Your information is important to us. We carefully use your information in the context of the Application and do not sell or disclose your health or demographic information.
THIS POLICY AND NOTICE DESCRIBES HOW PERSONAL INFORMATION AND MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE REVIEW IT CAREFULLY.
We may collect and process Personal Data, Non-Personal Data and Health Information (as defined in Point 4, below) in connection with the Applications.
We use and disclose your Personal Data to help with your treatment, payment for your treatment and our health care operations, and in other ways permitted or required by law. When the law requires us to get your permission before we disclose your information to another organization or person, or before we use it, we will do so as described below. You also have specific rights related to your privacy. Those rights, and how you may exercise them, are described below.
Risks of using electronic communications and risk of Rainbow Health storing your health information electronically
Rainbow Health takes a number of steps to safeguard the security of all electronic communications that we send to you and you send to us through the Applications. We also take a number of steps to safeguard the security of your health information that we store in our various electronic systems. All of the information we store is held on servers within the continental United States of America. Your health information may be processed by our employees or by one of our carefully selected, third-party service providers. By using the Applications, you agree to this.
We do not share your Personal Data with third parties. We are not liable for the security and privacy of any information that you choose to print or email from our application. We recommend that you consider carefully whether you wish to share your personal data when you use the Applications.
Your personal data is retained by Rainbow Health as long as your account is active. You may close your account by visiting https://rainbow.health/contact.html and contacting us with the login email address. We will contact you to verify your identity and subsequently close the account and delete all of the personal data associated with the account as permitted by law. In the event that our Applications are discontinued by our licensor, prohibited by the government, or recalled by us, we will notify you by email and by posting on our website at https://rainbow.health prior to making our app inoperable.
“Health Information” is data that relates to your physical or mental health history or conditions, to treatment you have received for those conditions, or to payments for those conditions. We treat Health Information as Personal Data, subject to some special rules as required by the Health Insurance Portability and Accountability Act (“HIPAA”). The categories below describe the different ways that we may use or disclose health information about you without your permission. Each of these categories of use or disclosure will be explained with an example provided. Not every use or disclosure in a category will be listed.Treatment
We may use Health Information about you to permit health professionals to provide you with healthcare treatment and services through the Application. We may disclose Health Information about you to doctors, nurses, or other personnel involved in your care. For example, a doctor treating you may need to know if you are allergic to a medication because it may affect management of your condition.Payment
We may use and disclose Health Information about you so that the treatment and services you receive from and through us may be billed to and payment collected from you. For example, we will need to share the credit or debit card details you provide with our bank and payment processor. Or we may share with the primary cardholder that the Medical/Healthcare related transaction on the bank statements is for a Rainbow Health charge.Health Care Operations
We may use and disclose Health Information about you to manage and improve the health care services and operations provided through Rainbow Health. For example, we may use Health Information to conduct quality assessment reviews to evaluate performance in caring for you. We may also share your Health Information with our “business associates” that perform administrative services for us, such as billing services.Appointment Reminders, Treatment Alternatives
We may use your Health Information to give you appointments, reminders, information about treatment options and services, and information about other health-related products or services.Email and Telephone
When you register for services through the Applications, we will send an email to the email address you provide for relevant health and applications updates. By giving us your email address, you are agreeing to us sending you these emails. By giving us your telephone number, you are agreeing to relevant texts and calls from your health professional directly or through Rainbow Health network (as requested while receiving care through the service).As Required by Law
We will disclose Health Information about you when required to do so by federal, state, or local law.To Avert a Serious Threat to Health or Safety
We may use and disclose Health Information about you when necessary to prevent a serious threat to your health and safety or the health and safety of the public or another person.Military and Veterans
IIf you are a member of the armed forces or are separated/discharged from military services, we may release Health Information about you as required by military command authorities or the Department of Veterans Affairs as may be applicable. We may also release Health Information about foreign military personnel to the appropriate foreign military authorities.Workers’ Compensation
