We collect personal information from individual patients and health care providers for the purpose of registering individuals for the Services, providing information and Services to individual patients, and allowing individual patients, health care providers, clinics and their personnel (collectively, “Clinic Personnel”) to communicate with each other via the Services. We may also request that you provide additional information that we may use to improve our business and the Services we provide. Providing this information to us is optional.
Avocare collects information such as your name, address, mobile telephone number, email addresses, medical and health history and other information that you provide to Avocare or information on the Avocare profile or account. Personal information may be collected in a number of ways, including: in person, over the phone, by mail, over the Internet, and from third parties who you have authorized to disclose personal information to us. We make every reasonable effort to keep your personal information as accurate, complete and up-to-date as necessary. If desired, you may verify the accuracy and completeness of your personal Information in our records.
We use and disclose personal information for the purposes described above under “Personal information collection”. We also use your personal information to help us better understand your needs, to improve the Services and for any additional purposes for which we have obtained your consent. In order to provide the Services to you, we may disclose your personal information to Clinic Personnel and our authorized employees and personnel who need the information for legitimate business reasons (“Our Personnel”). We require all Our Personnel to abide by our privacy standards. Our Personnel are prohibited from accessing or disclosing personal information without authorization. Our Personnel are required to maintain the confidentiality of personal information at all times.
We may use your contact information for the purpose of communicating with you about our Services. You may opt-out or unsubscribe from optional communications such as those that market our services or inform you about our events.
Your personal information may be disclosed in situations where we are legally permitted to do so, such as in the course of employing reasonable and legal methods to enforce our rights or to investigate suspicion of unlawful activities. We may release certain personal information when we believe that such release is reasonably necessary to protect the rights, property and safety of ourselves and others.
We use third-party service providers to provide technology, host data and servers, and otherwise assist us in providing the Services. These third-party service providers may have access to personal information as an incidental result of the services provided by them to us, but these parties are not permitted to access your personal information for their own purposes or uses.
Except where prohibited by law, we may use service providers that are located outside of Canada. As a result, some of your personal information may be processed, stored and/or disclosed in a jurisdiction other than Canada and it may potentially be accessible to law enforcement and national security authorities of that jurisdiction. In the event that foreign law enforcement and/or national securities authorities request your personal information, it shall only be provided in strict accordance with the law and subject to all required legal permissions.
We may reject, suspend, alter, remove or delete data that you provide to us or submit using the Services if we determine that such data breaches our terms and conditions or that such actions are reasonable or necessary to protect us or others.
We process and store messages, logs, contact data, and other related information in order to provide the Services. We will maintain such data and information in accordance with our record retention policies and as permitted or required by law.
We take reasonable steps to protect personal information that we collect to prevent loss, misuse and unauthorized access, disclosure, alteration and destruction. We have in place reasonable physical, electronic and operating procedures to safeguard and secure the personal information we collect. Although we make reasonable efforts to protect personal information from loss, misuse, unauthorized access, disclosure, alteration and destruction, you should be aware that there is always some risk that an unauthorized party could find a way to breach our security procedures and systems and/or those of our service providers. This risk is heightened for information that is transmitted via unsecured or public WiFi.
We store personal health information in Canada, with MedStack. MedStack hosts all Avocare servers, databases and applications in the Microsoft Azure secure cloud. Microsoft Azure is certified as compliant with ISO Standard 27018 Code of Practice for personal identifiable information (PII) protection in public clouds acting as PII processors.
Subscribers may contact our Privacy Officer to make enquiries regarding our privacy practices or with respect to the accuracy of their personal information provided to us or retained by us and to request an update, correction or deletion of such information. You may access your personal information by accessing your account. Any query, comments or concerns can be sent to us by email at firstname.lastname@example.org or by mail to the following address:
Avocare Corporation, 60 Atlantic Ave., Suite 200, Toronto, ON M6K 1X9, Attention: Privacy Officer