Hello Health believes in your right to have absolute control of who sees and contributes to your health information.
How we use your non-medical information
We use personal non-medical information in the file we maintain about you, and other information we obtain from your current and past activities on the Site. We do that in order to:
- Provide to you the services offered by the Site
- Resolve service and billing problems
- Troubleshoot problems
- Bill any amounts due from you
- Deliver information to you that, in some cases, is relevant to your interests, such as product news
- Customize your experience
- Detect and protect us against error, fraud and other criminal activity
- Provide you with system or administrative messages, and as otherwise described to you at the time of collection
Sometimes we’ll use email address or other contact information —but not your personal records— in order to:
- Get your feedback on our services
- Analyze our site usage
- Improve our content and product offerings
- Customize the site’s content, layout, and services
How we use your medical information
You are in control of your medical information. You choose the Health Professionals with whom you’d like to share your medical information. It’s as simple as that. No Health Professionals you have not chosen can view or contribute to your personally identifiable medical records.
Health Professionals with whom you have chosen to share your medical records use this information to:
- Obtain facts about your health
- Make decisions about your health
- Contribute to your medical records
According to HIPAA, you have a right to:
- View your medical records. HIPAA guarantees you can access your medical records within 30 days. With Hello Health, you can expect to browse your medical records, safely and securely, online.
- Have corrections added to your health information. If you believe your file is incomplete or incorrect, just send your Health Professional an email and start the discussion.
- Receive a notice that tells you how your health information may be used and shared.
- For certain purposes, you always have the decision whether or not to give permission for your health information to be shared before it’s used or shared. Your chosen Health Professionals using Hello Health do not use or share your personally identifiable medical records for any other purposes that aren’t part of normal, routine health care processes.
- Get a report on when and why your health information was shared for specific legal purposes.
What information do we collect?
The main reason we collect personal information from you is to give you a safe, smooth, efficient, and customized experience. That way you get the services and features that most likely meet your needs, safely and easily. We only collect personal data that we consider absolutely necessary to achieve that goal. Remember, you always have the option not to provide information by either choosing not to become a User, or by skipping the particular feature of the Site for which the information is being collected.
You can browse our site anonymously, but once you join up, we’ll ask you to provide:
- Various contact and identity information
- Billing information
- Medical information
- Other personal information as indicated (our forms indicate what info is required, and what info is optional.)
In addition, as you use the Site, you can enter or send us personal information. For example, if you are a Health Professional, you can enter your own address and other information. If you are a Member, you can send communications that describe symptoms.
Info on Third Parties
As you use the Site you can also, from time to time, enter personal information about third parties. For example, if you are a Member, you can enter personal information about your desired pharmacy.
Our Web Sites may contain links to other sites. Please be aware that Hello Health is not responsible for the privacy practices of such other sites, and this Web Site Privacy Statement does not apply to such sites. We encourage our users to be aware when they leave our site and to read the privacy statements of each and every web site that collects personally identifiable information.
If you are a Member, we collect your credit card information for billing purposes. And if you are a Member who wishes to pay amounts to a Health Professional on a recurring basis, we collect and store your credit card information for payment purposes.
Making Hello Health Better
We also automatically track certain information about you based upon your behavior on our Site. We use this information to do internal research on our Users’ demographics, interests, and behavior to better understand, protect and serve you and our community. This information may include browsing history and your IP address.
Our disclosure of your information
We will never sell or rent your information to third parties. But here are some of the ways your information may be disclosed:
Members and Customers, Etc.
In the normal operation of the site your medical information is disclosed to the Health Professionals you choose, and you can see information about Health Professionals, such as address, fees, a list of colleagues, as a Member. In general, the information you enter on the site is only available to the people you decide to share it with.
We use credit card and other payment information you submit to us on the site only to process payments you make through the site. Credit card information and other sensitive personal information required to process a credit decision is not used for any other purpose by us or our financial services providers (like Moneris or PayPal,) and will not be kept longer than necessary for providing the services.
Anonymized Aggregated Data
We collect and anonymize medical information including (but not limited to):
- Physical examination findings
- Treatment plans
We do disclose such information in a non-personally identifiable manner to Health Professionals. For example, we show Health Professionals the most common diagnoses in their city in the past week. However, in these situations, we absolutely will not disclose any information that could be used to identify you personally.
Legal Requests and Emergencies
We cooperate with law enforcement inquiries and demands for information that are made under force of law. If it’s what we believe is an emergency situation, we may provide personal information to law enforcement agencies. We may also provide personal information where required by statute, court order, legal process or lawful authority. Lastly, we may provide it to our legal counsel in connection with the foregoing.
Data Security and Integrity
Hello Health has a global hosting center that stores and processes personal health information in Massachusetts. Hello Health takes reasonable precautions to protect personal health information from loss, misuse and unauthorized access, disclosure, alteration, and destruction. Hello Health also makes reasonable efforts to keep personal health information reliable for its intended use, accurate, current, and complete.
Hello Health takes reasonable technical and organizational measures to protect the security of our users’ Personal Health Information. When a secure form asks users to enter Personal Information or Personal Health Information, that information is encrypted and protected with the encryption software standard in the industry – SSL. While on a secure page, the lock icon on the bottom of Web browsers such as Netscape Navigator and Microsoft Internet Explorer becomes locked, as opposed to un-locked, or open, when you are just ’surfing’. To learn more about SSL, please visit www.digicert.com. While we use SSL encryption to protect certain financial or Health information online, we also take reasonable steps to protect user information off-line. All of our users’ Personal Information, not just the financial information mentioned above, is subject to restricted access in our offices. Only employees who need the information to perform a specific job (for example, a customer service representative or sales representative) are granted access to Personal Information. Our employees must use passwords to gain access to Personal Information. Furthermore, all employees are regularly informed about our security and privacy practices. When new policies are added, our employees are notified and/or reminded about the importance we place on privacy, and what they can do to protect our users’ and customers’ Personal Information. Finally, we maintain reasonable technical and organizational measures to make sure that the servers on which we store Personal Health Information are kept in an access restricted, physically secure, and monitored environment. If you have any questions about the security at our website, you can send an email to firstname.lastname@example.org