PRIVACY POLICY
MedSaaS, LLC ('we', or 'us' or the ‘Company') provides
this Privacy Policy to explain how we collect, use, share and protect the
information you provide and that we collect on the CareCheck Website
(‘Website’). Such information is herein referred to as “User Information” and
any User Information that in context may be identified as belonging to or
relating to you is herein referred to as “Personally Identifiable Information.”
BY USING THE WEBSITE OR OTHERWISE GIVING US YOUR INFORMATION, YOU AGREE TO THE
TERMS OF THIS PRIVACY POLICY. Please review this Policy carefully to ensure
your understanding of our privacy practices.
1. Information we collect
1.1 INFORMATION YOU PROVIDE
To use
the Website you may be asked to provide certain Personally Identifiable
Information. We may collect some or all of this information through various
forms and in various places through the Website, including enrollment and contact
us forms, or when you otherwise interact with us.
1.2 INFORMATION WE COLLECT AS YOU ACCESS AND USE the
WEBSITE
(a)
Generally. In addition to any Personally Identifiable Information or other
information that you choose to submit to us, we and our third-party service
providers may use a variety of technologies that automatically (or passively)
collect certain non-personally identifiable User Information whenever you visit
the Website ('Non-Personally Identifiable Information'). Non-Personally
Identifiable Information may include the browser that you are using or the URL
that referred you to the Website.
(b) Geo-Location Information. We may collect information
as you navigate our Website which may include geographic location.
(c) Cookies. A cookie is a data file placed on a computer
or other device when it is used to access our Website. Cookies may be used for
many purposes, including, without limitation, remembering you and your
preferences and tracking your visits to our web pages. Cookies work by
assigning a number to the user that has no meaning outside of the assigning
website. If you do not want information to be collected through the use of
cookies, your browser allows you to deny or accept the use of cookies. Cookies
can be disabled or controlled by setting a preference within your web browser
or on your device. If you choose to disable cookies on your device, some
features of our Website may not function properly or may not be able to
customize the delivery of information to you. You should be aware that we
cannot control the use of cookies (or the resulting information) by third parties,
and use of third-party cookies is not covered by our Privacy Policy.
(d) Embedded Scripts. An embedded script is programming
code that is designed to collect information about your interactions with the
Website, such as the links you click on. The code is temporarily downloaded
onto your device from our web server or a third-party provider, is active only
while you are connected to the Website, and is deactivated or deleted
thereafter.
2. How We Use The Information Described in
This Policy
2.1 TO COMMUNICATE WITH YOU.
We use
the Personally Identifiable Information you provide us to communicate with you
in response to your inquiries. We will communicate with you by email,
telephone, or SMS or text message (with your consent), in accordance with your
requests.
2.2 IP ADDRESS.
We use
your Internet Protocol (IP) address to help diagnose problems with our computer
server, and to administer our Website. Your IP address is used to help identify
you, but contains no Personally Identifiable Information about you.
2.3 MISCELLANEOUS.
In
addition, we may use User Information: (1) to provide users with requested
information or provide special offers or promotional materials on behalf of us
or third parties; (2) to improve the Website, to customize user experience with
the Website, or to serve specific content that is most relevant to a user; (3)
to contact users with regard to use of the Website (4) for internal business
purposes; (5) for inclusion in our data analytics; and (6) for purposes
disclosed at the time users provide us with their information, or as otherwise
set forth in this Privacy Policy.
3. How and When We Disclose User Information
to Third Parties
3.1 GENERALLY
We do not
sell, share, rent or trade the information we have collected about you,
including Personally Identifiable Information, other than as disclosed within
this Privacy Policy or at the time you provide your information. We do not use
your Personally Identifiable Information for direct marketing purposes or share
your Personally Identifiable Information with third parties for those third
parties' direct marketing purposes unless you consent to such use or sharing.
We may share Non-Personally Identifiable Information, such as aggregated user
statistics and log data, with third parties for industry analysis, demographic
profiling, to deliver targeted advertising about other products, or for other
business purposes.
3.2 WHEN YOU AGREE TO RECEIVE INFORMATION FROM THIRD
PARTIES.
You may
be presented with an opportunity provide your Personally Identifiable
Information in order to receive information and/or marketing offers directly
from parties unrelated to us. If you do agree to have your Personally
Identifiable Information shared, your Personally Identifiable Information will
be disclosed to such third parties and all information you disclose will be
subject to those third parties' privacy policies. We are not responsible for
the privacy policies and practices of such third parties and, therefore, you
should review the privacy policies and practices of such third parties prior to
agreeing to receive such information from them. If you later decide that you no
longer want to receive communication from a third party, you will need to
contact that third party directly.
