Privacy Policy
1. Introduction
We are committed to protecting your privacy and ensuring the confidentiality of your personal health information. This Privacy Policy outlines how we collect, use, disclose, and safeguard your information in compliance with Alberta’s Health Information Act (HIA) and the Health Insurance Portability and Accountability Act (HIPAA) regulations.
2. Information We Collect
We collect and maintain various types of information to provide you with the best possible healthcare services, including but not limited to:
2.1 Personal Identification Information: Name, date of birth, contact information.
2.2 Health Information: Medical history, treatment records, diagnostic information.
2.3 Billing Information: Insurance details, payment history.
3. How We Use Your Information
We use your information for the following purposes:
3.1 Healthcare Services: To provide, coordinate, and manage your healthcare.
3.2 Administrative Functions: To manage appointments, process billing, and handle insurance claims.
3.3 Quality Improvement: To improve the quality of care and services we provide.
3.4 Compliance: To comply with legal and regulatory requirements, including those stipulated by Alberta’s HIA and HIPAA.
4. Disclosure of Information
We may disclose your information under the following circumstances:
4.1 With Your Consent: For any purpose not outlined in this policy, we will obtain your explicit consent.
4.2 To Healthcare Providers: To facilitate treatment, consultation, or referral.
4.3 For Administrative Purposes: To insurance companies, billing services, and other necessary administrative entities.
4.4 Legal Requirements: To comply with legal obligations or in response to lawful requests by government authorities.
4.5 Emergency Situations: To protect your health and safety or in emergencies as required by law.
5. SMS Opt-In and Communications
By providing your mobile phone number, you expressly consent to receive SMS messages related to our services, including appointment reminders, care coordination, administrative notices, and other healthcare-related communications. SMS messages may be sent using automated technology and are compliant with A2P messaging regulations.
Message frequency may vary. Message and data rates may apply depending on your mobile carrier. Consent to receive SMS communications is voluntary and not a condition of receiving healthcare services. You may opt out at any time by replying STOP to any message or by contacting us directly. Opting out of SMS communications may limit our ability to provide timely service-related notifications.
We do not share your mobile number with third parties for marketing purposes without your explicit consent.
6. Cookie and Tracking Practices
We use cookies and similar tracking technologies to enhance user experience, improve website functionality, analyze usage patterns, and support security and compliance efforts. Cookies may collect non-identifiable information such as browser type, device information, IP address, pages visited, and interaction data.
Cookies do not collect Protected Health Information (PHI). Any data collected through cookies is used solely for operational, analytical, and compliance purposes in accordance with applicable privacy laws.
You may manage or disable cookies through your browser settings. Please note that disabling cookies may affect certain features or functionality of our website.
We may also use third-party analytics or service providers who assist us in understanding website performance. These providers are contractually required to protect your information and comply with applicable privacy and security standards.
7. Security Measures
We implement reasonable and appropriate security measures to protect your information from unauthorized access, use, or disclosure. This includes:
7.1 Physical Security: Secure storage facilities and restricted access to areas where your information is kept.
7.2 Technical Security: Encryption, secure electronic storage, and regular software updates. We retain a cyber security firm that regularly monitors our activity to protect us from any foreign breaches. We apply encrypted login technology for secure login protection to any confidential sites.
7.3 Administrative Security: Training for employees and contractors on privacy and security practices.
8. Employee and Contractor Responsibilities
All employees and contractors at COMPASS HEALTH SERVICES LTD are bound by this Privacy Policy and are required to adhere to strict confidentiality and security standards. Any breaches of this policy will result in appropriate disciplinary action.
9. Your Rights
You have the following rights concerning your information:
9.1 Access: You may request access to your personal health records and other information we hold about you.
9.2 Correction: You can request corrections to any inaccurate or incomplete information.
9.3 Withdrawal of Consent: You may withdraw your consent for certain uses and disclosures of your information, subject to legal limitations.
10. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of significant changes by posting the revised policy on our website or through other communication methods.
11. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal information, please contact us at:
COMPASS HEALTH SERVICES LTD
4704 Bowness Rd NW, Calgary, AB T3B 0B4
587-430-2477
info@compasshealthservices.ca
12. Complaints
If you believe that your privacy rights have been violated, you may file a complaint with our Privacy Officer directly at operations@compasshealthservices.ca
Acknowledgment
By receiving services from COMPASS HEALTH SERVICES LTD, you acknowledge that you have read, understood, and agreed to this Privacy Policy.
No mobile information will be shared with third parties/affiliates for marketing/promotional purposes. Information sharing to subcontractors in support services, such as customer service is permitted. All other use case categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties.