Vozohealth

Menu

Privacy Policy

Last updated: September 19, 2024

Vozo EHR doing business along with our affiliates and subsidiaries (“Vozo EHR,” “we,” “us,” or “our”), is committed to safeguarding the privacy of your information. This Privacy Policy outlines how we handle and protect personal information related to the Vozo EHR software, services, websites, and applications, including but not limited to Vozohealth.com, OnPatient.com, and any other sites or services that refer to this Policy (collectively referred to as the “Vozo EHR Services”).

Scope of the Privacy Policy

Vozo EHR provides a suite of tools for healthcare providers (“Providers”) to manage patient appointments, personal health records, communications, and other healthcare-related activities. Other than information gathered via our websites (e.g., www.vozohealth.com), Vozo EHR acts as a service provider for healthcare professionals and does not own or control the data submitted through Vozo EHR Services. All data processed through our services is handled under our healthcare provider clients’ requirements and applicable legal regulations, including the Health Insurance Portability and Accountability Act of 1996 (HIPAA).

This Privacy Policy applies to any information that can be used to identify, contact, or locate an individual (“Personal Information”) held by us, which may include information shared by Providers, patients, third-party entities, and other relevant systems through Vozo EHR Services. Personal Information also includes identifiable health data collected about you. It does not apply to anonymized data, which cannot be used to identify a specific person.

Handling of Personal Information

In the course of providing medical care and services, you or other users may submit personally identifiable information about potential or existing patients (“Patients”) to Vozo EHR. This data, also known as “Protected Health Information” (PHI), is also governed by each Provider’s Health Insurance Portability and Accountability Act Notice of Privacy Practices (“HIPAA Notice”). This HIPAA Notice details how Providers can use and disclose Patients’ PHI, as well as Patients’ rights concerning their PHI.

Vozo EHR collects, uses, and discloses Personal Information per this Privacy Policy. However, the privacy practices of Providers themselves are governed by their respective policies, and Vozo EHR is not responsible for any Provider’s privacy policies or practices. Vozo EHR does not review or monitor Providers’ compliance with HIPAA Notices or other privacy policies.

We encourage you to review the privacy practices of any healthcare provider you interact with to understand how your information is managed. Vozo EHR does not take responsibility for ensuring that a Provider’s privacy policies comply with legal obligations or their published notices.

I. Collection of Information

Vozo EHR collects various types of information through our Services. This includes both Personal Information and Protected Health Information (PHI) of your Patients: 1. Information You or Your Patients Provide Directly to Us When you or your Patients use our Vozo EHR Services, including registration, online services, telemedicine, patient portal, clientX app or direct communications, we may collect:
  • Contact Information: Full name, email address, mobile phone number, and address
  • Login Credentials: Username and password.
  • Payment Information: Credit card number, expiration date, and security code.
  • Employment Information: Job title, practice area, primary specialty, medical license status, gender, date of birth, languages spoken, educational background, address, photograph, social security number, Tax ID, NPI number, professional license information, and bank account information.
  • Personal Health Information:Diagnosis, previous treatments, general health, health insurance details, and any information synchronized from Apple HealthKit.
  • Other Information: Any additional information you provide.

2. We may combine this information with existing data about you or your Patients.

3. Information We Collect Automatically
Vozo EHR and our third-party partners may collect data automatically, including:

  • Technical Data: IP address, device and advertising identifiers, browser type, operating system, Internet service provider, visited pages, and timestamps.
  • Location Data: GPS signal, nearby WiFi access points, and cell towers.
  • Cookies and Similar Technologies: We use cookies, pixel tags, and Local Shared Objects to gather and store information. By using our Services, you consent to our use of these technologies.

4. We may also collect technical data to address issues and enhance our Services. You can control the collection of this data through your device or browser settings.
5. Information from Health Care Providers and Other Sources
In connection with patient care, we may collect medical records and other health information from Providers, including past and current diagnoses, treatments, test results, and related communications. This information is governed by laws such as the 21st Century Cures Act, HIPAA, and HITECH. Vozo EHR acts as a business associate under HIPAA and applies appropriate safeguards to protect health information. We may also receive information from third-party services like Facebook, Google, or Twitter, which may be combined with our data for contact or marketing purposes.

II.Use of Information Vozo EHR uses collected information for various purposes, including: 1. Types of Cookies:
  • Functional Cookies: Enhance functionality and personalization. Disabling these may affect the performance of some services.
  • Performance Cookies: Measure and improve site performance by tracking visits and traffic sources. These cookies aggregate data and do not store personal information.
  • Strictly Necessary Cookies: Essential for site functionality, such as logging in or setting preferences. These cannot be turned off and do not store personal information.

Uses of Collected Information:

  • Service Provision: To provide and improve Vozo EHR Services.
  • Communication: To contact you regarding products, services, or updates.
  • Requests Fulfillment: To meet your requests for products, services, and information.
  • Marketing: To send information about clinical services, wellness updates, or marketing materials (with the option to opt out).
  • Analytics: To understand usage patterns and improve the Services.
  • Customization: To tailor content to your preferences.
    Research: For research purposes, subject to separate consent.
  • Prevention and Compliance: To prevent prohibited activities and ensure compliance with our Terms of Service.

3. We may also use information to address potential threats to the Services’ security and integrity. By using our Services, you consent to receive communications from us for informational, customer service, or operational purposes.

4. Electronic Notices and Marketing:

  • Electronic Communications: You agree to receive electronic notices regarding security and administrative issues. In case of a breach, we may notify you electronically unless you withdraw consent.
  • Marketing Emails: We may send marketing emails based on your requests. You may opt out of these communications as permitted.

5. Data Anonymization and Aggregation:
We may anonymize and aggregate data for business purposes, such as evaluating performance, analyzing usage trends, and measuring effectiveness.

