PRIVACY AND CONFIDENTIALITY
10X.diet (“we, “us”, “our” or “Company”) operates the 10x.diet telemedicine website (“Site”) and provides other services. This Privacy and Confidentiality policy applies to http://10x.diet website as well as to the services and applications we provide, collectively known as the “Services.”
Your personal information shared on our Site and/or Services is protected, secure, and confidential. By accepting Company’s Service Agreement and by providing your information on our Site, you consent to the use and disclosure of personally identifiable information as enumerated and only as enumerated in this Privacy Policy.
INFORMATION COLLECTION
Protected health information is information that includes, but is not limited to, identifying data such as name, photos and/or video, social security number, address, contact information, as well as information about personal health issues submitted through the Services. Personally identifiable information may include all such types of information, except for health- or health-care-specific information. This is the information we must protect.
We collect protected health information and other personally identifiable information that you voluntarily submit in order that we’re able to provide our Services, and that you may benefit from such Services. We know that confidentiality is critically important. We strongly believe in keeping confidential any and all personally identifiable information that reveals your identity whether or not it relates to your past, present, or future physical or mental health condition.
As a Business Associate of health care providers that are Covered Entities under the federal health care privacy and security rules (HIPAA and HITECH), we maintain protected health information (PHI) in compliance with these rules and our contractual obligations with health care providers. Currently our main focus is providing a platform to allow individuals to receive telehealth weight loss and weight control Services from 10X.diet healthcare providers. We collect information solely for the purposes of providing the Services, and for marketing and promoting our Services to you. We use this information ourselves and we do not share any of your protected health information, or any information that may reveal your identity. Your information is shared with entities only as necessary to provide our Services to you. This may include, but may not be limited to, your local pharmacy, a contracted telehealth pharmacy, and electronic prescription fulfillment service(s). We and our partners may also collect personally identifiable information for marketing, user experience monitoring, process improvement, and related business purposes. Never at any time or under any circumstance will your personally identifiable information be shared with any entity not directly involved in providing 10x.diet services to you.
By using our site and by providing your private and protected health information, you are granting consent for collection and use of your data, both for clinical evaluation of your situation, and for weight loss treatment. You may “opt out” of receiving information from us by informing us directly on your password protected patient portal at 10X.diet and/or by terminating your 10x.diet account.
10X.diet and/or related entities may maintain web logs to record data about all visitors who use the Site and interact with the Services, and this information may be stored. Web logs may contain IP address information, types of operating systems you use, the date and time you visited the site, and information about the type of device you use to connect to the Services, and the Site pages you visited.
All Web logs are stored securely and are accessible to a very limited number of employees and contractors who adhere to strict guidelines regarding user data security and privacy.
“COOKIES” AND INTERNET TAGS
We may collect and process information about your use of 10X.diet. Such information is used by us to help improve the contents of the Site and the Services and to compile aggregate statistics about individuals using our Site and the Services for internal, market research purposes. In doing this, we may install “cookies” that collect the domain name of the user, your internet service provider, your operating system, and the date and time of access. A cookie is a small piece of information which is sent to your browser and stored on your computer or other device. Cookies do not damage your device. You can set your browser to notify you when you receive a cookie. This will enable you to decide if you want to accept it or not. If you do not accept cookies you may not be able to use all functionality of your browser software, of 10x.diet, of this Site, or of related Sites. We may enlist services of outside parties for securing and processing information collected through cookies.
We may also use internet tags (also known as action tags, web beacons, single-pixel GIFs, clear GIFs, invisible GIFs and 1-by-1 GIFs) and cookies through the Services and may deploy these tags/cookies through a third-party advertising partner or a web analytical service partner which may store the respective information (including your IP address). These tags/cookies may be placed both on online advertisements that bring users to the Services and on different pages of the Site. We use this technology to measure visitors’ responses to the Site and the Services and the effectiveness of our advertising campaigns (including how many times a page is opened and which information is consulted) as well as to evaluate your use of the Services. The third-party partner or the web analytical service partner may be able to collect data about visitors to the Site and other sites because of these internet tags/cookies, may compose reports regarding the Site’s activity for us and may provide further services which are related to the use of the Site and the internet. They may provide such information to other parties if there is a legal requirement that they do so, or if they hire the other parties to process information on their behalf. For more information about web tags and cookies associated with on-line advertising or to opt-out of third-party collection of this information, visit the Network Advertising Initiative website http://www.networkadvertising.org. (We are not affiliated with the Networking Advertising Initiative in any way.) If you opt out, please be advised that your user experience may be degraded.
MOBILE DEVICES
When you download or use apps created by us (e.g., to deliver the Services), we may receive information about your location and your mobile device, including a unique identifier for your device. We may use this information to provide you with location-based services, such as search results and other personalized content. Most mobile devices allow you to turn off location services.
NON-PERSONAL DATA
We may analyze non-personal data to generate useful information about our services. This data mining process is done in the aggregate, is non-personal, and helps us discover data correlations and patterns.
We do not provide any of your personal or protected health information (PHI) to third party sites that display our interest-based ads. However, third parties (including the ad networks, ad-serving companies, and other service providers they may use) may assume that users who interact with or click on a personalized ad or content are part of the group that the ad or content is directed towards (for example, users of 10X.diet who click a link to low-carb ice cream are assumed to want low-calorie foods).
