mConsent dba as a SRS WEB SOLUTIONS INC COMPANY.
PLEASE READ THESE POLICIES CAREFULLY BEFORE USING THIS SITE OR APPLICATIONS
Scope of this Policy:
mConsent is a product of SRS Web Solutions Inc COMPANY. mConsent is SAAS software.
Consent to Use of Personal Information:
Information We Collect:
We may collect various types of information about you including personal, demographic and aggregate data. When you register with our Products and Services, you will be asked to provide certain “personal information” such as your name, email address, clinic or organization name, and telephone number. We also allow you to provide additional information through an optional message text box. We may also collect information about your usage of our products and services, which includes but not limited to traffic statistics, date and time of visits, IP address, browser type, page visits etc.
Uses of Your Personal Information:
mConsent, , ensures that your information remains private and confidential. In general, we use personal information that we collect to process your requests or transactions, to facilitate your use and our administration and operation of the Site and the Products and Services, to provide you with information or services you request, to inform you about other information, events, promotions, products or services we think will be of interest to you, to learn more about and improve the Site and the Products and Services and for the to:
1. 2. 3.
purpose for which information was provided. For example, we may use the information we collect To authenticate and provide you access to our Products and Services; Send you a welcoming, account related or customer service email; To notify you of change of services, maintenance notifications, information and promotional materials, and newsletters or other forms of communications from us; Respond to your emails, submissions, comments, requests or complaints; To enable you to share content with users you designate, & to investigate and prevent fraudulent or unauthorized access or transactions regarding use of the Site and the Products and Services; Request feedback and to enable us to develop, customize and improve the Site, Products and Services and new offerings; and Process payments. We reserve the right to use the name and/or logo of the company you work for in publicity material, advertising or marketing collateral, unless you specifically tell us otherwise. Your name, email address and all other personal information (Protected Health Information (PHI)) will remain confidential at all times in accordance with regulations set forth by Health Insurance Portability and Accountability Act of 1996 and/or its relevant regulations (“HIPAA”) and the Health Information Technology for Economic and Clinical Health Act of 2009 (HITECH).
Sharing of Personal Information:
mConsent, , does not sell or rent personal information to third-parties or share personal information with third-parties except as described in this Policy and our HIPAA Policy, as it may be revised from time to time. We may share personal information with third-parties when you request us to do so or otherwise give your consent. We may also share personal information with consultants, vendors and service providers (“Business Associates”) who may perform support or development functions on our behalf, and who are under a Business Associate Agreement with mConsent, , and therefore have agreed to abide by the same HIPAA/HITECH safeguards of PHI. In addition, we may share your information with third-parties if we have a good faith belief that the disclosure is necessary or appropriate to comply with federal or state laws or legal process; to protect and defend the rights and property or personal safety of mConsent, ,. employees, our customers or the public; to prevent and protect mConsent, ,. and our users from fraudulent, abusive, unlawful or unauthorized use of the Site; or to otherwise enforce our rights and agreements. Your personal information also may be disclosed or transferred as part of, or during negotiations of, any merger, sale of company assets, financing or acquisition or in any other situation where personal information may be transferred as one of the business assets of mConsent, , This Site, information and Products and Services are not intended to create any doctor-patient relationship, or doctor- patient relationship between you and another person and mConsent.
Public Forums, Social Media Sites, Blogs:
mConsent, may create and host a public discussion forum or blogs for customers of its Products and Services and the general public. Any information you disclosed in these areas is deemed public information and each user is responsible for and should exercise caution when disclosing personal information on these forums/blogs. mConsent, is not responsible for any such information disclosed or any action taken as a result of the disclosed information.
