Last updated: June 1, 2018
State and federal laws (“Laws”) govern how Brightside can use and disclose health information that individually identifies you. This information is called PHI. We collect PHI when you use our Website and when you communicate with us.
Laws also specify the rights you have over your PHI. Please review the affiliated doctors’ Notice of Privacy Practices for details on your rights and options to access and amend your data. If you have any questions, please send us a message at firstname.lastname@example.org.
NOTE THAT Brightside DOES NOT PRACTICE MEDICINE. Rather, Brightside performs a service to assist doctors who are contracted with Brightside (“affiliated doctors”) with services like collecting and securely maintaining your PHI to provide your assessments and information that you or your doctors may request.
We use and disclose your PHI so that affiliated doctors can provide you with care, to run our operations and perform operations to support the affiliated doctors, to take payment, and to comply with Laws.
As examples, we share your PHI with organizations that help us run and maintain the technology and security infrastructure that supports the Website and the care that affiliated doctors provide through the Website. We also may share your health information with physicians who are treating you. We share your PHI with our online payment processor and with our bank. We share your PHI with the pharmacy if a doctor prescribes medication to you through the Website and with intermediaries who enable us to send prescriptions electronically.
We may use your PHI to tell you about health-related products and services we offer, and we may share your PHI with a third party if we merge, are acquired, or undergo an asset sale.
Affiliated doctors use your phone number to call you for consultations and will leave voice messages if you don’t answer the phone. Voicemail messages will include the physician’s name and phone number, but not substantive medical information about you. If you do not want messages to be left, you must advise us of this in writing. If Brightside receives your permission, we will use your phone number to send you SMS/text messages.
If we ever have reason to suspect that you may harm yourself or others, we may need to share certain personal information with emergency services.
We may send you emails notifying you of a new message that you can access by logging into your account through our Website.
When you use the Website, there is a risk that your PHI will be stored unencrypted on your mobile device. We take a variety of technical safeguards to make sure that your PHI does not leak onto your mobile device but we cannot guarantee that these safeguards work.
We take a number of administrative, technical, and physical safeguards to look after the PHI that we hold electronically on our servers. But despite these safeguards, no system is perfect, and we cannot guarantee that our systems and your PHI will not be hacked or otherwise compromised by unauthorized third parties.
Upon request to obtain a copy of your medical record, we will provide customer support to help you obtain your records; however we reserve the right to charge a fee for time-consuming requests.
You have the right to request:
Please write to us at: Privacy and Security Officer, Brad Kittredge, 201 Spear Street, Suite 1600, San Francisco, CA 94105.
To submit a complaint to Brightside you need to do so in writing to: Privacy and Security Officer, Brad Kittredge, 201 Spear Street, Suite 1600, San Francisco, CA 94105.
In addition you can complain to: Secretary of the U.S. Department of Health and Human Services Attention: Regional Manager, 50 United Nations Plaza, Room 322, San Francisco, CA 94102. For additional information, call (800) 368-1019 or the U.S. Office of Civil Rights at (866) 627-7748 (Voice) or (866) 788-4989 (TTY)
We will not retaliate against you for filing a complaint.
This Notice is effective dated May 9, 2018.