Mass General Brigham Health Plan member? Access FREE membership here.

Privacy Policy

ElektraHealth.com Privacy Policy

Your privacy matters to us. This Privacy Policy describes what personally identifiable information you can share with us on this website, www.elektrahealth.com (the “Site”), how that information is stored, and how we use that information.

For the purpose of this Privacy Policy, “Personally Identifiable Information” means any information that, by itself or in combination with other information, identifies or can reasonably be used to identify an individual, such as their name, email address, telephone number, address, or date of birth. Personally Identifiable Information does not include information that is anonymized, or publicly available information that has not been combined with non-public Personally Identifiable Information.

When you sign up or use Elektra Health, we ask you to confirm that you’ve read and agree to our Privacy Policy. This means that by submitting Personally Identifiable Information and other information to the Site, you consent to the collection, use, and disclosure of such information as set out in this Privacy Policy.

PERSONAL INFORMATION WE COLLECT

Generally, you may browse the Site and/or our applications without providing any Personally Identifiable Information. However, we ask that you provide information at various times and locations through the Site, through our Services, and/or through our electronic medical record.

The following is a list of information that we may collect from or about you:

  • Personally identifying information, including your name and contact information, such as your physical address, e-mail address and phone number
  • Electronic signature
  • Demographic information, including your gender, date of birth and zip code
  • Billing and payment information, including billing address, health plan participation and enrollee information, and credit card information, such as account number, expiration date and security information
  • Account information, including your username and password
  • Device and/or browser information, including your IP address, operating system, connection speed, bandwidth, browser type, web page requests, cookie information, other hardware and software attributes
  • Location information
  • Usage activity and viewing preferences
  • Photographic or video images submitted for identification purposes, including photographs of your driver’s license or passport
  • User information, including information or content you post or submit on the Services
  • Transaction history
  • For Providers: your name and contact information and medical specialty
  • Other, including information we collect from or about you in other online or offline contexts, including information submitted during purchases of Services and interactions with our employees.

In addition, when you request an appointment with our Practice or from a Provider, you may share:

  • Personal information: your name and contact information and demographic information
  • PHI (Defined below), including medical information submitted for diagnosis or treatment purposes (including information about your applicable medical history) and current complaint or other reason for visiting a Provider
  • Date of visit
  • Images or videos you share for diagnosis or treatment purposes
  • Communications with the Practice or its Providers

The information you provide to a Practice, Provider or Pharmacy through the Services may be protected under applicable federal and state laws applicable to health information, including but not limited to the Health Insurance Portability and Accountability Act of 1996, Public Law 104-191, and its implementing regulations, as may be amended from time to time (collectively, “HIPAA“). To the extent applicable, the Practice, Providers and Pharmacies will use and disclose information about you that is protected under such privacy laws only as permitted or required by such laws. The Practice has adopted a NOTICE OF PRIVACY PRACTICES that describes how they use and disclose PHI. By accessing or using any part of the Service, you are acknowledging receipt of the Notice of Privacy Practices from the Practice. 

We will not use or disclose PHI or other information about you that is protected under health information privacy laws except on behalf of the Practice, Providers and Pharmacies, or as otherwise permitted by such laws, but we may combine the personal information your share with us through the Services with other information we collect from or about you, both online and offline.  We also may combine personal information with records provided by third parties. We use this consolidated information to help us better design our Services, including the selection of Services and Products, to communicate information to you, to enhance our marketing and research activities, and to facilitate other business functions.  We also may de-identify PHI in compliance with HIPAA, and use such de-identified data for research or marketing purposes, or any other purpose not prohibited by law.

HOW WE COLLECT PERSONAL INFORMATION

We may collect information directly from you when you visit, access or use the Services or when you register an account with us. We may also collect information when you purchase a service, submit information to use through a survey, register for in-person or virtual educational or promotional events, communicate with us, or post or submit content on or in the Services.

In addition to the information we collect directly from you, we may also collect information from the Practice and/or Providers who provide treatment and other services to you in connection with the Services.  This information may include, but is not limited to, diagnoses, care and/or treatment plans, and notes.  We also may receive information from third parties that pay for your care or provide you with treatment or prescription medication, which may include prescription history, insurance policy, insurance eligibility and coverage, and laboratory or other testing results.

Some of the information we collect depends on the settings on your web browser or mobile device. Please check your web browser or mobile device if you want to learn what information your browser or mobile device sends or how to change your settings. In addition to the information sent by your web browser or mobile device, as you navigate through a website or mobile app, certain information can be passively collected (that is, gathered without you actively providing the information) using various technologies and means, such as navigational data collection.

Like most website operators, we use cookies and similar technologies, local shared objects (or any other successor tracker technology), Software Development Kits, and pixel tags that automatically receive and track certain data about how you and other visitors interact with our Services, preferences expressed and settings chosen. For example, we may collect information about the technology you use (such as your browser, type of computer, operating systems, mobile device and network used, and Internet service providers) and server log data (such as access dates and times, online features or pages viewed, system activity, and the third-party site or service you were using before interacting with our Services). These technologies are described in more detail below.

Cookies” are small text files that are stored on your browser or device by websites, mobile apps, online media and advertisements. There are different types of cookies. Cookies served by the entity that operates the website or app you are visiting or using are called “first party cookies” (so cookies served by us while you are using our Services are first party cookies). Cookies served by companies that are not operating the website or app you are visiting or using are called “third party cookies” (so, we may use a website analytics provider to set a cookie on your computer via our Services while you visit our Services, and that would be a third party cookie). Cookies may also endure for different periods of time. “Session Cookies” last only as long as your browser or app is open. These are deleted automatically once you close your browser or app. Other cookies are “persistent cookies” meaning that they survive after your browser or app is closed (for example, they may recognize your computer when you re-open our online services).