Tracking Technologies We May Use:
Protecting Personal Information:
mConsent, , strives to protect personal information while it is under our control and all PHI is subject to our HIPAA Policy which is incorporated herein by reference. We have put in place physical, electronic, and managerial procedures designed to help prevent unauthorized access, to maintain data security, and to correctly use the information we collect online. These safeguards vary based on the sensitivity of the information that we collect and store. Although we take appropriate measures to safeguard against unauthorized disclosures of Information, we cannot assure you that your personally information will never be disclosed, altered or destroyed, in a manner that is inconsistent with this Policy. Your account information is accessible online only through the use of a password. To help protect the confidentiality of your personal information, you must keep your password confidential and not disclose it to any other person. You are responsible for all uses of the Site by any person using your password. Please advise us immediately if you believe your password has been compromised or misused.
Accessing and Correcting Your Information:
You can help ensure that your contact information and preferences are accurate, complete, and up-to-date by logging into your account at the Site. Please contact us if you are concerned about the accuracy of any personally information or if you wish to review, access, amend, or correct any of it, or would like any of it removed from our records or otherwise deactivated.
If you do not wish to receive promotional email from mConsent, , about our Products and Services, you may opt out at the time of registration or by logging into your account settings online, , and updating your contact preferences. Please note, even if you opt out of receiving promotional email from us, you may still receive transactional and relationship emails, including messages relating to transactions or services – including the trial version of the program – you have specifically requested, responding to any email from you to us, notifying you of updates or changes to our policies and procedures, or which otherwise provide you with information we believe is important to users. Our systems require time to update, so your opt-out requests may not update immediately.
Special Notice Regarding Children
The Site and the Products and Services are not designed for nor do we knowingly collect personal information from children under the age of 18.
Links to Other Web Sites:
Changes to This Policy: Although most changes are likely to be minor, we may revise and update this Policy at any time. We will provide notice that changes have been made by posting the revised Policy and updating the revision date at the end of the Policy. We encourage you to review the Policy whenever you visit the Site to make sure that you understand how your personal information is treated. If you have any questions or concerns regarding this notice, please contact: SRS Web Solutions Inc (mConsent , Attn: Security Officer, 8710 central ave NE, Blaine, MN 55434; or email at email@example.com
At mConsent, ,, including our product namely, Cake Intake, we are committed to maintaining the confidentiality of information entrusted to us by our clients, Business Associates / Subcontractor, especially individually identifiable personal and health information such as names, addresses, and Protected Health Information (PHI). mConsent enables our customers to provide Fully Managed, Turnkey Solution For Online Patient Intake Information while complying with HIPAA. mConsent, (“mConsent”) protects the confidentiality of information it receives by adhering to the requirements of the HIPAA Privacy Rule and the HIPAA Security Rule. The Privacy Rule governs the acquisition, storage, transfer and retention of Protected Health Information, in both electronic and paper formats. The Security Rule covers all information acquired, maintained or transferred electronically. We comply with all business associate obligations under HIPAA/HITECH, enabling us to provide the highest level of service to our health care provider customers. mConsent follows the policies and practices it has documented in its HIPAA Privacy Manual and in its HIPAA Security Compliance Plan. These documents cover areas such as:
- Physical security of electronic equipment used to acquire and store PHI
- Technical safeguards to prevent unauthorized access to PHI
- Training and awareness for staff members who have access to PHI
We respect the privacy of personal health information and take securing all PHI data seriously. mConsent’s services are HIPAA ready and enable practices using the system to comply with its obligations as a Covered Entity. mConsent’s product is HIPAA-ready services that include:
- Increase new patient conversion rates with a pleasurable intake experience.
- In-office forms can be completed on tablets instead of clipboards.
- A 70-80% increase in pre-appointment intake completion.
- Tighten up your schedule and creates time to see more patients.
- Eliminate labor costs associated with processing & handling paper intake forms and increase office efficiency.
