Effective Date of Policy: May 6, 2016
We collect certain information through the HIPAAgps website, located at www.hipaagps.com (our “Website”), including through the products, services, licensing and subscription ordering features provided on the Website. In some cases, the reason for collecting this information is to fulfill the requirements of the Uniform Electronic Transactions Act (UETA) of 1999, or the Electronic Signatures in Global and National Commerce Act (E-SIGN) of 2000.
We do not collect and indeed prohibit the submission of protected health information (“PHI”) anywhere on our Website.
- PII We Collect
We collect the following Personally Identifiable Information from users who buy our products or services: name, e-mail address, telephone number, address.
We also use “cookies” to collect certain information from all users, including Web visitors who don’t buy anything through our Website. A cookie is a string of data our system sends to your computer and then uses to identify your computer when you return to our Website. Cookies give us usage data, like how often you visit, where you go at the site, and what you do.
- We Use Third Parties
- Our Use of PII
We use your Personally Identifiable Information to create your account, to communicate with you about products and services you’ve purchased, to offer you additional products and services, and to bill you. We also use that information to the extent necessary to enforce our Website terms of service and to prevent imminent harm to persons or property.
Aggregate Data: We may utilize general information we gather from your Private Data, Public Data, Traffic Data, cookies, and the transactions we facilitate (the “Statistical Data”) for purposes of (i) allowing HIPAAgps and affiliates to conduct statistical analyses relating to use of our services, (ii) identifying broad demographic trends, (iii) improving our Website and services, (iv) sharing the Statistical Data (but not PII) to third parties for research purposes, (v) marketing or promoting the Website or our services, or (vi) any other lawful purpose. HIPAAgps does not utilize any Statistical Data to identify any parties, and you may not duplicate or disseminate the Statistical Data that you may receive from HIPAAgps. For instance, we may publish the total value of all transactions facilitated by us, including any transactions involving you, so long as such publication does not uniquely identify you.
Log Files: As is true of most Websites, we gather certain information automatically and store it in log files. This information includes internet protocol (IP) addresses, browser type, internet service provider (ISP), referring/exit pages, operating system, date/time stamp, and clickstream data. We use this information, which does not identify individual users, to analyze trends, to administer the site, to track users’ movements around the site and to gather demographic information about our user base as a whole. This data helps us improve our service to customers. We do not link this automatically collected data to personally identifiable information.
- Protection of PII
We employ the following data security tools to protect Personally Identifiable Information: Secure Sockets Layer (SSL) transmission with globally verified certificates issued by an authorized authority. Credit card information is not stored on our servers. Unfortunately, even with these measures, we cannot guarantee the security of PII. By using our Website, you acknowledge and agree that we make no such guarantee, and that you use our Website at your own risk.
We follow generally accepted industry standards to protect the personal information submitted to us, both during transmission and once we receive it. No method of transmission over the Internet, or method of electronic storage, is 100% secure however. Therefore, while we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.
- Contractor and Other Third Party Access to PII
We give certain independent contractors and business affiliates access to Personally Identifiable Information. Those contractors and affiliates assist us with business operations associated with delivery of HIPAAgps services and services of our affiliated partners. All contractors and affiliates are required to sign contracts in which they promise to protect PII using procedures reasonably similar to ours. (Users are not third party beneficiaries of those contracts.) We also may disclose PII to attorneys, collection agencies, or law enforcement authorities to address potential AUP violations, other contract violations, or illegal behavior. And we disclose any information demanded in a court order or otherwise required by law or to prevent imminent harm to persons or property. Finally, we may share PII in connection with a corporate transaction, like a merger or sale of our company, or a sale of all or substantially all of our assets or of the product or service line you received from us, or a bankruptcy.
As noted above, we compile Website usage statistics from data collected through cookies. We may publish those statistics or share them with third parties, but they don’t include PII.
Anti-Spam Policy: HIPAAgps is opposed to unsolicited commercial e-mail (“spam”). As part of our aggregated data analysis and efforts, or as part of our affiliated partner business relationships, HIPAAgps customers may receive e-mail related to HIPAA services. HIPAAgps does not provide interfaces or tools in support of unsolicited bulk email campaigns. If you believe that you have received unsolicited e-mail from us or an affiliate, please contact email@example.com
- Accessing and Correcting Your PII
You can access and change any Personally Identifiable Information we store through your “My Account” page.
- California Do Not Track
We abide by the disclosures and practices of WP Engine concerning its compliance with Do Not Track (DNT) settings. For additional information please direct your questions to firstname.lastname@example.org.