3.3 THIRD PARTIES
PROVIDING SERVICES ON OUR BEHALF.
We use
third party companies and individuals to facilitate our Website, engage in
anti-fraud and security measures, provide customer support, provide
geo-location information to our drivers, perform technical maintenance,
database management, or web analytics. We may provide these vendors with access
to User Information, including Personally Identifiable Information. This
information sharing is limited to only the information needed by the vendor to
carry out the services they are performing for you or for us. Each of these
vendors are obligated not to disclose or use Personally Identifiable
Information for any other purpose.
3.4 ADMINISTRATIVE AND LEGAL REASONS.
If we
receive requests for information from government and law enforcement officials
and private parties in regard to enforcing and complying with the law and in
connection with private lawsuits, we will disclose User Information to these
parties as we reasonably determine is necessary to comply with applicable law.
For example, we may disclose User Information: (i) to
satisfy any applicable law, regulation, subpoenas, governmental requests or
legal process; (ii) to protect and/or defend our Terms and other policies;
(iii) to protect the safety, rights, property or security of the Company, our
Website or any third party; (iv) to protect the safety of the public for any
reason; (v) to detect, prevent or otherwise address fraud, security or
technical issues; and/or (vi) to prevent or stop activity we may consider to
be, or to pose a risk of being, an illegal, unethical, or legally actionable
activity.
3.5 BUSINESS TRANSFER
We may,
to the extent permitted by law, share all User Information with our parent,
subsidiaries and affiliates for internal, business related (non-marketing)
purposes. We also reserve the right to disclose and transfer all User
Information: (i) to a subsequent owner, co-owner or
operator of the Website; or (ii) in connection with a corporate merger,
consolidation, restructuring, the sale of substantially all of our interests
and/or assets or other corporate change, including, during the course of any
due diligence process.
4. A Note About Children
Our Website is not directed to nor intended for use by
children. As such, we do not knowingly collect Personally Identifiable
Information from anyone under the age of 16. If we discover that we have
collected Personally Identifiable Information from a person under 16, we will
delete that information immediately. If you become aware that your child or any
child under your care has provided us with information without your consent,
please contact us.
5. How we Protect Your Information
User Information is stored within our databases using
standard, industry-wide, commercially reasonable security practices and
procedures such as encryption, firewalls and SSL (Secure Socket Layers). We
also implement security measures required by law. However, as effective as such
technology and efforts may be, no security system is infallible and impervious
from attack or hacking. Therefore, we cannot guarantee the security of our
databases, nor can we guarantee that User Information won't be intercepted while
being transmitted to us over the Internet or wireless communication or accessed
when stored on our or our service providers' servers and any information you
transmit to us, you do at your own risk.
6. Changes to this Policy
From time to time, we may update this Privacy Policy to
reflect changes to our information practices. Any changes will be effective
immediately upon the posting of the revised Privacy Policy. We encourage you to
periodically review this page for the latest information on our privacy
practices.
7. Privacy Notice for California Residents
Last Reviewed on: January 1, 2022.
This Privacy Notice for California Residents Supplements
the information contained in the Privacy Policy and applies solely to all
visitors, users, and others who reside in the State of California ('consumers'
or 'you'). We adopt this notice to comply with the California Consumer Privacy
Act of 2018 (CCPA) and any terms defined in the CCPA have the same meaning when
used in this Notice.
Information We Collect
Our Website collects information that identifies, relates
to, describes, references, is reasonably capable of being associated with, or
could reasonably be linked, directly or indirectly, with a particular consumer,
household, or device ("personal information"). Personal
information does not include:
•
Publicly
available information from government records.
•
Deidentified
or aggregated consumer information.
•
Information
excluded from the CCPA's scope, like
◦
health
or medical information covered by the Health Insurance Portability and
Accountability Act of 1996 (HIPAA) and the California Confidentiality of
Medical Information Act (CMIA) or clinical trial data.
◦
personal
information covered by certain sector-specific privacy laws, including the Fair
Credit Reporting Act (FCRA), the Gramm-Leach-Bliley Act (GLBA) or California
Financial Information Privacy Act (FIPA), and the Driver's Privacy Protection
Act of 1994.
In particular, our Website has collected the following
categories of personal information from users within the last twelve (12)
months:
Identifiers such as name, street address and ZIP code, email
address, and IP address.
