Privacy Policy

RTI International is the Data Coordinating Center ("DCC") for the HEALing Communities Study and is responsible for this website. As the DCC, RTI will be responsible for study coordination and communication, data management, data science and analysis, and health economic research.

RTI takes your privacy very seriously and is committed to protecting your personal information. This privacy policy sets out the ways in which any personal information you provide to us is used and kept secure by RTI. This policy applies whenever we collect your personal data (including when you use our website, mobile applications, electronic services, social networking sites, or other digital platforms), so please read this policy carefully. By continuing to use this site, you agree to the terms of this policy. If you do not agree with the terms of this policy, please do not provide us with your personal information or interact with this site.

About us

RTI International is an independent, nonprofit research institute dedicated to improving the human condition. We combine scientific rigor and technical expertise in social and laboratory sciences, engineering, and international development to deliver solutions to the critical needs of clients worldwide. This privacy policy applies to all companies owned by RTI International.

About this privacy policy

This privacy policy explains what information we may collect about you, how we may use it, and the steps we take to ensure that it is kept secure. We also explain your rights with respect to your personal data.

Please note that our website and other digital platforms may contain links to third party websites / digital platforms, which are provided for your convenience. We are only responsible for the privacy practices and security of our own digital platforms. We recommend that you check the privacy and security policies and procedures of each and every other website / digital platform that you visit.

How to contact us about your personal data or this privacy policy

If you have any questions about this privacy policy or about your personal data, please email us at or write to us at the following address:

Data Protection Officer
RTI International
P.O. Box 12194
Research Triangle Park, NC 27709

Information we collect and what we use it for

RTI may collect the following information: Name, Address, P.O. Box, City, State, Zip Code, Email Address, Internet Protocol (IP) address (we may infer country from your IP address).

This information may be collected when you access or use this site, open or respond to our emails, enter your information into a form on this site and submit that form (for the purposes of receiving requested information from the HEALing Communities Study for example), visit any page online that displays our content, and link to the site via a social networking site.

All information that we collect about you will be recorded, used, and protected by us in accordance with applicable data protection legislation and this privacy policy. We may supplement the information that you provide with other information that we obtain from our dealings with you or which we receive from other organizations, for example, our sponsors and partners.

We will use your data for the following purposes only:

  • to operate, maintain, and improve the site and our services;
  • to provide information to you about the HEALing Communities Study should you request information and answer any questions you may have;
  • perform analytics and conduct client research;
  • send you reminders, study updates, security alerts, support and administrative messages, service bulletins, and requested information.

When we use your data for the above-defined purposes, we may not only collect but also store the personal information that you provide to us.

Notice to residents of countries outside of the United States of America

In order to provide information to you or to otherwise fulfill arrangements that RTI has, we may need to appoint other organizations to carry out some of the data processing activities on our behalf.

These may include, for example, vendors who provide services for us such as payment processing organizations or fraud prevention; to comply with legal orders and government requests, or as needed to support auditing, compliance, and corporate governance functions; if we are under a legal or regulatory duty to do so; if it is necessary to do so to enforce a contract with you; to lawfully assist the police with the prevention and detection of crime; where such disclosure is necessary to protect the safety or security of any persons, with your consent; and/or otherwise as permitted under applicable law.

When we enter into these contractual arrangements, we employ Standard Contractual Clauses or Data Processing Agreements depending on whichever is applicable.

Collection of data from outside the United States and California

Please note that RTI is headquartered in the United States of America. If you are located outside the United States and provide your data to RTI, we will take proper steps to ensure that your information is protected in accordance with this privacy policy. In addition, RTI recognizes that the European Union (EU) has established a data protection policy effective May 25th, 2018, known as General Data Protection Regulation (GDPR). This regulation applies to countries within the EU and governs the transfer of data outside of the EU. In addition, Switzerland has also established a data protection regime pursuant to the Federal Act on Data Protection (FADP). These regimes restrict companies in the European Economic Area (EEA) and Switzerland (collectively, EEA/CH) from transferring personal data about individuals in the EEA/CH to the United States, unless there is “adequate protection” for such personal data when it is received in the United States. To create such “adequate protection” and allow our vendors to overcome the restriction on international data transfers established by GDPR and the FADP, we adhere to the Privacy Shield Framework as designed by the U.S. Department of Commerce, and the European Commission and Swiss Administration, respectively, to provide companies on both sides of the Atlantic with a mechanism to comply with data protection requirements when transferring personal data from the EU and Switzerland to the United States in support of transatlantic commerce.

