Quilted Health Privacy Policy

 

About Us

Welcome to Quilted Health! We are focused on helping you receive evidence-based and nurturing community-centered pregnancy and reproductive healthcare.

Journey Health, Inc. dba Quilted Health (“Journey Health” or “we,” “us,” “our”), provides management and administrative services to Quilted Health Professional Services Corporation and other professional service corporations (each a  “Practice” and collectively the “Practices”). The Practice provides pregnancy and reproductive health related care to its patients (“QH Patients”). Journey Health and the Practices may be referred to collectively as (“Quilted Health”).

Journey Health also provides non-clinical services to independent  practices, including without limitation an electronic health record platform (the “Platform”) known as Maternity Neighborhood (“Maternity Neighborhood”), revenue cycle management, and business and administrative services. Journey Health makes information about these services as well as other resources available on our websites, www.quiltedhealth.com and www.maternityneighborhood.com (“Website”), which facilitates a patient’s (“Patients”) connection to pregnancy services, providers (“Providers”) and patients for pregnancy-related care, as well as the provision of that care. (Collectively, we refer to the Platform, the Website, and other services provided by Journey Health  as the “Services.”)

 

Welcome

This Privacy Policy describes the personal information that Journey Health collects from you, how we use and protect it, and your rights and choices. It does not apply to information collected by any healthcare providers that we contract with, including those employed by the Practice and those affiliated with Maternity Neighborhood, or any third party that may link to or be accessible from our Sites. We recommend you review the privacy practices of those third parties before accessing third-party websites and sharing any personal information with them.

First, a note about our commitment to your privacy:

Quilted Health deeply values the role we play in helping you obtain pregnancy-related and reproductive care.  Central to that promise is safeguarding the privacy of your personal information, including personal information that is protected by the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) (referred to as “protected health information” or “PHI”) and personal information that is not PHI.

Journey Health only receives PHI when we provide services to your health care provider and we are acting as their business associate. Your provider will provide you with their HIPAA Notice of Privacy Practices (“NPP”), which details our providers’ treatment of HIPAA-covered PHI. Quilted Health Professional Services Corporation’s NPP can be read here.

This Privacy Policy describes Journey Health’s privacy practices related to collection and use of personal information not protected by HIPAA in user-friendly terms, including what information we collect in order to help you receive high-quality care, what we use your information for, how we may share your information when needed, and the rights and preferences you may have with respect to your personal information.

Here are a few things we want you to know:

  1. Definitions. So we are clear about the terms we are using, when we use the term “Personal Information” in this Privacy Policy, we mean information about you that is personally identifiable to you, such as your contact information (e.g., name, address, email address, or telephone number), and any other non-public information that is associated with such information (collectively, “Personal Information”).  Second, when we use the term “De-identified Data,” we mean information that is neither used nor intended to be used to personally identify an individual (meaning we remove things like your name, address, email address, and date of birth from the data).  Third, when we use the term “Cookies,” we mean the small pieces of information that a website sends to your browser while you are viewing a website. Fourth, when we say “you”, “you” could be someone who just visits our website, someone who is a patient of the Practice, or of another provider who uses our services, or a provider who uses our services.
  2. We only collect the Personal Information we need in order to provide you with Quilted Health’s Services.  We do not collect more information than we need.  The Personal Information that we ask you to provide us, or give you the option to provide us, is intended to help your providers deliver high-quality maternity care services.
  3. We do not use your Personal Information for purposes unrelated to the reasons for which it was collected, or unrelated to your reasonable expectations.  We know it is important to you that you be aware of all the reasons that your information is handled by Journey Health and our partners. Our stewardship of the information you entrust to us is of the utmost importance. We hold the stewardship of your Personal Information to the same standard we would expect for ourselves and our families.
  4. We do not retain Personal Information for longer than is necessary.  We understand the importance of minimizing the personal and sensitive data that we may maintain.  We will only retain your data for the period of time required by law, and if there is no requirement, then only so long as we need to continue to store it.
  5. We do not sell your Personal Information.  We will not sell your identifiable Personal Information to third parties.
  6. We offer you ways to control your Personal Information and express your preferences.  We provide you with a variety of ways to exercise control over your Personal Information, including making certain data collection optional, providing you with direct control over updating and editing your user profile, providing you with unsubscribe options, and providing you the ability to delete your account and non-PHI data to the extent permitted by law.

PRIVACY POLICY FOR THE QUILTED HEALTH WEBSITE, APPLICATIONS, AND SYSTEMS

 

Last modified: October 15th, 2023

 

This Privacy Policy (“Policy”) explains how Journey Health collects, uses, and discloses information about you obtained when you visit the website www.quiltedhealth.com (“Website”), through use of the Maternity Neighborhood electronic health record platform (“Platform”), during other digital interactions such as email or messaging (“Systems”), and when downloading and using our applications (“Applications”) – collectively, our “Sites” – and our practices for collecting, using, maintaining, protecting, and disclosing that information.

This Policy applies to information we collect on our Sites, in email, text, and other electronic messages between you and our Sites.

Your agreement. By accessing or using our Sites, you agree to this Policy. If you do not agree with this Policy, please do not use the Sites.

You Should also Review our Terms of Use. We also encourage you to review our Terms of Use to understand how we treat your Personal Information as you make full use of our Sites. Unless otherwise defined in this Policy, capitalized terms used in this Policy have the same meanings as in our Terms of Use.

