By using any part of the OneHealthPort site, you signify your acceptance of our privacy policy. If you do not agree to this policy, please do not use our site. Your continued use of the OneHealthPort site following the posting of changes to these terms will mean that you accept those changes.

What personal information does OneHealthPort collect?

• As part of our service, we collect your name, gender, birth date, and work address. We collect this personal identification information from you only if you voluntarily submit the information to us. We allow you to review and change all of the personal information stored by OneHealthPort.

Why does OneHealthPort collect personal information?

• We request identifying information from you in order to verify your identity and provide sufficient information to participating web sites offering online services so that they can grant you access to the sensitive information on their web sites. Part of the OneHealthPort service is to collect this information from you one time, so that you do not have to submit the information separately to each web site you use.

Why do the participating web sites need personal information?

• HIPAA and state laws require that all healthcare organizations protect personal health information and track who has access to such information. In order to comply with these laws and meet good business practices, the organizations providing web sites and online services must know your identity and ensure that you have the appropriate access to the personal health information of their members and patients.

How does OneHealthPort collect and store your personal information?

• OneHealthPort gathers information about you from the information you provide during the registration process. We use your contact information to communicate with you about the OneHealthPort service and this information is stored within our secure identity management database which has one of the highest security ratings given to such tools. Additionally, we store your date of birth so that we can identify duplicate subscribers during the registration process.
• If you confirm your identity using our online identity verification service, the third party data company that we contract with will ask you for your Social Security Number so that the data company can access publicly available information to validate your identity. In this case, your social security number is used only by the data company to validate your identity. Your social security number is never shared with OneHealthPort and it is not kept in our records after your identity is verified.
• We allow you to securely review and change all of your personal information stored by OneHealthPort.

What information does OneHealthPort disclose?

• We provide participating web sites with your name, your employer, your role with your employer, and in some cases when they need to know it, your work email address and work telephone.
• We will not provide any information about you, including your email address, to any other third party besides the participating web sites you wish to do business with.

What exceptions are there to OneHealthPort's disclosure policy?

• We will release specific information about you or your account to comply with any valid legal process such as a search warrant, subpoena, statute, or court order.
• We may also release specific information in special cases, such as if there is an attempted breach of the security of our site or that of our partners, or a physical threat to you or others.

How does OneHealthPort protect my personal information?

• We use state of the art encryption technology to "scramble" your information in a way that only our service and authorized users can read.
• Our databases are stored in highly protected data centers that require multiple levels of credentials to access and are monitored around the clock. Our facilities undergo stringent audits and tests to ensure your information is protected.
• Our security database has one of the highest security ratings given and is rated at FIPS 140-1 Level 2 according to internationally established standards.

What are my responsibilities to ensure the security of my private information?

• You are responsible for making sure that no one else can learn your password or other log-in information, or otherwise make use of these to access our web site.
• If you access the OneHealthPort web site through your employer's computer network, you should review your employer's policy on Internet usage and/or confidentiality and security policy.
• If you give out personal information online — through bulletin boards and/or discussion groups — that information can be collected and used by others. You disclose such information at your own risk.

How does OneHealthPort's cookie technology work?

• We store very limited personal identification information through the use of "encrypted cookie" technology. Only your name, unique credential ID number, employer, and job function, are stored in your encrypted cookie, and the cookies can only be read by our systems. Unlike many other cookies you may have encountered, the OneHealthPort cookie is destroyed once your browser is closed, leaving no trace that you have used the OneHealthPort credential within that computer.
• Most web browsers are set to accept cookies. You can set your browser to refuse cookies, or to alert you when cookies are being sent. If you do not accept the OneHealthPort encrypted cookie, your electronic credential will not function properly and you will not be able to access the protected information at the secure healthcare web sites using the OneHealthPort credential. See our technical FAQs for more information about accepting cookies.

If you have any questions, concerns or suggestions please let us know at info@onehealthport.com.