top round

Privacy Policy

Google AdSense
Fair Information Practices
Fair information
Practices
COPPA
CalOPPA
CAN-SPAM
Our Contact Information
Effective 11 April 2019

This Privacy Policy is meant to help you understand what data we collect, why we collect it, and what we do with it.

What personal information do we collect from the people that visit our blog, website or app?

When registering on our site, as appropriate, you may be asked to enter your name, email address, phone number, date of birth or other details to help you with your experience.

When do we collect information?

We collect information from you when you register on our site. In addition, your healthcare provider may send us information similar to what we collect on our site, and information such as the date and time of appointments to be conducted through our system,

How do we use your information?

We use the information we collect from you when you register in order to identify you to your healthcare provider.

If you are concerned about how your information is used, you should first contact your healthcare provider. If your healthcare provider cannot resolve the situation to your satisfaction, you can ask us to remove your information by sending email to privacy@sbrhealth.com. Residents of the European Union have additional rights as described below under Privacy Shield.

Right to access your data

You have the right to access any data we have about you. To receive such access please submit your request to your healthcare provider or send email to privacy@sbrhealth.com.

How do we protect your information?

We take appropriate measures to protect personal information in its possession to ensure a level of security appropriate to the risk of loss, misuse, unauthorized access, disclosure, alteration, and destruction. These measures take into account the nature of the personal information and the risks involved in its processing, as well as best practices in the industry for security and data protection.
Your personal information is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and are required to keep the information confidential. In addition, all sensitive/ credit information you supply is encrypted via Secure Socket Layer (SSL) technology.

Do we use 'cookies'?

We do not use cookies for tracking purposes.

Third-party disclosure

We do not sell, trade, or otherwise transfer to outside parties your Personally Identifiable Information, except to your healthcare provider. Except for information coming from the European Union, this does not include website hosting partners and other parties who assist us in operating our website, conducting our business, or serving our users, so long as those parties agree to keep this information confidential. We may also release information when its release is appropriate to comply with the law, enforce our site policies, or protect ours or others' rights, property or safety.

We contractually require any party to whom we send your information to treat it as securely as we treat it ourselves and to assume liability for its protection. Residents of the European Union should note that we will only send your information to the party who originally sent it to us, which would in all cases be your healthcare provider or any intermediary they used to send it to us.

In cases of onward transfer to third parties of Personal Data received pursuant to the EU-U.S. Privacy Shield, SBR Health shall remain liable under the Privacy Shield Principles if its agent processes such personal information in a manner inconsistent with the Principles, unless SBR Health proves that it is not responsible for the event giving rise to the damage.

Third-party links

In some cases our website or application may offer links to sites of your healthcare provider. These third-party sites have separate and independent privacy policies. We therefore have no responsibility or liability for the content and activities of these linked sites. Nonetheless, we seek to protect the integrity of our site and welcome any feedback about these sites.

California Online Privacy Protection Act

CalOPPA is the first state law in the nation to require commercial websites and online services to post a privacy policy. The law's reach stretches well beyond California to require any person or company in the United States (and conceivably the world) that operates websites collecting Personally Identifiable Information from California consumers to post a conspicuous privacy policy on its website stating exactly the information being collected and those individuals or companies with whom it is being shared. - See more at: http://consumercal.org/california-online-privacy-protection-act-caloppa/...

According to CalOPPA, we agree to the following:
Users can visit our site anonymously.
Once this privacy policy is created, we will add a link to it on our home page or as a minimum, on the first significant page after entering our website.
Our Privacy Policy link includes the word 'Privacy' and can easily be found on the page specified above.

You will be notified of any Privacy Policy changes on our Privacy Policy Page
You can change your personal information by contacting your healthcare provider.

Third-party behavioral tracking

We do not allow third-party behavioral tracking.

COPPA (Children Online Privacy Protection Act)

When it comes to the collection of personal information from children under the age of 13 years old, the Children's Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, United States' consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children's privacy and safety online.

We do not specifically market to children under the age of 13 years old.
We do not let third-parties, including ad networks or plug-ins collect PII from children under 13.

Fair Information Practices

The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.

In order to be in line with Fair Information Practices, should a data breach occur we will notify you via email within 7 business days

We also agree to the Individual Redress Principle which requires that individuals have the right to legally pursue enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute non-compliance by data processors.

Inquiries or Complaints

If you have questions about this policy or concerns about how your information is handled, you can send email to privacy@sbrhealth.com. Residents of the European Union are afforded additional disputed resolution mechanisms as described below under Privacy Shield.

Privacy Shield

SBR Health complies with the EU-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union to the United States. SBR Health has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. If there is any conflict between the terms in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern.

SBR Health is subject to the investigatory and enforcement powers of the US Federal Trade Commission.

Residents of the European Union with inquiries or complaints regarding our Privacy Policy should first contact SBR Health at privacy@sbrhealth.com. If an individual has an unresolved complaint or concern that is not addressed satisfactorily, that individual may contact our U.S. based third party dispute resolution provider (free of charge), JAMS, by opening a case at https://www.jamsadr.com/ eu-us-privacy-shield.

You may have the option to select binding arbitration for the resolution of your complaint under certain circumstances. For further information, please see the Privacy Shield website. To learn more about the Privacy Shield Framework, and to view SBR Health's certification, please visit https://www.privacyshield.gov.