EFFECTIVE AS OF JULY 31, 2018
Oxyensure LLC is committed to and required by law to protect the privacy and security of your protected health information (PHI). This Privacy Notice is specific to Oxyensure LLC website available at www.oxyensure.com and any related services or applications owned by Oxyensure (Service). It is delivered in accordance with the Health Insurance Portability and Accountability Act of 1996 (HIPAA). When we receive protected health information, such information will be subject to the requirements under HIPAA and the HITECH Act, and the regulations effective under each of those Acts.
This Privacy Notice (Notice) DESCRIBES how PHI about you may be used, disclosed and the rights you have to your data. Please review it carefully.
This Notice applies only to this Service. Please note that when you access any external links from www.oxyensure.com, they may have different privacy notices specific to those sites. We encourage you to read these privacy notices. This Service is intended for US patients only and will not serve patients located outside of the United States of America.
Information We Receive.
The PHI we receive is voluntarily provided by you and collected from health professionals with your consent. It includes your name, contact details, health data, device details, and health plan information.
- Name and Contact Details..This information is required when you choose to use the Service so we can contact you and schedule your first consult call. This information is also used to authenticate you when requesting health information from your physicians with your consent on your behalf. This information includes your name, address, telephone number, email and other contact information.
- Health Data. This information we collect from your physicians with your consent on your behalf and required as part of the Service we deliver.
- Device and Health Plan Details. This information you voluntarily provide so that we can use as part of the Service we deliver.
Your Rights and Responsibilities
You can exercise your rights to your PHI by contacting email@example.com. For your protection, we may need to verify your identity before acting on your request.
- You have the right to review and obtain a copy of your PHI. You can request to get a paper copy of your medical record and other health information we have about you. We will provide a copy or a summary of your health information, usually within 30 days of your request. We may charge a reasonable, cost-based fee.
- You have the right to amend your PHI. You can ask us to correct PHI about you that you think is incorrect or incomplete. In your request, please make clear what PHI you would like to have changed. We may say “no” to your request, but we’ll tell you why in writing within 60 days.
- Get a list of those with whom we’ve shared PHI with. You can ask for a list (accounting) of the times we’ve shared your PHI for six years or less prior to the date you ask, who we shared it with, and why. We will include all the disclosures except for those that may be relevant to treatment, payment, and health care operations, and certain other disclosures (such as any you asked us to make). We’ll provide one accounting a year for free but will charge a reasonable, cost-based fee if you ask for another one within 12 months. We will usually deliver the list within 30 days of your request.
- Restrict use or disclose of PHI. You can ask us not to use or share certain PHI for payment or our operations. We are not obligated by law to agree to your request, and we may say “no” if it would affect your care. If you pay for a service or health care item out-of-pocket in full, you can ask us not to share that information for the purpose of payment or our operations with your health insurer. We will say “yes” unless a law requires us to share that information.
- Request confidential communications. Within reason, we will act upon requests to contact you in a specific way (for example, home or office phone) or to send mail to a different address.
- Request a copy of this Privacy Notice. You can ask for a paper copy of this notice at any time, even if you have agreed to receive the notice electronically. We will provide you with a paper copy promptly.
- Request to terminate your use of the Service. You may terminate your use of the Service at any time.
- File a complaint if you believe your privacy rights have been violated. You can file a complaint with us if you feel we have violated your rights. You also have the right to file a complaint with the U.S. Department of Health and Human Services Office for Civil Rights by sending a letter to 200 Independence Avenue, S.W., Washington, D.C. 20201, calling 1-877-696-6775, or visiting www.hhs.gov/ocr/privacy/hipaa/complaints. We will not retaliate against you for filing a complaint.
How We Use Your PHI
We typically use your PHI in the following ways.
- To contact you via phone, email or mail.
- To deliver the Service.
- To request feedback on the Service.
- To conduct our healthcare operations.
- To comply with legal obligations.
- To process your payments.
- We may de-identify your PHI by removing information that could identify you, and use such de-identified information for any purpose, except where we are required to do otherwise under applicable law.
- We may use your PHI for purposes other than those permitted in this Notice but only after you consent to such use.
How we disclose your PHI
- We may disclose your PHI upon a corporate sale, merger, acquisition or dissolution involving Oxyensure.
- We may disclose PHI as required by law, and when requested by law enforcement authorities or regulatory agencies, or when we determine that such disclosure is appropriate under the circumstances.
- We may disclose PHI to protect our rights, privacy, safety, or property, and/or that of our affiliates, you or others; to protect our operations or those of any of our affiliates; to enforce this Notice; and to allow us to pursue available remedies or limit the damages that we may sustain; in each case in accordance with the law.
Who We may Share your PHI With
Most PHI will remain with us, but we may share it for the above mentioned purposes with the following recipients:
- Service Providers: PHI may be shared with third party service providers, who will process it on behalf of us for the purposes above. Such third parties include, but are not limited to, home healthcare providers, physicians’ administrative personnel, payroll service providers, IT service providers, banks, credit card companies, brokers, training providers, survey service providers, investigators, and data hosting providers and custodians.
- Government Authorities/ Law Enforcement Officials: PHI may be shared with government authorities and/or law enforcement officials if required for the purposes above, if mandated by law or if required for the legal protection of our legitimate interests in compliance with applicable laws.
- Other Unaffiliated Third Parties. We may disclose your PHI, if required for the purposes above, if mandated by law or if required for the legal protection of our legitimate interests in compliance with applicable laws.
Cookies and Other Technologies
More on Privacy
- Security: Oxyensure uses commercially reasonable standards of technology and operational security to protect your PHI. PHI submitted by you through the Service website is transmitted in encrypted form. Unfortunately, no data transmission or storage system can be guaranteed to be 100% secure. If you feel that your interaction with us is no longer secure, please immediately notify us in accordance with the “Contact Us” section, below.
- Potential data breaches: We will let you know promptly if a breach occurs that may have compromised the privacy or security of your PHI.
- PHP Data Retention: We will retain your PHI for the period necessary to fulfill the purposes of the Service as outlined in this Notice unless a different retention period is required or permitted by law.
Changes to the Notice
We may change this Notice by posting a new version of it at www.oxyensure.com. When we update it we will indicate the date it was last updated within the Notice itself. To the maximum extent permitted by applicable law, any changes will become effective when we post the updated Notice on the Service website, and your use of the Service following these changes means that you accept the Notice changes. On some occasions, we may also actively advise you of specific data handling activities or significant changes to this Notice, as required by applicable law.
If you do not agree with any change, you may terminate your account or case as provided above and may choose not to submit any further PHI. Where applicable law requires your consent to a specific change in this Notice that you have previously consented to, such change will not be applicable to you until you provide your consent.
If you have any questions about this Notice please, send us an email at firstname.lastname@example.org.
This Privacy Notice is dated July 31, 2018.