Skip to main content
search

SpinSci Healthcare Privacy Policy

We at SpinSci Technologies LLC (the “SpinSci,” “we,” “our,” or “us”) recognize the importance of protecting the privacy of personally identifiable information (“Personal Information” or “PII”). To that end, this Privacy Policy (“Policy”) discloses our practices regarding the collection, use, and disclosure of the PII we receive when you interact with our websites or applications or use our Services (collectively, the “Services”), or when you otherwise interact with us. Unless otherwise expressly agreed to in writing, your Personal Information will be processed according to the terms of this Policy. By using our Services, or by submitting information to us whether through our websites or applications (the “Site”) or in person, you accept the terms of this Policy.

The Electronic Health Record (EHR)

SpinSci Patient Access Care Solution provides a web-based dashboard implemented as part of a contact center with data connectors into the EHR for customers who enter into a Service Agreement (“Customers”) and then authorize EHR users, including contact center physicians, physician assistants, nurse practitioners and non-physician staff members (“Authorized Users”). Customers and Authorized Users are responsible for determining uses and disclosures of patient medical information maintained in the EHR, in accordance with their legal and professional responsibilities as health care professionals and state and federal medical privacy laws, including the federal Health Insurance Portability and Accountability Act (“HIPAA”). To the extent that SpinSci receives patient medical information via the EHR, that information is secured, used and disclosed in accordance with SpinSci’s obligations as a “business associate” under HIPAA guidelines.

SpinSci Patient Access Care Solution

Customers may choose to make the SpinSci Patient Access Care Solution available to Authorized Users to enable certain interactions between the Customer, Authorized Users and patients, including patient verification/authorization, discussing scheduling appointments, billing and other medical details in the EHR. Customers are solely responsible for the content of the patient’s medical record maintained in the EHR and determining the portion of the EHR data that may be viewed in the SpinSci Patient Access Care Solution.

Information We Collect

We are the sole owner of information collected by us or on our behalf. We collect several types of information, including:

Personal Information: We may collect personally identifiable information (“PII”) from you when you complete forms, navigate web pages, and in connection with other activities, services, features, or resources we make available. PII means any information that is linked or reasonably linkable to an identified or identifiable natural person. PII does not include publicly available information from government records, deidentified or aggregate information, or information excluded from the scope of “Personal Information” or “PII” as defined by applicable laws.

The types of PII we may collect, use, store, and disclose include the following categories of information:

Category
Contact Information and Identifiers
Financial Information
Internet Identifiers and Activities
Geolocation Data
Patient Access Details
Type of Information
[First Name, Last Name, Email, Phone Number, Postal Address, Last 4 numbers of Social Security Number, etc.]
[Credit/Debit Card Number, Expiration Date, Security Code]
[Browsing History, Search History, Interactions with the Site]
None
1. Patient scheduling information, patient billing information, prescription information, medication information

Sensitive PII: We may, if necessary, collect more sensitive categories of PII revealing: [racial or ethnic origin, and the processing of genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person’s sex life or sexual orientation] (“Sensitive PII”). Any Sensitive PII collected will only be used to the extent necessary to provide the Site and our Services to you, or as otherwise permitted by applicable data privacy laws and regulations.

Deidentified Information: We may collect deidentified information from you that may not by itself reasonably identify you as the source when you use our Services, or otherwise interact with us (“Deidentified Information”). Deidentified Information may include: (i) device type, (ii) device operating system, (iii) internet browser type, (iv) internet service provider, (v) referring/exit pages, (vi) date/time stamp, and (vii) clickstream information. We will take reasonable measures to ensure that Deidentified Information we collect is not personally identifiable and may not later be easily used to identify you as required by applicable law.

Children’s Information: We do not offer our Services or promote the Site or our Services to, nor do we intentionally collect or retain PII from, children who are younger than 18 years of age. If we discover that we have inadvertently collected information from a child under 18 years of age, we will promptly take all reasonable measures to delete such information from our systems.

How We Collect Information

The information we collect depends on how users use our Services or otherwise interact with us. We collect PII and Deidentified Information in various ways, including:

Directly from You: We collect PII when you voluntarily submit PII to us while completing forms and in connection with other activities, services, features, or resources we make available. The PII we collect depends on how you use our Services, or how you choose to communicate with us.

Through Your Use of the Site: We may collect PII and Deidentified Information that your browser transmits when you use our Services or otherwise interact with us. We may also collect Deidentified Information about how you use our Services or otherwise interact with us through the use of automated tracking technologies, such as session cookies, persistent cookies, and web beacons.

A cookie is a small data file that is transferred to an internet browser, which enables the Site to remember and customize your subsequent visits. We may use session cookies to make it easier for you to navigate the Site. Session cookies expire when you close your browser. We may also use persistent cookies to track and target your interests to enhance your experience on the Site. Persistent cookies remain on your device for an extended period of time.

Most internet browsers automatically accept cookies. However, you can instruct your internet browser to block cookies or to provide you with a warning prompt before you accept cookies from the Site. Please refer to your internet browser’s instructions to learn more about these functions. If you reject cookies, the functionality of the Site may be limited and you may not be able to participate in several of the Site’s features.

Additionally, we may use web beacons, which are single-pixel, electronic images embedded in the Site that allow us to gather information about your browsing activities on the Site.

From Third Party Services: We may collect PII about you from third parties whose privacy practices may differ from the practices described in this Policy. We do not make any representations or warranties concerning, and will not in any way be liable for, any informational content, products, services, software, or other materials available through third parties. Your use of third parties’ services and/or third party websites is governed by and subject to the terms and conditions of those third parties and/or third party websites. We encourage you to carefully review the privacy policies and statements of such third parties and/or third party websites.

