RxMapper - Health Notice of Privacy Practices and Privacy Policy

THIS NOTICE DESCRIBES HOW INFORMATION YOU PROVIDE RXMAPPER MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE REVIEW THIS POLICY CAREFULLY.

RxMapper, LLC (“We”, “Our”, “Us”, or “RxMapper”) is committed to keeping Your health information safe. To help You, the individual, (“You” or “Your”) understand Your rights to Your health information, please review this privacy policy (“Privacy Policy” or “Policy”). We are required by law to have this Privacy Policy and maintain Your health information in a manner consistent with this Policy and law. This notice is in five parts to describe our privacy practices. We hope through this Privacy Policy that we answer any questions You have about how RxMapper maintains Your health information. The sections are as follows:

1. What is Protected Health Information (“PHI”)?
2. What PHI does RxMapper collect?
3. Who does RxMapper share my PHI with and why?
4. What are my rights to my PHI?
5. What should I do if I have a question or concern about my collected PHI?

What is Protected Health Information?
As many healthcare service providers, RxMapper receives and maintains certain personal information about all Our members. Some of this personal information is protected by federal and state laws. This type of information is known as “protected health information” or “PHI”.
PHI is health information that identifies or could be used to identify a specific person.
‍
What PHI does RxMapper collect?
When You voluntarily give Your PHI to RxMapper through Our online website and through Your use of RxMapper Services we maintain such PHI in our secure systems. Examples of PHI You may provide to RxMapper include:

When You choose to register for RxMapper Services, You provide Your personal information such as Your name, address, date of birth, telephone number and email address.
When You use RxMapper Services, we will receive health information from You such as a sample of Your DNA, personal medical history, Your prescription, lab, and claims data to provide a more personal experience in the RxMapper Services.

Who does RxMapper share my PHI with and why?
‍We use or disclose Your PHI for treatment, research, payment, healthcare operations purposes, to provide and improve RxMapper Services, and for other purposes permitted or required by law. By registering for RxMapper Services, You authorize RxMapper to use or disclose Your PHI for such purposes, which are described below. We need Your written authorization to use or disclose Your health information for any purpose not covered by one of the categories below. RxMapper never shares Your information for marketing purposes unless You give Us permission.

You can inform us at any time that You no longer allow us to use or disclose Your PHI for the reasons shown below, but this will not stop any disclosure that we made based on Your prior authorization. The law permits us to use and disclose Your health information for the following
purposes:

Treatment: RxMapper may use or disclose Your PHI to healthcare professionals for treatment purposes.
Payment: RxMapper may use or disclose Your PHI for purposes of billing and payment for RxMapper Services. For example, we may disclose Your PHI to Your pharmacy benefits manager, healthcare plans, or other payers to determine whether You are enrolled with the payer, eligible for health benefits, or to get payment for RxMapper Services. If You are insured under another person’s health insurance policy (for example, parent, spouse, domestic partner, or a former spouse), RxMapper may also send invoices to the person whose policy covers Your health services. We provide only the minimal PHI to accomplish the intended purpose of the use and disclosure of the PHI. These entities are required to keep the PHI confidential and secure.
Healthcare Operations: RxMapper may use or disclose Your PHI for activities necessary to support our healthcare operations, such as: providing consultations; running Our organization; Billing for RxMapper Services; public health and safety issues; performing quality checks of RxMapper Services; internal audits; legal services; data analysis; research and development; and developing reference ranges for RxMapper Services.
We may also disclose Your PHI to healthcare professionals, Your healthcare plan, healthcare benefits consultant, or benefits manager clinical team. We provide only the minimal PHI to accomplish the intended purpose of the use and disclosure of the PHI. These entities are required to keep the PHI confidential and secure.
Business Associates: RxMapper may disclose Your PHI to other companies or individuals that need the information to provide services to Us. These other entities, known as "Business Associates," are required to also keep the PHI confidential and secure. For example, We may provide information to companies that assist Us with support services or billing of RxMapper Services. These entities are required to keep the PHI confidential and secure.
De-identifiable and Aggregated Format: RxMapper may use and disclose Your PHI in a de-identifiable and aggregated manner to review our impact on all our members health or broader populations and in hopes of making the RxMapper Services even more effective.
Research: RxMapper may use and disclose PHI for research purposes.
As Required by Law: RxMapper may use or disclose Your PHI as required by law.
Law Enforcement Activities, Legal Proceedings and Court Orders: RxMapper may use and disclose Your PHI to prevent or minimize a serious threat to Your health and safety or that of another person. We may also provide PHI to law enforcement officials, for example, in response to a warrant, investigative demand or similar legal process, or for officials to identify or locate a suspect, fugitive, material witness, or
missing person. We may also disclose PHI to appropriate agencies if we reasonably believe an individual to be a victim of abuse, neglect or domestic violence. We may disclose Your PHI if required to do so with a court or administrative order. We may disclose Your PHI in response to a subpoena, discovery request or other legal process during a judicial or administrative proceeding. We may also disclose PHI to those assisting in disaster relief efforts so that others can be notified about Your condition, status and location.
Family and Friends: At Your request, we may disclose PHI to a family member, friend, or anyone else You inform Us to provide the information to.
Other Uses and Disclosures: As permitted by HIPAA, we may disclose Your PHI to:

