Sources of personally identifiable information we collect
We only collect personally identifiable information that you provide while using our Site.
Types of personally identifiable information we collect
To access or use certain features on the Site, you may be required to provide personally identifiable information. If you use our "How can we help?" link or "Client Upload" feature, we will request your name, email address, and Company Name. These features are intended for use by potential or current business-to-business clients only. In addition, we collect Protected Health Information (PHI) (as defined under the Health Insurance Portability and Accountability Act of 1996 (HIPAA)) that you provide through these features. Any PHI collected is maintained and transmitted in accordance with HIPAA, including related laws and regulations, and the business associate agreement we have with you.
We automatically collect information about you, such as device ID and other information when you visit the Site to help us improve and provide services to you. This type of information does not identify you personally ("Other Information").
The types of Other Information we collect:
- Device ID such as your internet protocol (IP) address (IP address is a number assigned to a device connected to the internet)
- Information collected through cookies and other technologies
How we share
We only disclose information to affiliated and non-affiliated third parties as permitted or required by applicable law. We may share your information with third parties that provide mailing or other services to us. When we share your information with these companies, they are required to limit their use of your information to the particular purpose for which it was shared, and they are not allowed to share it with others except to fulfill that limited purpose. Any PHI collected is only disclosed in accordance with HIPAA, including related laws and regulations, and the business associate agreement we have with you.
In our information technology systems environment, we maintain commercially reasonable administrative, technical, and physical safeguards (including secure disposal methods) designed to protect your information against loss or unauthorized access, use, modification, or deletion. However, no security program is foolproof, and thus we cannot guarantee the absolute security of your information. Nevertheless, it is crucial that, as a user, you protect against unauthorized access to your computer and that you always sign off when finished using a shared computer. Further, you should be aware that no system is impenetrable. Thus, it is your responsibility to diligently monitor your personal information to discover and address as quickly as possible any misuse of your personal information. Any PHI we maintain and transmit is secured in accordance with HIPAA, including related laws and regulations, and the business associate agreement we have with you.
We do not intend to collect personal information from children under 13 years of age. If we learn that we have collected this information from a child under the age of 13, we will promptly take all reasonable steps to delete the data from our system.
The effective date of this notice is April 2023. It replaces all prior privacy notices issued by Xtend Healthcare, LLC. We reserve the right to amend this privacy notice at any time and we will inform you of any changes to this notice by posting the revised privacy notice on the Site, or as otherwise required by law.
If you have any comments, concerns, or questions about this Privacy Statement, please contact us at 800-882-1325.