How We Use Information

We may use Users’ PII for lawful business purposes to help enhance users’ experience. These purposes include:

Providing our Services: We may use your PII to fulfill the purpose for which you provide it. For example, if you give us an email address to sign up for communications from us, we will use that email information to contact you as requested. We may use phone numbers stored in the EHR to pull patient details for identification and verification. We may use MRN (or patient identifier) stored in the EHR to pull patient scheduling, billing details, and past medical history. We may also provide patient appointment or bill reminder services via voicemail and text notifications.

Direct Marketing: We will not use your PII to send you promotional materials.

Customer Service and User Communications: We may use your PII to help us respond to your inquiries, questions, requests, and support needs more efficiently.

User Experience Personalization:  We may use your information to personalize the Service to your interests and preferences. For example, we may use such information to tailor the content and information that we send or display to you, offer personalized recommendations, help, and instructions, or otherwise personalize your experience while using our Services. We may also use Users’ PII and/or Deidentified Information in the aggregate to analyze Users’ browsing and usage activities and patterns in order to understand Users’ interests and preferences with respect to our Services.  This will help us optimize your experience on our Services.

Business Optimization:  We may also use your feedback to improve our Services, including by monitoring, auditing, and analyzing trends, usage, and activities on the Site. All of this is done with the intention of making our Services more useful for you.

Safety and Security: We may use your PII and/or Deidentified Information to promote the safety and security of the Service, our users, and other parties. For example, we may use the information to authenticate users, facilitate secure payments, protect against fraud and abuse, respond to a legal request or claim, conduct audits, and enforce our terms and policies.

Laws Requirements: We may use your PII and/or Deidentified Information to respond to subpoenas, court orders, legal process or governmental regulations, or to establish or exercise our legal rights or defend against legal claims. We believe it is necessary to share information in order to investigate, prevent or take action regarding illegal activities, suspected fraud, situations involving potential threats to the physical safety of any person, or as otherwise required by law.

We will not collect additional categories of PII or use PII we collected for materially different, unrelated, or incompatible purposes without providing you notice.

How We Disclose Information

We may disclose users’ PII to certain third parties for a business purpose as described below. Otherwise, we do not sell, share, or rent PII and will not disclose users’ PII to third parties without your permission.

To Our Affiliates: We may disclose your PII to affiliates, including companies within the SpinSci group.

To Service Providers and Contractors: We may disclose your PII to service providers and contractors that assist us in providing user support, processing payments, shipping and delivering orders, communicating with users, , or that otherwise perform business functions on our behalf relating to our Services.

Law Enforcement, Safety, and Legal Processes:  We may disclose your PII to law enforcement or other government officials if it relates to a criminal investigation or alleged criminal activity.  We may also disclose your PII: (i) if required or permitted to do so by law; (ii) for fraud protection and credit risk reduction purposes; (iii) in the good-faith belief that such action is necessary to protect our rights, interests, or property; (iv) in the good-faith belief that such action is necessary to protect your safety or the safety of others; or (v) to comply with a judicial proceeding, court order, subpoena, or other similar legal or administrative process.

Sale or Acquisition of Assets:  If we become involved in a transaction involving the sale of our assets, such as a merger or acquisition, or if we are transferred to another company, we may disclose and/or transfer your PII as part of the transaction. If the surviving entity in that transaction is not us, the surviving company may use your PII pursuant to its own privacy policies, and those policies may be different from this Policy.

As Disclosed or Consented To: We may disclose your PII for any other purpose disclosed by us at the time you provide that PII, or otherwise with your consent.

Automatically Collected Information and Anonymous Information

Each time an interaction is processed via the SpinSci Patient Access Care Solution, SpinSci collects some information for reporting and to improve the overall quality of the solution.  SpinSci produces metrics for internal reporting that count, track, and aggregate patient activity.

Referrals/Links

SpinSci Patient Access Care Solution provides context management that may contain links to third-party applications such as Customer Relationship Management (CRM) systems, EHR systems, and other third-party applications.  This Policy does not apply to those third-party applications, and SpinSci recommends reviewing those third party applications individually. SpinSci assumes no responsibility for any material outside of our solution.

Security

SpinSci understands that storing patient data in a secure manner is essential. SpinSci Patient Access Care Solution accesses patient relevant data during an active session in its memory during the transaction.  This data is destroyed once the session is terminated.  During the time the patient data is in active memory, patient information is secured using industry-standard security protocols that safeguards any technical or administrative access against foreseeable risks, such as unauthorized use, access, disclosure, destruction or modification.

Policy Updates

We reserve the right to update this Policy from time-to-time in our sole discretion. If our privacy practices change materially in the future, we will post an updated version of the privacy policy to the Site. It is your responsibility to review this Policy for any changes each time you use the Site or our Services. We will not lessen your rights under this Policy without your explicit consent. If you do not agree with the changes made, we will honor any opt-out requests made after the Effective Date of a new privacy policy. Small changes or changes that do not significantly affect individual privacy interests may be made at any time and without prior notice.

Effective Date

This Policy was last modified as of the effective date printed above. This version of the privacy policy replaces and supersedes any prior privacy policies applicable to the Site and our Services.

Questions?

If you have any questions about this Policy or about SpinSci’s handling of your information, please contact privacy@spinsci.com

WordPress Lightbox
demo request