Welcome to

Together is a new resource for anyone affected by pediatric cancer - patients and their parents, family members, and friends.

Learn More

Privacy Policy

Effective June 2018

This Privacy Policy (“Policy”) describes St. Jude Children’s Research Hospital, Inc. (“St. Jude,” “we,” “our,” or “us”) policies on the collection, use, and disclosure of information in connection with your use of any part of the Together website and any related services provided on the Together website (collectively, referred to below as the “Services”). When you use the Services, you consent to our collection, use, disclosure, and protection of information as described in this Privacy Policy. BY ACCESSING OR USING THE SERVICES, YOU AGREE TO THIS POLICY. IF YOU DO NOT AGREE TO THIS POLICY, YOU MAY NOT USE THE SERVICES.

This Policy applies only to information collected on or through the Services. It does not apply to information collected or obtained through any other means (including, without limitation, information collected through other St. Jude websites or mobile applications, offline, in person, or from third parties outside the Services).

Undefined capitalized terms used herein shall have the definitions as set forth in our Terms of Use.

Information We Collect

We may collect and store information about you in various ways. For example, we may collect information that you provide to us, information that we automatically collect through your use of the Services, and information from publicly-available sources or non-affiliated third parties.

Information You Provide to Us

When you use the Services, you may be invited to provide or upload information. For example, St. Jude may collect the following illustrative (but not exhaustive) types of information when you use the Services:

  • Username, password, email address;
  • Name, city-level location, educational background, family information;
  • Names and email addresses of family members you invite to use the Services;
  • Photographs;
  • Disease information;
  • Information on forms you fill out on or submit through the Services (including requests to receive newsletters);
  • Communications with us or other users through the Services; or
  • Any other information that you choose to provide and/or upload to us through the Services.

Information that Is Collected Automatically and/or Passively

In addition to the information you provide to us directly, we may automatically collect information about your use of the Services as follows:

  • Device/Usage Information. When you use our Services, we may collect and analyze information such as your IP address, browser types, browser language, operating system, the state or country from which you accessed the Services, software and hardware attributes (including device types and IDs), referring and exit pages and URLS, platform type, the number of clicks, files you download, domain names, landing pages, pages viewed and the order of those pages, the amount of time spent on particular pages, the terms you use in searches on our sites, the date and time you used the Services, error logs, and other similar information. We use this information (including the information collected by our third-party service providers) for analytics (including to determine which portions of the Services are used most frequently and what our Users like or do not like).
  • Emails. If you receive an email from us, we may collect information related to whether you open the email, and what content you select to view via the email.
  • Location. We may collect the city and state associated with the IP address of the device that you use to access the Services.

Information from Third Party Sources

We may receive information about you from publicly and commercially available sources, as permitted by law, which we may combine with other information we receive from or about you.

Information We Collect From Social Media and Other Content Platforms

If you access the Services through a third-party connection or log-in (e.g., through a social network) (“Third-Party Platform”), you may allow us to have access to and store certain information from your Third-Party Platform profile. This may include your name, gender, profile picture, your “likes” and check-ins, your location, and your list of friends, depending on your settings on such Third-Party Platform. If you do not wish to have this information shared, do not use a Third-Party Platform to access the Services. For a description on how Third-Party Platforms handle your information, please refer to their respective privacy policies and terms of use, which may permit you to modify your privacy settings.

When you “like” or “follow” us on Facebook, Instagram, Twitter or other social media sites, we may collect some information from you including your name, e-mail address, and any comments or content you post relevant to us.

Cookies and Other Technologies

We and our third-party service providers may use cookies, clear GIFs, pixel tags, beacons, and other technologies that help us better understand user behavior, personalize preferences, perform research and analytics, and improve the services we provide. We or our third-party service providers also may use certain of these technologies in emails to you, to help us track email response rates, identify when our materials are viewed, and track whether our emails are forwarded. You may choose to accept or decline certain cookies. Most web browsers automatically accept cookies, but your browser may allow you to modify your browser settings to decline certain cookies if you prefer. If you disable cookies, you may be prevented from accessing or taking full advantage of the Services. To learn more about cookies, please visit http://allaboutcookies.org.

We also may use Adobe Flash technology (including Flash Local Shared Objects ("Flash LSOs")) and other technologies to, among other things, collect and store information about your use of the Services. If you do not want Flash LSOs stored on your computer, you may be permitted to adjust the settings of your Flash player to block Flash LSO storage using the tools contained in the website storage settings panel for the web browser(s) you use to access the Services. You can also control Flash LSOs by going to the Adobe Global Storage Settings Panel and following the instructions (which may include instructions that explain, for example, how to delete existing Flash LSOs (referred to "information" on the Macromedia site), how to prevent Flash LSOs from being placed on your computer without your being asked, and (for Flash Player 8 and later) how to block Flash LSOs that are not being delivered by the operator of the page you are on at the time). Please note that setting the Flash Player to restrict or limit acceptance of Flash LSOs may reduce or impede the functionality of some Flash applications, including, potentially, Flash applications used in connection with the Site or our online content.

Web Logs

In conjunction with the gathering of data through cookies, Web servers may log records such as your device type, operating system type, device advertising identifier, browser type, domain, and other system settings, as well as the language your system uses and the country and time zone where your device is located. The Web server logs also may record the address of the Web page that referred you to the Services, the IP address (and associated city and state or province for the IP address) of the device you use to connect to the Internet, and data about your interaction with the Services, such as which pages you visit.