o Public Health Authorities
o The Food and Drug Administration
o Health Oversight Agencies
o Military Command Authorities
o National Security and Intelligence Organizations
o Correctional Institutions
o Organ and Tissue Donation Organizations
o Coroners, Medical Examiners, and Funeral Directors
o Workers Compensation Agents

What are my rights to my PHI?
You have rights to Your PHI that we collect. You can request RxMapper restrict the use and disclosure of Your PHI by sending written request to email address list below.

You can request we send You Your health information. Once You review Your PHI, if You see any problems with Your PHI, You may request amendments to Your PHI by making a written request to email address list below. We may deny the request in some cases. If we deny Your request to change Your PHI we will provide You with a written explanation of the reason for the denial and additional information regarding further actions that You may take.

You also have the right to receive a list of certain disclosures of Your PHI made by Us in the past six years from the date of Your written request to Us at to email address list below. Under the law, this does not include disclosures made for purposes of treatment, payment, or healthcare operations, or the other certain other purposes we have stated above. Please be aware that we are required as stated in the Health Insurance Portability and Accountability Act (HIPAA) of 1996 to notify You in the event of a breach involving Your PHI and will do so as required by law.

You have the right to obtain a paper copy of this Privacy Policy by written request to email address list below.

What should I do if I have a question or concern about my collected PHI?
If You believe Your privacy rights have been violated by RxMapper, You have the right to file a complaint with Us. You also have the right to file a complaint with the Secretary of the U.S. Department of Health and Human Services, Office for Civil Rights by calling 1-877-696-6775, sending a letter to 200 Independence Avenue, S.W., Washington, D.C. 20201, or visiting www.hhs.gov/ocr/privacy/hipaa/complaints/. We will not retaliate against You, or any individual, for filing a complaint.

Confidentiality and the Genetic Information Nondiscrimination Act (GINA)
RxMapper is bound by and fully abides by the GINA law that was passed into law in 2008 designed to prohibit discrimination based upon genetic information.

Changes to Notice of Privacy Practices and Privacy Policy
RxMapper reserves the right to amend the terms of this Privacy Policy and Notice of Privacy Practices to reflect changes in our privacy practices, and to make the new terms and practices applicable to all PHI that we maintain about You, including PHI created or received
prior to the effective date of the Privacy Policy and Notice of Privacy Practices revision. Our Privacy Policy and Notice of Privacy Practices is displayed on our website and a copy is available upon request. Accordingly, please check back periodically.

Contact Information
To request We send You Your health information, request amendments to Your PHI, file a complaint with Us, or should You have any questions about this Privacy Policy and Notice of Privacy Practices, send an email to support@rxmapper.com, call us at 1-800-950-3230, or write to us at RxMapper, LLC, 50 Pine Street, Wellesley, MA 02481.
‍
Effective Date: February 10, 2023

About RxMapper

How It Works

Connect