406 Recovery Inc. (“406 Recovery,” “we,” “our,” or “us”) respects the privacy of your information. This Privacy Policy is designed to assist you in understanding how we collect, use and safeguard the information you provide to us in using our websites (the “Sites”), the services provided through our Sites and the mobile applications we offer (collectively referred to as the “Services”).
From time to time, we may change this Privacy Policy. If we do, we will post an amended version on this webpage. Please review this Privacy Policy periodically.
HIPAA Compliance Statement
406 Recovery Inc. is committed to complying with the Health Insurance Portability and Accountability Act (HIPAA). We are dedicated to maintaining the privacy and protection of your protected health information (PHI).
Definition of Protected Health Information (PHI)
PHI includes any information that we collect and maintain about your health status, provision of health care, or payment for health care that can be linked to you. This is distinct from other types of personal information collected through our Sites and Services.
Use and Disclosure of PHI
We will use and disclose PHI only for the purposes of treatment, payment, healthcare operations, or as required by law. We will obtain your authorization for uses and disclosures that are not identified by this policy or permitted by applicable law.
Patient Rights under HIPAA
You have the right to access and control your PHI. This includes requests to inspect or copy your PHI, request amendments, and receive an accounting of disclosures.
Data Security Measures
We implement strict security measures to protect PHI from unauthorized access, use, or disclosure, including physical, administrative, and technological safeguards.
Breach Notification Policy
In the event of a breach of unsecured PHI, we will follow our breach notification policy, which complies with HIPAA requirements. This includes notifying affected individuals, the Department of Health and Human Services, and potentially the media.
Third-Party and Business Associate Agreements
We ensure that any third-party service providers or business associates who may have access to PHI are compliant with HIPAA regulations, and we establish Business Associate Agreements (BAAs) to this effect.
Consent and Authorization for Use of PHI
We will obtain your explicit consent or authorization before using or disclosing your PHI for purposes beyond treatment, payment, or healthcare operations.
Contact Information for Privacy Concerns
Please contact us at [insert contact information] for any inquiries or concerns regarding your PHI, to exercise your rights under HIPAA, or to report any privacy issues.
Changes to Privacy Policy
We reserve the right to change this privacy policy and will provide notification of significant changes on our webpage.
Effective Date and Acknowledgment
This privacy policy is effective as of January, 5th, 2024. By using our Services, you acknowledge that you have reviewed and understand our privacy practices as described in this policy.
Limitations on Third-Party Information Collection
We will not collect third-party personal information unless it is essential for providing our Services and will ensure that such collection complies with HIPAA regulations.
Collecting and Using Information:
Personally Identifiable Information We Collect Online
We collect Personally Identifiable Information from you through your use of the Site and Services. “Personally Identifiable Information” is individually identifiable information about an individual that we collect online and that we maintain in an accessible form. We collect the following types of Personally Identifiable Information:
Information You Provide
We may collect the following Personally Identifiable Information that you voluntarily provide to us:
Third-Party Information
In some cases, we may receive certain Personally Identifiable Information from you about a third party. For example, as part of our registration process, you may provide the name, email address, and personal phone number of a third party. If you submit any Personally Identifiable Information about another individual to us, you are responsible for making sure that you have the authority to do so and to allow us to use their Personally Identifiable Information in accordance with this Privacy Policy.
How We Use Your Personally Identifiable Information
We use the Personally Identifiable Information we collect to provide the Services to you, to improve our Services and Site, and to protect our legal rights. In addition, we may use the Personally Identifiable Information we collect to:
How We Share Your Personally Identifiable Information
Cookies and Other Tracking Technologies
How We Use Cookies
Like many other companies, we use cookies and other tracking technologies (such as pixels and web beacons) (collectively, “Cookies”). “Cookies” are small files of information that are stored by your web browser software on your computer hard drive, mobile or other devices (e.g., smartphones or tablets).
We use Cookies to:
How You Can Opt-Out of Cookies
Browser Settings
You can understand which entities have currently enabled Cookies for your browser or mobile device and how to opt-out of some of those Cookies by accessing the Network Advertising Initiative’s website or the Digital Advertising Alliance’s website. For more information on mobile specific opt-out choices, visit the Network Advertising Initiative’s Mobile Choices website.
Please note that these opt-out mechanisms are specific to the device or browser on which they are exercised. Therefore, you will need to opt out on every browser and device that you use.
Google Analytics
We use Google Analytics, a web analytics service provided by Google, Inc. Google Analytics uses Cookies or other tracking technologies to help us analyze how users interact with the Site and Services, compile reports on their activity, and provide other services related to their activity and usage. The technologies used by Google may collect information such as your IP address, time of visit, whether you are a returning visitor, and any referring website. The technologies used by Google Analytics do not gather information that personally identifies you. The information generated by Google Analytics will be transmitted to and stored by Google and will be subject to Google’s privacy policies. To learn more about Google’s partner services and to learn how to opt-out of tracking of analytics by Google, click here.
Third-Party Processors
We use a variety of third-party vendors, including but not limited to cloud data storage; payroll processors; accounting software; shipping fulfillment; payment processors; and marketing service providers. To ensure that your Personally Identifiable Information receives an adequate level of protection, we have put in place appropriate procedures with the service providers we share it with to ensure that it is treated consistent with applicable data security and privacy laws.
“Do Not Track” Signals
Some internet browsers incorporate a “Do Not Track” feature that signals to websites you visit that you do not want to have your online activity tracked. Given that there is not a uniform way that browsers communicate the “Do Not Track” signal, the Site does not currently interpret, respond to or alter its practices when it receives “Do Not Track” signals.
Choices About Your Personally Identifiable Information
Review and Request Changes to Your Personally Identifiable Information
You may use your account to access, correct, or view certain Personally Identifiable Information we have collected and which is associated with your account. To review or request changes to any of your Personally Identifiable Information, please contact us at [email protected]
Marketing Communications
To unsubscribe from emails from us, please click the unsubscribe link included in the footer of our emails. You also may submit a request to us at [email protected]
Security
We maintain commercially reasonable security measures to protect the Personally Identifiable Information we collect and store from loss, misuse, destruction, or unauthorized access. However, no security measure or modality of data transmission over the Internet is 100% secure. Although we strive to use commercially acceptable means to protect your Personally Identifiable Information, we cannot guarantee absolute security.
Third Party Links
The Site and Services may contain links that will let you leave the Site and Services and access another website. Linked websites are not under our control. This Privacy Policy applies solely to Personally Identifiable Information that is acquired on this Site and Services. We accept no responsibility or liability for these other websites.
How to Contact Us
To contact us for questions or concerns about our privacy policies or practices please [email protected].
406 Recovery | 2022 | HIPAA & Privacy Policy