Online Analytics

We may use third-party web analytics services, such as those provided by Google Analytics. These service providers use cookies and other technologies described in this Policy to help us analyze how Users use the Services. The information collected by the technology will be disclosed to or collected directly by these service providers. To prevent Google Analytics from using information for analytics, a user may install the Google Analytics Opt-Out Browser Add-on.

We also use Adobe's analytics service, which uses cookies and web beacons to help us understand more about how our websites are used, so that we can continue to improve them. You can learn more about Adobe’s service, and you may learn how to opt out.

Do Not Track Signals and Similar Mechanisms

We do not recognize or respond to browser-initiated Do Not Track signals, as the Internet industry is currently still working on Do Not Track standards, implementations, and solutions.

How We Use the Information We Collect

We may use your information for any of the following reasons:

  • For the purposes for which you provide it;
  • To enable you to use the Services;
  • For customer support and to respond to your inquiries;
  • For internal recordkeeping purposes;
  • To analyze, improve and maintain the Services and for product development;
  • To address fraud or safety concerns, or to investigate complaints or suspected fraud or wrongdoing;
  • To provide you with a personalized experience on the Services;
  • With your consent, to contact you by telephone or text message regarding the Services or information you have requested;
  • To contact you with information about your use of the Services;
  • For other research and analytical purposes; and
  • To protect, enforce, or defend the legal rights, privacy, safety, security, or property of St. Jude, its employees or agents, or other users, and to comply with applicable law.

We may combine information that we collect from you through the Services with information that we obtain from affiliated and non-affiliated third parties, and information derived for any other products or services we provide.

We may aggregate and/or de-identify information collect through the Services. We may use de-identified or aggregated data for any purpose, including without limited for research and marketing purposes and may also share such data with any third parties.

How We Share Information

The following provides information about entities with whom we may share information. Our practices may vary depending on the type of information.

Affiliates. We may share information with our affiliates.

Service Providers. We may share information with third parties that help us operate our business and provide our services, such as contractors that provide us with technology, services, data or content.

Other Parties When Required by Law or as Necessary to Protect Our Users and the Services. We may share information when we believe that doing so is necessary to protect, enforce, or defend the legal rights, privacy, safety, or property of St. Jude, our employees or agents or users, or to comply with applicable law or legal process, including responding to requests from public and government authorities.

Business Transfers. We may transfer the information we hold in the event we sell or transfer all or a portion of our business or assets (such as in connection with a merger, acquisition, reorganization, dissolution or liquidation) or in connection with steps we take in anticipation of such a transaction.

Aggregated or De-Identified Information. We may share aggregated or de-identified data without restriction.

Otherwise with Your Consent or at Your Direction. In addition to the sharing described in this Policy, we may share information with third parties whenever you consent to or direct such sharing.

HIPAA and Protected Health Information

Children’s Privacy

We do not knowingly collect any personal information from children under the age of 13 without parental consent, unless permitted by law. If we learn that a child under the age of 13 has provided us with personal information (as defined by the Children’s Online Privacy Protection Act), we may delete it.


We employ administrative, technical, and physical security measures to help protect information from unauthorized access. These measures vary depending on the sensitivity of the information we have collected. However, no method of transmission over the Internet or via mobile device, or method of electronic storage, is absolutely secure. Therefore, while we strive to use commercially acceptable means to protect your information, we cannot guarantee its absolute security.

Third Party Links and Services and other St. Jude Websites

The Services may contain links to third-party websites or services. If you choose to use these sites or services, you may disclose your information not just to those third parties, but also to their users and the public more generally depending on how their services function. Because these third-party websites and services are not operated by St. Jude, St. Jude is not responsible for the content or practices of those websites or services. The collection, use, and disclosure of your personal and other information will be subject to the privacy policies of the third party websites or services, and not this Policy. We urge you to read the privacy and security policies of these third parties.

You also may be able to access other St. Jude websites through the Services or through links provided through the Services (e.g., linking to St. Jude Children’s Research Hospital). Your information will be subject to the Privacy Policy posted on those other St. Jude websites.

California Residents: Your California Privacy Rights

St. Jude does not disclose your personal information to third parties for the purpose of directly marketing their services to you unless you first agree to such disclosure.  

How to Access or Update Your Information & Other Privacy Choices Available to You

Manage Your Account Information. You may modify your account information by contacting us at together@stjude.org.

Cookies and Other Automated Technologies. For information about opt-out options relating to data collected using cookies and other automated technologies (e.g., for analytics), please review the information and hyperlinks in the “Cookies and Other Technologies,” and “Online Analytics” sections of this Privacy Policy, above.

International Users and Consent to Transfer

Our computer systems are currently based in the United States, so your data will be processed by us in the United States. If you create an account with the Services as a visitor from outside the United States, by using the Services, you agree to this Policy and you consent to the transfer of all such information to the United States and to the processing of that information as described in this Policy.

Modifications to This Policy

Modifications or changes to the Policy will be reflected in the most current Privacy Policy, which is available through the Services. We reserve the right to modify this Policy at any time, so we encourage you to review it frequently. Your continued use of the Services following any changes signifies your acceptance of our Privacy Policy as modified.

Contact Us

If you wish to provide feedback to us regarding the Services, please contact us at together@stjude.org.

If you have any questions about St. Jude Children's Research Hospital or our privacy protections, please contact us at privacy@stjude.org.