HCI TERMS AND CONDITIONS POLICIES
These policies outline how HCI collects and uses your information. We provide these policies for your use and information. If you need assistance with any of the policies outlines here, please contact us.
Please read this disclaimer (“disclaimer”) carefully before using the Healthcare Information, LLC website (“website”, “service”) operated by HEALTHCARE INFORMATION, LLC. (“us”, “we”, “our”).
The content displayed on the website is the intellectual property of HEALTHCARE INFORMATION, LLC. You may not reuse, republish, or reprint such content without our written consent.
All information and posted policies posted are merely for educational and informational purposes. It is not intended as a substitute for professional advice. Should you decide to act upon any information on this website, you do so at your own risk.
While the information on this website has been verified to the best of our abilities, we cannot guarantee that there are no mistakes or errors.
We reserve the right to change this policy at any given time, of which you will be promptly updated if you have given us your contact information through a registration or email contact. If you want to make sure that you are up to date with the latest changes, we advise you to frequently visit this page. We will clearly mark any updates with the date of the change.
This privacy notice discloses the privacy practices for Healthcare Information, LLC. This privacy notice applies solely to information collected by this website. It will notify you of the following:
- What personally identifiable information is collected from you through the website, how it is used and with whom it may be shared.
- What choices are available to you regarding the use of your data.
- The security procedures in place to protect the misuse of your information.
- How you can correct any inaccuracies in the information.
INFORMATION COLLECTION, USE, AND SHARING
We are the sole owners of the information collected on this site. We only have access to collect information that you voluntarily give us via email or another direct contact from you. We will not sell or rent this information to anyone.
We will use your information to respond to you, regarding the reason you contacted us. We will not share your information with any third party outside of our organization, other than as necessary to fulfill your request, e.g., to ship an order.
YOUR ACCESS TO AND CONTROL OVER INFORMATION
You may opt-out of any future contacts from us at any time. You can do the following at any time by contacting us via the email address: firstname.lastname@example.org or phone number: 800-783-8105 given on our website to:
- See what data we have about you if any.
- Change/correct any data we have about you.
- Have us delete any data we have about you.
- Express any concern you have about our use of your data.
We take precautions to protect your information. When you submit sensitive information via the website, your information is protected both online and offline.
Wherever we collect sensitive information (such as credit card data), that information is encrypted and transmitted to us in a secure way. You can verify this by looking for a lock icon in the address bar and looking for “https” at the beginning of the address of the Web page.
While we use encryption to protect sensitive information transmitted online, we also protect your information offline. Only employees who need the information to perform a specific job (for example, billing or customer service) are granted
access to personally identifiable information. The computers/servers in which we store personally identifiable information are kept in a secure environment.
In order to use the Dealer Portal pages and other pages of the website as directed, a user must first complete the registration form. During registration, a user is required to give certain information (such as name and email address). This information is used to contact you about the products/services on our site in which you have expressed interest, or to download or read our product and company literature and other materials we make available. You may also provide other demographic information (such as gender or age) about yourself when asked on a form, but this information is optional and is not required.
We request information from you on our order form or on forms needed to return an item. To buy from us or return an item(s) to us, you must provide contact information (like name and shipping address) and often provide financial information (like credit card number, expiration date). This information is used for billing purposes and to fill your orders. If we have trouble processing an order, we’ll use this information to contact you.
In compliance with the CAN-SPAM Act of 2003, you have the right to opt-out of email correspondence we may send from time to time, with the exclusion of email contacts regarding orders we may process for you. Opt-out or “unsubscribe” directions will be in the correspondence or contact us directly and we will promptly comply.
We use “cookies” on this site. A cookie is a piece of data stored on a site visitor’s hard drive to help us improve your access to our site and identify repeat visitors to our site. For instance, when we use a cookie to identify you, you would not have to log in a password more than once, thereby saving time while on our site unless you clear your browsing history and cache. Cookies can also enable us to track and target the interests of our users to enhance the experience on our site. Usage of a cookie is in no way linked to any personally identifiable information on our site.
We DO NOT share aggregated demographic information with our partners and advertisers.
We use an outside shipping company to ship orders, and a credit card processing company to bill users for goods and services. These companies do not retain, share, store or use personally identifiable information for any secondary purposes beyond filling your order. Their collection of information is governed by their own terms and conditions.
