We recognize the sensitive nature of PHI and the importance of complying with applicable privacy laws and regulations, including the Health Insurance Portability and Accountability Act (HIPAA) and the General Data Protection Regulation (GDPR). Our commitment to privacy extends to ensuring that your information is collected and handled in a lawful, fair, and transparent manner.
What does Chamco Digital do?
Chamco Digital provisions Epic on Azure, cloud migration, security, and app modernization and development designed to offer a multitude of mission-critical features and benefits that enable hospitals and healthcare organizations to achieve their development goals. Our streamlined services are guaranteed to accelerate modernization of legacy systems, improve time to market, decrease development costs, and enhance performance with highly scalable cloud-native applications. To learn more, please visit us at www.chamcodigital.com.
a) Information You Provide:
When you create an account, use our services, or interact with us, we may collect personal information, such as your name, contact details, date of birth, medical history, and other relevant health information.
You may provide this information directly when filling out forms, participating in surveys, or communicating with us.
b) Automatic Information Collection:
We automatically collect certain information when you access or use our website, applications, or services.
his information may include your IP address, device information, browser type, operating system, referring URLs, and other usage details.
c) Health Information:
As a healthcare information technology company, we may collect and process personal health information (PHI) as required to provide our services.
This may include medical records, diagnoses, treatment plans, test results, and other health-related information.
We handle this information with the utmost care and in accordance with applicable privacy laws and regulations, such as the Health Insurance Portability and Accountability Act (HIPAA) in the United States.
d) Information from Third Parties:
We may receive information from third parties, such as healthcare providers, medical devices, or other sources, as part of our services or as permitted by applicable laws.
This information may include medical records, test results, or other relevant health data necessary to provide you with our healthcare technology solutions.
We collect and process your information for the following purposes:
To provide and improve our healthcare technology solutions, personalize your experience, and deliver the services you request.
To communicate with you, respond to your inquiries, and provide customer support.
To ensure the security, integrity, and privacy of our systems, services, and users.
To comply with legal obligations and regulatory requirements, such as reporting adverse events, maintaining patient safety, and complying with healthcare data protection laws.
To conduct research, analytics, and business operations, provided that individual identities remain anonymous through data aggregation and de-identification.
If you have any questions or concerns about the information we collect or how we use it, please refer to the “Contact Us” section of this policy to get in touch with our Privacy Officer. We are dedicated to addressing your inquiries and ensuring the responsible handling of your personal health information.
Use of Information:
At Chamco Digital, we use the information we collect to provide you with our healthcare technology solutions, improve our services, and ensure the security and privacy of your personal health information (PHI). We are committed to using your information in a manner consistent with applicable privacy laws and regulations. The following outlines how we use your information:
a) Providing and Improving Services:
We use your information to deliver our healthcare technology solutions and services, including appointment scheduling, medical record management, and communication tools.
Your information helps us personalize your experience, tailor our services to your needs, and improve the functionality and usability of our platforms.
We may use aggregated and de-identified data for research, analytics, and business purposes, ensuring that individual identities remain anonymous.
b) Communication and Support:
We may use your contact information to communicate with you regarding our services, updates, and relevant information.
If you reach out to us with inquiries or support requests, we will use your information to respond to your questions, provide assistance, and address any concerns you may have.
c) Legal and Regulatory Compliance:
We may use your information to comply with legal obligations and regulatory requirements, including but not limited to HIPAA, GDPR, and other applicable healthcare data protection laws.
Your information may be used for auditing, monitoring, and ensuring compliance with industry standards and best practices.
d) Security and Fraud Prevention:
We use various security measures to protect your information and prevent unauthorized access, disclosure, or misuse.
Your information helps us detect and prevent fraud, unauthorized activities, and other potential security incidents.
We may also use your information to investigate and address any violations of our terms of service or policies.
e) Business Operations:
Your information is used for internal business purposes, such as data analysis, audits, system maintenance, and improving the overall performance of our technology platforms.
