PRIVACY POLICY

Effective Date: May 25, 2026  |  Last Updated: May 25, 2026

This Privacy Policy applies to the websites, applications, and services operated under the domainshttps://app.care.ipartnerx.com/(collectively referred to as "the Sites", "we", "us", or "our").

We respect your privacy and are committed to protecting the Personal Information and Protected Health Information (PHI) you share with us. This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you use our websites, mobile applications, and clinical/care portals.

1. INFORMATION WE COLLECT

We may collect several types of information depending on how you interact with the Sites:

A. Personal Information You Provide

  • Identity Data: Name, date of birth, gender, and government-issued identifiers (where required for health identity verification).
  • Contact Data: Email address, phone number, billing address, and mailing address.

B. Protected Health Information (PHI) / Sensitive Data

Because our platforms may assist in care management or health services, we may collect:

  • Medical history, diagnoses, prescriptions, treatment logs, and clinical notes.
  • Health insurance, provincial health plan numbers (e.g., for ihsp.ca), or corporate benefits provider information.
  • Communications between you and healthcare providers or care coordinators.

C. Technical and Usage Data (Collected Automatically)

  • IP addresses, browser type, operating system, time-zone settings, device identifiers, and page interaction history.
  • Cookies, web beacons, and analytical tracking scripts to maintain session security on patient portals.

2. HOW WE USE YOUR INFORMATION

We use the collected information for the following purposes:

  • To Provide Services: Administering accounts, rendering care services, and ensuring the technical functionality of our healthcare portals.
  • Identity Verification: Ensuring secure access to clinical records and stopping unauthorized access.
  • Communication: Sending technical alerts, appointment reminders, security updates, and responding to support tickets.
  • Compliance & Legal Obligations: Meeting regulatory requirements under healthcare laws, tax laws, and regional privacy frameworks.

3. SHARING AND DISCLOSURE OF INFORMATION

We do not sell your personal or health data. Your information is only shared under the following conditions:

  • With Authorized Healthcare Providers: To facilitate your care, treatment, and medical advice via our portals.
  • With Trusted Service Providers: Third-party cloud hosting (e.g., secure, HIPAA/PIPEDA-compliant servers), payment processors, or data analytics firms bound by strict confidentiality agreements.
  • For Legal Compliance: If required to do so by court orders, law enforcement requests, or statutory obligations.
  • Corporate Transfers: In connection with, or during negotiations of, any merger, sale of company assets, or restructuring.

4. REGULATORY COMPLIANCE

Depending on your location, specific regional laws apply to our data processing activities:

United States (HIPAA / CCPA / State Laws) – Applicable to US Users

  • HIPAA: Any Protected Health Information (PHI) managed through app.care.ipartnerx.com is subjected to strict administrative, physical, and technical safeguards in line with the Health Insurance Portability and Accountability Act.
  • State Privacy Rights: Residents of states like California have the right to request access to, deletion of, or details regarding the processing of their personal data.

5. DATA SECURITY

The security of your information is critical to us, especially regarding clinical and health data. We implement industry-standard technical measures, including:

  • Encryption: End-to-end encryption for data in transit (SSL/TLS) and Advanced Encryption Standard (AES) for data at rest.
  • Access Controls: Role-based restrictions ensuring that only verified medical or technical personnel can see sensitive data.
  • Monitoring: Regular security audits, vulnerability scans, and active threat detection.

6. DATA RETENTION

We will retain your Personal Information and health records only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, or as legally required by medical record retention laws (which frequently mandate holding health records for 7–10 years following the last medical interaction).

7. YOUR PRIVACY RIGHTS

Depending on your jurisdiction, you may have the right to:

  • Access and request a copy of the personal data we hold about you.
  • Request the correction of inaccurate or incomplete data.
  • Request the deletion of your personal account data (subject to medical record legal hold exemptions).
  • Withdraw your consent to data processing at any time.

To exercise any of these rights, please submit a formal request via the contact details provided below.

8. CHANGES TO THIS PRIVACY POLICY

We reserve the right to modify this Privacy Policy at any time. Any changes will be posted on this page with an updated "Effective Date." We encourage you to review this policy periodically to stay informed about how we safeguard your data.

9. CONTACT US

If you have any questions, concerns, or complaints regarding this Privacy Policy or our data handling practices, please contact our Privacy Officer by email atinfo@ihsp.ca