This Privacy Policy discloses the practices of AAPCR-TD, Inc., along with its predecessors, licensors, beneficiaries, and its affiliated AAPCR-TD care practices. Our platform welcomes you to download our proprietary mobile application software (the “AAPCR-TD Application”) and utilize the website and the services provided through the AAPCR-TD platform. For purposes of this website and the AAPCR-TD Application, AAPCR-TD, Inc. and the Practices are sometimes collectively referred to as “AAPCR-TD,” “we,” or “us.”
AAPCR-TD is committed to respecting your privacy and recognizing your need for appropriate protection and management of Personally Identifiable Information (“PII”) and Protected Health Information (“PHI”) that you share with us. The purpose of this Privacy Policy is to explain the types of information AAPCR-TD obtains about users of the AAPCR-TD Applications, how the information is obtained, how it is used, how it is disclosed, how you can get access to this information, and the choices you have regarding our use of, and your ability to review and correct, the information. By using the AAPCR-TD Applications, you are accepting and consenting to the use of your information as described in this policy. We will not accept any PII or PHI from you prior to providing you with this Privacy Policy. Please review this Policy carefully.
Please note, AAPCR-TD, Inc. is an administrative and technology service provider that owns the AAPCR-TD Applications. AAPCR-TD has entered into contracts with the Practices, whose independent care providers provide mobile, non-emergency general adult and pediatric services. Among other things, AAPCR-TD, Inc. contracts with the Practices, licenses the AAPCR-TD Application to the Practices to provide the Practices with the capability to receive, respond to and schedule requested visits. AAPCR-TD, Inc. does not provide any AAPCR-TD care services, nor does it refer or recommend any physician or medical practice or any other AAPCR-TD care provider or personnel.
This Privacy Policy specifically applies to how AAPCR-TD collects, uses, and discloses the information you provide or that we obtain with your consent as a result of your use of the AAPCR-TD Application or your enrollment as a registered user with AAPCR-TD. This Privacy Policy does not apply to protected AAPCR-TD’s information provided from you to the Practices, which is covered by the Notice of Privacy Practices.
When you create an account on the AAPCR-TD Application or enroll as a AAPCR-TD registered user (“Enroll”), or login to the AAPCR-TD Application or AAPCR-TD website to create a profile, comment on articles, or complete surveys, we collect personal information that can identify you (“PII”), such as your full name, email address, mailing address, telephone number, and credit card information for payment. In addition to PII, AAPCR-TD may also collect your PHI or PHI of an individual for whom you are requesting AAPCR-TD’s services. For example, when you use the AAPCR-TD Application to transmit a request for AAPCR-TD’s services to be provided at your specified location (a request for a “Visit”), you will need to provide additional information about the individual for whom the visit is requested so that the Practices can assess the request and determine whether or not one of the Practices has an appropriate and available AAPCR-TD’scare provider (a “Provider”) to respond to your request. Another example of how AAPCR-TD may obtain your PHI and/or PII is when you grant permission for other third-parties to share your information directly with AAPCR-TD. This would include, without limitation, the AAPCR-TD Application’s access and synchronization of your PHI and/or PII with the Apple AAPCR-TD’sapplication and/or Apple AAPCR-TD’s Records.
Ultimately, the information that AAPCR-TD collects varies depending upon how you use our Services and what permissions you give to us and other third-parties that also collect your PII and/or PHI. We will not use any PHI for any other purpose without your explicit authorization, or unless otherwise permitted or required by law. You may revoke, in writing, any such authorization at any time, except to the extent we have taken action in reliance thereon.
PHI and/or PII Obtained from Apple Clinical AAPCR-TD’s Records API or through synchronization with the Apple AAPCR-TD’s application: AAPCR-TD does not use data obtained through Apple Clinical AAPCR-TD’s Records API or through synchronization with the Apple AAPCR-TD’s application for advertising, marketing, or other use-based data mining purposes. AAPCR-TD does not disclose any data obtained through Apple Clinical AAPCR-TD’s Records API or through synchronization with the Apple AAPCR-TD’s application to any third-party for advertising, marketing, or other use-based data mining purposes.
Get AAPCR-TD, Inc. does not have any independent access to the Practices’ detailed medical records that may be created as a result of a Visit. To the extent the Practices integrate any of the information you provided into the Practice’s medical record that is created as a result of a Visit, Get AAPCR-TD, Inc. has no authority to access, delete or modify any portion of the Practice’s medical records of its patients except as an agent of the Practices and in compliance with applicable law.
