Privacy Policy | Aero Prosthetics

Introduction

Aero Prosthetics ("we," "our," or "us") is committed to protecting your privacy and safeguarding your personal health information. This Privacy Policy explains how we collect, use, disclose, and protect your information when you visit our website or use our services.

As a healthcare provider, we are subject to the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and its implementing regulations. We are committed to maintaining the privacy and security of your protected health information (PHI) in accordance with HIPAA and other applicable laws.

By accessing or using our website, you agree to the terms of this Privacy Policy. If you do not agree with our practices, please do not use our website or services.

Information We Collect

We may collect the following types of information:

Personal Information: Name, email address, phone number, postal address, and other contact information you provide when filling out forms on our website.
Protected Health Information (PHI): Information about your health condition, treatment, or payment for healthcare services that identifies you or could reasonably be used to identify you.
Technical Information: IP address, browser type, operating system, referring website, pages visited, and time spent on our website.
Cookies and Similar Technologies: Information collected through cookies, web beacons, and similar technologies to enhance your experience on our website.

How We Collect Information

We collect information through various channels:

Direct Interactions: Information you provide when completing forms, creating an account, or contacting us
Automated Technologies: Cookies, server logs, and similar technologies that collect information as you navigate our website
Third Parties: Information from healthcare providers, insurance companies, and other sources involved in your care
Public Sources: Information from publicly available sources when permitted by law

How We Use Your Information

We may use your information for the following purposes:

To provide and improve our healthcare services
To communicate with you about your care, appointments, and services
To process payments and insurance claims
To send you information about our services, events, and educational resources
To respond to your inquiries and requests
To comply with legal and regulatory requirements
To analyze website usage and improve user experience
To detect, prevent, and address technical issues or security breaches
To enforce our terms and conditions and protect our rights and property

HIPAA Compliance

As a covered entity under HIPAA, we maintain the privacy and security of your PHI in accordance with HIPAA's Privacy Rule and Security Rule. We implement appropriate administrative, physical, and technical safeguards to protect your PHI from unauthorized access, use, or disclosure.

We will not use or disclose your PHI for marketing purposes without your written authorization. We will not sell your PHI under any circumstances.

For more detailed information about our HIPAA privacy practices, please refer to our Notice of Privacy Practices, which is available upon request.

Legal Basis for Processing (International Users)

If you are located in the European Economic Area (EEA), United Kingdom, or other regions with data protection laws, we process your personal information on the following legal bases:

Consent: When you have given us explicit consent to process your data for specific purposes
Contract: When processing is necessary to fulfill our contractual obligations to you
Legal Obligation: When processing is necessary to comply with legal requirements
Legitimate Interests: When processing is necessary for our legitimate interests, provided those interests are not overridden by your rights
Vital Interests: When processing is necessary to protect someone's life

Information Sharing and Disclosure

We may share your information with:

Healthcare Providers: Other healthcare providers involved in your care.
Insurance Companies: Your health insurance company for payment and coverage purposes.
Service Providers: Third-party service providers who perform services on our behalf, such as payment processing, website hosting, and customer service.
Legal Requirements: When required by law, such as in response to a court order, subpoena, or other legal process.
Business Transfers: In connection with a merger, acquisition, or sale of assets, where your information may be transferred as a business asset.

We require all third parties to respect the security of your information and to treat it in accordance with applicable laws and regulations.

International Data Transfers

Your information may be transferred to, and processed in, countries other than the country in which you reside. These countries may have data protection laws that are different from those in your country.

Whenever we transfer your information internationally, we implement appropriate safeguards to ensure that your information is protected in accordance with this Privacy Policy. These safeguards may include:

Using approved standard contractual clauses
Ensuring the receiving country has adequate data protection laws
Obtaining your explicit consent for specific transfers

Cookies and Similar Technologies

Our website uses cookies and similar technologies to enhance your experience, analyze usage, and assist in our marketing efforts. Cookies are small text files stored on your device that help us provide and improve our services.

We use the following types of cookies:

Essential Cookies: Necessary for the website to function properly
Analytical/Performance Cookies: Help us understand how visitors interact with our website
Functionality Cookies: Enable personalized features and remember your preferences
Targeting/Advertising Cookies: Used to deliver relevant advertisements and track campaign performance

You can manage your cookie preferences through your browser settings. Please note that disabling certain cookies may impact the functionality of our website.

Data Security

We implement appropriate security measures to protect your information from unauthorized access, alteration, disclosure, or destruction. These measures include encryption, access controls, regular security assessments, and staff training on privacy and security practices.

Despite our efforts, no method of transmission over the Internet or electronic storage is 100% secure. Therefore, we cannot guarantee absolute security of your information.

We maintain an incident response plan and will notify affected individuals and regulatory authorities of data breaches as required by applicable laws.

Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

For PHI, we follow HIPAA requirements and applicable state laws regarding medical record retention. When determining the appropriate retention period, we consider the amount, nature, and sensitivity of the information, the potential risk of harm from unauthorized use or disclosure, and legal requirements.

When personal information is no longer needed, we securely delete or anonymize it in accordance with our data retention policies.

Children's Privacy

Our website is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe we may have collected information about your child, please contact us using the information provided below.

For patients under 18, we comply with all applicable laws regarding the confidentiality of minors' health information and parental access rights.

Your Rights

Under HIPAA, you have certain rights regarding your PHI, including:

The right to access and receive a copy of your PHI
The right to request corrections to your PHI
The right to request restrictions on certain uses and disclosures of your PHI
The right to request confidential communications
The right to receive an accounting of certain disclosures of your PHI
The right to receive a paper copy of our Notice of Privacy Practices

To exercise these rights, please contact our Privacy Officer using the contact information provided below.

California Privacy Rights

If you are a California resident, you may have additional rights under the California Consumer Privacy Act (CCPA) and other California privacy laws. These rights include:

The right to know what personal information we collect, use, disclose, and sell
The right to delete personal information we collect from you
The right to opt-out of the sale of your personal information
The right to non-discrimination for exercising your privacy rights
The right to limit the use and disclosure of sensitive personal information

To exercise these rights, please contact us using the contact information provided below.

Accessibility

We are committed to ensuring this Privacy Policy is accessible to individuals with disabilities. If you encounter any difficulty accessing this policy or need to receive it in an alternative format, please contact us using the information provided below.

Our website is designed to comply with WCAG 2.1 guidelines for accessibility. We regularly review and improve our digital content to ensure it remains accessible to all users.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated Privacy Policy on our website with a new effective date. We encourage you to review this Privacy Policy periodically.

For significant changes that materially affect your rights or how we use your information, we will provide more prominent notice, such as an email notification or a banner on our website.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact our Privacy Officer at:

Aero Prosthetics
Attn: Privacy Officer
1001 N Weir Canyon Road
Anaheim Hills, CA 92807
Phone: 714-385-1000
Email: privacy@aeroprosthetics.com

Last Updated: May 15, 2024