Privacy Policy

Iowa Diabetes

Website and Mobile App Privacy Policy

Current Privacy Policy Live on: 29/06/2020

Introduction

Iowa Diabetes (“Iowa Diabetes”, “Company”, “we” or “us”) respects your privacy and are committed to protecting it through our compliance with this policy. Iowa Diabetes will NOT share your personally identifiable information without your permission. This Website and mobile app Privacy Policy governs your access to and use of all websites, mobile websites, and mobile applications owned and operated by Iowa Diabetes, including, but not limited to the Iowa Diabetes website available at www.iowadiabetes.com, the Patient Qualifier website available at www.PatientQualifier.com, and the patient portal available at www.iowadiabetes.com/diabetes-portal/.

This Privacy Policy serves as a notice for Iowa Diabetes, LLC. We will allow you to share your personal health information with other professionals or individuals. We will follow the terms of this policy and may use personal health information for the purposes of payment and health care operations as described in this policy and as required under the Health Insurance Portability and Accountability Act of 1996 and subsequent amendments. It also describes your rights as they relate to your protected health information (PHI). This policy has been updated in accordance with the HIPAA Omnibus Rule and is effective March 26, 2013. It applies to all PHI as defined by federal regulations. This policy describes the types of information we may collect from you or that you may provide when you visit our Websites and Mobile Apps and our practices for collecting, using, maintaining, protecting, and disclosing that information.

This policy applies to information we collect:

  • On the Websites and Mobile Apps.
  • In e-mail, text and other electronic messages between you and the Websites and Mobile Apps.
  • Through mobile and desktop applications you download from the Websites and Mobile Apps, which provide dedicated non-browser-based interaction between you and the Websites and Mobile Apps.
  • When you interact with our advertising and applications on third-party websites and services, if those applications or advertising include links to this policy.
  • Through our third-party application programmer interface integrations (our “API Partners”) with which you have provided your information (such as a third-party application that allows professionals to call or email from our Websites or Mobile Apps).

This policy does not apply to information provided to us:

  • through any other means or by any third party, including through any non-API Partner application or content (including advertising) that may link to or be accessible from the Websites and Mobile Apps.

Please read this policy carefully to understand our policies and practices regarding your information and how we will treat it. If you do not agree with our policies and practices, your choice is not to use our Websites and Mobile Apps. By accessing or using the Websites and Mobile Apps, you agree to this privacy policy. This policy may change from time to time. Your continued use of the Websites and Mobile Apps after we make changes is deemed to be acceptance of those changes, so please check the policy periodically for updates.

Your Health Information Rights

Although your health record is the physical property of Iowa Diabetes, the information belongs to you. You have the right to:

  • Access an electronic copy of your medical record. And have it be transmitted to another individual or entity.
  • Amend your health record.
  • Obtain an accounting of certain disclosures of your health information made for the prior six (6) years, although this excludes disclosures for payment, health care operations, and disclosures made with your authorization.
  • Request communications of your PHI by alternative means.
  • Place a restriction to certain uses and disclosures of your information. In most cases, we are not required to agree to these additional restrictions, but if we do, we will abide by the agreement; except in certain circumstances where disclosure is required or permitted by law.

Our Responsibilities

Iowa Diabetes is required to:

  • Maintain the privacy of your PHI.
  • Provide you with this Privacy Policy
  • Abide by the terms of the Privacy Policy currently in effect
  • Notify you if we are unable to agree to a requested restriction.
  • Accommodate reasonable requests you may have to communicate PHI
  • Notify you of a breach where your unsecured PHI has been accessed, acquired, used, or disclosed to an unauthorized person.

We reserve the right to change our practices and to make the new provisions effective for all PHI we maintain. Should our information practices change, such revised policies will be made available to you.

Children Under the Age of 13

Our Websites and Mobile Apps are not intended for children under 13 years of age. No one under age 13 may provide any information to or on the Websites and Mobile Apps. We do not knowingly collect personal information from children under 13. If you are under 13, do not use or provide any information on the Websites and Mobile Apps or on or through any of their features. If we learn we have collected or received personal information from a child under 13 without verification of parental consent, we will delete that information. If you believe we might have any information from or about a child under 13, please contact us at research@iowadiabetes.com.