III. Sharing of Information

We are dedicated to maintaining your trust and transparency about how we share the information we collect:

1. Healthcare Providers and Related Entities:
We may share Patient Personal Information and PHI with healthcare providers, laboratories, government agencies, insurance companies, organ procurement organizations, medical examiners, funeral directors, and other relevant entities involved in providing treatment and support.
2. Authorized Third-Party Vendors and Service Providers:
We may share your Personal Information and PHI with third-party vendors and service providers who assist us with services such as billing, payment processing, customer service, email deployment, business analytics, marketing, performance monitoring like Microsoft Clarity, hosting, and data processing. These third parties are bound to use your information solely for the services they provide to us.
3. HealthKit Integration:
If requested by the Patient, we will share their HealthKit data with you. We do not use or disclose HealthKit information for marketing purposes or sell it to third parties.
4. Research Partners:
We may share your information with research partners to conduct health-related research, subject to separate written authorization.
5. Corporate Affiliates:
We may share your Personal Information with our affiliated entities, subsidiaries, and parent companies to streamline business operations, develop new products, and inform you about relevant services.
6. Business Transfers:
In connection with significant corporate transactions such as mergers, acquisitions, or sales of assets, we may share your information. This also includes potential events like bankruptcy.
7. Legal Purposes:
We may disclose information to comply with legal requirements, respond to subpoenas or court orders, and protect the rights and safety of Vozo EHR, our affiliates, users, or the public. We will attempt to notify you via email if legally compelled to disclose your information, unless prohibited by law or if you have not provided an email address.
8. With Your Consent or Direction:
We may share information for any other purposes disclosed at the time of collection or as directed by you.
9. Third-Party Services:
If you use third-party services like Facebook, Google, or Twitter through Vozo EHR, these services may collect information about you and your activity. Their use of information is governed by their own privacy policies.
10. Public Activities:
Information shared in public areas of our site or linked third-party sites may be visible to others. Exercise caution when sharing Personal Information in these areas, as we are not responsible for such information.

IV. Security

We implement reasonable measures to protect information from loss, theft, misuse, unauthorized access, disclosure, alteration, and destruction. However, no data storage or transmission over the Internet is 100% secure. Therefore, we cannot guarantee the absolute security of information transmitted to us, and you do so at your own risk.

Upon receipt of your information, we take steps to protect it. However, we cannot guarantee that such information will not be accessed, disclosed, altered, or destroyed by breaches of our safeguards. Information collected by third parties may not have the same security protections as information submitted directly to us.

If a security breach occurs, we have an incident response policy in place to notify affected individuals as required by law. By using our Services or providing Personal Information, you agree to receive electronic communications about security, privacy, and administrative issues.

V. Your Choices

1. Opt-Out and Deletion:
You can opt out of certain general communications by emailing us at info@vozohealth.com. To request deletion of your Personal Information, please contact us at the same email address.
2. Cookies and Technologies:
You can refuse or disable cookies by adjusting your browser settings. Each browser has different instructions, usually found in the “help” section. For Local Shared Objects (Flash Cookies), refer to Adobe’s Setting Manager page. Disabling cookies or similar technologies may affect the functionality of the Vozo EHR Services..
3. Privacy Preferences:
Information collected through cookies helps provide a personalized web experience. You can choose to block certain types of cookies, but this may impact site functionality and the services we offer.
4. California Privacy Rights:
California residents can request, once annually and free of charge, information regarding our disclosure of Personal Information to third parties for direct marketing purposes. We do not share Personal Information with third parties for their direct marketing purposes.

VI. Third-Party Advertising, Links, and Content

1. Third-Party Links:
Some Vozo EHR Services may include links to third-party content that we do not control. We allow third parties, such as business partners and service providers, to collect information about your online activities through cookies, pixels, local storage, and other technologies. We are not responsible for the privacy practices of these third parties, and their information practices are not covered by this Privacy Policy.
2. Do-Not-Track Signals:
Some web browsers send “do-not-track” signals to websites. We currently do not respond to these signals due to variations in how they are implemented.
3. Third-Party Browser Extensions:
Browser extensions developed by third parties may access and modify your data, including PHI. We do not have control over these extensions and are not responsible for any data breaches or losses caused by them. We recommend removing any extensions before using Vozo EHR Services and accessing our services only from supported browsers without such extensions.
4. Third-Party Software:
Installing third-party software on your operating system may present similar risks as using browser extensions. Vozo EHR is not liable for any damages resulting from third-party software.

VII. Intended for Use in the United States Only

The Vozo EHR Services are intended for use within the United States. We make no representations that our services comply with laws outside the U.S. By using our services, you consent to the transfer and storage of your information in the U.S. If you use Vozo EHR Services outside the U.S., you are responsible for complying with local laws and have no recourse against Vozo EHR for any legal consequences.

VIII. Children

We do not knowingly allow individuals under the age of 18 to create accounts for Vozo EHR Services. However, users who are 18 or older may provide and store information about others, including minors. Users providing information about children are responsible for its submission, use, and transmission.

IX. Changes and Updates to the Privacy Policy

We may update this Privacy Policy periodically. The revised version will be effective as of the posted date, which will be updated accordingly. We encourage you to review this Privacy Policy regularly. Continued use of our services after changes signifies your acceptance of the revised terms.

X. Information Retention

Vozo EHR retains information as required by service agreements with Providers and applicable laws. We keep information for as long as needed for business purposes and legal obligations. Archived information may be retained for up to seven years or longer if required by law. Non-personal information and feedback may be stored indefinitely.

XI. Questions

If you have any questions about this Privacy Policy or our practices, please contact us at info@vozohealth.com