Personal
information such as name.
|
Category |
Examples |
Collected |
|
A. Identifiers. |
Identifiers include name, email
address, street address, phone number, and IP address. |
YES |
|
B. Personal information categories
listed in the California Customer Records statute (Cal. Civ. Code §
1798.80(e)). |
Any information that identifies,
relates to, describes, or is capable of being associated with, a particular
individual, including, but not limited to, his or her name. |
YES |
|
C. Protected classification
characteristics under California or federal law. |
Race, religion, sexual
orientation, gender identity, gender expression, age. |
|
|
D. Commercial information. |
Records of personal property,
products or services purchased, obtained, or considered, or other purchasing
or consuming histories or tendencies |
NO |
|
E. Biometric information. |
Genetic, physiological,
behavioral, and biological characteristics, or activity patterns used to
extract a template or other identifier or identifying information, such as,
fingerprints, faceprints, and voiceprints, iris or retina scans, keystroke,
gait, or other physical patterns, and sleep, health, or exercise data. |
NO |
|
F. Internet or other similar
network activity. |
Browsing history, search history,
and information regarding a consumer’s interaction with an Internet website,
application, or advertisement. |
YES |
|
G. Geolocation data. |
Street address and ZIP code. |
YES |
|
H. Sensory data. |
Audio, electronic, visual,
thermal, olfactory, or similar information. |
NO |
|
I. Professional or
employment-related information. |
Current or past job history or
performance evaluations. |
NO |
|
J. Non-public education
information (per the Family Educational Rights and Privacy Act (20 U.S.C.
Section 1232g, 34 C.F.R. Part 99)). |
Education records directly related
to a student maintained by an educational institution or party acting. |
NO |
|
K. Inferences drawn from other
personal information. |
Profile reflecting a person's
preferences, characteristics, psychological trends, predispositions,
behavior, attitudes, intelligence, abilities, and aptitudes. |
NO |
We obtain the categories of personal information listed
above from the following categories of sources:
•
Directly
from you. For example, via forms you complete as part of drug coupon
generation.
•
Indirectly
from you. For example, from observing your actions on our Website.
Use of Personal Information
•
To
assist your health care providers in providing your health care.
•
To
assist your health care providers in obtaining insurance and other
reimbursement for their services to you.
•
To
respond to law enforcement requests and as required by applicable law, court
order, or governmental regulations.
•
As
described to you when collecting your personal information or as otherwise set
forth in the CCPA.
•
To
evaluate or conduct a merger, divestiture, restructuring, reorganization,
dissolution, or other sale or transfer of some or all of our assets, whether as
a going concern or as part of bankruptcy, liquidation, or similar proceeding,
in which personal information held by us about our Website users is among the
assets transferred.
We will not collect additional categories of personal
information or use the personal information we collected for materially
different, unrelated, or incompatible purposes without providing you notice.
Sharing Personal Information
We may disclose your personal information to a third party
for a business purpose. When we disclose personal information for a business
purpose, we enter a contract that describes the purpose and requires the
recipient to both keep that personal information confidential and not use it
for any purpose except performing the contract.
Disclosures of Personal Information for a
Business Purpose
In the
preceding twelve (12) months, the Company has not disclosed the any personal
information for a business purpose:
Sales of Personal Information
In the
preceding twelve (12) months, Company has not sold personal information.
Your Rights and Choices
The CCPA provides consumers (California residents) with
specific rights regarding their personal information. This section describes
your CCPA rights and explains how to exercise those rights.
Access to Specific Information and Data
Portability Rights
You
have the right to request that we disclose certain information to you about our
collection and use of your personal information over the past 12 months. Once
we receive and confirm your verifiable consumer request, we will disclose to
you:
•
The
categories of personal information we collected about you.
•
The
categories of sources for the personal information we collected about you.
•
Our
business or commercial purpose for collecting that personal information.
•
The
categories of third parties with whom we share that personal information.
•
If
we disclosed your personal information for a business purpose, a list
identifying the personal information categories that each category of recipient
obtained.
Deletion Request Rights
You have
the right to request that we delete any of your personal information that we
collected from you and retained, subject to certain exceptions. Once we receive
and confirm your verifiable consumer request, we will delete (and direct our
service providers to delete) your personal information from our records, unless
an exception applies. We may deny your deletion request if retaining the
information is necessary for us or our service provider(s) to:
1.
Complete
the transaction for which we collected the personal information, provide a good
or service that you requested, take actions reasonably anticipated within the
context of our ongoing business relationship with you, or otherwise perform our
contract with you.
2.
Detect
security incidents, protect against malicious, deceptive, fraudulent, or
illegal activity, or prosecute those responsible for such activities.
3.
Debug
products to identify and repair errors that impair existing intended
functionality.
4.
