Updated March 15, 2019
To help you make sense of this policy, here are a few key points that you should know:
What Information Do We Collect?
We collect various types of information from and about users of our services:
Browser Data & Log Information. Like most websites, when you connect with Us online, NorthShore’s servers automatically and temporarily store the following information in the server log files. This information is provided by your browser, unless you have deactivated the function.
The server log files are not analyzed with respect to individuals. We do not intend to utilize this information to identify specific individuals.
If you use a mobile device to access our website, we may collect information about the mobile device, including the hardware model, operating system and version, unique device identifiers and information about your use of our application.
Minors. Our services are not intended for anyone under 18 years of age. We do not knowingly collect personal information from or on behalf of someone under 18. If you are under 18, do not provide any information about yourself to us. If we learn we have collected or received personal information from or on behalf of someone under 18, we will make commercially reasonable efforts to remove the information and/or user account and not make future use of that information to contact a minor. If you believe we might have any information from or about someone under 18, please contact us at email@example.com or (224) 364-7696.
How Do We Use Your Information?
Although NorthShore is not providing medical services to you with respect to the provision of your GRS, we are committed to protecting your information in the same manner that we protect our patients’ medical information. NorthShore will only use or disclose the information we collect from you in accordance with the Health Insurance Portability and Accountability Act of 1996, and its implementing regulations (collectively, “HIPAA”). For information about our privacy practices with respect to medical information and our obligations under HIPAA, please see our Notice of Health Information Policies. NorthShore will not use your information for any marketing purpose without your express written consent.
We may choose to perform research that may be published in academic journals. We will only use your data for such research if you give us your separate consent. We will ask for that consent through our Research Consent. The Research Consent will have been approved by an Institutional Review Board (IRB). You can choose to decline taking part in this research. Your choice will not affect any services or opportunities you may otherwise be entitled to.
Your Genetic Information may be combined with that of other users as “Aggregated Genetic Information.” Aggregated Genetic Information does not include any data that would reasonably permit someone to identify you individually. NorthShore may use Aggregated Genetic Information for its internal business purposes, such as to improve our products and data quality processes. Aggregated Genetic Information may also be used for our promotional purposes. This could include describing users of our Services in general terms (e.g., “on average, 2% our users have a given result”).
When Do We Share Your Information?
We will disclose your information to regulators and law enforcement only if we are compelled by law to do so. When we are allowed to do so, we will let you know when we must share your information. For more information about permitted uses and disclosures, please see our Notice of Health Information Policies.
We will only share your information with your regular NorthShore physician if you authorize us to.
What Choices Do You Have About How We Use and Share Your Information?
We strive to provide you with choices about the information you provide to us. We have the following mechanisms to give you the following controls over your information:
Google Analytics. NorthShore utilizes Google Analytics to better understand our audience and users, to improve our marketing campaigns, and to enhance our services. You can learn more about Google Analytics’ privacy choices or opt out at any time from their site.
How Do You Access, Correct or Remove Your Information?
We will retain your Product Genetic Information and Health Information for as long as necessary to fulfill the purpose for which it was collected, or for other necessary purposes such as complying with our legal obligations. Retention periods vary depending on the type of information and how it is used. The criteria we use to determine the appropriate retention periods include:
Subject to applicable law, you may have the right to request that NorthShore erase or delete all or some of your information. To make or inquire about such a request, please contact us at firstname.lastname@example.org or (224) 364-7696.
How Do We Keep Your Information Secure?
NorthShore uses reasonable physical, technical, and administrative measures to protect your personal information, including your genetic information. Although we strive to keep your information secure, no safeguards can be guaranteed to be completely secure, so you should exercise caution when transferring personal information over the internet. The security of your information is important to us. We constantly review our security practices to ensure that your data is maintained securely.
If we make material changes to how we treat our users’ personal information, we will notify you by email to the email address specified in your account. You are responsible for ensuring we have an up-to-date, active and deliverable email address for you.
Questions or Comments