We partner with another party to provide specific services. When the user signs up for these services, we will share names or other contact information that is necessary for the third party to provide these services. These parties are not allowed to use personally identifiable information except for the purpose of providing these services.
This website may contain links to other sites. Please be aware that we are not responsible for the content or privacy practices of such other sites. We encourage our users to be aware when they leave our site and to read the privacy statements of any other site that collects personally identifiable information.
SURVEYS & CONTESTS
From time to time our site requests information via surveys or contests. Participation in these surveys or contests is completely voluntary and you may choose whether or not to participate and therefore disclose personally identifiable information. Information requested may include contact information (such as name and shipping address), and demographic information (such as zip code, age level). Contact information will be used to notify the winners and/or award prizes. Survey information will be used for purposes of monitoring or improving the use and experience of using this site and our goods and services.
If at any time you would like additional information, please email email@example.com or call us: (800) 783-8105 and we will be happy to discuss any concerns with you.
GDPR Data Protection Policies
HEALTHCARE INFORMATION, LLC.
|Last updated||January 31, 2020|
|Company||means HEALTHCARE INFORMATION, LLC., a registered business.|
|GDPR||means the General Data Protection Regulation.|
|Responsible Person||means John Pratt, President.|
|Register of Systems||means a register of all systems or contexts in which personal data is processed by the Company.|
1. Data protection principles
The Company is committed to processing data in accordance with its responsibilities under the GDPR.
Article 5 of the GDPR requires that personal data shall be:
- processed lawfully, fairly and in a transparent manner in relation to individuals;
- collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes; further processing for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes shall not be considered to be incompatible with the initial purposes;
- adequate, relevant and limited to what is necessary for relation to the purposes for which they are processed;
- accurate and, where necessary, kept up to date; every reasonable step must be taken to ensure that personal data that are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay;
- kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed; personal data may be stored for longer periods insofar as the personal data will be processed solely for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes subject to implementation of the appropriate technical and organizational measures required by the GDPR in order to safeguard the rights and freedoms of individuals; and
- processed in a manner that ensures appropriate security of the personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organizational measures.”
2. General provisions
- This policy applies to all personal data processed by the Company.
- The Responsible Person shall take responsibility for the Company’s ongoing compliance with this policy.
- This policy shall be reviewed at least annually.
3. Lawful, fair and transparent processing
- To ensure its processing of data is lawful, fair and transparent, the Company shall maintain a Register of Systems.
- The Register of Systems shall be reviewed at least annually.
- Individuals have the right to access their personal data and any such requests made to the Company shall be dealt with in a timely manner.
4. Lawful purposes
- All data processed by the Company must be done on one of the following lawful bases: consent, contract, legal obligation, vital interests, public task or legitimate interests (see ICO guidance for more information).
- The Company shall note the appropriate lawful basis in the Register of Systems.
- Where consent is relied upon as a lawful basis for processing data, evidence of opt-in consent shall be kept with the personal data.
- Where communications are sent to individuals based on their consent, the option for the individual to revoke their consent should be clearly available and systems should be in place to ensure such revocation is reflected accurately in the Company’s systems.
5. Data minimization
- The Company shall ensure that personal data are adequate, relevant and limited to what is necessary for relation to the purposes for which they are processed.
- The company does not collect more information than is necessary for processing orders or responding to correspondence or requests for information.
- The Company shall take reasonable steps to ensure personal data is accurate.
- Where necessary for the lawful basis on which data is processed, steps shall be put in place to ensure that personal data is kept up to date.
- [The Company provides a reply email address for users of this site to contact us to update their information. If requests are received to update personal information, the Company will do so.]
7. Archiving / Removal
- To ensure that personal data is kept for no longer than necessary, the Company shall put in place an archiving policy for each area in which personal data is processed and review this process annually.
- The archiving policy shall consider what data should/must be retained, for how long, and why.
- The Company shall ensure that personal data is stored securely using modern software that is kept-up-to-date.
- Access to personal data shall be limited to personnel who need access and appropriate security should be in place to avoid unauthorized sharing of information.
- When personal data is deleted this should be done safely such that the data is irrecoverable.
- Appropriate back-up and disaster recovery solutions shall be in place.
In the event of a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data, the Company shall promptly assess the risk to people’s rights and freedoms and if appropriate report this breach to the ICO (more information on the ICO website).
END OF POLICY