We are committed to respecting your data privacy and providing transparency about our data practices. This Privacy Policy (this “Privacy Policy”) explains how OneCare LLC (“Company” or “we” or “us”) collects, stores, uses, transfers and discloses Personal Data from our users (“you” or “participants”) in connection with the Company’s mobile application, web portal application, and all related services (collectively, the “App”). We reserve the right to and may change this Privacy Policy from time to time. If we make any material changes, we will notify you via email or text message (sent to the specific contact information provided when you register), through the App, or by presenting you with a new version of this Privacy Policy for you to accept, if we, for example, add new processing activities or collect some additional Personal Data from you.
Your continued use of the App after the effective date of an updated version of the Privacy Policy will indicate your acceptance of the Privacy Policy as modified. In some cases, you will be required to explicitly accept changes to the Privacy Policy in order to continue to use the App. We encourage you to periodically review our website for the latest information on our data privacy practices. If you do not accept the terms of the Privacy Policy, we ask that you do not use the App. Please exit the App immediately and delete it if you do not agree to the terms of this Privacy Policy.
All partner firms and any third-party working with or for us, and who have access to personal information, will be expected to read and comply with this policy. No third-party may access or process sensitive personal information held by us without having first entered into a confidentiality agreement.
We collect the following Personal Data and Information from you:
a. Demographic Information such as age, gender, and race.
b. Contact Information such as name, email address, mailing address, phone numbers.
c. Contact Information for your selected Care Team members.
d. Preferences Information you provide such as language and preferred methods of communication, frequency of reminders and alerts, and who is contacted in the event of an alert.
e. Usage activity about how and when you utilize the App and perform tasks, readings and/or scores obtained or derived, what content you viewed, and which areas you visited.
f. Fitness, Health information, as needed or prescribed such as your weight, height, blood pressure, blood glucose, oxygen saturation, temperature, activity, different symptoms, nutrition, etc.
g. Clinical Information such as your physician(s), medications, diagnosis, and hospitalization information.
h. Device and Usage Information that may include information specific to your mobile device and/or medical devices (e.g., make, model, operating system, advertising identifier and similar information); information about your use of features, functions, or notifications on the device, and signal strength relating to WiFi or Bluetooth functionality, temperature, battery level, and similar technical data.
i. Information about your mobile device such as your mobile device id (similar to a website IP address), mobile device phone number, device type, and mobile service carrier.
j. Location Information that allows us to periodically determine your location, including your location relative to and within third-party partner locations.
We may collect this Personal data and information even if you are not logged into the application. For iOS users: You should be able to adjust the settings on your iOS mobile device to prevent our collection of Location Information by disabling the location services feature on your device. For Android users: You should be able to adjust your settings on your Android mobile device to prevent our collection of Location Information by disabling Bluetooth and Location.
You will also have an option to permit us to import into the App data from third-party services such as Apple HealthKit and Google Fit, among others. Such imported information may include: sports activities, weight, calories burnt, heartbeat rate, number of steps/distance travelled, and other information about your health. Permitting us to access third-party information can help you to maximize your App experience, and we will handle any such third-party information in full accordance with this Privacy Policy.
If the information covered by this Section is aggregated or de-identified so that it is no longer reasonably associated with an identified or identifiable natural person, we may use it for any business purpose. To the extent information covered by this Section is associated with an identified or identifiable natural person and is protected as personal data under applicable data protection laws, it is referred to in this Privacy Policy as “Personal Data”. We use pseudonymization for particular types of Personal Data. Please bear in mind that provisions of Section 3 do not apply to pseudonymized Personal Data.
