Privacy Policy
The privacy of your information is very important to us. Stellus Rx, LLC and its affiliates (“Stellus Rx”) wants to ensure that your information is protected and has provided this Privacy Policy to explain how we collect data, how we may use and disclose the personal data you provide to us, how we keep that information secure, and how you can get access to this information.
I. How Information is Used and Collected.
The Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) has established standards to ensure the privacy of your protected health information. Stellus Rx maintains full compliance with HIPAA and has implemented various administrative, physical, and technical safeguards to comply with its provisions.
Stellus Rx may use, collect, and store your Protected Health Information and Personal Information. Protected Health Information (“PHI”) is information about your past, present, or future health or medical condition(s). “Personal Information” (“PI”) is data unique to you, including your name, date of birth, address, email address, IP address, and phone number. If you encounter a page or screen that requests this information and you do not want to share with us, do not enter the information and do not proceed with that screen or page.
Stellus may communicate with you via text message (SMS, MMS, or other technologies), email, or other mobile or messaging applications meaning there is a risk the information could be intercepted by third parties in transmission or read by anyone accessing your text messages (collectively, “Data Messaging”). Please see our Terms of Use for Data Messaging . This could include push notifications from our Data Messaging applications. Information obtained from you in connection with Data Messaging from Stellus may include your phone number, your provider’s name, and the time, date and content of your message. Stellus is not responsible for any data or charges in connection with Data Messaging and Stellus may change or discontinue Data Messaging at any time.
Stellus is not responsible for any data or charges in connection with Data Messaging and Stellus may change or discontinue Data Messaging at any time.
Stellus Rx may also collect electronic data about you to enhance user experience, analyze or create health care or pharmacy products or offerings, and report on user activity. Stellus Rx may also use your PHI and PI to automate notifications to you.
In addition, during your use of the Applications, Stellus Rx’s web operating system may record:
- The type of browser (such as “Netscape version X” or “Internet Explorer version x”) that you are using.
- The type of operating system that you use (such as Macintosh, Unix, or Windows).
- The date and time you visited Stellus Rx’s Applications, and the areas you visited.
- The address of the previous website you were visiting, if you linked to us from another website.
- The internet domain for your internet service, such as “xcompany.com” or “xcompany.net” if you use a private internet access account, or “yourschool.edu” if you connect from a college or university domains.
- Tracking what areas of Applications or tools are utilized.
- Evaluating and reporting on a user’s activity or participation in a pharmacy or clinical management program.
Stellus Rx uses this information for statistical analysis and to help enhance Stellus Rx Applications. In addition, and in accordance with applicable law, Stellus Rx may also combine any of this information with other information that we have about you for data analytics, enhanced healthcare or pharmacy services or product offerings, marketing and reporting.
II. Safeguarding Protected Health Information.
Stellus Rx will not share non-public protected health information with non-affiliated third parties. Stellus Rx will restrict access to only those Stellus Rx affiliates, subsidiaries, employees, consultants and contractors who need to know this information to provide you with Stellus Rx’s products and services and who are under an obligation to keep such information confidential. Stellus Rx maintains physical, electronic, and procedural safeguards that comply with federal and state regulations to protect your information. In addition, Stellus Rx internally utilizes non-identifying personal information for the proper management, administration and development of Stellus Rx products and services. We are required by law to maintain the privacy and security of your protected health information. We will let you know promptly if a breach occurs that may have compromised the privacy or security of your information. We must follow the duties and privacy practices described in this notice and give you a copy of it.
Although Stellus Rx does not share non-public protected health information with non-affiliated third parties, Stellus Rx may use your protected health information for a number of reasons as detailed below.
- Treatment: We may disclose your protected health information to doctors, nurses, and other licensed healthcare personnel who are involved in providing your healthcare services.
- Payment: We may use or disclose your information to assist in obtaining payment for healthcare services rendered to you.
- For Healthcare Operations: We may disclose your information in the course of providing our various healthcare services.
- Care Reminders: We may use your contact information to remind or notify you of the benefits of a health service.
- Legal Requirements: If necessary, we may be legally required to disclose your protected health information to comply with applicable laws, regulations, search warrants, subpoenas, discovery requests, or court orders.
- Other Uses and Disclosures: We may use medical information for other disclosures; however, this will only be done with your prior written authorization.
You have the following rights regarding your protected health information:
- Right to get an electronic or paper copy of your medical record: You can ask to see or get an electronic or paper copy of your medical record and other health information we have about you. We will provide a copy or a summary of your health information, usually within 30 days of your request.
- Right to ask us to correct your medical record: You can ask us to correct health information about you that you think is incorrect or incomplete. We may say “no” to your request, but we’ll tell you why in writing within 60 days.
- Right to request confidential communications: You can ask us to contact you in a specific way (for example, home or office phone) or to send mail to a different address.
- Right to ask us to limit what we use or share: You can ask us not to use or share certain health information for treatment, payment, or our operations. We are not required to agree to your request, and we may say “no” if it would affect your care. If you pay for a service or health care item out-of-pocket in full, you can ask us not to share that information for the purpose of payment or our operations with your health insurer. We will say “yes” unless a law requires us to share that information.
- Right to get a copy of this privacy notice: You can ask for a paper copy of this notice at any time, even if you have agreed to receive the notice electronically. We will provide you with a paper copy promptly.
- Right to choose someone to act for you: If you have given someone medical power of attorney or if someone is your legal guardian, that person can exercise your rights and make choices about your health information.
- Right to file a complaint if you feel your rights are violated: You can complain if you feel we have violated your rights by contacting us using the contact information below. You can file a complaint with the U.S. Department of Health and Human Services Office for Civil Rights by sending a letter to 200 Independence Avenue, S.W., Washington, D.C. 20201, calling 1-877-696-6775, or visiting www.hhs.gov/ocr/privacy/hipaa/complaints/. We will not retaliate against you for filing a complaint.
You may initiate these requests by contacting Stellus Rx at the contact information provided below.
III. Web Security Policy.
For security purposes and to make sure Stellus Rx Applications remain available to all users, we may use special software programs for monitoring network traffic to identify unauthorized attempts to upload or change information, or otherwise to cause damage to our computer system. These programs collect no information that would directly identify individuals, but they do collect information that could help us identify someone attempting to tamper with Stellus Rx Applications. If you use our Applications, you should understand that all activities may be monitored or recorded. Anyone using our Applications expressly consents to such monitoring.
IV. California Online Privacy Protection Act Compliance.
Because we value your privacy, we have taken the necessary precautions to be in compliance with the California Online Privacy Protection Act (“COPPA”). We therefore will not distribute your personal information to outside parties without your consent. Stellus Rx is in compliance with the requirements of COPPA and does not collect any information from anyone under 13 years of age. Stellus Rx Applications are all directed to people who are at least 13 years of age or older.
V. Amendments.
This Privacy Policy may be revised from time to time. Any new notice will be effective immediately for any and all confidential information Stellus Rx maintains. Upon revision, this notice will be available upon request and displayed prominently on our website.
VI. Contact Us.
If you have any questions regarding this Privacy Policy, you may contact us using the information below:
Stellus Rx, LLC
8277 Belleview Drive, Suite 250
Plano, Texas 75024
855-455-2100