We may use your information for marketing and promotional activities related to our products and services, subject to your consent and applicable laws.
If you have any questions or concerns about how we use your information, please refer to the “Contact Us” section of this policy to get in touch with our Privacy Officer. We are dedicated to addressing your inquiries and ensuring the responsible use of your personal health information.
How do we Share your Information:
At Chamco Digital, we understand the importance of safeguarding your personal health information (PHI) and respecting your privacy. We limit the sharing of your information to the extent necessary to provide our healthcare technology solutions and comply with applicable privacy laws and regulations. The following outlines how we may share your information:
a) With Your Consent:
We may share your information with third parties if you provide us with your explicit consent to do so.
Your consent may be obtained through a separate authorization form or as part of the terms and conditions for specific services.
b) Service Providers and Business Partners:
We may engage third-party service providers and business partners to assist us in delivering our healthcare technology solutions.
These entities may have access to your information only to the extent necessary to perform services on our behalf, and they are contractually obligated to handle your information in a confidential and secure manner.
c) Legal and Regulatory Compliance:
We may disclose your information as required or permitted by law, including in response to a valid subpoena, court order, or other legal process.
We may share your information to comply with regulatory obligations, such as reporting adverse events, maintaining patient safety, or conducting audits.
d) Protection of Rights and Safety:
We may share your information to protect the rights, safety, and property of [Healthcare Information Technology Company], our users, customers, or the public.
This includes sharing information to prevent or address fraud, security breaches, or other prohibited or illegal activities.
e) Business Transfers:
In the event of a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred to the acquiring entity or merged with the assets of the acquiring entity.
We will take reasonable steps to ensure the protection of your information in such circumstances and notify you of any significant changes to the ownership or control of your information.
We do not sell your personal health information to third parties for marketing purposes or any other reason.
It is important to note that when you use interactive features or publicly accessible areas of our healthcare technology solutions, your information may be visible to and used by other users or the public.
We take appropriate measures to ensure that any sharing of your information is done securely, in compliance with applicable laws, and subject to strict confidentiality agreements.
If you have any questions or concerns about how we share your information, please refer to the “Contact Us” section of this policy to get in touch with our Privacy Officer. We are dedicated to addressing your inquiries and ensuring the responsible handling of your personal health information.
At Chamco Digital, we understand the importance of protecting the security and confidentiality of your personal health information (PHI). We have implemented industry-standard technical, physical, and administrative safeguards to ensure the integrity and security of your information. This section outlines the measures we take to protect your data:
a) Secure Infrastructure:
We maintain a secure infrastructure, utilizing advanced technologies, firewalls, and intrusion detection systems to protect against unauthorized access to our systems and networks.
Our servers are hosted in secure data centers that employ physical security measures, such as restricted access, surveillance, and environmental controls, to safeguard your data.
b) Encryption and Secure Transmission:
We utilize encryption technologies, such as Secure Socket Layer (SSL) or Transport Layer Security (TLS), to encrypt your data during transmission over the internet.
Encryption helps protect your information from interception and ensures that it is transmitted securely between your device and our servers.
c) Access Controls and Authentication:
We implement access controls and user authentication mechanisms to ensure that only authorized individuals have access to your information.
User accounts are protected with unique identifiers, strong passwords, and role-based access controls, limiting access to PHI based on user roles and responsibilities.
d) Data Minimization and Retention:
We collect and retain only the minimum necessary data required to provide our healthcare technology solutions and comply with legal and regulatory requirements.
e) Employee Training and Confidentiality:
Our employees undergo comprehensive training on data privacy, security best practices, and the proper handling of PHI.
We maintain strict confidentiality obligations with our employees and contractors through confidentiality agreements and enforce appropriate disciplinary measures for any breach of these obligations.
f) Incident Response and Notification:
In the event of a data breach or security incident involving your information, we have established incident response procedures to promptly investigate, mitigate, and notify you and the appropriate authorities as required by law.
