Uplin Privacy Notice
Effective Date: November 1, 2020
Uplin pledges to protect your privacy and is committed to protecting the privacy of health information that is provided by you or received by us.
This Privacy Notice applies to the information that we collect when you visit Uplin’s main website (www.uplin.com) and other websites or mobile applications that we own or control and link or refer to this Privacy Notice (altogether, the “Uplin Technology”).
1. Collection of Information
We may collect the following kinds of information when you use the Uplin Technology:
For certain services or activities, such as when you register or attempt to register as a user of the Uplin Technology, book professional services, e.g., a Doctor Visit, subscribe to our alerts or notices, or contact us directly, we may collect some or all of the following types of information:
2. Username and password;
3. Payment information, such as your credit card number, expiration date, and credit card security code;
4. Personal health information, including information about your symptoms, diagnosis, previous treatments, and general health information;
5. Doctor reviews; and
6. Any other information you provide to us.
2. Information we collect automatically.
We may also collect technical data to address and fix technical problems and improve the Uplin Technology. Your device or browser settings may permit you to control the collection of this technical data. By using the Uplin Technology, you are consenting to us or any party acting on our behalf collecting this technical data.
If you access the Uplin Technology from an advertisement on a third-party website, application, or other service (a “Third-Party Service”) we may receive information from the owner of the Third-Party Service related to you or that advertisement.
4. Information we obtain from your health care providers and other sources.
In connection with the Uplin Technology that involves your request for medical treatment, i.e., booking a Doctor Visit, or use of the MyUplin Patient Portal, we may collect medical records from your past, current, and future health care providers. This may include information about your symptoms, diagnosis, previous treatments, general health, laboratory and pathology test results and reports, social histories, any family history of illness, and records about correspondence related to your illness or care.
We may also receive information about you from other sources, including through third-party services and organizations. We may combine our first-party data, such as your email address or name, with third-party data from other sources and use this to contact you (e.g., through direct mail). For example, if you access third-party services, such as Facebook, Google, or Twitter, through the Uplin Technology to log in to the Uplin Technology or to share information about your experience on or through the Uplin Technology with others, we may collect information from these third-party services.
2. Use of Information
3. Protected Health Information, HIPAA and Communications
Some of the information you submit or that is created through your use of the Uplin Technology may constitute “protected health information” (“PHI”) as defined by the Health Insurance Portability and Accountability Act (“HIPAA”). PHI does not include information that has been de-identified in accordance with HIPAA. Even though Uplin is not a “covered entity” as defined by HIPAA, the Doctors or Providers or Provider Groups (“Providers”) who may provide health care booked through the Uplin Technology may be a “covered entity” and therefore those Providers and/or Uplin may be subject to certain requirements under HIPAA. As a result, the Providers have adopted a HIPAA Notice of Privacy Practices (the “Notice of Privacy Practices”) to describe how the Providers use and disclose your PHI. In connection with certain services we provide to or on behalf of the Providers, the Providers have requested that we disseminate to you the Notice of Privacy Practices of the Providers, which is currently available here: LINK TO PROVIDERS’ PRIVACY PRACTICE & NOTICE. Uplin may be a “business associate” of the Providers under HIPAA, and as a result, as and to the extent Uplin is in fact a “business associate” of the Providers under HIPAA, Uplin’s use and disclosure of PHI will be limited as and to the extent required by HIPAA, which may include, for example, providing you with certain communications via emails, text messages, or in app messages that contain PHI, such as appointment reminders, encouragement, and advice. If you would prefer not to exchange PHI via email or text message, please notify us at firstname.lastname@example.org. You may also request that we update or correct your PHI by contacting us at email@example.com; provided, however, that we may retain any PHI that we are required to maintain in accordance with HIPAA. Any information that does not constitute PHI may be used or disclosed in any manner permitted under this Notice.
4. Sharing of Information
We are committed to maintaining your trust, and we want you to understand when and with whom we may share the information we collect.
1. Authorized third-party vendors and service providers.
We may share your information with third-party vendors and service providers that help us with specialized services, including billing, payment processing, providing medical advice for medical services, management and hosting of services, customer service, email deployment, business analytics, marketing (including but not limited to advertising, attribution, deep-linking, direct mail, mobile marketing, optimization, and retargeting) advertising, performance monitoring, hosting, and data processing. These third-party vendors and service providers may not use your information for purposes other than those related to the services they are providing to us.
2. Corporate Affiliates.
We may share your information with our affiliates.
3. Legal Purposes.
We may disclose information to respond to subpoenas, court orders, legal process, law enforcement requests, legal claims or government inquiries, and to protect and defend the rights, interests, health, safety, and security of Uplin, affiliates, users, or the public.