Information We Collect About You and How We Collect It

We collect several types of information from and about users of our Websites and Mobile Apps, including but not limited to, information:

  • by which you may be personally identified, such as name, e-mail address, and any other identifier by which you may be contacted online or offline (” personal information “);
  • that relates to your personal health including: information indicating you are a patient or receiving health-related services from a certain provider; information about your health condition (such as a disease you may have); information about health care products or services you have received or may receive in the future (such as an operation); information about your health care benefits under an insurance plan (such as whether a prescription is covered);
  • that is about you but individually does not identify you, such as zip code; credit card information, and/or
  • about your internet connection, the equipment you use to access our Websites and Mobile Apps and usage details.

We collect this information:

  • Directly from you when you provide it to us.
  • Automatically as you navigate through the site. Information collected automatically may include usage details, IP addresses and information collected through cookies, web beacons, and other tracking technologies.
  • From third parties, for example, our business partners.

Information You Provide to Us. The information we collect on or through our Websites and Mobile Apps may include:

  • Information that you provide by filling in forms on our Websites and Mobile Apps. This includes information provided at the time of registering to use our Website; subscribing to our service; posting material; uploading health information to your account; inviting a friend, family member, health care provider, or other individuals; or requesting further services. We may also ask you for information when you enter a contest or promotion sponsored by us, and when you report a problem with our Websites and Mobile Apps.
  • Records and copies of your correspondence (including e-mail addresses), if you contact us.
  • Your responses to surveys that we might ask you to complete for research purposes.
  • Details of transactions you carry out through our the Websites and Mobile Apps and of the fulfillment of your orders. You may be required to provide financial information before placing an order through our Websites and Mobile Apps.
  • Your search queries on the Websites and Mobile Apps.

You also may provide information (for example, a comment on an article we post to our Websites and Mobile Apps) to be published or displayed (hereinafter, ” posted “) on public areas of the Websites and Mobile Apps, or transmitted to other users of the Websites and Mobile Apps or third parties (collectively, ” User Contributions “). Your User Contributions are posted on and transmitted to others at your own risk. Although we limit access to certain pages, please be aware that no security measures are perfect or impenetrable. Additionally, we cannot control the actions of other users of the Websites and Mobile Apps with whom you may choose to share your User Contributions. Therefore, we cannot and do not guarantee that your User Contributions will not be viewed by unauthorized persons.

Information We Collect Through Automatic Data Collection Technologies. As you navigate through and interact with our Websites and Mobile Apps, we may use automatic data collection technologies to collect certain information about your equipment, browsing actions and patterns, including:

  • Details of your visits to our Websites and Mobile Apps, including traffic data, location data, logs and other communication data and the resources that you access and use on the Websites and Mobile Apps.
  • Information about your computer and internet connection, including: your IP address; operating system and browser type; name of the domain and host from which You access the Internet; Internet address of the website from which You linked directly to the Websites and Mobile Apps.  

We also may use these technologies to collect information about your online activities over time and across third-party websites or other online services (behavioral tracking).

The information we collect automatically is statistical data and does not include personal information, but we may maintain it or associate it with personal information we collect in other ways or receive from third parties. It helps us to improve our Websites and Mobile Apps and to deliver a better and more personalized service, including by enabling us to:

  • Estimate our audience size and usage patterns.
  • Store information about your preferences, allowing us to customize our Websites and Mobile Apps according to your individual interests.
  • Speed up your searches.
  • Recognize you when you return to our Websites and Mobile Apps.

The technologies we use for this automatic data collection may include:

  • Cookies (or browser cookies). A cookie is a small file placed on the hard drive of your computer. You may refuse to accept browser Cookies by activating the appropriate setting on your browser. However, if you select this setting you may be unable to access certain parts of our Websites and Mobile Apps. Unless you have adjusted your browser setting so that it will refuse cookies, our system will issue cookies when you direct your browser to our Websites and Mobile Apps.
  • Flash Cookies. Certain features of our Websites and Mobile Apps may use local stored objects (or Flash cookies) to collect and store information about your preferences and navigation to, from and on our Websites and Mobile Apps. Flash cookies are not managed by the same browser settings as are used for browser cookies.
  • Web Beacons. Pages of our Websites and Mobile Apps and our e-mails may contain small electronic files known as web beacons (also referred to as clear gifs. pixel tags and single-pixel gifs) that permit the Company, for example, to count users who have visited those pages or opened an e-mail and for other related website statistics (for example, recording the popularity of certain website content and verifying system and server integrity).
  • Computer information/Behavior tracking our Websites and Mobile Apps may utilize Google Analytics and Hotjar tracking in order to automatically collect data about your computer and to track your behavior while using the Websites and Mobile Apps. This information is collected to improve your experience while using the Websites and Mobile Apps.

