This notice describes how medical information about you may be used and disclosed and how you can get access to this information. Please review it carefully.
Your privacy is important to us. We are committed to the care and improvement of human life, and that includes protecting Personal Information (defined below). We are dedicated to maintaining information confidentiality and complying with regulatory requirements by – among other things – limiting access to only those users that have a legitimate need to view it, and regularly educating employees on information protection.
We collect certain information, including Personal Information, from and about our Website users in three ways:
We and our service providers collect Personal Information through online forms in order to provide certain features of the Services to you. For example, if applying for a job through the Website, we may request you to fill out a form with information such as your name, e-mail address, phone number, and work experience. If you do not provide the information required to submit the forms, we may not be able to provide you with related features and services.
In some cases, you may have the opportunity to enter into our secure forms any content that you choose. You are responsible for such content.
When you access or use our Services, we may track information to administer our Services and analyze its usage. Examples of information we may track include:
We use this information to analyze trends, administer and improve our Services, and monitor traffic and usage patterns for information security purposes and to help make our Services more useful.
A “cookie” is a small text file that may be transferred to your computer's hard drive in order to personalize our services for you and to collect aggregate information regarding usage of our Services by all of our users. Each computer is assigned a different cookie that contains a random, unique number. Our Services uses two different types of cookies: a “session” cookie, which is required to track a user session, for example, and which expires shortly after the session ends), and a “persistent” cookie, used to track unique visits to the Portal (defined below), as well as how the user arrived at the Portal (for example, through an email link or from a referral link), and the type of user (patient, provider, etc.). So that users are not counted twice, this cookie can “persist” anywhere from six months to two years.
Your browser software can be set to warn you of cookies or reject all cookies. Most browsers offer instructions on how to reset the browser to reject cookies in the “Help” section of the toolbar. If you reject our cookie, this may disable some of the functionality of our Services and you may not be able to use certain services.
Cookies cannot be used to run programs or deliver viruses to your computer. One of the primary purposes of cookies is to provide a convenience feature to save you time. For example, if you personalize a web page, or navigate within a website, a cookie helps the website to recall your specific information on subsequent visits. This simplifies the process of delivering relevant content and eases website navigation by providing and saving your preferences and login information as well as providing personalized functionality.
We use Google Analytics on our Site to help us analyze the traffic on our Site. For more information on Google Analytics’ processing of Personal Information, please see http://www.google.com/policies/privacy/partners/.” By using a browser plugin provided by Google, you can opt out of Google Analytics.
A “web beacon,” “clear GIF,” “web bug,” or “pixel tag” is a tiny graphic file with a unique identifier that is similar in function to a cookie, but would allow us to count the number of users that have visited certain pages or screens of our websites, and to help determine the effectiveness of promotional or advertising campaigns. When used in HTML-formatted email messages, web beacons can tell the sender whether and when the email has been opened. In contrast to cookies, which may be stored on your computer's hard drive, web beacons are typically embedded invisibly on pages or screens.
We do not collect precise information (e.g., GPS data; latitude and longitude) concerning the location from which you access the Services, but we collect information on your region or postal code to help us gather information useful for improving the relevance of our content and securing our Services.
As a service to its customers, we may also provide Portals to offer some customers secure, private access to their own records at our facilities, as well as certain internet-based services which may include, among other things, assistance in finding a doctor, assistance in scheduling appointments, the ability to register for classes and pre-register for procedures, the ability to make payment for medical services rendered, and access to health and patient education materials and secure messaging (“Portal”).
The Portal can provide you with access to some of your medical records. When you seek access to those records on the Portal, we need to confirm it is you so we ask you for information such as your name and email or physical address and other information such as your date of birth (which we may also use to make sure you are eligible to use the Portal in accordance with the Terms) and the answers to “secret questions” to which only you know the answers. This information may be used to help administer your user account and in managing your account. We may need to ask you for the information again when you sign in from a new device.
We may ask for information about your location and medical needs to assist with finding a physician, and may collect and pass on information (which may include, where relevant, health information such as your patient history) to assist you in scheduling appointments, pre-registering for procedures, and registering for classes.
If you submit or we collect Personal Information through our Services, then such Personal Information may be used in the following ways: (i) to provide, analyze, administer, and improve our Services; (ii) to contact you in connection with our Services and appointments, events or offerings that you may have registered for; (iii) to identify and authenticate your access to the parts of our Portal or other password-protected Services that you are authorized to access; (iv) to send you surveys; (v) for recruiting and human resources administration purposes; (vi) to protect our rights or our property and to ensure the technical functionality and security of our Services; and (vii) as required to meet our legal and regulatory obligations.
If you have questions about or need further information concerning the legal basis on which we collect and use your information, please contact us using the contact details provided under the “Contact Us” section below.
We do not sell, lease, rent or otherwise disclose the Personal Information collected from our Site to third parties unless otherwise stated below or with your consent.
In addition to the uses and disclosures of information outlined above, if you use the Portal, your information may also be used and disclosed as follows:
No website can guarantee security, but we maintain appropriate physical, electronic, and procedural safeguards to protect your personal information collected via our Services in compliance with applicable law.
Where you use a Portal or other service that is secured with a username and password, you are also responsible for taking steps to protect the privacy of Personal Information about you. In order to protect your privacy, you should:
Please note that if you share your Portal username and password with another person, this will allow that person to see your confidential medical record information. We have no responsibility concerning any breach of your confidential medical record information due to your sharing or losing your user name or password.
In collecting Personal Information, our Services may also collect PHI. Just as we strive to protect Personal Information we are committed to protecting your PHI. If there is a breach of your PHI, we are required by law to notify you. Your PHI will remain confidential, and will only be disclosed to you or your personal representative, unless otherwise required by state or federal law. In all circumstances, unless otherwise required by law, we will obtain your written authorization before using or disclosing your PHI. This protection extends to PHI that is oral, written, or electronic.
We will never ask for or knowingly collect Personal Information from children through the Services or Portal. If you are a child, you are not permitted to use the Portal and should immediately exit our Portal or get an adult. Parents of un-emancipated minors may set up accounts for themselves to access their children’s medical records only as permitted pursuant to the Terms governing the Portal. If you think that we have collected personal information from a child through this Portal, please contact us and we will dispose of the information as required by applicable law.