Introduction
This Privacy Policy describes how Bariatric Centers of America, LLC collects and uses Personal Data about you through the use of our Website, and through email, text, and other electronic communications between you and Bariatric Centers of America, LLC or our partnered bariatric clinics.
Bariatric Centers of America, LLC (“Bariatric Centers of America,” or “we,” “our,” or “us”) respects your privacy, and we are committed to protecting it through our compliance with this policy.
This Privacy Policy (our “Privacy Policy”) describes the types of information we may collect from you or that you may provide when you visit the website bcofa.com or baritotalcare.com (our “Websites”) and our practices for collecting, using, maintaining, protecting, and disclosing that information.
This policy applies to information we collect:
- on our Website;
- in email, text, and other electronic messages between you and our Website;
- when you interact with our advertising and applications on third-party websites and services, if those applications or advertising include links to this policy;
- when you interact with a Bariatric Centers of America partnered bariatric clinic’s website.
It does not apply to information collected by:
- us offline or through any other means, including on any other website operated any third party;
- any third party, including through any application or content (including advertising) that may link to or be accessible from or on the Website;
Note: Bariatric Centers of America is not a medical group. Any consult requests submitted or obtained through our Website are provided by independent (i.e. not employed or paid by Bariatric Centers of America) medical practitioners at the partnered bariatric clinic, which are independent medical groups with a network of United States-based bariatric surgeons, medical weight loss physicians, health coaches, and other healthcare professionals (each, a “Provider”). Your own medical provider is responsible for providing you with a Notice of Privacy Practices describing its collection and use of your health information, not Bariatric Centers of America. If you do not agree to be bound by those terms, you are not authorized to access or use our Website, and you must promptly exit our Website.
Please read this policy carefully to understand our policies and practices regarding your information and how we will treat it. If you do not agree with our policies and practices, your choice is not to use our Website. By accessing or using our Website, you agree to this Privacy Policy. This Privacy Policy may change from time to time (see Changes to Our Privacy Policy). Your continued use of our Website after we make changes is deemed to be acceptance of those changes, so please check this Privacy Policy periodically for updates.
Personal Information We Collect From You
We collect different types of information about you, including information that may directly identify you, information that is about you but individually does not personally identify you, and information that we combine with our other users. That includes information that we collect directly from you or through automated collection technologies. Data will be collected, stored and used in a manner that ensures it is relevant, timely, accurate, coherent, transparent and accessible. It is your responsibility to provide us with quality data when asked so we can appropriately serve you.
Generally
We collect several types of information from and about users of our Website, specifically information:
- by which you may be personally identified, such as name, address, e-mail address, telephone numbers, date of birth, your medical history, health information, and health insurance coverage (“Personal Data”) when you submit a website form;
- that is about you but individually does not identify you, such as traffic data, logs, referring pages/links, date and time of your visit to our Website, error information, clickstream data (third-party tracking apps such as Google analytics), and other communication data and the resources that you access and use on the Website; or
- about your Internet connection, the equipment you use to access our Website, IP Address, location of where you access our Website, and other usage details.
We collect this information:
- directly from you when you provide it to us;
- from our partnered bariatric clinics when they enter information into our system;
- automatically as you navigate through the Website. Information collected automatically may include usage details, IP addresses, and information collected through cookies and other tracking technologies; and
- from third parties, for example, our business partners and Providers.
Information You Provide to Us
The information we collect on or through our Website is:
- information that you provide by filling in forms on our Website. This includes information provided when you request an appointment, using our Provider consultation services, purchasing products, or requesting further services. We may also ask you for information when you report a problem with our Website;
- records and copies of your correspondence (including mobile phone for text messages and email addresses), if you contact us; and
- details of transactions you carry out through our Website via Stripe if purchasing a digital scale for RPM. You may be required to provide financial information before placing an order through our Website.
Information We Collect Through Automatic Data Collection Technologies
As you navigate through and interact with our Website, we may use automatic data collection technologies to collect certain information about your equipment, browsing actions, and patterns, specifically:
- details of your visits to our Website, such as traffic data, location, logs, referring/exit pages, date and time of your visit to our Website, error information, clickstream data (third-party tracking apps such as Google analytics), and other communication data and the resources that you access and use on the Website; and
- information about your computer, Internet connection, specifically your IP address and browser type.