WE DO NOT KNOWINGLY ENROLL OR COLLECT INFORMATION DIRECTLY FROM CHILDREN UNDER THE AGE OF EIGHTEEN.
Please keep in mind that certain features on the AAPCR-TD Application or website may give you an opportunity to interact with us and others. These may include forums, message boards, chats, creating community profiles, and rating, tagging and commenting on articles. When you use these features you should be aware that any information you submit, including your name, location, AAPCR-TD’s issues, and email address, may be publicly available to others. We do not protect the privacy of and are not responsible for your disclosure of any information through these interactive features, including, but not limited to information that you might post related to a minor.
Also, whenever you voluntarily disclose anyone’s personal information on publicly-viewable web pages, that information can be collected and used by others. For example, if you post your email address, you may receive unsolicited messages. We cannot control who reads your posting or what other users may do with the information that you voluntarily post, so we encourage you to exercise discretion and caution with respect to information you choose to disclose through these interactive features. When an individual chooses to post information that will be publicly disclosed, he or she is responsible for all legal consequences. We are not responsible under any data protection laws for information that you voluntarily post on a site that can be accessed by others.
If you believe that we have violated your privacy rights, you should contact us at the mailing address or e-mail address provided below. You may also file a complaint with the government. See http://oag.ca.gov/contact/consumer-complaint-against-business-or-company for more information.
Cookies. Our AAPCR-TD Application or website may use cookies and other technologies to collect information. Cookies are small bits of information that our websites place on the hard drive of your computer. We may use cookies to facilitate your login processes; allow you to personalize and store your settings; collect usage information; determine our total audience size and traffic; and help us improve our sites by measuring which areas are of greatest interest to users.
Tracking and/or Analytics Services. We may use mobile application tracking and/or analytics services. These services may record unique mobile gestures such as tap, double-tap, zoom, pinch, scroll, swipe and tilt but do not collect personally identifiable information that you do not voluntarily enter in the AAPCR-TD Application. These services do not track your browsing habits across mobile applications that do not use the same services. We are using the information collected by these services to understand user behavior and optimize site performance.
Web Beacons. We may also use web beacons (invisible images often referred to as pixel tags or clear GIFs) in order to recognize users and assess traffic patterns, and we may include web beacons and cookies in our email messages in order to count how many e-mail messages have been opened.
Non-Personally Identifiable Information. We also collect Non-Personally Identifiable Information that is not AAPCR-TD’s information in the form of statistics and information regarding the AAPCR-TD Application user’s statistics and metrics obtained from third party devices (for example, steps, distance, calories burned, GPS coordinates, bat speed, hand speed, swing time, etc.), which may be combined with personal information you submit through the AAPCR-TD Application and/or Services so that you can fully enjoy the benefits of the AAPCR-TD Application’s tracking, monitoring, and diagnostic tools. We may also request the following optional information as part of your profile so that you can fully enjoy the features and functions of our Services: your weight, height, and gender.
Mobile Device Information. Your use of the AAPCR-TD Application may also include collection of information from your mobile device. For example, the AAPCR-TD Application may request your permission to collect location data and/or may request access to multimedia (photos or videos) stored on your mobile device. You have the option of declining collection of geolocation data, but this may limit your ability to participate in certain activities through the AAPCR-TD Application. If you do not wish for your location data to be shared with AAPCR-TD, please respond accordingly when prompted on your mobile device, or visit your mobile device settings. Multimedia will only be collected from your device if you affirmatively select it to upload to the application (i.e. you choose an image or video to store within the AAPCR-TD Application). Multimedia will not be shared with other AAPCR-TD Application users (with the exception of your profile photo, to the extent such feature is offered, which will appear in your user profile).
Subject to this Privacy Policy, the Terms of Service, and applicable terms and conditions of third-party applications, all data transmitted through the AAPCR-TD Application or website is owned by AAPCR-TD; provided, however, that PHI that you provide for the purpose of scheduling a Visit with any of the Practices will be solely owned by the Practices. To the extent AAPCR-TD is precluded from owning data transmitted through the AAPCR-TD Application, you grant AAPCR-TD a perpetual, worldwide, royalty-free license to use such data (with the exception of PHI) to the extent necessary to enable use of the AAPCR-TD Application, the website, and Services. Generally, we may use information in the following ways:
We use non-Personally Identifiable Information for purposes such as measuring the number of users of various features of the AAPCR-TD Application, making the AAPCR-TD Application more useful to users and delivering targeted advertising and non-advertising content. We may also use Non-Personally Identifiable Information (for example, statistics regarding use and metrics) for research purposes, for marketing and promotional purposes, and to develop new learning tools and solutions and we may share such information with third parties, including researchers and/or advertisers, on an aggregate and anonymous basis. We use IP addresses to analyze trends, administer the AAPCR-TD Application, track a visitor’s movement, and gather demographic information for aggregate, non-personally identifiable use.
