Patient Driven Evidence Based Treatment Solutions. Track pain, medications, therapies, effectiveness, view reports, and improve outcomes.
Skip Navigation Links
Home Home
Register Register
Products & ServicesExpand Products & Services
Alliance's
About UsExpand About Us
Log In
Skip Navigation LinksHome > Privacy Policy

Privacy Policy

This Privacy Policy has been published by HealthSaaS.net which is owned by MediSoftcorp a C Corporation headquartered in Beaverton, Oregon.

HealthSaaS.net provides online tools to assist individuals with pain management, which are called "Services" in this Privacy Policy, under the terms of a Patient Member Agreement. The Services include a Patient Diary, which subscribing individuals ("Patient Members") may use to record information about themselves and the pain they experience, and other relevant information ("Personal Information").

HealthSaaS.net is committed to helping you keep your information private. We are also committed to enabling you to securely share your information with those who care for you. Our Privacy Policy addresses these issues.

Individual specific Patient Member health information is NEVER shared, sold, or disclosed to outside organizations or individuals, subject to the terms of this Privacy Policy.

Patient Members may choose to grant members of their family, their friends and healthcare providers, or any other individuals involved in their patient management access to their Personal Information. Patient Members, family members, care givers, and other providers are required to comply with Terms of Use when using the Services.

The purpose of this Privacy Policy is to provide information to Patient Members about HealthSaaS.net’s privacy practices. This Privacy Policy does not apply to individuals who view any public HealthSaaS.net website information without contracting as a Patient Member.

1. Personal Information Subject to this Policy

The following Personal Information is subject to this Privacy Policy.

1.1. Patient Member Contract Information. Information about a Patient Member such as the Patient Member's name, contact, and financial information (if applicable), which is obtained by HealthSaaS.net for purposes of establishing a Patient Member Agreement or registering a Patient Member.

1.2. Individual specific Patient Member. Information relevant to individual specific Patient Member's pain or other health issues, provided by the Patient Member in using the Services.

1.3. Patient Member Activity Information. Information about activities in using the Services, such as log-in and log-out dates and times, session length, and web pages accessed.

2. Monitoring of Communications and Transactions

Patient Member sessions and transactions using the Services may be monitored by HealthSaaS.net; however, HealthSaaS.net does not intentionally monitor the content of any sessions or transactions without the authorization of the applicable Patient Member, and will not otherwise do so unless required to by order of a court or governmental agency.

3. Use and Disclosure of Personal Information by HealthSaaS.net

HealthSaaS.net may use or disclose Personal Information as follows:

3.1. Patient Member Contract and Activity Information. HealthSaaS.net may obtain, use or disclose Patient Member Contract and Patient Member Activity Information as follows:

  • As authorized by the Patient Member;
  • For purposes of establishing, managing or enforcing a Patient Member Agreement;
  • For purposes of managing or enforcing the Terms of Use or this Privacy Policy;
  • For purposes of developing, managing, maintaining, upgrading, enhancing, or modifying the Services;
  • To create de-identified information, as long as such information cannot reasonably be used by any third party to identify the Patient Member;
  • For purposes of HealthSaaS.net’s general management and administration, and fulfillment of HealthSaaS.net’s legal obligations;
  • To provide the Patient Member with information as described in Section 3.3; or
  • As required by law.

3.2. Individual specific Patient Member personal health information. HealthSaaS.net will not intentionally obtain, use or disclose an individuals specific Patient Member's Personal Health Information without the Patient Member's authorization, except under the following circumstances:

  • If required to do so by order of a court or governmental agency; and/or
  • If necessary for HealthSaaS.net to establish a legal claim or defense; and/or
  • To create de-identified information, as long as such information cannot reasonably be used by any third party to identify the Patient Member; and/or
  • If obtained incidentally in the course of developing, managing, maintaining, upgrading, enhancing or modifying the Services, as long as HealthSaaS.net does not use such information for any purpose not necessary for such activities, limits the information to that reasonably necessary for the purpose and does not use it for any other purpose, and does not make any copies of such information or disclose or transfer it to any other party.

3.3. Uses of Personal Information for Informational Purposes. HealthSaaS.net will use Personal Information to provide information about products and services only for purposes permitted by this Section:

  • HealthSaaS.net may use Patient Member Contract or Patient Member Activity Information in order to provide the Patient Member with information about enhancements, upgrades and other modifications to the Services, or opportunities to participate in pain management-related research.
  • HealthSaaS.net will not disclose any individual specific Personal Information to any third party for purposes of marketing to the Patient Member, except for a subcontractor as permitted by Section 3.4.

