PRIVACY POLICY
PLEASE READ THIS PRIVACY POLICY CAREFULLY BEFORE USING THIS WEBSITE OR OUR SERVICES.
 

ChartRequest (“Company”), www.chartrequest.com (the “Website”), and our software services platform (the “Services”) (collectively “we”) are committed to protecting the privacy and security of our visitors, registered users, and subscribers who access our Website or Services).  This Privacy Policy sets forth how the Website and our Services collect and use personal information, including personal health information (“PHI”).  By using the Website and Services, you acknowledge that you have read and accepted our privacy practices set forth below.
If you do not accept our privacy practices, then you should not continue to use either the Website or the Services.  This Privacy Policy is incorporated by reference into and forms part of our Master Services Agreement.


1.    CONFIDENTIALITY AND SECURITY OF PERSONAL INFORMATION
We have implemented commercially reasonable security measures and follow generally accepted industry standards to protect personally identifiable information sent to our Website or provided to our Services, both during transmission and afterwards.  We have implemented secure HTTP connections to our web applications, and encrypt all data transmissions.  We maintain auditing capabilities in order to be able to confirm who has access to data, what IP address is accessing the data, and the specific data accessed.   
However, despite our efforts to maintain the confidentiality and security of your account, no method of transmission over the Internet and no method of electronic storage is completely secure.  Although we make every effort to protect your personal information, we cannot guarantee its absolute security.  It is your responsibility to ensure that you do not disclose your password to anyone.  


2.    PERSONAL INFORMATION WE WILL COLLECT
When you register a user account with us, we will collect personal information from you, and we will also collect PHI about you from your medical provider.  You will be required to provide your first and last name, your social security number, your date of birth, your address, your email, your phone number, and your fax number. 


If you pay by credit card when you sign up for our Services, we may collect your name, billing address, credit card number, expiration date, and three or four digit credit card code.
In addition, we may collect the IP address of your computer in order to enable us to verify your identity, detect unauthorized transactions, better manage website traffic, and to gather other analytics on the Website.  


We may also use “cookies,” which are small data files placed and stored on your computer, to help you manage your use of our Website.  Cookies are used as follows:
(a)    To recognize you as a regular user; 
(b)    To remind us of who you are;
(c)    To estimate our audience size by determining repeat usage of the Website to help target advertisements based on user interests and behavior;
(d)    To track your progress;
(e)    To measure traffic patterns for use as a research tool to understand how our users habits are similar or different from one another; and 
(f)    To conduct other research.
You can set your browser to notify you when you receive a cookie, in order to give you the chance to determine whether or not to accept it.  If you do not accept cookies, some pages of this Website may not display properly or you may not be permitted to access certain information.


3.      PURPOSES FOR WHICH WE WILL USE PERSONAL INFORMATION
We make every effort to identify the purposes for which we will collect personal information at or before the time the information is collected.  We will use your personal information only for the purposes disclosed at the time of collection or as otherwise set out in this Privacy Policy, unless we have your consent for another use, or unless such other use is authorized or required by law.


Our policy is to collect personal information from you for the following purposes:
to provide Services to you; 
to generate analytics for the improvement of the Website and Services, and for marketing purposes;
to promote and market our Services to you;
(d)    to maintain a commercial relationship with you and to communicate with you (which may include: advertising, promotions, and account verification);
(e)     to identify your needs and/or preferences;
(f)     to meet legal and regulatory requirements;
(g)      to administer, maintain, manage, and improve our business operations; and 
(h)     as otherwise required by law.


