to this Policy.

Personal Data

Personal data means any information that can identify an individual, including, but not limited to, information that relates to a person's name, email address, health, finances, education, business, mailing address, telephone numbers, license numbers, and any financial identifiers.

Sensitive Personal Data

This is a particular category of Personal Data relating to topics such as confidential medical information, racial identity, ethnic origins, political or religious beliefs, trade union membership, or sexual orientation.

About This Policy

This Policy applies to all Services offered by HIMSS and its partners, as well as services we offer on third-party sites. However, this Policy does not apply to services with separate privacy policies that do not incorporate these provisions. Furthermore, this Policy does not apply to other companies, individuals, and organizations that choose to advertise our services or to services offered by other companies, individuals, or other organizations.

To keep this Policy up-to-date and to remain compliant with relevant laws, we may make changes that reflect our current practices. We will not reduce your rights under this Policy without your consent, and if we make significant changes, we will post a prominent notice or directly send you a notification. We encourage you to review this privacy notice with reasonable frequency to stay informed regarding the ways that we protect your information.

This Privacy Policy was last updated July 28, 2025.