Effective: September 2020
We are committed to respecting your privacy and recognize your need for appropriate protection and management of any personally identifiable information (“Personal Information”) you or your eye care professional shares with us. “Personal Information” means any information about or that may be used to identify you as an individual, including, but not limited to, your name, date of birth, personal profile, home or other physical address, email address or other contact information, credit card information, and medical and health-related information.
HIPAA and HITECH Act
Our privacy practices are intended to comply with the Health Insurance Portability and Accountability Act (“HIPAA”) and the Health Information Technology for Economic and Clinical Health Act (“HITECH Act”). We will maintain the privacy of any Personal Information as required by HIPAA or the HITECH Act. Furthermore, we will seek to hold any third party receiving any of your Personal Information to the same privacy practices as Notal . We encourage you to review our Notice of Privacy Practices, which describes how we may use and disclose health information that you provide to us.
Collection of Information
Currently, we do not require you to provide Personal Information in order to have access to information available on our Site. However, we may collect Personal Information from you when you register on the Site. In addition, we may collect Personal Information as a result of your use of the Site, such as an activity log unique to you that collects certain administrative and traffic information including without limitation source IP address (and other identifying information about the computer or device you use to complete a transaction), time of access, and date of access.
The Way We Use Personal Information
Subject to the restrictions on the use and disclosure of your health information described in our notice of privacy practices and provided under HIPAA or other applicable law, we may use Personal Information for the following purposes: (i) to improve the Site, (ii) to contact you, (iii) to provide customer support, (iv) to identify and authenticate your access, as necessary, to certain areas of the Site and our products and services, including security and identity verification checks, (v) to process any of your transactions (whether online or by telephone, fax, or regular post), (vi) to meet certain business requirements, (vii) to provide you with information related to your specific treatment regarding our products and services, and (viii)to track your use of our Site and for other internal purposes, such as evaluating, providing, and improving our services and our Site.
Subject to the restrictions on the use and disclosure of your health information described in our notice of privacy practices or provided under HIPAA or other applicable law, we may also share, transfer or disclose your Personal Information: (i) to a Notal third party service provider, bank, or credit card company, solely for the purpose of executing a transaction; (ii) to our subsidiaries, affiliated companies, or other businesses or persons for the purpose of processing Personal Information on our behalf. We require that these parties agree to process such information in compliance with our privacy policies, and we use reasonable efforts to limit their use of such information and to use other appropriate confidentiality and security measures; (iii) to your personal representative or a family member, subject to your express authorization and applicable legal requirements; and/or (iv) if we have a good faith belief that disclosure of such information is helpful or reasonably necessary to (a) comply with any applicable law, regulation, legal process or governmental request, (b) detect, prevent, or otherwise address fraud, security or technical issues, or (c) protect against harm to the rights, property or safety of Notal, its users, yourself or the public
Credit card numbers will be used only for payment processing and are not retained for marketing purposes.
Cookies and Other Tracking Technologies
You may choose whether or not to provide Personal Information to Notal. If you choose not to provide the Personal Information (i) you can still visit most of the Site, but you may be unable to access or use certain options, offers, and services; and/or (ii) you may not be able to use our Products and Services that require the provision of Personal Information. In addition, you have the option to choose to receive occasional email updates, including marketing materials, from Notal. We provide you with the opportunity to ‘opt–out’ of having your Personal Information used for such purposes when we ask for this information and thereafter at any time by contacting us.
Links to Other Sites
The Site may contain links to other sites. Other sites may also reference or link to our Site. We are not responsible for the privacy practices or the content of such other sites.
Except with respect to our Products and Services, we do not knowingly collect information from children under the age of 18.
In the Event of Merger, Sale, or Bankruptcy
In the event that Notal is acquired by or merged with a third party entity, we reserve the right, in any of these circumstances, to transfer or assign Personal Information as part of such merger, acquisition, sale, or other change of control. In the unlikely event of our bankruptcy, insolvency, reorganization, receivership, or assignment for the benefit of creditors, or the application of laws or equitable principles affecting creditors’ rights generally, we may not be able to control how your Personal Information is treated, transferred, or used.
The security of your Personal Information is important to us. We follow generally accepted industry standards to protect the Personal Information submitted to us, both during transmission and once received. If you provide sensitive or confidential information to Notal (such as credit card, medical, or health related information), Notal will take commercially reasonable steps to protect such information (for example, by establishing a secure connection with your web browser). However, no method of transmission over the Internet, or method of electronic storage, is 100% secure. Therefore, although we strive to use commercially acceptable means to protect your Personal Information, we cannot guarantee its absolute security. In the unlikely event of a breach, we will promptly take appropriate remedial steps and, if required, carry out any notification requirements in accordance with HIPAA.
- If you feel that Personal Information we are holding is incorrect or incomplete, you may ask us to amend the information. We may deny your request for certain specific reasons, in which case we will provide you with a written explanation for the denial and information regarding further rights you may have at that point.
- You have the right to request an accounting of disclosures subject to the limitation period imposed by statute.
- You may ask us to restrict certain uses and disclosures of your medical information, although we may not be required to agree to your request.
- You have the right to receive communications from us in a confidential manner.
- You have the right to complain to us and/or to the U.S. Department of Health and Human Services if you believe that we have violated your privacy rights. If you choose to file a complaint, you will not be retaliated against in any way.
George E. Sanborn, Medical Director
Independent Diagnostic Testing Facility, Notal Vision
7717 Coppermine Drive
Manassas, VA 20109
Toll Free Number: 855-691-8600