The information we collect automatically may include Personal Data or we may maintain it or associate it with Personal Data we collect in other ways or receive from third parties. It helps us to improve our Website and to deliver a better and more personalized service by enabling us to:
- estimate our audience size and usage patterns;
- store information about your preferences, allowing us to customize our Website according to your individual interests; and
- recognize you when you return to our Website.
The technologies we use for this automatic data collection may include:
- Cookies (or browser cookies). We and our service providers may use cookies, web beacons, pixels, and other technologies to receive and store certain types of information whenever you interact with our Website through your computer or mobile device. A “cookie” is a small file placed on the hard drive of your computer or mobile device. On your computer, you may refuse to accept browser cookies by activating the appropriate setting on your browser, and you may have similar capabilities on your mobile device in the preferences for your operating system or browser. However, if you select this setting you may be unable to access certain parts of our Website. Unless you have adjusted your browser or operating system setting so that it will refuse cookies, our system will issue cookies when you direct your browser to our Website.
- Google Analytics. We use Google Analytics, a web analytics service provided by Google, Inc. (“Google”) to collect certain information relating to your use of the Website. Google Analytics uses cookies to help the Website analyze how users use the site. You can find out more about how Google uses data when you visit our Website by visiting “How Google uses data when you use our partners’ sites or apps”, (located at google.com/policies/privacy/partners/ ). We may also use Google Analytics Advertising Features or other advertising networks to provide you with interest-based advertising based on your online activity. For more information regarding Google Analytics please visit Google’s website, and pages that describe Google Analytics, such as www.google.com/analytics/learn/privacy.html .
Permitted Use of Your Information and Disclosures
We use your Personal Data for various purposes described below, including to:
- provide our Website to you;
- provide products and services to you;
- provide you with the information you request from us;
- enforce our rights arising from contracts;
- notify you about changes; and
- provide you with notices about your account.
We use information that we collect about you or that you provide to us, including any Personal Data:
- to present our Website and its contents to you;
- to provide you with information, products, or services that you request from us;
- to contact you in response to a request;
- to fulfill any other purpose for which you provide it;
- to carry out our obligations and enforce our rights arising from any contracts entered into between you and us, including for billing and collection;
- to notify you about changes to our Website or any products or services we offer or provide through them;
- in any other way we may describe when you provide the information; and
- for any other purpose with your consent.
We may also use your information to contact you about goods and services that may be of interest to you, including through newsletters. If you wish to opt-out of receiving such communications, you may do so at any time by clicking unsubscribe at the bottom of these communications.
Disclosures Related To Communications With You Or Your Family
We do not share, sell, or otherwise disclose your Personal Data for purposes other than those outlined in this Privacy Policy. We disclose your Personal Data to a few third parties, including:
- to your bariatric provider whom you are working with;
- to third-party service providers that we use to support our business;
- to a company we merge, acquire, or that buys us, or in the event of a change in the structure of our company of any form;
- to comply with our legal obligations;
- to enforce our rights; and
- with your consent.
We do not share, sell, or otherwise disclose your Personal Data for purposes other than those outlined in this Privacy Policy. However, we may disclose aggregated information about our users, and information that does not identify any individual, without restriction.
We may disclose Personal Data that we collect or you provide as described in this privacy policy:
- to contractors, service providers, and other third parties we use to support our business. The services provided by these organizations include providing IT and infrastructure support services, patient navigation, and digital marketing;
- to a buyer or other successor in the event of a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of our assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which Personal Data held by Bariatric Centers of America about our Website users are among the assets transferred;
- to fulfill the purpose for which you provide it. For example, we may disclose your personal information to your bariatric surgeon and bariatric care team;
- for any other purpose disclosed by us when you provide the information with your consent.
We may also disclose your Personal Data:
- to comply with any court order, law, or legal process, including to respond to any government or regulatory request;
- to enforce or apply our Terms of Service and other agreements, including for billing and collection purposes; and
- if we believe disclosure is necessary or appropriate to protect the rights, property, or safety of Bariatric Centers of America, our customers, or others. This includes exchanging information with other companies and organizations for the purposes of fraud protection.
Your Rights and Choices About How We Use and Disclose Your Information
You can review and change your Personal Data by emailing us at care@bcofa.com and we will make any changes to any Personal Data we have about you to ensure that it is complete, accurate, and as current as possible. We cannot delete certain types of personal information (such as your email or name) except by also deleting your account within our system. We may also not be able to accommodate your request if we believe it would violate any law or legal requirement or our agreement with your bariatric provider.
