PROTECTED HEALTH INFORMATION
Under HIPAA, a “covered entity” is required to provide their patients a Notice of Privacy Practices that describes how the covered entity uses and discloses “protected health information” (“PHI”). As a result, DoctorHere has adopted and, if you become a patient of the DoctorHere, has separately provided or will provide to you a HIPAA Notice of Privacy Practices that describes how the DoctorHere may use or disclose your PHI (the “DoctorHere Notice of Privacy Practices”).
To the extent that Medihere is in fact a “business associate” of the DoctorHere and is collecting, sharing, or using your information as a business associate of the DoctorHere, Medihere’s use and disclosure of your PHI will comply with HIPAA and any Patient Authorization. Any information that does not constitute PHI may be used or disclosed in any manner permitted under this Privacy Statement.
We collect any information you provide when you use the Service, including, but not limited to personally identifying information (“PII”). Such collected data may include the following categories of data:
Communicated Data: Data included in any communication you send to us, whether from the contact form(s) located on our Site, through email, text, social media messaging or posting, or any other communication you send us through any medium. We keep and process this communication data for the purposes of (i) communicating with you, (ii) record keeping, (iii) the establishment, pursuit, and/or defense of legal claims, and (iv) other lawful purposes.
Customer and Registration Data: Data relating to any purchases of goods and/or services such as your name, title, billing address, delivery address, email address, phone number, and contact, purchase, and credit card details. We process and store this data to manage your account, supply the goods and/or services you have purchased, and to keep records of such transactions.
Marketing Data: Data about your preferences in receiving marketing from us and your communication preferences. We process this data to deliver relevant website content to you, and to measure or understand its effectiveness.
Technical Data: Data about your use of our Site and Service such as your IP address, your login data, details about your browser, length of visit to pages on our website, page views and navigation paths, details about the number of times you use our website, time zone settings and other technology on the devices you use to access our website. The source of this data is from our analytics tracking system. We process this data to analyze your use of our website and other online services, to administer and protect our business and website, to deliver relevant content and advertisements to you and to understand the effectiveness of our advertising.
User Data: Data about how you use our Site and Service together with any data that you post for publication on our Site or through other online services. We process this data to operate our website and ensure relevant content is provided to you, to ensure the security of our website, to maintain back-ups of our website and/or databases and to enable publication and administration of our website, other online services and business.
DoctorHere Data: In addition to the information we collect directly from you, we may also collect certain information from the DoctorHere and/or Providers who provide treatment or other services to you in connection with our Service. This information may include, but is not limited to, diagnoses, treatment plans (including prescription details) and notes, and is accessible and visible through certain components of the Service.
Third-Party Data: We may also receive information from third parties that pay for your care or provide you with treatment, laboratory care or prescription medication, which may include, for example, your prescription history, insurance policy, insurance eligibility and coverage, and laboratory test results.
We may also receive information about your online and offline actions and purchases from third-party data providers who have the rights to provide us with your information.
Device Data: Data from the device through which you access the Service. This information includes, but is not limited to, your language preferences, your phone number or other unique device identifier (the International Mobile Equipment Identity or the Mobile Equipment ID number), the IP address of your device, the manufacturer, model and operating system of your device, the name and version of our Service you are using, information regarding your browser and information that allows us to personalize our Service. We or our service providers may also collect information about how you interact with our Service and any of our websites to which our Service links, such as how many times you use a specific part of our Service, the amount of time you spend using our Service, how often you use our Service, actions you take in our Service and how you engage with our Service.
Location Data: Data regarding your location or the location of your device through which you access our Service. Information regarding your location may be obtained directly from you when you provide us with information as part of the registration process.
Non-Identifiable Data: When you interact with us through the Service, we receive and store certain personally non-identifiable information. Such information, which is collected passively using various technologies, cannot presently be used to specifically identify you. We may store such information itself or such information may be included in databases owned and maintained by Medihere affiliates, agents or service providers. The Service may use such information and pool it with other information to track, for example, the total number of visitors to our Site, the number of visitors to each page of our Site, and the domain names of our visitors' Internet service providers. It is important to note that no PII is available or used in this process.
In addition, we may use third party tools, which will also use your data to enable us to provide or improve the Service. Such tools may include the following:
DISCLOSURE OF YOUR INFORMATION
We may disclose your PII with certain third parties without further notice to you, as set forth below.
The Service: We may disclose your information to third parties in connection with the provision of our Service or your Provider’s provision of services or as otherwise permitted or required by law. For example, we may disclose your information to: (a) our third-party service providers that provide services such as the hosting of the Service, data analysis, IT services and infrastructure, customer service, e-mail delivery, auditing, payment processing, and other similar services; (b) the DoctorHere or its Providers to schedule and fulfill appointments and provide healthcare services; (c) the DoctorHere or Providers to whom you send messages through our Service; (d) the DoctorHere or its Providers for treatment, payment or healthcare operations purposes; (e) third parties as we believe necessary or appropriate to enforce our policies and/or contracts; protect us, you, or others; or to comply with applicable laws.
Business Transfers: As we develop our business, we might sell or buy businesses or assets. In the event of a corporate sale, merger, reorganization, dissolution or similar event, PII may be part of the transferred assets. We may also share your PII with our subsidiaries and affiliates for purposes consistent with this Privacy Statement.
Agents, Consultants and Related Third Parties: Medihere, like many businesses, sometimes hires other companies to perform certain business-related functions. Examples of such functions include mailing information, providing business and market intelligence, maintaining databases, and processing payments. When we employ another entity to perform a function of this nature, we only provide them with the information that they need to perform their specific function.
Legal Requirements: Medihere may disclose your PII if required to do so by law or in the good faith belief that such action is necessary to (i) comply with a legal obligation, (ii) protect and defend the rights or property of Medihere, (iii) act in urgent circumstances to protect the personal safety of users of the Service or the public, or (iv) protect against legal liability.
We have implemented measures designed to secure your Personal Data from accidental loss and from unauthorized access, use, alteration, and disclosure. We use encryption technology for information sent and received by us.
The safety and security of your information also depends on you. Where you have chosen a password for the use of our Website, you are responsible for keeping this password confidential. We ask you not to share your password with anyone.