This Policy applies to the programs, systems, services, websites, and apps we own or operate, including the NeuroRPM program (“Program”), NeuroRPM’s website www.neurorpm.com (“Site”) and mobile applications (the “App”), and all of our services (“Services”).
By using our Program, Site, App, or accessing any of our Services, you consent to our use and processing of your personal information in accordance with this Policy.
We collect and process your personal information to best provide the requested products and services, respond to your requests or your sponsor's requests (i.e., the entity paying for your use of our Services), and for other purposes set forth in this Policy.
Please read this Policy carefully and contact us if you have any questions or concerns.
Protected Health Information ("PHI")
We understand that it is imperative to maintain the privacy and integrity of protected health information ("PHI") that we receive as you use our Program, Site, App, or Services. PHI is personal information that we receive as part of your use of our Program, Site, App, or Services that relates to your past, present, or future health or physical, medical or mental health or condition, the provision of health care to you, or your past, present, or future payment for the provision of health care, which is created, received, transmitted, or maintained by the Company.
2. PERSONAL INFORMATION WE COLLECT
We collect information directly from you, computer devices and third-party services that you connect to, as well as automatically through your use of our Program, Site, App, and/or Services. The information we collect enables us to manage your account, administer our Program, and provide you with our Services. We also use your information to respond to your questions and inquiries, send you communications regarding the Services and your access to and use of the same, obtain your feedback on our Program, Site, App, and Services, analyze your user activity, personalize and improve our Services, conduct research activities, and contact you about our Company. We may enhance or augment the Personal Information we have about you with information obtained from a third-party.
We receive and store any information you enter on our Program, Site, App, or provide to us through the Services, including any third-party services that you connect with our Services (e.g., Apple, Google, or Amazon). Personal Information that we collect may include your full name, gender, age, mobile phone number, credit card or payment information, email address, the email addresses of your contacts, home and business addresses, IP address, browser information, username, password, and health information such as weight, height, pre-existing medical conditions, medications, tracking of movement activity and insurance information, and any other information or data that you provide when using our Site, App, and/or Services. You may choose not to provide us with certain information, but doing so may result in us being unable to provide you with the full functionality of our Program, Site, App, or Services. Our goal is to use the Personal Information directly for your benefit.
When you use our Program and interact with devices such as your phone, tablet, or wearable device, we collect your raw movement and motion data (i.e., inertial motion unit data) along with other health and wellness information, which may include, but not limited to, heart rate, sleep, physical activity (e.g., steps, flights walked, stability), location, and time when data is being collected. In addition, we collect device model and operating system, the device ID, the device language, activities performed, and how long the Program is actively collecting data.
When you use third-party services and if you choose to connect your App to a compatible third-party service, such as those administered by Apple or Google, we will collect, with your permission, additional information such as username and email address, step count, heart rate, distance and floors traveled, active and resting energy levels, sleep analysis, blood pressure readings, glucose and oxygen saturation levels, and workout history.
When you contact us electronically, such as through customer support, we receive the information you send us in your message and any additional information you choose to provide. Our ability to incorporate your data into our Program and Services enables us to best meet your needs as a technology provider.
3. HOW WE USE YOUR INFORMATION
We collect, process, and analyze your information, including your Personal Information and/or Protected Health Information for the following purposes:
To provide our Program, Site, App and/or Service to you in a personalized manner.
To communicate with you about your use of our Program, Site, App and/or Service.
To answer questions you may have about our Program, Site, App and/or Service.
To research and develop new features and future products and services.
To understand how you and other users utilize our Program, Site, App, and/or Service, both on an individualized and aggregated basis, in order to improve our Program, Site, App, and/or Service by enhancing and adding features and capabilities.
To understand if collected information is your personal information.
To offer location customization to provide you a more personalized and relevant user experience.
To gather feedback through surveys and questionnaires.
To comply with any and all legal obligations.
By using our Program, Site, App, and/or Service, you expressly acknowledge and consent to the collection and use of your data for potential clinical research purposes. Any data utilized for these purposes will be processed in a de-identified manner, ensuring the removal of personally identifiable information to protect your privacy. Further, to enhance public health and safety, your data may be used in support of regulatory filings and communications with health oversight agencies. For these regulatory purposes, the data will remain de-identified unless explicit consent is provided to do otherwise.
4. HOW WE SHARE YOUR INFORMATION
We take great efforts to protect your privacy. However, we cannot control whether or how users will subsequently use or disclose previously disclosed information, and expressly disclaim any responsibility for such actions. If you do not consent to the disclosure of this information, please do not access or use the Program, Site, App, or our Services.
As indicated in our terms and conditions, we may use de-identified data for ongoing research and development, as well as for regulatory filings or communications with health oversight agencies. Any use of identifiable information will only be carried out with your explicit consent.
5. HOW WE SECURE YOUR PERSONAL INFORMATION
We take the security of your information very seriously and utilize industry standard measures to safeguard and protect your information from unauthorized access, use, and disclosure. We use systems, procedures, and processes consistent with information privacy and security requirements under applicable federal and state laws, including the Health Insurance Portability and Accountability Act of 1996 (HIPAA).
To protect the Program, Site, App, and our Services, including its device, system servers, and the data on those servers, we use industry-standard instructions such as access enforced firewalls and SSH secure communications. We also regularly maintain security patches for applications and modules used. Your user account is protected by a password for your safety, privacy, and security. We have incorporated safeguards in assigning and maintaining your password to ensure that there is no unauthorized access to your account. However, it is your responsibility to protect your user ID and password. We strongly recommend that you diligently protect your account password and strictly limit access to your account by signing off after you have finished accessing your account.
We also have internal controls to monitor and limit access to your information to only those employees or contractors who have a business need to know. Our employees and contractors are trained on information security best practices and are required to maintain the confidentiality of your information. In the event of a data breach, we will take immediate action to investigate and mitigate the impact of the breach. We will also notify affected individuals and relevant authorities in accordance with applicable laws and regulations. However, we cannot guarantee that our security measures will prevent all unauthorized access, use, or disclosure of your information.
By using our Program, Site, App, or Services, you acknowledge and accept the risks associated with the transmission of your information over the internet and agree that we are not liable for any unauthorized access, use, or disclosure of your information beyond our reasonable control.
By email: firstname.lastname@example.org
3124 Dumbarton Street NW
Washington, DC 20007
Updated October 2023