Last Modified: July 27, 2017
- Personal Information
- Information Collection
phase2body collects Personal Information from you through the Site to allow us to provide marketing and promotional services that will most likely meet your needs and preferences. We only collect Personal Information about you that we consider necessary for achieving this purpose.
In general, you can browse the Site and decide to not provide us any Personal Information. Of course, you will not be able to view any PHR Data without providing us Personal Information. If you agree to provide us with Personal Information, you are no longer anonymous to us. If you choose to use certain services through this Site, we may require you to provide contact and identity information, and other Personal Information as indicated on the forms throughout the Site. Where possible, we indicate which fields are required and which are optional. You always have the option to not provide information by choosing not to use a particular service.
We may track certain information based upon your behavior on the Site. We use this information to do internal research on our users’ demographics, interests, and behavior to better understand our customers. This information may include the URL that you just came from, which URL you go to next, your computer browser information, and your IP address.
If you send us personal correspondence, such as emails or letters, or if other users or third parties send us correspondence about your activities or postings on the Site, we may collect and retain such information in a file specific to you.
- PHR Data
When you register for the Website via the Site, the registration process requires you to create a user profile and choose a user name and password for your account, which you should keep and maintain as confidential. If you choose to share your user name or password or user profile through the Care Team access feature, you understand that those individuals to whom you share that information will have access to your PHR Data and will be able to add to your PHR Data as though they were you. You will be responsible for all activities by users resulting from sharing or not maintaining the confidentiality of your user name or password.
If you are a registered user of the Website, your PHR Data (or that of the person for whom you are the legal representative) currently stored electronically in your medical provider records will become accessible to phase2body in order to provide you access to such information through the Website. Your electronic health records are stored in the Website or Site, and a copy of them is displayed via the Website when you are logged in with your user name and password.
You can review and change your personal information by logging into the Website and visiting your account profile page.
You may also send us an email at email@example.com to request access to, correct or delete any personal information that you have provided to us or that we have collected. We cannot delete your personal information except by also deleting your user account. We may not accommodate a request to change information if we believe the change would violate any law or legal requirement or cause the information to be incorrect. phase2body may keep your personal information until your user account is deleted.
- Use and Disclosure of Your Personal Information
We use your Personal Information, including your email address, to facilitate our services. You agree that we may use Personal Information, including your email address, to improve our marketing and promotional efforts, to analyze site usage, to improve our content and service offerings, and to customize the Site’s content, layout, and services.
We will not disclose your Personal Information to third parties except to:
- Service providers who are bound by law or contract to protect the Personal Information and are only allowed to use the Personal Information in accordance with the terms of our service agreements with them.
- Effect a merger, acquisition, or otherwise; to support the sale or transfer of business assets; to enforce our rights or protect our property; to protect the rights, property or safety of others, investigate fraud, respond to a government request; or as needed to support auditing, compliance, and corporate governance functions. We may also disclose Personal Information to defend ourselves in litigation or a regulatory action, and when required or advised to do so by law, such as in response to a subpoena, or similar legal process, including to law enforcement agencies, regulators, and courts in the United States and other countries where we operate.
- We encourage business partners to adopt and post privacy policies. However, the use of your Personal Information by such parties is governed by the privacy policies of such parties and is not subject to our control.
We may also disclose information about you that is not personally identifiable. For example, we may provide our business partners, or other third parties with reports that contain aggregated and statistical data about our users.
- Aggregate Data
We may aggregate and de-identify in accordance with HIPAA PHR Data, either alone or with other data to create anonymous, de-identified “aggregate data” regarding the users of our Site and Website. Aggregate and de-identified data is information that describes the habits, treatment plans, usage patterns, other medical record data and/or demographics of users as a group but does not reveal the identity of particular users. This data will not identify you, but will be used as statistical information to determine such things as user demographics and usage patterns of our Site and Website. phase2body may use aggregate data to understand the needs of our community of users and determine what kinds of programs and services we can help provide. Aggregate data may also be provided or sold to third parties for research purposes.
- Other Use and Ownership
We also reserve the right to share de-identified aggregate data collected from this Site or Website with third parties for other research purposes, to the extent permitted by applicable law including, but not limited to, the requirements under HIPAA. In the case of PHR Data, pursuant to phase2body’s business associate agreement with the applicable medical provider, your information may be shared with your applicable medical provider.
- Communications from the Site
We may occasionally send you information on our services offerings. Out of respect for your privacy, we provide you a way to unsubscribe from each of these communications. If you no longer wish to receive our promotional communications, you may opt-out of receiving them by following the instructions included in each such communication or by contacting us.
The security of your Personal Information is important to us. We follow generally accepted industry standards to protect personal information, including your email address, submitted to us, both during transmission and once we receive it. However, no method of transmission over the Internet, or method of electronic storage, is 100% secure. Therefore, while we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security. Accordingly, and while no web site can guarantee security, we maintain physical, administrative, electronic, technical and procedural safeguards to help protect your personal information collected via the Website as required by applicable law. While we cannot guarantee that loss, misuse or alteration to data will not occur, we use industry standards, such as Secure Socket Layers (“SSL”) technology, to help safeguard against such occurrences. It is recommended that you personally keep a backup of your PHR Data. In certain areas, the information passed between your browser and our system is encrypted with SSL technology (which covers any messages, PII or communications a person directs to phase2body or the clinician team) to create a protected connection between you and our website to ensure confidentiality.