By installing the App and creating a profile in the App (or by explicitly accepting this Privacy Policy and explicitly consenting to the processing of your Personal Data), you explicitly consent that:
a. WE MAY STORE AND PROCESS YOUR PERSONAL DATA YOU PROVIDE THROUGH THE USAGE OF THE APP AND THROUGH THE ACCOUNT CREATION PROCESS SOLELY FOR THE PURPOSE OF PROVIDING SERVICES TO YOU, TO IMPROVE OUR SERVICE FEATURES AND OTHER PURPOSES INDICATED IN SECTION 2 OF THIS PRIVACY POLICY. SUCH SERVICES MAY INCLUDE SENDING YOU INFORMATION AND REMINDERS THROUGH THE APP OR TO THE EMAIL ADDRESS OR PHONE NUMBER YOU PROVIDED TO US.
b. PERSONAL DATA YOU PROVIDE TO US THROUGH THE ACCOUNT CREATION PROCESS OR USE OF THE APP INCLUDES PERSONAL DATA YOU ENTER INTO THE APP, SUCH AS YOUR ACCOUNT DATA (E.G. YOUR NAME, EMAIL ADDRESS AND PHONE NUMBER), AND YOUR HEALTH DATA (E.G. BODY MEASUREMENTS, PHYSICAL ACTIVITY AND OTHERS). DEPENDING ON THE DATA YOU PROVIDE, IT MAY ALSO CONTAIN INFORMATION ABOUT YOUR GENERAL HEALTH (E.G. WEIGHT, BODY TEMPERATURE, AND OTHERS).
c. WE WILL NOT TRANSMIT ANY OF YOUR PERSONAL DATA TO THIRD PARTIES, EXCEPT IF IT IS REQUIRED TO PROVIDE THE SERVICE TO YOU (E.G. TECHNICAL SERVICE PROVIDERS), UNLESS WE HAVE ASKED FOR YOUR EXPLICIT CONSENT.
We may use your information, including your Personal Data, and by accepting this Privacy Policy you provide us your explicit consent, for the following purposes:
a. to report on your progress of adhering to the prescribed Care Program;
b. to report on the current and historical trending of your medical readings/measures, completions and timing of each, all of which is made visible to you, your Care Team members, and your prescribing physician(s);
c. to supplement the tools and information available to your prescribing physician(s) so they have a more current and complete view of your medical information;
d. to provide a means of supporting the patient’s health outcomes from your physician, their staff, pharmacist, and Care Team members, via the utilization of reports, alerts and notifications;
e. to send product updates or warranty information;
f. to respond to your comments, questions and requests and provide customer service;
g. to send you push notifications, both internal and external. IF YOU DO NOT WANT TO RECEIVE THESE NOTIFICATIONS, YOU CAN MANAGE YOUR PREFERENCE EITHER THROUGH YOUR DEVICE OR APP SETTINGS DEPENDING ON YOUR DEVICE TYPE. YOU CAN ALSO CONTACT YOUR PRESCRIBING PHYSICIAN TO MAKE SUCH UPDATES.
Modification, correction, and erasure. You are able to modify, correct, erase and update your Personal Data in the App account settings or, if that is impossible, by contacting your prescribing physician and requesting such.
Access. You have a right to access your Personal Data you insert into the App. You can do this by using the app settings or by writing to info@onecare.me.
EU residents. Individuals residing in the countries of the European Union have certain statutory rights in relation to their personal data introduced by the General Data Protection Regulation (the “GDPR”). Subject to any exemptions provided by law, you may have the right to request access to Personal data (including in a structured and portable form), as well as to seek to update, delete or correct Personal data:
a. Rectification of Personal Data and Restriction of Processing. You are responsible for ensuring the accuracy and relevant maintenance of your Personal Data that you submit to the App. Inaccurate information will affect your experience when using the App, Web Sites and tools and our ability to contact you as described in this Privacy Policy. If you believe that your Personal Data is inaccurate, you have right to contact your prescribing physician to perform such updates. You shall also have the right to request restriction of processing of your Personal Data, if you contest the accuracy of the Personal Data and some time is needed to verify its accuracy.
b. Access to your Personal Data and Data Portability. The App gives you the ability to access and update Personal Data within the App and your account settings. You shall have the right to request information about whether we have any Personal Data about you, to access your Personal data (including in a structured and portable form) by using your app settings or by simply writing us at info@onecare.me.
c. Erasure of your Personal Data. If you believe that your Personal Data is no longer necessary in relation to the purposes for which it was collected or otherwise processed, or in cases where you have withdrawn your consent or object to the processing of your Personal Data, or in cases where the processing of your Personal Data does not otherwise comply with the GDPR, you have right to contact us and ask us to erase such Personal Data as described above. You can simply write to us at info@onecare.me. Please be aware that erasing some Personal Data inserted by you may affect your possibility to use the App and its features. Erasure of some Personal Data may also take some time due to technical reasons.
