“Medeo Solution” means the proprietary web-based virtual care tool and online services facilitated by the Software;
“Personal Information” in this Policy means information about an identifiable individual that is collected, used and disclosed in the course of providing Services to you and includes personal health information;
“Provider” means the provider of Services that you engage through the Software;
“Services” means the services provided by the Provider to you;
“Software” means the on-line software used to provide the Medeo Solution and delivered by QHR to you, as made available by QHR from time-to-time.
QHR Technologies Inc. (“QHR”) is committed to protecting and respecting your privacy. Medeo Solution incorporates online video conferencing and Internet reliant, application-based technology that allows you to communicate with your Provider in a virtual setting.
QHR collects, uses, stores and discloses your Personal Information on behalf of your Provider. It is the responsibility of your Provider to comply with all applicable legislation and regulatory requirements regarding the collection, use, storage and disclosure of your Personal Information.
QHR itself does not disclose your Personal Information unless required by law. QHR does, however, use your Personal Information that is necessary to give you access to Medeo Solution and, if required, address problems you may encounter with the Software. QHR also reserves the right to aggregate and anonymize Personal Information stored on its system. Otherwise, all use and disclosure of your Personal Information is in accordance with your Provider’s instructions.
When you sign up to use Medeo Solution and when you use the Software, QHR, on behalf of your Provider and on its own behalf, collects certain Personal Information in order to set up your user account, provide you with access to the system and administer your account. This Personal Information may include:
· your identification and contact information (name, address, date of birth, email, etc.);
· optional information such as billing information (public or private insurer information) and your family doctor’s name; and
· Internet, computer and other diagnostic information including your IP Address, computer/software/browser type.
On behalf of your Provider, QHR also collects and stores other Personal Information, including:
· your health information (appointment related information, symptoms, diagnosis, medical history, test results, reports, messages and treatment, record of allergies, prescriptions, etc.);
· information regarding your medical treatment (including notes, discussions, advice, or opinions) and your care providers.
QHR collects only the Personal Information that is required for Services to be provided between willing participants on the Software, to facilitate the provision of care and communicate with you. QHR does not collect any other Personal Information, or allow Personal Information to be used for other purposes without your express (written or verbal) consent, except where compelled to do so by law.
QHR uses your Personal Information in order to enable you to connect you with your Provider. QHR may also disclose your Personal Information where such disclosure is required by law, such as complying with a subpoena or court order.
All other use and disclosure of your Personal Information is in accordance with the instructions of your Provider. Note that it is your Provider’s responsibility to confirm your identity prior to disclosing your Personal Information to you.
By executing the User Agreement and using the Software, you are providing QHR with express consent to collect, store, use and disclose your Personal Information as set out above.
To the extent that you have a substitute decision maker, we may require that the individual validate his or her authority to act on your behalf.
QHR may use information collected through the provision of Services on an aggregate and anonymized basis to conduct analyses regarding the utilization of the Software and the services provided in conjunction with the Software. Any aggregate and anonymized data is the sole property of QHR and stored separately from all Personal Information. The extrapolated information does not identify individuals and is not capable of identifying individuals.
You may withdraw your consent to the collection, storage, use and disclosure of your Personal Information as set out in this Policy, subject to any applicable contractual or legal obligation, by contacting your Provider and then contacting QHR at firstname.lastname@example.org. However, the withdrawal of consent will likely result in you no longer being able to access or use Medeo Solution.
Since QHR collects your Personal Information on behalf of your Provider, any requests for copies of your record should be directed to your Provider.
If an inaccuracy is identified in your Personal Information, you may contact your provider regarding the correction or amendment to your Personal Information. Any such decision is made exclusively by your Provider.
QHR ensures that communications and data created and sent using Medeo Solution are secured at server and application levels with encryption, the use of firewalls and computer malware detection and elimination.
QHR operates on a server infrastructure wholly based in Canada and deploys software using industry-standard firewalls and best practices of the information security industry. QHR encrypts your video conferencing and communication to our website and web applications with the same industry standard encryption commonly used to protect your online banking. QHR’s server infrastructure is designed to continue to operate in the event of a disaster or prolonged electrical outage. Multiple redundant connections to the Internet ensure that our web application will continue to serve requests in the event of a network outage. Server equipment is stored in facilities equipped with state of the art security.
QHR has taken steps to ensure that everyone who works for QHR, and the third parties with which we contract, understand the sensitivity of Personal Information and are required to adhere to the protection of Personal Information as set out in this Policy. We educate and train our staff on the importance of protecting Personal Information and ensure that access is provided only on a “need-to-know” basis. We use roles-based access to ensure that only those who are authorized to access your Personal Information can access it.
For greater clarity, we do not take steps and are not responsible for a Provider’s activities and omissions.
Providers will have their own Privacy Policies in place. QHR is not responsible for Providers’ activities and omissions, in particular, how they retain or secure their own data related to the provision of the Services. You are responsible for ensuring your satisfaction with your Provider’s policies in this regard.
You and you alone are responsible for ensuring that you do not disclose your account access information to third parties. This includes but is not limited to not disclosing such information to anyone, ensuring that sufficient security software is installed and running on your computer, smartphone or tablet, that your network firewall is of sufficient quality and that your wireless connection is encrypted to a degree that will prevent third party access. QHR is not responsible for any failure by you or your Provider to secure your own device and its access to the Internet or your use of public, unsecured networks. QHR also is not responsible for any failure by you to eliminate malware. These failures and others can make you vulnerable to privacy breaches and would put you and your data at risk.
LAST UPDATED: 09 NOVEMBER 2015