While we strive to protect your information, it is important to note that no data transmission or storage method is completely foolproof. Despite our best efforts, we cannot guarantee the absolute security of your information.
If you have reason to believe that your interaction with us is no longer secure, or if you have any questions or concerns regarding the security of your data, please contact us using the information provided in the “Contact Us” section of this policy.
We are committed to continuously reviewing and enhancing our data security measures to adapt to evolving threats and industry best practices.
We respect your rights regarding your personal health information (PHI) and are committed to upholding your privacy. This section outlines your rights and how you can exercise them:
a) Right to Access:
You have the right to request access to your PHI held by us. This includes the ability to view, obtain copies, or request a summary of your medical records or other personal health data.
b) Right to Correction:
If you believe that the PHI we hold about you is inaccurate, incomplete, or outdated, you have the right to request correction or amendment of your information.
c) Right to Erasure:
In certain circumstances, you may have the right to request the deletion or erasure of your PHI. However, please note that we may be required to retain certain information for legal, regulatory, or legitimate business purposes.
d) Right to Restriction of Processing:
You have the right to request the restriction of processing of your PHI under certain circumstances. This means we may continue to store your information but will not use or process it further without your consent or as permitted by law.
e) Right to Data Portability:
You have the right to receive a copy of your PHI in a structured, commonly used, and machine-readable format, and to transmit that information to another data controller, where technically feasible.
f) Right to Object:
You have the right to object to the processing of your PHI for certain purposes, such as direct marketing, research, or when processing is based on legitimate interests or public interest.
g) Right to Withdraw Consent:
If we rely on your consent as the legal basis for processing your PHI, you have the right to withdraw your consent at any time. This will not affect the lawfulness of any processing based on your consent before its withdrawal.
To exercise your rights, please submit a written request to us using the contact information provided in the “Contact Us” section of this policy. We will respond to your request in a timely manner and in accordance with applicable laws and regulations.
Please note that there may be legal limitations or exceptions to these rights, depending on the circumstances and applicable laws. We will inform you if we are unable to fulfill your request and provide you with the reasons, where permitted by law.
If you have any questions or concerns regarding your rights or the handling of your PHI, please contact us using the information provided in the “Contact Us” section of this policy. We are dedicated to addressing your inquiries and ensuring the protection of your privacy and rights.
Social Media and Other Integrations:
a) Social Media Integrations:
Our website or applications may include social media features, such as buttons or widgets, provided by third-party social media platforms.
These features may collect your IP address, browser information, and interactions with the feature in order to provide social media functionality and enable you to share content or engage with our social media accounts.
Your interactions with these features are governed by the privacy policies of the respective social media platforms.
b) Third-Party Integrations:
We may integrate with third-party services or applications to provide additional features or functionality.
These integrations may require you to authenticate and connect your accounts with the third-party service provider.
The information exchanged between us and the third-party service may be governed by their respective privacy policies, and we encourage you to review those policies before engaging with the integration.
c) User-Generated Content:
Our website or applications may allow users to post, share, or contribute content, such as comments, reviews, or testimonials.
Please be aware that any information you voluntarily disclose in these public areas becomes publicly available and may be collected and used by others.
We cannot control the actions of other users or the use of such information by third parties.
It’s important to note that when you use these integrations or interact with third-party services, your information may be subject to the privacy policies and practices of those providers. We encourage you to review their policies and terms of service to understand how your information will be handled.
We are not responsible for the privacy practices of these third-party services, and their inclusion does not imply our endorsement or affiliation with them. However, we strive to partner with reputable organizations that maintain high standards for data protection and privacy.
If you have any questions or concerns regarding the social media or third-party integrations, please refer to the “Contact Us” section of this policy to get in touch with our Privacy Officer. We are dedicated to addressing your inquiries and ensuring the responsible integration of third-party services while safeguarding your privacy.
We are committed to protecting your privacy and providing transparent information about our data practices. Thank you for entrusting us with your personal health information, and we appreciate your continued support and trust in Chamco Digital.