Effective June 29th, 2018
This Policy applies to www.sihahealth.com and connecthealth.io websites, including all subpages and successor pages (collectively referred to as the “Site”), and also applies to all software and Services offered by a Provider(s) to you over the Site, including the Siha Android (“Android app”) and iOS (“iOS app”) apps that may be made available on Google Play and Apple App store (collectively referred to as the “Service”), as well as all apps "Powered by Siha." This Policy does not apply to any website, product or service of any third-party company even if the website links to (or is linked from) our Site. ConnectHealth does not operate or control those websites, products or services. Please always review the privacy practices of a company before deciding whether to provide any information. By using our Site or Service, you are accepting the practices described in this Policy. If you do not agree with this Policy, delete all cookies from your browser cache after visiting our Website and do not visit or use our Website or Service. Your continued use of our Website or Service signifies your acceptance of this Policy.
2. What do we collect?
Your information (if you are getting care for yourself)
If you are arranging Services for yourself, we collect information related to your account when you use our Service. We collect information including but not limited to your name, national ID, location, email, phone number, and medical conditions over secure SSL based channels. We may also collect your information through email, SMS, over the telephone or in-person. We also keep a record of the health information (“Health Information”) you provide us and interactions between you and your Provider(s). This record may include your test results, diagnoses, medications, your response to medications or other therapies, and information we learn about your medical condition through the Service. You and/or your Provider may disclose this information to other Providers and entities such as laboratories and pharmacies to follow through on your care plan as determined between you and your Provider. At your request, you may contact ConnectHealth at support[at]connecthealth[dot] io for a full record of who has your treatment data and cease access to a Provider or entity. Service updates pending, you may also have a visual log through the Service of who has access to your health information, and set allow/deny permissions at your discretion.
Your family member's information (if you are getting care for someone else)
In the case where you are accessing Services for a family member, such as a parent, child, relative or friend, you are providing to us their information in the similar categories as mentioned above. By doing that, you have the obligation to ensure the information that you have entered is accurate, up-to-date, and their personal preference if they were to enter the information by themselves.
Information provided to our Providers
Our Providers, who are independent contractors using the ConnectHealth platform to render Services to Users, may use our Service to access a User’s Health Information such as chat history, completed tasks, call logs and transcriptions, notes and/or pharmacy and lab orders. This information will be made available to ConnectHealth and can only be accessed by the User, the arranging individual and family members that have been explicitly invited to help manage a client’s account, and the Provider authorized by the User to render Services.
We collect billing address and credit card information, M-PESA and mobile network operator payment platform details to process your outstanding payment balance. Credit card information is securely passed to our payment processing partner and is never stored on ConnectHealth servers.
When you use the Services, our servers automatically record information (“log data”), including information that your browser sends whenever you visit a website or your mobile app sends when you’re using it. This log data may include your Internet Protocol address, the address of the web pages you visited that had ConnectHealth features, browser type and settings, the date and time of your request, how you used ConnectHealth, and cookie data.
In addition to log data, we may also collect information about the device you’re using ConnectHealth Services on, including what type of device it is, what operating system you’re using, device settings, unique device identifiers, and crash data. Whether we collect some or all of this information often depends on what type of device you’re using and its settings. For example, different types of information are available depending on whether you’re using a Mac or a PC, or an iPhone or an Android phone. To learn more about what information your device makes available to us, please also check the policies of your device manufacturer or software provider.
Use of service
Information we get from your use of the Service includes non-personally-identifying information of the sort that web browsers, servers, and services like Google Analytics typically make available, such as the browser type, language preference, referring site, and the time of each visit. Other non-identifying information that we might have access to includes how you use the Service (e.g. search queries), your approximate location, cookies, etc.
3. How do we use the information we collect?
Providing the Service
We use information you provide to authenticate you and provide our Services, and support your Providers to render Service to you.
Improve Our Product
We use the information we collect to provide our products to you and make them better, develop new products, and protect ConnectHealth and our Users and Providers.