Any information we collect automatically is statistical data and may include personal information, or we may maintain it or associate it with personal information we collect in other ways or receive from third parties. It helps us to improve our Websites and Mobile Apps and to deliver a better and more personalized service. Of course, you may choose not to provide certain information to us, but if so, you may not be able to participate in certain Iowa Diabetes activities and transactions.

Third-party Use of Cookies and Other Tracking Technologies

Some content or applications, including advertisements, on the Websites, and Mobile Apps are served by third-parties, including advertisers, ad networks and servers, content providers and application providers. These third parties may use cookies alone or in conjunction with web beacons or other tracking technologies to collect information about you when you use our Websites and Mobile Apps. The information they collect may be associated with your personal information or they may collect information, including personal information, about your online activities over time and across different websites and other online services. They may use this information to provide you with interest-based (behavioral) advertising or other targeted content.

We do not control these third parties’ tracking technologies or how they may be used. If you have any questions about an advertisement or other targeted content, you should contact the responsible provider directly.  

How We Use Your Information

We use information that we collect about you or that you provide to us, including any personal information:

  • To present our Websites and Mobile Apps and their contents to you.
  • To provide you with information, products or services that you request from us.
  • To fulfill any other purpose for which you provide it.
  • To provide you with notices about your account/subscription, including expiration and renewal notices.
  • To carry out our obligations and enforce our rights arising from any contracts entered into between you and us, including for billing and collection.
  • To notify you about changes to our Websites and Mobile Apps or any products or services we offer or provide though it.
  • To allow you to participate in interactive features on our Websites and Mobile Apps.
  • In any other way we may describe when you provide the information.
  • For any other purpose with your consent.

We may also use your information to contact you about our own and third-parties’ goods and services that may be of interest to you. If you do not want us to use your information in this way, please contact us at research@iowadiabetes.com to adjust your user preferences.

We may use the information we have collected from you to enable us to display advertisements to our advertisers’ target audiences. Even though we do not disclose your personal information for these purposes without your consent, if you click on or otherwise interact with an advertisement, the advertiser may assume that you meet its target criteria.

Disclosure of Your Information

We may disclose aggregated information about our users, and information that does not identify any individual, without restriction.

We may disclose personal information that we collect or you provide as described in this privacy policy:

  1. To contract with third parties to perform functions or activities on behalf of, or certain services for, Iowa Diabetes, that involve the use or disclosure of PHI. We require the business associate to appropriately safeguard your information.
  2. We may not “sell” your PHI to a third party without your written authorization that acknowledges the remuneration unless such an exchange meets a regulatory exception.
  3. To notify or assist in notifying a family member, personal representative, or another person responsible for your care, your location, and general condition.
  4. To communicate with you in reference to any items that assist Iowa Diabetes, in carrying out operations.
  5. To be used in an effort to continually improve the quality and effectiveness of the services we provide.
  6. To researchers when their research has been approved by an institutional review board that has reviewed the research proposal and established protocols to ensure the privacy of your PHI. Even without IRB approval, we may permit researchers to look at PHI to help them prepare for research as long as they do not remove, or take a copy of, any PHI.
  7. To comply with any court order, law or legal process, including to respond to any government or regulatory request.
  8. To enforce or apply our terms of use and other agreements, including for billing and collection purposes.
  9. If we believe disclosure is necessary or appropriate to protect the rights, property, or safety of Iowa Diabetes, our customers or others. This includes exchanging information with other companies and organizations for the purposes of fraud protection and credit risk reduction.
  10. For any other purpose disclosed by us when you provide the information.
  11. With your consent.