We may release Health Information about you for workers’ compensation or similar programs.Public Health Risks
We may disclose Health Information about you for public health activities, which generally include: prevention or control of disease, injury, or disability; reporting births, deaths, and child abuse or neglect; to report reactions to medications or problems with products; to notify people recalls of products they may be using; to notify someone who may have been exposed to a disease or may be at risk for contracting or spreading a disease or condition; to notify the appropriate government authority if we believe a patient has been the victim of abuse, neglect, or domestic violence (we will only make this disclosure if you agree or when required or authorized by law.Health Oversight Activities
We may disclose Health Information to a health oversight agencies for activities authorized by law. These activities include but are not limited to audits, investigations, inspections, and licensure activities.Lawsuits and Disputes
If you are involved in a lawsuit or a dispute, we may disclose Health Information about you in response to a valid court order or administrative order. We may also disclose Health Information about you in response to a subpoena, discovery request, or other lawful process by someone else involved in the dispute, but only after efforts have been made to notify you of the request and you have time to obtain an order protecting the information requested.Law Enforcement
We may release Health Information if asked to do so by a law enforcement official in certain circumstances, such as in response to a court or administrative order, warrant or similar process; to identify or locate a witness, suspect or missing person; and to identify the victim of a crime or to report a crime.Coroners, Health Examiners and Funeral Directors
We may release Health Information about you to a coroner, health examiner, or funeral director as permitted or required by law, such as to identify a deceased person or to determine the cause of death.Inmates
If you are an inmate of a correctional institution or under the custody of a law enforcement official, we may release Health Information about you to the correctional institution or law enforcement official when the release is necessary: for the institution to provide you with healthcare; to protect your health and safety or the health and safety of others; or for the safety and security of the correctional institution.Marketing and Advertising
We will not share your Health Information with advertisers or other third parties. We will use your Health Information for marketing purposes only if you have opted in to receiving marketing communications. Marketing purposes include letting you know about products and services that we offer. If you opt in, you may opt out at any time by contacting us at https://rainbow.health/contact.html. We will not sell or rent your Health Information or Personal Data without your written authorization. Third parties may display advertisements on the Applications. These third parties may also place a cookie on your device in the course of you viewing their advertisements. California Civil Code Section 1798.83 permits our customers who are California residents to request certain information regarding the disclosure of certain data to third parties for direct marketing purposes. To make such a request, please write to us at https://rainbow.health/contact.html
We may use and disclose Non-Personal Data for any purpose. In some instances, we may combine Non-Personal Data with Health Information or other Personal Data. If we combine any Non-Personal Data with Health Information or other Personal Data, the combined information will be treated by us as Health Information or Personal Data, as long as it is so combined.We may collect Non-Personal Data in a number of ways, including but not limited to:
Your rights regarding health information about you: State and federal laws give you rights related to the privacy of your Health Information. Each of these rights is described below. If you want to exercise these rights, you must notify us in writing. For more information on these rights, see the Contact Information in Point 9.
You can prevent the collection of the data generated by Google Analytics in relation to your use of the website (including your IP address) and the processing of this data by downloading and installing the browser plug-in, with more information regarding how you can opt out of Google Analytics data collection as instructed here: https://tools.google.com/dlpage/gaoptout.
This link provides instructions for installing an opt-out cookie on your device. As a result, the collection of data by Google Analytics is prevented in future for the website and for this browser as long as the opt-out cookie remains installed in your browser.
Protecting the privacy of children is very important to us. For that reason, our website and Application does not solicit, collect or maintain personally identifiable information from users we actually know are under age 13. If you are a parent or guardian, please contact us at https://rainbow.health/contact.html if you believe information regarding a child has been collected by us through our Site.Business Transfers
In-App Permissions and Data UsageCamera Usage
The Rainbow Health patient application uses the device camera to send images and video to healthcare providers. This permission can be revoked at any time.Microphone Audio
The Rainbow Health patient application uses the device microphone during video healthcare encounters. This permission can be revoked at any time.Image Uploading
All questions and concerns about your privacy can be sent to firstname.lastname@example.org or by mail to:
24 Greenway Plaza Suite 1800, Houston, TX 77046
77 Sugar Creek Center Blvd, Sugar Land, TX 77478, USA
Attention: Privacy Officer
Effective Date: June 07, 2023