Our data center is both physically and electronically secured. Our servers are protected from open access to the Internet by using firewall and encryption technology. We limit access to personally identifiable information about you to our employees and third-party agents, who we reasonably believe need to have access to your information to provide you with the information or services you request via the Website.
In the event that a breach in our security systems occurs and there is a possibility that an unauthorized person acquires your personal information, we will notify you of such a breach as may be required by applicable law.
In order to help maintain security, you should never share your user ID or password and should always sign out when you are finished using the Website.
We will maintain your information and allow you to request updates at any time by logging into your Website account to access your information. We will also take steps to make sure that any updates that you provide are processed in a timely and complete manner.
- Log Files
As is true of most websites, we gather certain information automatically and store it in log files. This information includes internet protocol (IP) addresses, browser type, internet service provider (ISP), referring/exit pages, operating system, date/time stamp, and clickstream data. We use this information, which does not identify individual users, to analyze trends, to administer the site, to track users’ movements around the site, and to gather demographic information about our user base as a whole. We do not link this automatically-collected data to personally identifiable information. We track trends in users’ usage and volume statistics to create a more efficient and usable site and product offerings, and to determine areas of the site or our services that could be improved to enhance the user and customer experience. Log files are used on the Site, and in any link to the Site from an email.
- Cookies and Related Technologies
When you use this Site, we collect certain information by automated or electronic means, using technologies such as cookies, browser analysis tools, and web server logs. As you use this Site, or our applications, your browser and other electronic devices communicate with servers operated by us and our services providers to coordinate and record the interactivity and fill your requests for services and information.
The information from cookies and related technology is stored in web server logs and also in web cookies kept on your computers or mobile devices, which are then transmitted back to this Site by your computers or mobile devices. These servers are operated and the cookies managed by us or our service providers.
For example, when you visit this Site, phase2body and our service providers and business partners may place cookies on your computers or mobile devices. Cookies allow us to recognize you when you return, and track and target your interests in order to provide a customized experience. They also help us provide a customized experience and help us to detect certain kinds of fraud. A “cookie” is a small amount of information that a web server sends to your browser that stores information about your account and preferences.
Some cookies are temporary, whereas others may be configured to last longer. “Session” cookies are temporary cookies used for various reasons, such as to manage page views. Your browser usually erases session cookies once you exit your browser. “Persistent” cookies are more permanent cookies that are stored on your computers or mobile devices even beyond when you exit your browser. We use persistent cookies for a number of purposes, such as retrieving certain information you have previously provided, and storing your preferences.
We or certain third parties also may use these technologies to collect information about your activities over time and across third-party websites, apps, or other online services (Online Behavioral Tracking) in accordance with the guidelines set forth by the Digital Advertising Alliance (the “DAA”). We do not control these third parties’ tracking technologies or how they may be used. Certain third-party advertising networks, such as Facebook Ads, Google AdSense and AdRoll, use the collected information to serve ads to you on our behalf on other sites throughout the Internet. These cookies do not contain personally identifiable information or PHR Data, nor are they linked to any personal information collected by us.
If you opt-out of AdRoll or an NAI third-party advertising network, you will no longer receive ads based on your browsing history from that network. You may, however, continue to receive generalized online advertising.
- Manage Your Security Settings
You may manage how your browser handles cookies and related technologies by adjusting its privacy and security settings. Browsers are different, so refer to instructions related to your browser to learn about cookie-related and other privacy and security settings that may be available. You can opt-out of being targeted by certain third party advertising companies online at www.networkadvertising.org/consumer/opt_out.asp or http://preferences.truste.com/truste/.
You may manage how your mobile browser handles cookies and related technologies by adjusting your mobile device privacy and security settings. Please refer to instructions provided by your mobile service provider or the manufacturer of your device to learn how to adjust your settings.
- Links to Other Sites
This Site may contain links to other sites that are not owned or controlled by phase2body. Please be aware that we are not responsible for the privacy practices of such other sites. We encourage you to be aware when you leave our Site and to read the privacy statements of each and every website that collects personally identifiable information. This privacy statement applies only to information collected by this Site.
- Notice to Residents of Countries outside the United States of America
- Changes in this Privacy Statement
- Important Note Regarding Children
This Site and Website is not directed toward children under 18 years of age and phase2body does not knowingly collect or use information from children under 18 through this Site or Website. No one under age 18 may provide any information to the Site and Website. If you are under 18, do not use or provide any information on this Website or on or through any of its features/register on the Website, make any purchases through the Website, use any of the interactive or public comment features of this Website or provide any information about yourself to us, including your name, address, telephone number, email address, or any screen name or user name you may use. If Any information submitted via the Website regarding a minor under the age of 18 must be submitted by the minor’s legal representative. To the extent permitted by applicable state law, minors may access their PHR Data through their medical provider. If we learn we have collected or received personal information from a minor under 18 without verification of consent from the minor’s legal representative, we will delete that information. If you believe we might have any information from or about a minor under 18, please contact us at firstname.lastname@example.org.