d. Right to object to processing of your Personal Data. You can object to processing your Personal Data and stop us from processing your Personal data by simply writing to us at info@onecare.me. Please be aware that erasing some Personal Data inserted by you may affect your possibility to utilize the App and its features.
e. Notification requirements. We commit to notify you within a reasonable period of time and your data protection authority within the timeframe specified in applicable law (72 hours) about any personal data breaches in the App.
f. Data Protection Authorities. Subject to GDPR, you also have the right to (i) restrict our use of Personal Data and (ii) lodge a complaint with your local data protection authority about any of our activities that you deem are not compliant with GDPR.
Please keep in mind that in case of a vague access, erasure, objection request or any other request in exercise of the mentioned rights, we may engage the individual in a dialogue so as to better understand the motivation for the request and to locate responsive information. In case this is impossible, we reserve the right to refuse granting your request.
Following the provisions of GDPR we might also require you to prove your identity (for example, by requesting an ID or any other proof of identity) in order for you to invoke the mentioned rights, specifically if you exercise them in respect to special categories of Personal Data like data about health. This is made to ensure that no rights of third parties are violated by your request, and the rights described in this section are exercised by an actual Personal Data subject or an authorized person.
Sharing with third parties. We will share your Personal Data and information with third parties only in the ways that are described in this Privacy Policy.
We may disclose your Personal Data:
a. as required by law, such as to comply with a subpoena, or similar legal process.
b. when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request.
c. if we are involved in a merger, acquisition, or sale of all or a portion of its assets, you will be notified via email and/or a prominent notice on our Web site of any change in ownership or uses of your personal information, as well as any choices you may have regarding your personal information.
d. to any other third-party with your prior explicit consent to do so.
We share the information we collect with third-party business partners who commit to comply with applicable laws concerning their usage of your Personal Data (for example, GDPR for the EU residents). Our third-party business partners may share your Personal Data with their own third-party business partners, granted they have appropriate data protection safeguards in place, and use the information either for themselves or on behalf of their own business partners to:
a. Operate and improve their services; and
b. Carry out other purposes that are disclosed to you and to which you consent.
Depending on a service you use, we may share some of your Personal Data and information with third-party business partners who perform analytical and other tasks for us (in some jurisdictions such parties may qualify for being a ‘processor’ under applicable laws). These are the third-party services with whom, among others, we may share some of your Personal Data and information:
a. Snowflake. We use Snowflake as a data warehouse for our reporting and business intelligence (BI) needs. All user data migrated and stored within Snowflake is de-identified.
b. ThoughtSpot. In conjunction with Snowflake, we use ThoughtSpot as one of our reporting and BI service providers. These power some of the visual representations of the dashboards and other reporting within the App.
c. Tableau. In conjunction with Snowflake, we use Tableau as another of our BI service providers. These provide the user with powerful dashboards and reporting within the App.
d. Fabric. We use Fabric, an analytics company and a Google subsidiary, to better understand your use of the App. For example, Fabric may use device identifiers that are stored on your mobile device and allow us to analyze your use of the App in order to improve our App features. Read more about Fabric here: https://get.fabric.io
e. Crashlytics. Crashlytics, a Google business division, provides us crash reporting solution that we use in order to track when the App crashes or works improperly on your device. Crashlytics may collect certain device identifiers in order to understand on what devices and under which circumstances the App does not work or crashes. See more about Crashlytics here: https://try.crashlytics.com/reports/
f. Appsee. Appsee is s a mobile app analytics platform that provides us tools that enable us to track and optimize the UX in the App through the use of some device identifiers. See more here: https://www.appsee.com
g. Flurry. Flurry is a Yahoo! Subsidiary and analytical platform that we use in order to analyze different use trends in our App. We may share certain non-identifiable information about you and some Personal Data (but never any data related to health) with Flurry. See more: https://developer.yahoo.com/flurry/legal-privacy/tos.html
h. Zendesk. We use Zendesk as an intermediary for user support services. Zendesk may collect some of your Personal data (like contact information) in order to connect us with you.