4. Business Transfers.
HIPAA permits organizations to transfer Personal Health Information (“PHI”) in certain circumstances. We can transfer your information as part of a transfer of the assets of the organization, merger, or consolidation or in the unlikely event of bankruptcy, if such transfer is permissible under HIPAA and the HIPAA Notice, which is incorporated herein by reference.
5. Protected Health Information.
We may transfer your PHI as described in the HIPAA Notice and permitted under HIPAA.
6. With your consent or at your direction.
We may share information for any other purposes disclosed to you at the time we collect the information or pursuant to your consent or direction.
If you choose to engage in public activities on the third-party sites that we link to, you should be aware that any information you share there can be read, collected, or used by other users of these sites and forums. You should use caution in disclosing personal information while participating in these areas. We are not responsible for the information you choose to submit in public areas.
No information provided by users during medical consultations or requests for medical appointments is ever used for marketing purposes.
We use measures to protect Protected Health Information from loss, theft, misuse, and unauthorized access, disclosure, alteration, and destruction in accordance with HIPAA. We use measures designed to protect other information from loss, theft, misuse, and unauthorized access, disclosure, alteration, and destruction. You should understand that no data storage system or transmission of data over the Internet or any other public network can be guaranteed to be 100 percent secure.
6. Your Choices
You may be able to refuse or disable cookies by adjusting your web browser settings. Since each web browser is different, please consult the instructions provided by your web browser (typically in the “help” section). Please note that you may need to take additional steps to refuse or disable Local Shared Objects and similar technologies. For example, Local Shared Objects can be controlled through the instructions on Adobe’s Setting Manager page. If you choose to refuse, disable, or delete these technologies, some of the functionality of the Uplin Technology may no longer be available to you.
We do not share Protected Health Information with third parties for their own direct marketing purposes.
7. Third-Party Links and Content
Some of the Uplin Technology may contain links to content maintained by third parties that we do not control. We are not responsible for the privacy practices of these third parties, and the information practices of these third parties are not covered by this Privacy Notice.
8. Limiting Data Collection and Do Not Track
To opt out of interest-based advertising across browsers and devices from companies that participate in the Digital Advertising Alliance or Network Advertising Initiative opt-out programs, please visit their respective websites. You may also be able to opt out of interest-based advertising through the settings within the mobile app or your mobile device, but your opt-out choice may apply only to the browser or device you are using when you opt out, so you should opt out on each of your browsers and devices if you want to disable interest-based advertising for those browsers and devices. If you opt out, you may still receive ads but they may not be as relevant to you and your interests, and your experience on the Uplin Technology may be degraded.
2. Do-Not-Track Signals and Similar Mechanisms.
Some web browsers transmit “do-not-track” signals to websites. In light of differences in how web browsers incorporate and activate this feature, it is not always clear whether users intend for these signals to be transmitted, or whether they are even aware of them. We currently do not take action in response to these signals.
9. International Users
We maintain information in the United States of America and in accordance with the laws of the United States, which may not provide the same level of protection as the laws in your jurisdiction. By using the Uplin Technology and providing us with information, you understand and agree that your information may be transferred to and stored on servers located outside your resident jurisdiction and, to the extent you are a resident of a country other than the United States, that you consent to the transfer of such data to the United States for processing by us in accordance with this Privacy Notice.
We do not knowingly allow individuals under the age of 18 to create accounts that allow access to the Uplin Technology, except where the minor has court-ordered emancipation.
11. Changes to the Privacy Notice
We may update this Privacy Notice from time to time. When we update the Privacy Notice, we will revise the “Effective Date” date above and post the new Privacy Notice. We recommend that you review the Privacy Notice each time you visit the Uplin Technology to stay informed of our privacy practices.
12. Copyright and Trademarks
Uplin, LLC owns the rights, title, and interest in and to the Uplin Technology, including the intellectual property rights. Intellectual property rights include all worldwide patent, patent applications, copyrights, trade secrets, trademarks, service marks, trade names, and any other intellectual property, proprietary, and database protection rights. Furthermore, “Uplin,” “MyUplin,” “Uplin is Bringing Healthcare Home” and other names, logos, etc. used herein and therein are our trademarks, and no right or license is granted to you to use such trademarks.
13. Legal Disclosure
The information in or on the Uplin Technology is not intended as a substitute for medical advice, guidance, or care. The Uplin Technology is designed to help you request a Doctor Visit to your home, office, hotel, or otherwise, on-demand, in about an hour, on a 24/7/365 basis. You should consult with a Doctor—whether or not through the Uplin Technology—for any health or medical condition, problem, or concern. Inquiries about the contents of the Uplin Technology, including this Privacy Notice, should be addressed to firstname.lastname@example.org.