Local shared objects” (also called Flash cookies or HTML5 cookies) and any other successor technology refers generally to the collection of cookie-like data stored on a browser or computer by websites, ads, or third parties.

Pixel tags” (also called beacons or pixels) are small blocks of code installed on (or called by) a web page, app or advertisement which can retrieve certain information about your device and browser, including device type, operating system, browser type and version, website visited, time of visit, referring website, IP address, and other similar information (including the small text file (the cookie) that uniquely identifies the device). Pixels provide the means by which third parties can set and read browser cookies from a domain that they do not themselves operate and collect information about visitors to that domain, typically with the permission of the domain owner.  “Software Development Kits” (also called SDKs) function like pixels and cookies, but operate in the mobile app context where pixels and cookies cannot always function. The primary app developer can install pieces of code (the SDK) from partners in the app, thereby allowing such partners to collect certain information about user interaction with the app, information about the user device and network information.

We also use services such as Google Analytics, a web analysis service provided by Google, Inc. (“Google”) to track website activity, along with the information on the traffic source. You can find out more about how Google uses data when you visit the Site and/or Apps by visiting google.com/policies/privacy/partners. 

HOW WE MAY USE PERSONAL INFORMATION

We will use your information only for the following purposes:

  • to provide, improve and create new services by Elektra Health;
  • to respond to your inquiries and to send you administrative communications about the Site;
  • to detect and defend against fraud and other threats to the Site and our users, and
  • to administer your account.
  • to obtain your feedback about the Site and Elektra Health’s services,
  • to send you electronic messages and emails, including news, announcements, reminders and opportunities from Elektra Health;
  • to process, fulfill, support, and administer transactions and orders for products and services ordered by you;
  • to contact you in response to a request;
  • to protect, establish or exercise our legal rights or defend against legal claims;
  • to administer quizzes, surveys, and sweepstakes;
  • to fulfill any other purpose for which you provide it;
  • to carry out our obligations and enforce our rights arising from any contracts entered into between you and us, including for billing and collection;
  • to notify you about changes to our Site, or any products or services we offer or provide though them;
  • in any other way we may describe when you provide the information; and
  • for any other purpose with your consent.

Subject to the limitations described in the Applicability of HIPAA section below, we may share the information we collect from you with the following third parties:

  • Our third party service provides (“Vendors”) that provide services to us to enable us to provide the Services, such as the hosting of the Services, data analysis, IT services and infrastructure, customer service, email delivery, and other similar services
  • Our Vendors that provide services to enable us to run our business and administrative operations, such as legal and financial advisory services, auditing services, and other similar services
  • Our Vendors that enable us to promote and advertise the Services, such as ad platforms or ad retargeting services, as well as those that enable us to comply with contact removal requests or requirements, such as mailing list removal services, do not call registries, and other similar services
  • The Practice, Providers and Pharmacies to enable them to provide services to you via the Services and to collect payment on their behalf
  • To researchers, to permit them to study women’s health

We also may de-identify your information and disclose such de-identified information for any purpose not prohibited by applicable law.

We may also use your information to contact you about goods and services that may be of interest to you, including through newsletters. If you wish to opt-out of receiving such communications, you may do so at any time by clicking unsubscribe at the bottom of these communications.

MINORS

Our Site and/or Apps are not intended for children and adolescents under 18 years of age. No one under age 18 may provide any information to us through the Site. We do not knowingly collect Personally Identifiable Information from individuals under 18. If you are under 18, do not access, use, or provide any information on the Site or on or through any of its features. If we learn we have collected or received Personally Identifiable Information from an individual under 18 without verification of parental consent, we will delete that information. If you believe we might have any information from or about an individual under 18, please contact us.

THIRD-PARTY SITES

Our Site may contain links to other third-party sites. When you click on one of these links you are visiting a website operated by someone other than Elektra Health, and the operator of that website may have different privacy policies. Elektra Health is not responsible for the individual privacy practices of those sites. We encourage you to investigate the privacy policies of these third-party operators.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

APPLICABILITY OF HIPAA 

As described in our Terms of Use, Elektra Health does not engage in the practice of medicine and is not a health care provider or a “covered entity” as defined by HIPAA. The Practice and its Providers each may be considered a “covered entity” under HIPAA, and Elektra Health may, in some cases, may also be a “business associate” of a Practice or Provider. If we are deemed a “business associate,” we will be subject to additional protections with respect to your “protected health information,” as defined under HIPAA, or other state laws. Your PHI will be used and disclosed only in accordance with such applicable laws and regulations. 

SECURITY

We may employ procedural and technological security measures, consistent with industry practice. Such measures are reasonably designed to protect your personal information from loss, unauthorized access, disclosure, alteration or destruction. We may use encryption, password protection, secure socket layers, internal restrictions and other security measures to help prevent unauthorized access to your personal information. However, you provide your information to us at your own risk. We cannot guarantee that your data will not be lost, accessed without authorization, disclosed, altered, or destroyed.

CONTACTING US

You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes. Email us at [email protected].

REVISIONS TO THIS PRIVACY POLICY:

We reserve the right to change this Privacy Policy at any time whereby relevant changes take effect for the future. The applicable version of this Privacy Policy is available on the Site.

Date last modified: December 13, 2023