Choices About How We Use and Disclose Your Information

We strive to provide you with choices regarding the personal information you provide to us. We have created mechanisms to provide you with the following control over your information:

  • Tracking Technologies and Advertising. You can set your browser to refuse all or some browser cookies, or to alert you when cookies are being sent. To learn how you can manage your Flash cookie settings, visit the Flash player settings page on Adobe’s website. If you disable or refuse cookies, please note that some parts of this site may then be inaccessible or not function properly.
  • Disclosure of Your Information for Third-Party Advertising. If you do not want us to share your personal information with unaffiliated or non-agent third parties for promotional purposes, you can opt-out by sending us an e-mail stating your request to research@iowadiabetes.com.
  • Promotional Offers from the Company. If you do not wish to have your contact information used by the Company to promote our own or third parties’ products or services, you can opt-out by sending us an e-mail stating your request to research@iowadiabetes.com.
  • If we have sent you a promotional e-mail, you may send us a return e-mail asking to be omitted from future e-mail distributions. This opt out does not apply to information provided to the Company as a result of a product purchase, warranty registration, product service experience or other transactions.
  • Targeted Advertising. If you do not want us to use information that we collect or that you provide to us to deliver advertisements according to our advertisers’ target-audience preferences, you can opt-out by sending us an e-mail stating your request to research@iowadiabetes.com.

We do not control third parties’ collection or use of your information to serve interest-based advertising. However, these third parties may provide you with ways to choose not to have your information collected or used in this way. You can opt-out of receiving targeted ads from members of the Network Advertising Initiative (” NAI “) on the NAI’s website.

Accessing and Correcting Your Information

You can review and change your personal information by logging into the Websites and Mobile Apps and visiting your account profile page.

You may also send us an e-mail at research@iowadiabetes.com to request access to, correct or delete any personal information that you have provided to us. We cannot delete your personal information except by also deleting your user account. We may not accommodate a request to change information if we believe the change would violate any law or legal requirement or cause the information to be incorrect.

If you delete your User Contributions from the Websites and Mobile Apps, copies of your User Contributions may remain viewable in cached and archived pages or might have been copied or stored by other Websites and Mobile Apps users.

Notice to California Residents

If you are a California resident, California law may provide you with additional rights regarding our use of your personal data. For example, California’s “Shine the Light” law (Civil Code Section 1798.83) permits users of our Websites and Mobile Apps that are California residents to request certain information regarding our disclosure of personal data to third parties for their direct marketing purposes. To make such a request, under California Civil Code Section 1789.3, you may contact the Complaint Assistance Unit of the Division of Consumer Services of the California Department of Consumer Affairs in writing at 1625 N. Market Blvd., Suite S-202, Sacramento, California 95834, or by telephone at (800) 952-5210 in order to resolve a complaint or to receive further information.

You may have additional rights under the California Consumer Privacy Act of 2018 (CCPA), such as the right to know and access what personal data is collected about you, the right to request that certain information be corrected or deleted, the right to opt out of the sale of your information (note, the Company does not sell your information without your permission or unless you meet a regulatory exception), and the right not to be discriminated against.

To make such a request pursuant to your California rights, please send an e-mail to research@iowadiabetes.com or write us at:
1031 Office Park Rd., Ste. 2
West Des Moines, IA 50265

Data Security

We have implemented measures designed to secure your personal information from accidental loss and from unauthorized access, use, alteration and disclosure. All information you provide to us is stored on our secure servers behind firewalls. In particular, we use the latest best practices to ensure secure data transport and data storage.

The safety and security of your information also depend on you. Where we have given you (or where you have chosen) a password for access to certain parts of our Websites and Mobile Apps, you are responsible for keeping this password confidential. We ask you not to share your password with anyone. We urge you to be careful about giving out information in public areas of the Websites and Mobile Apps like message boards. The information you share in public areas may be viewed by any user of the Websites and Mobile Apps.

Unfortunately, the transmission of information via the internet is not completely secure. Although we do our best to protect your personal information, we cannot guarantee the security of your personal information transmitted to our Websites and Mobile Apps. Any transmission of personal information is at your own risk. We are not responsible for circumvention of any privacy settings or security measures contained on the Websites and Mobile Apps.

Changes to Our Privacy Policy

It is our policy to post any changes we make to our privacy policy on this page. If we make material changes to how we treat our users’ personal information, we will notify you through a notice on the Websites and Mobile Apps home page. The date the privacy policy was last revised is identified at the top of the page. You are responsible for periodically visiting our Websites and Mobile Apps and this privacy policy to check for any changes.

Contact Information

If have questions and would like additional information, you may contact:

Privacy Officer
Iowa Diabetes

research@iowadiabetes.com

If you believe your privacy rights have been violated, you can file a written complaint with Iowa Diabetes, Privacy Officer. There will be no retaliation for filing a complaint.