Last Updated: Nov 1, 2020
We may revise this Policy from time to time. All updates will be posted on this web page. If we make any material changes in the way your personal information is handled, we will notify you by email (sent to the email address specified in your account) or by means of a notice on our Websites prior to the change becoming effective.
Depending on which of our Services are being used, or which individual (provider or patient) is involved, COVIDx processes and stores different combinations of personal information as set forth in this Policy.
Through our forms and based on and by virtue of the respective consent provided by the patient, we may collect and process personal information of a patient, including the following categories:
Such collected personal information is used to provide the Services and test results to the patient and to perform the billing. All the collected personal information of a patient will be stored for as long as stated in the applicable patient informed consent form. The personal information will be processed by COVIDx for the performance of the specific tests requested by the patient on the applicable form, and for informing the patient of the results of such analysis, all on the basis of the consent provided by the patient. COVIDx will de-identify (pseudonymize) the personal information to the extent possible.
Generally, individuals are able to visit www.covidxtesting.com (“Website”) without disclosing personal information, except as may be necessary to provide a service at his or her request. Data are collected from the Website only to the extent technically necessary. For example, in some cases we may recognize personal data like the IP address as well as non-personal data like the name of the visitor’s Internet service provider, the website from which the visitor came to our Website, the pages that the visitor views on the Website, and what the visitor clicks on any given page. This data could possibly identify an individual, but COVIDx does not use it to do so.
“Do Not Track”: Some browsers incorporate a "Do Not Track" (DNT) or similar feature that signals to digital services that a visitor doesn’t want to have their online activity tracked. Because there is not yet an accepted standard for how to respond to DNT signals, we and our service providers (like many digital service operators) do not respond to DNT signals.
We collect any personal information that you voluntarily provide to use, such as inquiries through our Website, information you provide about your business, etc., and is used only for the purpose of addressing the request received. In cases where social media services may be used, we do not have any influence on the storage and processing of providing personal information via the respective social media service. You are encouraged to review those privacy policies before sending COVIDx personal information via a social media service.
COVIDx may disclose your personal information as follows:
“De-identified” or “pseudonymized” information is data we have stripped of your personally identifiable information, such as your name, address, or birthdate. We retain the ability to re-identify such information. “Anonymized” information is when personal information is stripped of all identifiers and cannot reasonably be linked back to you.
We may use “de-identified” or “pseudonymized” information for various purposes, including:
To the extent we have relied on your consent to process such de-identified personal information in relation to the above, you may withdraw your consent to participate at any time by contacting us at email@example.com.
Our Website is directed towards adults and is not designed for, intended to attract, or directed towards children under the age of 16. If you are under the age of 16, you must obtain the authorization of a responsible adult (parent or legal guardian) before accessing or using our Website. If we become aware that we have collected any personal information from children under 16 without appropriate authorization, we will promptly remove such information from our databases.
You agree that you have provided notice to, and obtained consent from, any third party individuals whose personal information you supply to us, including with regard to (a) the purposes for which such third party’s personal information has been collected; (b) the intended recipients or categories of recipients of the third party’s personal information; (c) which of the third party’s information is obligatory and which information, if any, is voluntary; and (d) how the third party can access and, if necessary, rectify the information held about them.
Our Website may contain links to external websites. COVIDx does not maintain these sites and is not responsible for the privacy practices of sites that it does not operate. Please refer to the specific privacy policies posted on these sites.
You can update, amend or delete your account information and preferences at any time or by contacting us at firstname.lastname@example.org
All COVIDx email correspondence will include instructions on how to update certain personal information and how to unsubscribe from our emails and postal mail correspondence. Please follow the instructions in the emails to notify COVIDx of changes to your name, email address, and preference information.
COVIDx will take reasonable steps, such as confirmation emails, to verify your identity before granting access to your personal information.
We store your personal information for as long as we need it to provide you our Services, to serve the purpose(s) for which your personal information was processed, or as necessary to comply with our legal obligations, resolve disputes, or enforce our agreements to the extent permitted by law. While retention requirements can vary by country, we generally apply the retention periods noted below.
We store information used for marketing purposes indefinitely until you unsubscribe. Once you unsubscribe from marketing communications, we add your contact information to our suppression list to ensure we respect your unsubscribe request. Also, we retain any information collected via cookies, clear gifs, flash cookies, webpage counters and other technical or analytics tools up to one year from expiry of the cookie or the date of collection. If you have any questions about our retention periods, please feel free to contact us at email@example.com.
We use reasonable technical, administrative and physical measures to protect information contained in our system against misuse, loss or alteration. Information that you provide through our Website is encrypted using industry-standard Secure Sockets Layer (SSL) technology, with the exception of information you send via email. Your information is processed and stored on controlled servers with restricted access, and in compliance with the Security Rule of the Health Insurance Portability and Accountability Act of 1966 (HIPAA). Unfortunately, no method of electronic transmission is 100% secure, so we cannot ensure or warrant the security of any information you transmit to our Website, and you do so at your own risk. Please do not submit any personal health information or credit card information via email.
Please recognize that protecting your personal information is also your responsibility. You should keep your username, password, ID numbers, or other access credentials secure as COVIDx cannot secure personal information that you release on your own or that you request us to release. If we receive instructions using your log-in information we will consider that you have authorized the instructions.
If you have any questions regarding this Policy or our privacy practices, you may contact us at firstname.lastname@example.org