4.    SHARING OF PERSONAL INFORMATION
We do not rent, trade, or share personal information with third parties, except to provide services, which you requested, when we have your permission, or under the following circumstances:
(a)     We use third parties for credit card processing, which parties are prohibited from using your personally identifiable information for promotional purposes.
(b)    We share personal information and PHI with the medical providers you have authorized to receive your records, and their electronic medical records provider(s);
(c)    We may share personal information with a third party service provider to send newsletters or otherwise electronically communicate with you;
(d)    We may share your aggregate anonymous information with third parties in order to improve the quality or design of the Website and Services; to create new features, promotions, functionality, and services; and to maintain and upgrade the Website or Services.
(d)     We may share personal information and PHI with third party contractors such as developers, support administrators, designers, data analysts, and network technicians to maintain the Services.  
(e)    We may share your personal information if required by law and if we believe that the disclosure is required or necessary to protect our rights and/or comply with a judicial processing or legal process served on our Website of Services.
(f)    We may share personal information if we believe that it is required in order to investigate, prevent, or take action regarding illegal activities, suspected fraud, a potential threat to the physical safety of a third party, or as otherwise required by law.
(h)    We may transfer personal information and PHI to a third party entity in the event of an assignment of the assets of the Company for any reason.  You will be notified of any such change in ownership or control of personal information.
(i)    We may share personal information with our legal, financial, and other professional advisors.
(j)    We may share personal information with third parties upon receiving your consent as required by law.
Except as provided above, we will not share any of your information to any third party without permission.


5.    ACCESS TO YOUR PERSONAL INFORMATION
You can review, update, delete, or correct your personal information on file with us online or in person at any time.  To access your personal information, we require a written request; unless you login and update your personal information yourself directly.  Upon receipt of any written request, we will take commercially reasonable steps to provide you with the opportunity to access any such information.  


6.    EMAIL REQUESTS FOR PERSONAL INFORMATION
We will never initiate a request for personal information by email or pop-up window.  If you receive a request by email or pop-up window, please do not respond and notify us as set forth below.
If you ever believe that you have been a victim of fraud, please report it to the police and take all available actions to protect yourself.  Also, please notify us, so that we can take all possible actions to protect you and the other visitors, registered users, and subscribers.


7.    CONTACT WITH YOU
We may use your email address to contact you from time to time, in order to send notices required by law, to provide information regarding our Services, or to resolve any complaint or suspicious transactions.  We also may contact you by telephone for the same reasons.  You may at any time choose to unsubscribe (or “opt-out”) of any of our mailings, either by adjusting your membership settings or by contacting us at feedback@chartrequest.com.


8.    CHANGES AND UPDATES TO THIS PRIVACY POLICY
We may amend this Privacy Policy at any time at our sole discretion and without prior notice.  If we make any material amendments, we will advise you about those changes by notifying you in a prominent place on our Website.  You should check back with us from time to time in order to confirm that there have been no significant changes.


Please note that the use of information that we gather is subject to the Privacy Policy then in effect at the time of use.  


9.    OTHER LEGAL NOTICES
We comply with The Health Insurance Portability and Accountability Act of 1996, and all other applicable laws regarding the transmission and storage of PHI in the United States.


10.    CALIFORNIA USERS
If you are a California resident, you have the right to request information from us regarding the manner in which we share certain categories of your personal information with third parties for their own direct marketing uses.  California law provides that you have the right to submit a request to us at our email address in order to receive information on the categories of customer information that we shared and the names and addresses of those businesses with which we shared customer information for the immediately prior calendar year.  To obtain this information, please send an email message to support@chartrequest.com with “Request for California Privacy Information” in the subject line and in the body of your message.  We will provide the requested information to you in your email address in response.
Please be aware that not all information sharing is covered by the “Shine the Light” requirements and only information on covered sharing will be included in our response.


11.    INTERNATIONAL USERS
If you are accessing this Website from the European Union, Asia, or any other region with laws or regulations governing personal data and PHI collection, use, and disclosure that differ from United States laws, please be advised that through your continued use of the Website and Services, which is governed by U.S. law, you will be transferring your personal information into the United States and you consent to that transfer.  


12.    CONTACT US
If you have any questions or concerns over this Privacy Policy or if you need further information regarding the access to your personal information, or how your personal information is used, you may contact us as listed below:
Attn.: Chief Privacy Officer
ChartRequest
575 Pharr Road STE 52617
Atlanta, GA 30355

legal@chartrequest.com

13.     EFFECTIVE DATE
This Privacy Policy was last modified on the 25th of April, 2015.