You acknowledge that unless you request in writing otherwise, we, in our sole discretion, have the right but not the obligation to store any information, whether PII or otherwise, perpetually, to the extent permitted by law. If you wish for any information about you to be removed from our database, please contact us through the contact information provided below in the “How to Contact Us” section of this Privacy Policy.
Except as otherwise described in this Privacy Policy, or if we inform you otherwise at the time of data collection and receive your consent where required, we will not sell, trade, or share your information with third parties.
We may share your information as follows:
Special Circumstances:
We also may disclose your information:
SPECIAL NOTICE FOR USERS OF THE APPLICATION: IF YOU ELECT TO MAKE YOUR PROFILE (OR THAT OF A MINOR OR FAMILY MEMBER) VIEWABLE BY PROVIDERS, ALL INFORMATION THAT YOU INCLUDE IN THAT PROFILE MAY BE VIEWED BY PROVIDERS. YOU SHOULD NOT ENTER ANY INFORMATION IN THE PROFILE THAT YOU (OR ANOTHER PERSON) WISH TO REMAIN CONFIDENTIAL. A PROVIDER WILL NOT BE ABLE TO CONTACT YOU EXCEPT THROUGH THE PERSONAL CONTACT INFORMATION YOU PROVIDE THROUGH THE APPLICATION. AAPCR-TD IS NOT RESPONSIBLE FOR THE RETENTION, USE OR PRIVACY PRACTICES OF THE PRACTICES AFTER THEY HAVE RECEIVED YOUR INFORMATION.
The Practices and Providers may be subject to laws and regulations governing the use and disclosure of AAPCR-TDth information they create or receive. Included among them is the AAPCR-TD’s Insurance Portability and Accountability Act of 1996 (“HIPAA”), the AAPCR-TD’s Information Technology for Economic and Clinical Health of 2009 (“HITECH”), and the regulations adopted thereunder, and applicable state laws. When AAPCR-TD stores, processes, or transmits “individually identifiable AAPCR-TDth information” (as such term is defined by HIPAA) on behalf of such a AAPCR-TD’S care provider, AAPCR-TD does so as its “business associate” (as also defined by HIPAA). AAPCR-TD is prohibited from, among other things, using individually identifiable AAPCR-TD’s information in a manner that the AAPCR-TD’s care provider itself may not. AAPCR-TD is also required to, among other things, apply reasonable and appropriate measures to safeguard the confidentiality, integrity and availability of individually identifiable AAPCR-TD’s information we store and process on behalf of such AAPCR-TD’s care providers. For more information regarding our treatment of AAPCR-TD’s information, please see our Notice of Privacy Practices.
You have the ability to review and update your personal information by visiting the account management section on the AAPCR-TD Application. You can also review and update your personal information by contacting us at the email address provided below in the “How to contact us” section of this Privacy Policy.
We use commercially reasonable administrative, technical, and physical measures to safeguard your information in our possession against loss, theft and unauthorized use, disclosure or modification. We follow generally accepted industry standards to protect the information submitted to us, both during transmission and once we receive it. No method of transmission over the internet is 100% secure, however. Therefore, while we strive to make all reasonable efforts to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security. In the unlikely event of a data breach, you will be notified as soon as reasonably possible, in accordance with applicable law. Furthermore, we are not responsible for any breach of security or for any actions of any third parties that receive the information.
Certain of the administrative, technical, and physical measures in place are as follows. AAPCR-TD’s infrastructure is kept in a secured data center that protects from unauthorized access to the physical servers, backups and any element used to store and/or process personal data. Only authorized personnel can access the data center. AAPCR-TD systems and databases are backed up regularly to help protect the data in case of an uncontrollable catastrophe. The data center that stores AAPCR-TD servers has policies and procedures in place designed to safeguard the equipment that our data is stored on. AAPCR-TD regularly upgrades its system software to include the latest security features. AAPCR-TD servers are protected by a firewall system, which is designed to keep unwanted traffic or access out of our computer network. AAPCR-TD also employs an intrusion prevention service (IPS) provided by a secured data center operated by a professional company, and uses security methods to determine the identity of each registered user, so that appropriate rights and restrictions can be enforced for that user. Reliable verification of user identity is called “authentication.” All communication between AAPCR-TD’s Web server, your browser and the AAPCR-TD Application is encrypted with SSL (Secure Sockets Layer) to guard against network eavesdroppers. Your password is internally encrypted in AAPCR-TD’s system to prevent unauthorized access to the system. Validations are built throughout the application to capture the most reliable information. Only the last 4 digits of your credit card number is stored on our servers.