SHARING OF INFORMATION
We share protected health information and personally identifiable information as permitted by law and as authorized by you as described in the Terms of Use, this Privacy Policy, or otherwise.
We employ other companies and individuals to perform functions on our behalf. Examples include prescribing appetite suppressant medication, dispensing appetite suppressant medication, processing credit card payments, and providing software as a service. Those other companies and entities have access to anonymous and to personal information needed for performance of their functions, but are not permitted or authorized to use, to disclose, or to distribute your information for any other purpose. Access to your information permits them to provide services more efficiently and effectively to you and to us, and to communicate with you via the computer or mobile device you have used to access the Site. We may share information such as IP address, user name, email address and cookie and web beacon information with pharmacy services and with third parties in order to tailor advertising to our market segment; your IP address and email address and the page you are viewing may be shared with a third party that operates the customer service “chat” feature for our Services; and aggregate data about IP addresses, pages loaded, time to load pages and errors encountered may be used by third-party performance monitoring and improvement products.
These third parties maintain your information in strict confidentiality, except for potential legally required disclosures, described in the section below entitled “Disclosures in Accordance with Law.”
SECURITY OF INFORMATION COLLECTED
Your account information is used in a password-protected environment as a security measure to protect your data. We use administrative, physical and technical safeguards to protect data. We maintain a high level of data protection via safeguards such as data backup, audit controls, access controls, and data encryption. 10X.diet is responsible for ensuring the security of your credit card/cardholder data that may be stored, processed, or transmitted on your behalf, in the context of a telehealth visit. 10X.diet maintains all applicable PCI DSS requirements to the extent that it has access to, or otherwise stores, processes or transmits cardholder data.
In addition, we urge you to take precautionary measures for maintaining confidentiality and integrity of your data. Please be responsible in making sure nobody can see or has access to your personal account and log-in/password information. If you use a public computer, e.g., at a library or a university, always remember to log out of the Site or Services.
If you use our Site or Services through your employer’s computer network or through an internet café, library or other potentially non-secure internet connection, such use is at your own risk. It is your responsibility to check beforehand on your employer’s or such other site’s privacy and security policy with respect to Internet use.
10X.diet, our affiliates, officers, employees, and agents cannot be responsible for your handling, sharing, re-sharing and/or distribution of your personal health information. Moreover, if you forward personal health information electronically to another person on or off the Site or Service, we are not responsible for any harm or other consequences from third party use or re-sharing of your information.
SELF REVIEW OF DATA AND ABILITY TO DELETE YOUR ACCOUNT INFORMATION
You may request to delete your personal information and to de-authorize the collection of personal information in the future by communicating with us directly via your password protected patient portal at 10X.diet. Health records that are part of your diagnosis or treatment are legally considered a medical record. In the State of California, this information must be retained securely for a minimum of five years following our final encounter.
THIRD PARTY SITES/TRUSTED RELATIONSHIPS
As noted above, 10X.diet is a Business Associate of health care providers under the federal health insurance portability and accountability act (HIPAA). We share information with health care providers who provide services to individuals, and they share information with us for purposes related to treatment, payment, health care operations, and otherwise as agreed or authorized by you.
Our Site contains links to other sites, and is used with other web services such as Allscripts e-prescribing, Stripe billing, PayPal, Credit Card Processors, hosting services, and internet service providers. These entities provide services essential for our operations. We share your personally identifiable information with those sites (unless you specifically de-authorize such sharing) and are not responsible for their privacy procedures. We seek to work with trusted partners and organizations that will adhere to similar privacy and ethical standards. However, we encourage you to learn their particular privacy policies.
DISCLOSURES IN ACCORDANCE WITH LAW
We disclose personally identifiable information about you as required or permitted by law, including complying with legal process (for example, we may disclose your information as necessary to comply with an authorized civil, criminal or regulatory investigation). We fully cooperate with law enforcement agencies in identifying those who use our services for illegal activities and may, in our sole discretion, disclose personal information or other information to satisfy any law, regulation, subpoena, or government request. We reserve the right to release personal information or other information about users who we believe are engaged in illegal activities or are otherwise in violation of our Terms of Use, even without a subpoena, warrant, or court order if we believe, in our sole discretion, that such disclosure is necessary or appropriate to operate our web site or to protect our rights or property, or that of our affiliates, or our officers, directors, employees, agents, third-party content providers, suppliers, sponsors, or licensors. We also reserve the right to report to law enforcement agencies any activities we reasonably believe in our sole discretion to be unlawful. If we are legally compelled to disclose information about you to a third party, we will attempt to notify you by sending an email to the email address in our records unless doing so would violate the law or unless you have not provided your email address to us.
CHILDREN
We do not knowingly allow individuals under the age of 18 to create accounts that allow access to our Site.
CHANGES TO THIS PRIVACY POLICY
We may amend this Privacy and Confidentiality Policy in the future. All changes will be posted on this Site and at other places we deem appropriate.
QUESTIONS OR SUGGESTIONS
If you have any questions or suggestions about ways we can improve our privacy and confidentiality policy with respect to personal information, please contact us directly via info@10X.diet.