- Use and Disclosures of Health Information: mConsent assure the appropriate use and disclosure of PHI is done in the normal course of business and appropriate based on the contracts with clients. mConsent will assure appropriate and adequate safeguards are established to protect customers’ patient information from unauthorized use and disclosures; where use is defined as the sharing, employment, application, utilization, examination, or analysis of information within an entity that maintains such information; and where disclosure is defined as release, transfer, provision of, access to, or divulging in any other manner of information outside the entity holding the information.
Breach Notification: Breach notification will be carried out in compliance with the American Recovery and Reinvestment Act (ARRA)/Health Information Technology Economic and Clinical Health Act (HITECH), Modifications to the HIPAA Privacy, Security Enforcement and Breach Notification Rules under the HITCH Act (Omnibus Rule).
HIPAA Privacy Practices Policy & Procedures: mConsent acknowledges the need for practices with accounting of disclosure, electronic access to PHI, fundraising and PHI, sale of PHI, research and PHI, and marketing and PHI. Through the normal course of business, mConsent does not take part of any activities that would fall under the classifications of: Fundraising Activities; Sale of PHI; Marketing and Research and PHI.
Risk Analysis and Management: mConsent is focused on protecting the confidentiality, integrity, and accessibility of the PHI. mConsent will regularly and timely reviews of threats and vulnerabilities to their organization and systems focused on protecting the confidentiality, integrity, and accessibility of PHI. mConsent will take the proper steps to mitigate and reduce the risks to the organization and the PHI maintained.
Workforce & Information System Security: mConsent is committed to proper protection of all uses and disclosures of PHI that it stores and maintains on behalf of a covered entity, and accordingly it is committed to hold all workforce members responsible for the proper protection of privacy and security requirements. mConsent will assure that the workforce members logging into the electronic systems that contain PHI are only looking at information needed to complete the daily operational work. mConsent doesn’t have access to the information of each of the individual organizations that are in the system software. mConsent is focused on protection of the physical components of the business that store and maintain PHI for the organization. mConsent assures that limitations are put on the ability to provide physical limitations to any PHI. mConsent only allow the appropriate access to systems based on business need and client responsibility.
Security Incident & Contingency Plan: To protect all electronic media used for patient care, mConsent Software will properly report and respond to all potential security incidents that occur within the organization. The contingency plan for mConsent system will focus on data backup, disaster recovery, emergency mode operation plan, testing and revision, and application and data criticality analysis. mConsent will assure adequate controls are in place through regular review and evaluation to protect the confidentiality, integrity, and availability of electronic PHI.
Business Associate: mConsent will enter maintain a process to assure the information shared and used by subcontractors is properly protected and safeguarded as required in the HIPAA regulation. mConsent will enter into a written business associate agreement with all subcontractors that create, receive, maintain, or transmit PHI to support the business operations of mConsent. Business Associates/Subcontractors will be obligated to effectively maintain the privacy and security of PHI (PHI) as required by HIPAA and mConsent.
Security Rule: mConsent is required by the HIPAA Security Rule to assure that the integrity to the data that it stores and maintains has not been altered or destroyed in an authorized manner. mConsent will protect all ePHI that it stores, maintains, and transmits from improper alteration and destruction by implementing a combination of policy and technical solutions, in the maintenance, retention, and eventual destruction/disposal of PHI.
HIPAA Security Officer: mConsent will assure that an individual’s is appointed to be the organization’s HIPAA Security officer. The security officer is responsible for the oversight and management of the organization’s compliance with the HIPAA regulations. The security officer is the individual who is responsible for assuring the development, awareness, and enforcement of all the HIPAA policy and procedures established meet requirements
Timely Updates: mConsent will assure timely and appropriate policies and procedures in order to comply with the HIPAA Privacy and Security Regulations; accordingly, documentation will be updated, maintained, stored in accordance with the regulations.
If you have any questions or concerns regarding this notice please contact:
SRS Web Solutions Inc (mConsent ) Attn: Security Officer, 8710 central ave NE, Blaine, MN 55434; or email at firstname.lastname@example.org
Last updated: Feb 23rd , 2017