i. Firebase. Firebase is an analytics product from Google, Inc. that allows us to track crashes of the App, monitor events in the App, provide us stats regarding the use of the App. Firebase may collect certain device identifiers in order to understand on what devices and under which circumstances particular incidents and events happen. See more on Firebase: https://firebase.google.com/
Our third-party partners are either US-based or certified under EU-US Privacy Shield Framework that ensures that European data protection requirement are met. The privacy policy of these services can be found on their respective websites. Be informed that some third-party service providers may have their servers located in countries outside of the United States.
BY USING THE APP, YOU CONSENT THAT WE MAY USE COOKIES AND THIRD-PARTY SERVICES AND COLLECT YOUR USAGE (INCLUDING FOR PROCESSING BY THIRD-PARTY SERVICE PROVIDERS) AND SOME PERSONAL DATA UNDER A UNIQUE IDENTIFIER, FOR THE PURPOSES OF TRACKING, ANALYSIS, AND IMPROVEMENT OF THE APP. BY USING OUR SERVICE, YOU EXPLICITLY CONSENT TO THE USE AND PROCESSING OF YOUR DATA COLLECTED AS DESCRIBED ABOVE.
Aggregated Information. We may also share aggregated, anonymized or de-identified information, which cannot reasonably be used to identify you. For example, we may share, including, without limitation, in articles, blog posts and scientific publications, general age demographic information and aggregate statistics about certain activities, symptoms or health conditions from data collected to help identify patterns across users.
Security of your Personal Data is important to us. When you provide your Personal data that is considered to be sensitive or falls under “categories of special data” under applicable laws to us, we encrypt the transmission of that information using secure socket layer technology (SSL). We follow generally accepted industry standards to protect the Personal Data submitted to us, both during transmission and once we receive it.
Among others, we utilize the following security measures to protect your Personal Data:
a. Pseudominization and tokenization of certain categories of your Personal Data;
b. Protection of data integrity;
c. Encryption of your Personal Data in transit and in rest;
d. Systematic vulnerability scanning and penetration testing;
e. Logging of all data viewing and access. For example, we keep an automated and detailed log of every interaction with the user’s personal data including which specific records and what actions were performed.
f. Organizational and legal measures. For example, our employees have different levels of access to your Personal Data, and only those in charge of data management get access to your Personal Data and only for limited purposes required for the operation of the App. We impose strict liability on our employees for any disclosures, unauthorized accesses, alterations, destructions, misuses of your Personal Data.
g. Conducting periodical data protection impact assessments in order to ensure that the App fully adheres to the principles of ‘privacy by design’, ‘privacy by default’ and other internationally accepted data protection principles. We also commit to undertake privacy audit in case of Company’s merger or takeover.
Bear in mind that no method of transmission, or method of electronic storage, is 100% secure. Therefore, we cannot guarantee its absolute security. If you have any questions about security on our App, you can contact us at info@onecare.me.
We will retain your Personal Data for as long as the application is installed on your mobile device or as needed to provide you service. If your account is canceled, your Personal Data records will be deactivated and we will use copies of your Personal Data as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements. If you wish to cancel your account or request that we no longer use your information to provide you services, contact us at info@onecare.me.
We use servers located in the United States to transfer, process, and store your Personal Data.
General age limitation. We are committed to protecting the privacy of children. The App is not intended for children and we do not intentionally collect information about children under 16 years old. The App does not collect Personal Data from any person the Company actually knows is under the age of 16. If you are aware of anyone under 16 using the App, please contact us at info@onecare.me and we will take the required steps to delete such information and (or) delete their account.
To communicate with our Data Protection Officer, please email at info@onecare.me.
General contact details. If you have any questions or concerns about your privacy, any provisions of this Privacy Policy or any of your rights, you may contact us at:
Gary Austin
OneCare LLC
1635 Old 41 Hwy NW
Suite 112-117
Kennesaw, GA 30152
gary.austin@onecare.me
Email: info@onecare.me