We will occasionally send you product updates, newsletters, marketing materials and other information that may be of interest to you. You can decide to stop getting these updates by clicking on “Unsubscribe” in the footer of each email or inside “Account Settings”.
We work hard to keep ConnectHealth secure and to prevent abuse and fraud. We use SSL protocol to encrypt all data that is sent between your browser/mobile devices and ConnectHealth servers.
Communicating with You
If you contact us with a problem or question, we will use your information to respond to that request and address your problems or concerns. We may send you service and administrative emails. We may also contact you to inform you about changes in our services, or our service offerings. These messages are considered part of the service and you may not opt out of them.
We also use the data we collected to protect the rights and safety of ConnectHealth, Providers and Users.
4. How and when do we share information
There are times when your personal information and communications might be shared with a third-party. We share information with:
Providers and Third Party Providers
We share your information with Providers who you and your Provider have authorized to provide Service over the ConnectHealth platform.
You may share information with a 3rd party entity that has been authorized to participate in delivering and bettering of our client's care plan only in the event that the User or account holder requests for ConnectHealth to do so. The information will be made available to the User first and they will be able to share the information with the 3rd party entity.
Family members who are involved in the User’s care plan Such as daughters, sons, spouses and parents, or a non-family member who has been granted access to Service through an explicit invitation using their email address or phone number as an identifier.
3rd party services
Companies that provide services to ConnectHealth in areas of web hosting, development, analytics, SMS and email services.
Government agency and law enforcement
We may disclose your Personal Information to law enforcement, government officials, or other third parties if: (i) we are compelled to do so by subpoena, court order or other legal process, (ii) we must do so to comply with laws, statutes, rules or regulations, including credit card rules, (iii) we believe in good faith that the disclosure is necessary to prevent physical harm or financial loss, to report suspected illegal activity, or to investigate violations of our Terms of Service.
We may also use your health information to comply with federal, state or local laws that require disclosure, inform authorities to protect victims of abuse or neglect, comply with national and county health oversight activities such as fraud investigations, respond to law enforcement officials or to judicial orders, subpoenas or other legal processes, inform coroners, medical examiners and funeral directors of information necessary for them to fulfill their duties
Mergers & Acquisition
5. Your choices
Choice is about making sure you have the ability to control how we share your personal information with others. We never share any of your personal information with non-agent third parties.
We won't share your personal information with non-agent third parties unless we are required to do so by law, or if we believe in good faith that disclosure is reasonably necessary to protect our property, rights or those of third parties or the public at large. It is possible that we may, on occasion, buy or sell assets from or to other companies. If that should occur, user information is typically one of the assets that get transferred. Similarly, if ConnectHealth or most of its assets were acquired, or in the unlikely event that we go out of business or enter bankruptcy, User information could be transferred or acquired. You should be aware that such events can occur, and that if it does, the buyer may continue to use your personal and non-personal information, but only as set forth in this policy. Other than in these rare circumstances, ConnectHealth will not rent or sell potentially personally identifying information to anyone.
We may from time to time request some of your financial information for the purposes of completing transactions you have initiated through the Services, enrolling you in discount, rebate, and other programs in which you elect to participate, protecting against or identify possible fraudulent transactions, and otherwise as needed to manage our business. It's hard to imagine that we would ever consider collecting, let alone sharing, sensitive information with a non-agent third party, but if such a day should come, we will first give you the opportunity to explicitly consent (opt-in) to such disclosure or to any use of the information for a purpose other than the one for which it was originally collected or previously authorized.
6. Data encryption & security
Although no data transmission can be guaranteed to be 100% secure, we take reasonable steps to protect all Personal Information. ConnectHealth maintains strict administrative, technical, and physical procedures to protect information stored in our servers. Access to information is limited (through user/password credentials and software systems) to those employees who require it to perform their job functions. We use industry-standard Secure Socket Layer (SSL) encryption technology to safeguard the account registration process and sign-up information. Other security safeguards include but are not limited to data encryption, firewalls, and physical access controls to building and files.
We may change this policy from time to time, and if we do we’ll post any changes on this page. If you continue to use ConnectHealth after those changes are in effect, you agree to the revised Policy.