| OneHealthPort is committed to protecting the
describes how we handle subscriber information. Please read
this policy carefully and refer back to it frequently. We will
review this policy on a regular basis and update it as necessary
to address new issues and reflect changes on our site. We try
If you have any questions that are not answered here, send us
a message at email@example.com.
By using any part of the OneHealthPort site, you signify
to this policy, please do not use our site. Your continued
use of the OneHealthPort site following the posting of changes
to these terms will mean that you accept those changes.
What personal information does OneHealthPort collect?
- As part of our service, we collect your name, gender,
birth date, and work address. We collect this personal identification
information from you only if you voluntarily submit the
information to us. We allow you to review and change all
of the personal information stored by OneHealthPort.
Why does OneHealthPort collect personal information?
- We request identifying information from you in order to
verify your identity and provide sufficient information
to participating web sites offering online services so that
they can grant you access to the sensitive information on
their web sites. Part of the OneHealthPort service is to
collect this information from you one time, so that you
do not have to submit the information separately to each
web site you use.
Why do the participating web sites need personal information?
- HIPAA and state laws require that all healthcare organizations
protect personal health information and track who has access
to such information. In order to comply with these laws
and meet good business practices, the organizations providing
web sites and online services must know your identity and
ensure that you have the appropriate access to the personal
health information of their members and patients.
How does OneHealthPort collect and store your personal information?
- OneHealthPort gathers information about you from the information
you provide during the registration process. We use your
contact information to communicate with you about the OneHealthPort
service and this information is stored within our secure
identity management database which has one of the highest
security ratings given to such tools. Additionally, we store
your date of birth so that we can identify duplicate subscribers
during the registration process.
- If you confirm your identity using our online identity
verification service, the third party data company that
we contract with will ask you for your Social Security Number
so that the data company can access publicly available information
to validate your identity. In this case, your social security
number is used only by the data company to validate your
identity. Your social security number is never shared with
OneHealthPort and it is not kept in our records after your
identity is verified.
- We allow you to securely review and change all of your
personal information stored by OneHealthPort.
What information does OneHealthPort disclose?
- We provide participating web sites with your name, your
employer, your role with your employer, and in some cases
when they need to know it, your work email address and work
- We will not provide any information about you, including
your email address, to any other third party besides the
participating web sites you wish to do business with.
What exceptions are there to OneHealthPort's disclosure policy?
- We will release specific information about you or your
account to comply with any valid legal process such as a
search warrant, subpoena, statute, or court order.
- We may also release specific information in special cases,
such as if there is an attempted breach of the security
of our site or that of our partners, or a physical threat
to you or others.
How does OneHealthPort protect my personal information?
- We use state of the art encryption technology to "scramble"
your information in a way that only our service and authorized
users can read.
- Our databases are stored in highly protected data centers
that require multiple levels of credentials to access and
are monitored around the clock. Our facilities undergo stringent
audits and tests to ensure your information is protected.
- Our security database has one of the highest security
ratings given and is rated at FIPS 140-1 Level 2 according
to internationally established standards.
What are my responsibilities to ensure the security of my private information?
- You are responsible for making sure that no one else can
learn your password or other log-in information, or otherwise
make use of these to access our web site.
- If you access the OneHealthPort web site through your
employer's computer network, you should review your employer's
policy on Internet usage and/or confidentiality and security
- If you give out personal information online — through
bulletin boards and/or discussion groups — that information
can be collected and used by others. You disclose such information
at your own risk.
How does OneHealthPort's cookie technology work?
- We store very limited personal identification information
through the use of "encrypted cookie" technology.
Only your name, unique credential ID number, employer, and
job function, are stored in your encrypted cookie, and the
cookies can only be read by our systems. Unlike many other
cookies you may have encountered, the OneHealthPort cookie
is destroyed once your browser is closed, leaving no trace
that you have used the OneHealthPort credential within that
- Most web browsers are set to accept cookies. You can set
are being sent. If you do not accept the OneHealthPort encrypted
cookie, your electronic credential will not function properly
and you will not be able to access the protected information
at the secure healthcare web sites using the OneHealthPort
credential. See our technical FAQs for more information
about accepting cookies.
If you have any questions, concerns or suggestions please let us know at firstname.lastname@example.org.