From time to time we may revise this Privacy Policy. If we make revisions that change the way we collect or use your information, those changes will be posted in this Privacy Policy and the effective date will be noted at the end of the Privacy Policy. Therefore, you should review it periodically so that you are up to date on our most current policies and practices. If we make material changes to our practices regarding use of your information, your information will continue to be governed by the Privacy Policy under which it was subject prior to those changes, unless you have been provided notice of, and have not objected to, the changes.
We support and comply with the Children’s Online Privacy Protection Act (COPPA) and we do not knowingly collect information from children under the age of 18, nor do we share such information with third parties. Children under the age of 18 may not use the AAPCR-TD Application. If you seek a Visit for a minor, you will be responsible for providing information related to the minor and for paying for the Visit requested for the minor.
Our AAPCR-TD Application or website may contain links to websites or applications operated and maintained by third-parties, over which we have no control. Privacy policies for these third-party sites and applications may be different from our Privacy Policy. You access these third-party sites and applications at your own risk. You should always read the privacy policy of a linked site or applications before disclosing any personal information on such site and/or through such applications. AAPCR-TD is not responsible for information you submit to third-parties.
The California Consumer Privacy Act (CCPA) and California Online Privacy Practices Act (CalOPPA) provide some California residents with the additional rights listed below. To exercise any of these rights, please follow the instructions listed in this section.
Personal Information Collected. We collect information that identifies, relates to, describes, references, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer, household, or device (“personal information”). For purposes of CCPA, “personal information” does not include publicly available information from government records, deidentified or aggregated information, or information excluded from CCPA’s scope (including AAPCR-TD’s information covered by HIPAA or the California Confidentiality of Medical Information Act).
More information about the categories of personal information we collect, the sources from which it is collected, the purposes of the collection, and the categories of third parties with whom we share personal information, are described elsewhere in this Privacy Policy.
Contact AAPCR-TD at suprivacy@aapcrtd.com or at support@aapcrtd.com
In particular, in the past 12 months we have collected the following categories of personal information:
Right to Know. You have the right to know and see what personal information we have collected about you over the past 12 months, including:
Right to Delete. You have the right to request that we delete the personal information we have collected from you (and direct our service providers to do the same). There are a number of exceptions, however, that include, but are not limited to, when the information is necessary for us or a third party to do any of the following:
Right to Non-Discrimination. We will not discriminate against those who exercise their rights under this section. If you exercise your rights, we will not deny you goods or services, charge you different prices or rates for goods or services, or provide you with a different level or quality of goods or services.
Other Rights. California Civil Code § 1798.83 permits users of our Services that are California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes. We do not disclose your personal information to third parties for their direct marketing purposes. However, you are free to make an inquiry with any questions by contacting us in accordance with the “How to Contact Us” section in this Privacy Policy.
Exercising these Rights. To request access to or deletion of your personal information, or to exercise any other data rights under California law, please contact us in accordance with the “How to Contact Us” section in this Privacy Policy. Please include your full name, email address, along with why you are emailing us, so that we can verify and process your request in an efficient manner. If we cannot verify your identity from the initial information you provide, we may request additional information from you, which will be used only for the purposes of verifying your identity to assist you with exercising your rights. You may also designate an authorized agent to make a request under this section on your behalf. We may request additional information from you to confirm that the authorized agent has in fact been authorized by you to act on your behalf.
Accessing in Alternative Formats. For individuals with disabilities, please contact us in accordance with the “How to Contact Us” section regarding how to access the information in this Privacy Policy in an alternative format.
Response Time. We aim to respond to a consumer request for access or deletion within 45 days of receiving a verifiable request. If we require more time, we will inform you of the reason and extension period in writing.
Do Not Track Symbols. We do not have the capability to respond to “Do Not Track” signals received from various web browsers at this time.
If you have any questions, comments or concerns about our Privacy Policy, you may contact us at support@aapcrtd.com, or at +1 888 837 3163.
+1 972 277 1850 ( Phone support is available weekdays 9am–7pm.).
This Privacy Policy is effective as of the date first listed above.