The Privacy Shield program, which is administered by the U.S. Department of Commerce, enables U.S.-based companies to join one in order to benefit from the adequacy determinations. RTI is a nonprofit and not eligible to self-certify to the Department of Commerce and therefore publicly commit to comply with the Framework’s requirements but has voluntarily adopted the principles outlined by the Privacy Shield program.

If you reside in Canada, you may have the right to be provided with access to Personal Information that we have collected about you and written information about our policies and practices with respect to the transfer of your personal information to vendors outside Canada. To find out more, please email us at

Pursuant to Section 1798.83 of the California Civil Code, residents of California can obtain certain information about the types of personal information that companies with whom they have an established business relationship have shared with third parties for direct marketing purposes during the preceding calendar year. The law provides that companies must inform consumers about the categories of personal information that have been shared with third parties, the names and addresses of those third parties, and examples of the types of services or products marketed by those third parties. To request a copy of the information disclosure provided by RTI pursuant to Section 1798.83 of the California Civil Code, please contact us at or the address stated above. Please allow thirty (30) days for a response.

In all instances where we disclose your information to third parties, we will ensure that your information is appropriately protected.

Notification of a Disclosure of Your Information


In common with many other website operators, we use standard technology called "cookies" on our website. Cookies are small pieces of information that are stored by your browser on your computer's hard drive, and they are used to record how you navigate this website on each visit.

Security of information

We take the security of your personal information seriously and use commercially reasonable security procedures to protect personal information you provide to RTI. When you submit your information to us, we use industry standard Secure Sockets Layer (SSL) encryption technology to guard your information. In addition, we have security procedures in place to protect our paper-based systems and computerized databases from loss and misuse and only allow access to them when it is necessary to do so, and then under strict guidelines as to what use may be made of the personal information contained within them.

Where a password is required to access certain areas of our digital platforms, you are responsible for keeping your password secure and confidential. Please do not share or disclose your password to any other person.

While RTI believes these security measures to be adequate, no method of transmission over the Internet or method of storage is completely secure. Please know that while we will make every effort keep your information secure, there is still a risk that your personal information could be misappropriated, and we cannot guarantee its absolute security.


We do not monitor users of our site beyond the above-mentioned cookie tracking.

Children's privacy

In accordance with applicable regulations, we do not collect data from children and do not intend that any portion of the site will be accessed or used by children under the age of thirteen, and such use is prohibited. This site is designed and intended for use by adults. By using, you represent that you are at least eighteen years old.

More about your information—your rights

You may correct or update your personal information at any time by emailing us at Please include your name, address, date of birth, and email address when you contact us as this helps us to ensure that we accept amendments only from the correct person. We encourage you to promptly update your personal information if it changes.

We will securely retain your information for as long as is reasonably necessary and in accordance with applicable law. If you wish to submit a request that your data be deleted, please write to us at You have the right to receive a copy of the personal information that we hold about you. Please write to us at the address above if you wish to exercise this right.

Changes to this privacy policy

We aim to meet high standards and so our policies and procedures are constantly under review. From time to time we may change this privacy policy. Accordingly, we recommend that you check this page periodically in order to review the latest version.

Where to make a complaint

If you have a complaint regarding any aspect of your personal data or this privacy policy, please write to us at the above address or contact us at For individuals located in the EU, you may contact the appointed Data Protection Authority (DPA) for your country.

A list of DPAs is available here: