Privacy Notice

Last Updated: 04 February 2026

Butterfly Network, Inc, on behalf of itself and its subsidiaries ("Company", "we", "our", or "us") respect your privacy and are committed to protecting it through our compliance with this policy. This policy describes how we collect, process, retain, and disclose personal data about you when providing services to you through our websites, applications, products, and services that link to this policy (our "Services") and our practices for using, maintaining, protecting, and disclosing that information.

This Notice applies to the processing of personal information collected by us in the usual course of business, including when you:

  • Visit our websites (such as www.butterflynetwork.com) that display a link to this Notice (the “Site” or “Sites”), visit our social media pages; visit our offices; receive communications from us, including emails, phone calls and texts; or register for, attend and/or otherwise take part in our events, tutorials, or webinars (we collectively refer to all of these activities as our "Marketing Activities" in this Notice).
  • Use any Butterfly products or services as an authorized end user (for example, as an individual customer or as a team member of one of our customers who has provided you with access to our services) ("Service Users"), including the Butterfly hosted, on demand platform services ("Butterfly Cloud"), Butterfly whole-body portable ultrasound scanner device ("Device"), as well as any application supplied by us, including the Butterfly mobile applications available to users (the "App" or "Apps") (collectively, the "Services"), when we act as a data controller of your personal information.

"You" may, depending on the context, be: a visitor to one of our Sites, offices or social media pages; a recipient of our communications; a patient whose personal information is being hosted in our Services; or a Service User of one or more of our Services.

This Notice does not apply to the personal information that we process as data processors on behalf of our customers in the course of providing our Services.  

We may provide additional or different privacy policies that are specific to certain features, services, or activities.

Please read this policy carefully to understand our policies and practices regarding your information and how we treat it. By interacting with our Services or providing us with your information, you agree to the collection, use, and sharing of your information as described in this privacy policy. This policy may change from time to time (see Changes to Our Privacy Policy). Your continued use of the Services after we make changes as described here is deemed to be acceptance of those changes, so please check the policy periodically for updates. 

Our Services are not intended for, and we do not knowingly collect any personal data from, children under the age of 18. If we learn we have collected or received personal data from a child under 18 years old without verification of parental consent, we will delete that information. 

The Personal Data That We Collect or Process

"Personal data" is information that identifies, relates to, or describes, directly or indirectly, you as an individual, including, without limitation your name, email address, telephone number or home address or any other identifier we may use to contact you online or offline.

The information we collect depends on the context of your interactions with Butterfly and the choices you make (including your privacy settings), the products and features you use, your location and applicable law.

In general, our Services are intended for use by Service Users. As a result, for much of the personal information (including patient personal information) we collect and process through the Services, we act as a data processor. This means, it is primarily our Service Users that control what personal information we collect through the Services and how we use it. Therefore, if you are a patient of one of our Service Users, and have privacy related questions or concerns about the privacy practices of or the choices the relevant Service User has made to share your information with us or any other third-party, you should contact the relevant Service User or review their or (where applicable) their organizations' privacy notices.

Butterfly is not responsible for the privacy or security practices of its Service Users, which may differ from those set out in this Notice.

Information you provide to us:

If you are a Service User you (or your team administrator) may provide certain personal information to us through the Services, for example, when you sign up for a Butterfly account to access and use the Services, when you consult with customer support or send us an email or communicate with us in any way (e.g., to make a support request).

The personal information we collect may include:

  • Business contact information (such as your name, job title, organization, phone number, email address and country);
  • Marketing information (such as your contact preferences);
  • Account log-in credentials (such as your email or username and password when you sign-up for an account with us and the unique Service User/ team ID assigned to you in our systems);
  • Troubleshooting and support data (which is data you provide or we otherwise access in connection with support queries we receive from you. This may include, for example, contact or authentication data, the content of your chats and other communications with Butterfly, and the product or service you are using related to your help inquiry); 
  • Account history, including information about your subscription, account, transactions, purchases, order history, or discounts;
  • Demographic information;
  • Payment information (which is data needed to validate your purchase order).

If you ever communicate directly with us, we will maintain a record of those communications and responses.

Information we collect automatically:

When you use or interact with the Services, we automatically collect or receive certain information through our Services (e.g., in log files) and through other technologies (such as cookies) about your device and usage of the Services. In some (but not all) countries, including countries in the European Economic Area ("EEA"), UK and Switzerland, this information is considered 'personal data' under data protection laws. For further information please review our cookie notice.

The information we collect includes:

  • Log and usage data, such as service-related, diagnostic, usage and performance information that our servers automatically collect when you access or use our Services and which we record in log files. This log data may include the Internet Protocol (IP) address, device information, browser type and settings and information about your activity in the Services (such as the date/ time stamps associated with your usage, pages and files viewed, searches and other actions you take (for example, which features of you use)), device event information (such as system activity, error reports (sometimes called 'crash dumps') and hardware settings).
  • Device data, such as information about your computer, phone, tablet or other device you use to access the Services. This device data may include information such as your IP address (or proxy server), device and application identification numbers, location, browser type,  hardware model Internet service provider and/or mobile carrier, operating system and system configuration information. If you are using our mobile App, we may also collect information about the phone network associated with your mobile device, your mobile device’s operating system or platform, the type of mobile device you use, your mobile device’s unique device ID and information about the features of our mobile App you accessed.
  • Location data, such as information about your Device's location, which can be either precise or imprecise. How much of this information we collect depends on the type and settings of the device you use to access the Services.  For example, we may use GPS and other technologies to collect geolocation data that tells us your current location (based on your IP address).  You can opt out of allowing us to collect this information either by refusing access to the information or by disabling your Location setting on your device. Note however, if you choose to opt in/opt out, you may not be able to use certain aspects of the Services.
  • Content and information you elect to provide as part of your profile or in any reviews you make through the Services or emails, chats, or other communications sent to us; and
  • Images, voice recordings, and videos collected or stored in connection with the Services.

Some of the information identified above may be considered sensitive data under certain laws. If required under applicable law, we will collect and process sensitive personal data only with your consent. If you choose not to provide or allow us to collect some information, we may not be able to provide you with requested features, services, or information.

This information is used to:

  • maintain the security of the Services;
  • provide necessary functionality;
  • improve performance of the Services;
  • assess and improve Service User's experience of the Services;
  • review compliance with applicable usage terms;
  • identify future opportunities for development of the Services;
  • assess capacity requirements;
  • identify customer opportunities and for the security of Butterfly generally (in addition to the security of our Services);
  • Comply with customer usage requirements; and
  • analyze overall trends, to help us provide and improve our Services, and to guarantee their security and proper functioning.

Some of the data automatically collected within the Services, whether alone or in conjunction with other data, could be personally identifying. Please note that this data is primarily used for identifying the uniqueness of Service User logging on (as opposed to specific individuals), apart from where it is strictly required to identify an individual for security purposes or as required as part of our provision of the Services to our customers (where we act as a data processor.

Information we process about our Service Users' patients: We process certain personal information about our Service Users patients on behalf of our Service Users (where we act as a data processor).  This personal information includes:

  • Identification and contact data (name, title, date of birth, sex, medical record number (MRN), accession number).
  • Protected health information ("PHI"), such as MRN data, study description and related metadata (such as comment data from Service Users about an ultrasound study) and  other categories of PHI uploaded by (or on behalf of) the Service Users  in connection with the Services.

As described above, in most cases, we only process PHI on behalf of and as instructed by our Service Users (the data controllers of the personal information).  

However, where permitted by the relevant Service User and applicable law, we may leverage certain patient data collected through the operation of the Services for our internal research and product development purposes to improve our Services (for which we will be a data controller).  For these purposes, we only use PHI in a de-identified form that does not specifically identify any particular patient For example, we may leverage de-identified patient data to train our models and algorithms to improve the functionality of our Services. To the extent the de-identified patient data is considered personal information under applicable privacy and data protection law, we will ensure that such data is processed in compliance with such privacy and data protection laws.

We also collect:

  • Statistics or aggregated information. Statistical or aggregated data does not directly identify a specific person, but we may derive non-personal statistical or aggregated data from personal data. For example, we may aggregate personal data to calculate the percentage of users accessing a specific Services feature.
  • Technical information. Technical information includes information about your internet connection and usage details about your interactions with the Services, such as clickstream information to, through, and from our Services (including date and time), products that you view or search for; page response times, download errors, length of your visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), or methods used to browse away from a page.

If we combine or connect non-personal statistical or technical data with personal data so that it directly or indirectly identifies an individual, we treat the combined information as personal information.

How We Collect Your Personal and Other Data

You Provide Information to Us

We collect information about you when you interact with our Services, such as when you create or update an account, place an order, subscribe, or make a purchase request, participate in surveys, webinars, trainings or promotions, or create, upload, or post content to the Services, including reviews, media such as photos, videos, or audio recordings.

Automatically Through Our Services

As you navigate through and interact with our Services, we may use automatic data collection technologies to collect information that may include personal data. Information collected automatically may include usage details, IP addresses, operating system, and browser type, and information collected through cookies and other tracking technologies including details of your interactions with our Services.

Please see the Cookie Notice for further information.

From Business Partners and Service Providers

We may receive personal data about you from other sources and combine that with information we collect directly from you. For example, we may obtain information about you from service providers that we engage to perform services on our behalf. We may also obtain data, such as contact information, from publicly available sources and lists.

How We Use Your Information

We use information that we collect about you or that you provide to us, including any personal data, to:

  • Provide you with the Services and any contents, features, information, products, or services that we make available through the Services.
  • Fulfill and manage subscriptions, purchases, orders, deliveries, payments, and returns.
  • Fulfill any other purpose for which you provide it.
  • Provide you with notices about your account/subscription, including expiration and renewal notices.
  • Improve our Services, including by analyzing your information and creating aggregated data derived from your information to develop, maintain, analyze, improve, optimize, measure, and report on our Services and their features and how users interact with them. Our analysis may include the use of technology like machine learning and large language models, which may include training these models or sharing with third parties for model training.
  • Promote our Services, business, and offerings by publishing advertising on our own Services and by placing ads on third parties' services. We may use your information to model, segment, target, offer, market, and advertise our Services.
  • Carry out our obligations and enforce our rights arising from any contracts entered into between you and us, including for billing and collection.
  • Notify you when Services updates are available and about changes to any products or services we offer or provide though them.
  • In any other way we may describe when you provide the information.
  • For any other purpose with your consent.

The usage information we collect, whether connected to your personal data or not, helps us improve our Services and deliver a better and more personalized experience by enabling us to:

  • Estimate our audience sizes and usage patterns.
  • Store information about your preferences, allowing us to customize the Services according to your individual needs and interests.
  • Speed up your searches.
  • Recognize you when you return to our Services.

We may also use your information to contact you about goods and services that may be of interest to you.

Who We Disclose Your Information To

We may disclose aggregated information about our users, and information that does not identify any individual, without restriction. 

We may also disclose personal data that we collect or you provide as described in this privacy policy:

  • To our subsidiaries and affiliates.
  • To contractors, service providers, and other third parties we use to support our organization and who are bound by contractual obligations to keep personal data confidential and use it only for the purposes for which we disclose it to them.
  • To third parties to market their products or services to you if you have not opted out of these disclosures. 
  • For any other purpose disclosed by us when you provide the information.
  • With your consent.

We may also disclose your personal data:

  • To comply with any court order, law, or legal process, including to respond to any government or regulatory request.
  • To enforce or apply our terms of use and other agreements, including for billing and collection purposes.
  • If we believe disclosure is necessary or appropriate to protect the rights, property, or safety of our organization, our customers, or others.

Your Rights and Choices About Your Information

This section describes mechanisms you can use to control certain uses and disclosures of your information and rights you may have under state law, depending on where you live.

Please refer to our cookie notice for information on cookies and other tracking technologies.

Your State Privacy Rights

Depending on your state of residency, you may have certain rights related to your personal data, including: 

  • Access and Data Portability. You may confirm whether we process your personal data and access a copy of the personal data we process. To the extent feasible [and required by state law, depending on your state], data will be provided in a portable format. Depending on your state, you may have the right to receive additional information and it will be included in the response to your access request.
  • Correction. You may request that we correct inaccuracies in your personal data that we maintain, taking into account the information's nature and processing purpose.
  • Deletion. You may request that we delete personal data about you that we maintain, subject to certain exception under applicable law.  
  • Opt Out of Using Personal Data for Targeted Advertising, Profiling, and Sales. You may request that we do not use your personal data for these purposes.

Important: The exact scope of these rights vary by state. There are also several exceptions where we may not have an obligation to fulfill your request. 

Some browsers and browser extensions support the Global Privacy Control (“GPC”) that can send a signal to process your request to opt out from certain types of data processing, including data "sales" as defined under certain laws. When we detect such a signal, we will make reasonable efforts to respect your choices indicated by a GPC setting as required by applicable law.

How We Protect Your Personal Data

We use administrative, physical, and technical measures designed to protect your personal data from accidental loss or destruction and from unauthorized access, use, alteration, and disclosure. However, no website, mobile application, system, electronic storage, or online service is completely secure, and we cannot guarantee the security of your personal data transmitted to, through, using, or in connection with the Services. In particular, email, texts, and chats sent to or from the Services may not be secure, and you should carefully decide what information you send to us via such communications channels. Any transmission of personal data is at your own risk. 

The safety and security of your information also depends on you. You are responsible for taking steps to protect your personal data against unauthorized use, disclosure, and access. 

How We Retain Your Personal Data

We keep the categories of personal data described in this policy for as long as reasonably necessary to fulfill the purposes described or for as otherwise legally permitted or required, such as maintaining the Services, operating our organization, complying with our legal obligations, resolving disputes, and for safety, security, and fraud prevention. This means that we consider our legal and business obligations, potential risks of harm, and nature of the information when deciding how long to retain personal data. At the end of the retention period, personal data will be deleted, destroyed, or deidentified.

Changes to Our Privacy Policy

We may update this policy from time to time. The date the privacy policy was last updated is identified at the top of the page. We will notify you of changes to this policy by updating the "last updated" date and posting the updated policy on the Services. We may email or otherwise communicate reminders about this policy, but you should check our Services periodically to see the current policy and any changes we have made to it.

Contact Information

To exercise your rights or ask questions or comment about this privacy policy or our privacy practices, contact us at: 

compliance@butterflynetworkinc.com