3.4.Use of Subcontractors and Agents. HealthSaaS.net may use subcontractors or agents to provide services to HealthSaaS.net which require them to obtain, use or disclose Personal Information, as permitted by this Privacy Policy. HealthSaaS.net will not provide such subcontractors with access to Personal Information or permit them to obtain, use or disclose Personal Information without first securing written assurance from the subcontractor that it will (a) keep the information confidential, (b) use or disclose the information only for the purposes for which it was made available to the subcontractor or as required by law; and (c) notify HealthSaaS.net of any events affecting the confidentiality of the information.

4. Information Rights of Patient Members Members

Individual Patient Members and Trusted Partners have the following rights with respect to their Personal Information maintained by HealthSaaS.net:

4.1. Patient Member Contract and Activity Information. Patient Members may have the right to obtain access to, get copies of, and request the amendment or deletion of their Patient Member Contract and Activity Information where required by law. Any request for access, copies, amendment or deletion will be granted if it is required by law and not inconsistent with HealthSaaS.net’s legal obligations with respect to the information.

4.2. Individual specific Patient Member Personal Health Information. HealthSaaS.net does not manage, maintain, use or disclose Patient Individual specific Patient Members' Personal Health Information. Patient Members have both the right and the ability to obtain access to, and copy their data.

5. Safeguards for Personal Information

The protection of Personal Information requires the cooperation and assistance of Patient Members as well as the use of reasonable and appropriate administrative, physical and technical safeguards by HealthSaaS.net. Personal Information shall therefore be protected as follows:

5.1. HealthSaaS.net Safeguards. HealthSaaS.net will maintain reasonable and appropriate administrative, physical and technical safeguards for the protection of Individual specific personal information which is consistent with commercially reasonable industry standards and practices and provide reasonable assurance that Individual specific personal information will not be obtained, used or disclosed by an unauthorized third party or contrary to this Privacy Policy.

5.2. Individual specific personal health information access protections by Patient Members. Access to the Services and Personal Information is controlled by a Patient Member name and password identification and authentication process. Each Patient Member is responsible for any use of his or her Patient Member name or password. HealthSaaS.net cannot independently determine whether the person presenting the Patient Member name and password is in fact the identified individual. In order to protect the Services and Personal Information, each Patient Member must manage and protect his or her Patient Member name and password as follows:

  • Do not share the Patient Member name or password with any other person, or allow anyone else to use the Patient Member name or password.
  • Do not let anyone else see, copy or steal the Patient Member name and password.
  • Change the initial generated password provided when first signing on for use of the Services.
  • Periodically change passwords.
  • Do not use actual words for the password. Do use passwords with mixed numbers, letters and symbols.
  • Notify HealthSaaS.net in writing at once if there is any reason to believe anyone may have used, learned, seen, copied or stolen the Patient Member name or password. Upon receiving such notice HealthSaaS.net will promptly terminate access under the compromised Patient Member name and password, and issue a new Patient Member name and password.
  • Log off the Services promptly whenever not in use. Do NOT leave the computer being used for such access unattended or out of sight without logging off.
  • Each Patient Member registrant is wholly responsible to HealthSaaS.net for any activities conducted using his or her Patient Member name and password, unless he or she has notified HealthSaaS.net in writing of a possible compromise of the Patient Member name and/or password as required in this Section and HealthSaaS.net has had a reasonable amount of time to terminate access under the compromised Patient Member name and password.

6. Contact for Further Information

For further information about this Privacy Policy or to request the exercise of information rights under Section 5, please contact HealthSaaS.net at via the Contact Us form.

7. Applicable Law

This Agreement shall be interpreted consistently with federal law applicable to the parties, provided that state law issues shall be exclusively interpreted according to the laws of the State of Oregon, without regard to choice of law principles.

8. Amendment

From time to time HealthSaaS.net may amend this Privacy Policy by posting a notice of such amendment and publishing the amended Privacy Policy on the Services website. Amendments to this Privacy Policy shall not apply retroactively to Personal Information obtained prior to the amendment.

 

What is SaaS? || News & Press || HIPAA || Privacy Policy || Contact Us

HealthSaaS.net is a trademark of MediSoftcorp. Copyright © 1995-2010. All rights reserved.