Effective Date: May 6, 2016
2.1 Personal Information
2.1.1 Personal Information Generally
We help you find and learn about nearby healthcare providers, booking appointments with the healthcare providers of your choice (each “Your Healthcare Provider”) and managing and forwarding your patient’s health history forms and other health-related information to share with other Healthcare Providers (the “Services”). As part of providing the Services we may collect, use, share and exchange health history forms and other health-related information with the selected Healthcare Providers. Some of the Services require us to know more about Client so that we can best meet Client’s needs. When Client accesses these Services, we may ask Client to voluntarily provide us certain information that personally identifies (or could be used to personally identify) Client (“Personal Information”). Personal Information includes (but is not limited to) the following categories of information: (1) contact data (such as Client’s e-mail address and phone number); (2) demographic data for Client (such as gender, date of birth and zip code); (3) insurance data (such as insurance carrier, insurance plan, member ID, group ID and payer ID); (4) medical data (such as the doctors, dentists or other health care providers (“Healthcare Providers”) to whom Client has referred its patients or been contacted by Client for an appointment, reasons for visit, dates of visit, patient’s medical history, and other medical and health information Client chooses to share with us), and (5) other information that Client voluntarily chooses to provide to us, including without limitation SSN, unique identifiers such as passwords, and Personal Information in emails or letters that Client sends to us. Client may still access and use some of the Services if Client choose not to provide us with any Personal Information, but the features of the Services that require Personal Information will not be accessible to Client.
2.1.2 Billing, Collection and Payment Information [tbd]
2.2 Traffic Data
We also may automatically collect certain data when Client uses the Services, such as (1) IP address; (2) domain server; (3) type of device(s) used to access the Services; (4) web browser(s) used to access the Services; (5) referring webpage or other source through which Client accessed the Services; (6) geolocation information; and (7) other statistics and information associated with the interaction between Client’s browser or device and the Services (collectively “Traffic Data”). Depending on applicable law, some Traffic Data may be Personal Information.
We may also collect additional information, which may be Personal Information, as otherwise described to Client at the point of collection or pursuant to Client’s consent.
2.3 HIPAA and PHI
We collect information (including Personal Information and Traffic Data) when Client uses and interacts with the Services, and in some cases from third party sources. Such information includes:
4.2. Options for Opting out of Cookies and Mobile Device Identifiers
Some web browsers (including some mobile web browsers) allow Client to reject Cookies or to alert Client when a Cookie is placed on Client’s computer, tablet or mobile device. Client may be able to reject mobile device identifiers by activating the appropriate setting on Client’s mobile device. Although Client are not required to accept THE CHIASM NETWORK’s Cookies or mobile device identifiers, if Client block or reject them, Client may not have access to all features available through the Services.
Client may opt out of receiving certain Cookies and certain trackers by visiting the Network Advertising Initiative (NAI) opt out page or the Digital Advertising Alliance (DAA) consumer opt-out page. When Client use these opt-out features, an “opt-out” Cookie will be placed on Client’s computer or tablet indicating that Client do not want to receive interest-based advertising from NAI or DAA member companies. If Client delete Cookies on Client’s computer or tablet, Client may need to opt out again. For information about how to opt out of interest-based advertising on mobile device identifiers, please visit http://www.applicationprivacy.org/expressing-Clientr-behavioral-advertising-choices-on-a-mobile-device. Please note that even after opting out of interest-based advertising, Client may still see THE CHIASM NETWORK’s advertisements that are not interest-based (i.e., not targeted toward Client). Also, opting out does not mean that THE CHIASM NETWORK is no longer using Tracking Tools — THE CHIASM NETWORK still may collect information about Client’s use of the Services even after Client have opted out of interest-based advertisements and may still serve advertisements to Client via the Services based on information it collects via the Services.
4.3. How THE CHIASM NETWORK Responds to Browser “Do Not Track” Signals
Some web browsers (including Safari, Internet Explorer, Firefox and Chrome) incorporate a “Do Not Track” (DNT) or similar feature that signals to websites that a visitor does not want to have his/her online activity and behavior tracked. If a website operator elects to respond to a particular DNT signal, the website operator may refrain from collecting certain Personal Information about the browser’s user. Not all browsers offer a DNT option and there is currently no industry consensus as to what constitutes a DNT signal. For these reasons, many website operators, including THE CHIASM NETWORK, do not take action to respond to DNT signals. For more information about DNT signals, visit http://allaboutdnt.com.]
We use Client’s information, including Personal Health Information, to provide the Services to Client and to help improve them, including to:
We may disclose certain information that we collect from Client:
You expressly agree that we may use your PHI to:
You also agree that THE CHIASM NETWORK can disclose your PHI to:
If THE CHIASM NETWORK discloses your PHI, THE CHIASM NETWORK will require that the person or entity receiving you PHI agrees to only use and disclose your PHI to carry out its specific business obligations to THE CHIASM NETWORK or for the permitted purpose of the disclosure (as described above). THE CHIASM NETWORK cannot, however, guarantee that any such person or entity to which THE CHIASM NETWORK discloses your PHI or other information will not re-disclose it in ways that you or we did not intend or permit.