We offer you choices on how you can opt-out of our use of tracking technology, disclosure of your Personal Data for our advertising to you, and other targeted advertising.
We do not control the collection and use of your information collected by third parties described above in Disclosure of Your Information. These third parties may aggregate the information they collect with information from their other customers for their own purposes.
In addition, we strive to provide you with choices regarding the Personal Data you provide to us. We have created mechanisms to provide you with control over your Personal Data:
- Tracking Technologies and Advertising. You can set your browser or operating to refuse all or some cookies or to alert you when cookies are being sent. If you disable or refuse cookies, please note that some parts of our Website may then be inaccessible or not function properly
- Promotional Offers from Bariatric Centers of America. If you do not wish to have your email address used by Bariatric Centers of America to promote our own products and services, you can opt-out at any time by clicking the unsubscribe link at the bottom of any email or other marketing communications you receive from us. This opt-out does not apply to information provided to Bariatric Centers of America as a result of a product purchase, or your use of our services.
- Targeted Advertising. To learn more about interest-based advertisements and your opt-out rights and options, visit the Digital Advertising Alliance and the Network Advertising Initiative websites (aboutads.info and www.networkadvertising.org ). Please note that if you choose to opt-out, you will continue to see ads, but they will not be based on your online activity. We do not control the third-party collection or use of your information to serve interest-based advertising. However, these third parties may provide you with ways to choose not to have your information collected or used in this way. You can also opt-out of receiving targeted ads from members of the NAI on its website.
Retention and Disposal of Records
For Patients
Patient data is retained for as long as the account is in active status. Data enters an “expired” state when the account is voluntarily closed by the patient. Expired account data will be retained for 30 days. After this period, the account and related data will be removed.
If a patient account is involuntarily suspended, then there is a 30-day grace period during which the account will be inaccessible but can be reopened if the patient meets their payment obligations and resolves any terms of service violations.
For Clients
Client’s patient data is retained for as long as their account is in active status. Data enters an “expired” state when the client’s account is voluntarily closed by the client. Expired account data will be retained for 45 days. After this period, the account and related data will be removed. A client that wishes to voluntarily close an account can download their data manually prior to closing the account. Bariatric Centers of America will notify the client of the status of their account prior to the 45 days so the client can retrieve all necessary data.
If a client account is involuntarily suspended, then there is a 30-day grace period during which the account will be inaccessible but can be reopened if the client meets their payment obligations and resolves any terms of service violations.
If a client wishes to manually back up their data in a suspended account, then they must ensure that their account is brought back to good standing so that the user interface will be available for their use. After 90 days, the suspended account will be closed, and the data will enter the “expired” state. It will be permanently removed 45 days thereafter (except when required by law to retain).
Data Quality and Security
We have taken steps and implemented administrative, technical, and physical safeguards designed to protect against the risk of accidental, intentional, unlawful, or unauthorized access, alteration, destruction, disclosure, or unauthorized use or misuse. The Internet is not 100% secure and we cannot guarantee the security of information transmitted through the Internet; however all personal information is accessed and stored via a third-party cloud infrastructure. Where you have been given or you have chosen a password, it is your responsibility to keep this password confidential.
The sharing and disclosing of information via the internet is not completely secure. We strive to use best practices, maintaining compliance with governmental HIPAA regulations and other industry standard security measures and tools to protect your data. However, we cannot guarantee the security of Personal Information transmitted to, on, or through our systems. Any transmission of Personal Information is at your own risk. We are not responsible for the circumvention of any privacy settings or security measures contained on our Platform, in your operating system, or mobile device.
Changes to Our Privacy Policy
We monitor and review this Privacy Policy quarterly and may change this Privacy Policy at any time, which changes will be reflected on this page. If we make material changes to how we treat our users’ Personal Data, we will notify you by email to the email address specified in your account or through a notice on the Website’s home page. The date this Privacy Policy was last revised is identified at the top of the page. It is your obligation to ensure we have an up-to-date active and deliverable email address for you, and for periodically visiting our Website and reviewing this Privacy Policy to check for any changes.
Complaints and Contact Information
How to Contact Us:
For general inquiries:
Attn: Information Security Officer
Bariatric Centers of America, LLC
2801 Washington Road, Suite 107 #290
Augusta, GA 30909
Email: care@bcofa.com