Exercise
free speech, ensure the right of another consumer to exercise their free speech
rights, or exercise another right provided for by law.
5.
Comply
with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546 et.
seq).
6.
Engage
in public or peer-reviewed scientific, historical, or statistical research in
the public interest that adheres to all other applicable ethics and privacy
laws, when the information's deletion may likely render impossible or seriously
impair the research's achievement, if you previously provided informed consent.
7.
Enable
solely internal uses that are reasonably aligned with consumer expectations
based on your relationship with us.
8.
Comply
with a legal obligation.
9.
Make
other internal and lawful uses of that information that are compatible with the
context in which you provided it.
We do not provide these deletion rights for B2B personal
information.
Exercising Access, Data Portability, and
Deletion Rights
To
exercise the access, data portability, and deletion rights described above,
please submit a verifiable consumer request to us by either:
•
Calling
us at 908-305-3080.
•
Emailing
us at info@MedSaaS.com. Please include the following fields
in your email:
◦
Full
name.
◦
Email
address
◦
Date
of birth
◦
Full
address.
◦
Phone
number (Optional).
Only you, or someone legally authorized to act on your
behalf, may make a verifiable consumer request related to your personal
information. You may also make a verifiable consumer request on behalf of your
minor child. To designate yourself as an authorized agent, please attach a
verifiable notarized document granting you permission to submit any such
request on the minor’s behalf.
You may only make a verifiable consumer request for access
or data portability twice within a 12-month period. The verifiable consumer
request must:
•
Provide
sufficient information that allows us to reasonably verify you are the person
about whom we collected personal information or an authorized representative,
which may include fields listed above.
•
Describe
your request with sufficient detail that allows us to properly understand,
evaluate, and respond to it.
We cannot respond to your request or provide you with
personal information if we cannot verify your identity or authority to make the
request and confirm the personal information relates to you.
We will only use personal information provided in a
verifiable consumer request to verify the requestor's identity or authority to
make the request.
Response Timing and Format
We
endeavor to respond to a verifiable consumer request within forty-five (45)
days of its receipt. If we require more time (up to 90 days), we will inform
you of the reason and extension period in writing. We will deliver our written
response by mail or electronically, at your option.
Any disclosures we provide will only cover the 12-month
period preceding the verifiable consumer request's receipt. The response we
provide will also explain the reasons we cannot comply with a request, if
applicable. For data portability requests, we will select a format to provide
your personal information that is readily useable and should allow you to
transmit the information from one entity to another entity without hindrance.
We do not charge a fee to process or respond to your
verifiable consumer request unless it is excessive, repetitive, or manifestly
unfounded. If we determine that the request warrants a fee, we will tell you
why we made that decision and provide you with a cost estimate before
completing your request.
Non-Discrimination
We will not discriminate against you for exercising any of
your CCPA rights. Unless permitted by the CCPA, we will not:
•
Deny
you services.
•
Charge
you different prices or rates for services, including through granting
discounts or other benefits, or imposing penalties.
•
Provide
you a different level or quality of services.
•
Suggest
that you may receive a different price or rate for services or a different
level or quality of services.
Changes to Our Privacy Notice
We reserve the right to amend this privacy notice at our
discretion and at any time. When we make changes to this privacy notice, we
will post the updated notice on the Website and update the notice's effective
date. Your continued use of our Website following the
posting of changes constitutes your acceptance of such changes.
Contact Information
If you have any questions or comments about this notice,
the ways in which MedSaaS collects and uses your information described here and
in the Privacy Policy
Phone: 908-305-3080
Email: info@MedSaaS.com
10. Notice to Users Outside of the United
States
If you are located outside of the United States, please
note that information we collect, including Personally Identifiable
Information, will be transferred to, processed and stored in the United States.
The data protection laws in the United States may differ from those of the
country or jurisdiction in which you are located, and your Personally
Identifiable Information may be subject to access requests from governments,
courts, or law enforcement in the United States according to laws of the United
States. By using the Website or providing us with any information, you expressly
and unambiguously consent to the transfer, processing and storage of your
information in the United States.
INTERNATIONAL USERS
This site
is hosted and operated by MedSaaS, LLC in the United States. If you are
accessing or providing information to our site from a location outside of the
United States, the privacy and data security laws of the United States shall
govern, and as such, the laws of your jurisdiction will not apply. By visiting
this Website or providing your information, you understand and unambiguously
agree to the collection, storage and processing of your information in the
United States.
MedSaaS, LLC
450
Shrewsbury Plaza #111
Shrewsbury,
NJ 07702
Phone: 908-305-3080
Email: info@MedSaaS.com
[MG1]We do or will collect DOB info