 

This Policy is provided in a layered format.  You can jump to a specific section by clicking on the section below:

Information we collect about you and how we collect it We may collect your Personal Information when you interact with us through our Sites, or by other means. We may also automatically collect information regarding your use of our Sites as you use them.
How we use your Personal Information We may use your Personal Information for various purposes connected with your interest in our Sites and services, and to allow us to maintain and improve them.
How we share your Personal Information We may share your Personal Information with certain third parties, such as with our service providers, as directed by you, and to provide you with opportunities that we believe may be of interest to you.
Information you share with third parties  The use and disclosure restrictions contained in this Policy will not apply to third parties.
Your rights and choices You may have certain rights and choices regarding our collection, use, and disclosure of your Personal Information.
Data security The security of your Personal Information is of utmost importance to us and we maintain appropriate safeguards to protect it.
International data transfers Our Sites are operated exclusively in the United States.
Location-enabled services Certain location-enabled features may be available through our Sites to help connect you to a local provider.
Cookie and analytics policy When you visit our Sites, we may collect certain information from you automatically through Cookies and other tracking technologies.
Children’s privacy You must be at least 18 years old or older to use our Sites, or considered an adult under state law.
Changes to this Privacy Policy We may change this Privacy Policy from time to time to reflect new services or changes in our data practices or relevant laws, in which case we will notify you.
Contact us You may contact us with complaints, comments or questions.

 

1. Information We Collect About You and How We Collect It

For purposes of this Policy, “Personal Information” means any information that relates to an identified or identifiable individual, and does not include PHI. The Personal Information we collect through our Sites usually is apparent by the context of the page, and may include the following types of information.

a) Personal Information You Provide to Us. We may collect several types of personally identifiable information that you choose to provide us when you use our Sites, which specifically may include:

    • Registration and account information.  When you create an account through our Sites, you may be asked to provide certain personal information, such as your name, mailing address, billing address, work address, e-mail address, home, work, and mobile telephone numbers,  and date of birth.
    • Profile and demographic information.  Through your account, we may also invite you to provide additional information about yourself, such as your preferred pronouns, gender or gender identity, sex at birth, and if you are a patient of either QH Providers or MN Providers, details about your health and medical history, and, if you are a MN Provider, your practice location, NPI or license or registration.
    • Communications information. When you communicate with us through our Sites, including through filling out surveys or questionnaires, we may collect your first and last name, phone number, email address, and any Personal Information that you choose to provide in the content of your message.
    • Payment information.  If you register for a paid service from us, you may be required to provide your payment card or bank account information, as well as billing information.

b) Information That We Automatically Collect. As you navigate through and interact with our Sites, we, our service providers and our business partners may use automatic data collection technologies to collect certain information about your equipment, browsing actions and patterns. These include:

    • Browser and device data, such as IP address, device identifier, device type, operating system and Internet browser type, screen resolution, operating system name and version, device manufacturer and model, language, plug-ins, add-ons, and the language version of the Sites you are visiting; and
    • Usage data, such as browsing history, time spent on the Sites, pages visited, links clicked, language preferences, patterns of use, and the pages that led or referred you to our Sites.

The information we collect automatically may include Personal Information, or we may maintain it or associate it with Personal Information we collect in other ways or receive from third parties.

Some of the automatic collection described above may be facilitated by technologies such as Cookies; for more information on our Cookie and Analytics Policy, see Section 9 below.

c) Aggregated, Anonymized, and De-identified Information. We may create aggregated, anonymous or De-identified Data from Personal Information by removing data components that make the data personally identifiable to you or through obfuscation or other means.

 

2. How We Use Your Personal Information

We use the Personal Information we collect to provide, maintain, and improve our Sites and the services that Journey Health offers through them (our “Services”). These uses include:

    • Administration of your account and verification of your identity;
    • Providing you with requested Services, including the facilitation of maternity health services, billing support, insurance claim submission, and providing you with information and other services related to your health and wellness;
    • Enabling providers to communicate with you;
    • Providing you with customer service and support, and to facilitate other communications that you request or that are required to render Services to you;
    • Responding to your requests, resolving disputes and/or troubleshooting problems;
    • Providing you with information about new Services and other opportunities that we believe may be of interest to you, whether offered by us or third-party partners, and to personalize, measure, and improve such offers;
    • Performing analytics for new and existing Sites and Services, such as our user accounts and related features;
    • Maintaining and improving the quality of our Sites and Services;
    • Growing our business, including understanding our user trends and understanding the effectiveness of our marketing; and
    • Protecting ourselves, you, and others; preventing fraud; and creating and maintaining a trusted, secure, and reliable online environment.

 

3. How We Share Your Personal Information

We may share your personal information with the following categories of third parties:

a) Our affiliates.  We may share Personal Information with our affiliates, in which case, we will require such affiliates to comply with the terms of this Policy.

b) Service providers.  We share Personal Information with our contractors and third-party service providers that provide services on our behalf, such as payment processing, analytics, advertising, hosting, marketing, customer and technical support, and other services. These third-party service providers are contractually obligated to keep your Personal Information confidential.

c) Third-party providers, plans, and institutional partners.  We may share Personal Information with third-party partners in connection with our Sites and Services, including your care providers and health insurers.

d) Third-party platform advertising.  We may share your information with third-party platform providers who assist us in advertising our Sites and Services to others who may be interested.  We also partner with third parties (such as Facebook and Google) who use Cookies to serve interest-based advertising and content on their respective third-party platforms that may be based on your preferences, location and/or interests.

e) Affiliate and business transfer. We have the right to share your data with or transfer it to acquirers and other relevant participants in business transactions (or negotiations of or due diligence for such transactions) involving a corporate divestiture, merger, consolidation, acquisition, reorganization, sale, or other disposition of all or any portion of the business or assets of, or equity interests in, Journey Health (including in connection with a bankruptcy or similar proceeding) or as part of a contractual joint venture or partnership.

f) We may also share Personal Information for:

    • Compliance and harm prevention as we believe necessary (i) to comply with applicable law, rules and regulations; (ii) to enforce our contractual rights; (iii) to investigate possible wrongdoing in connection with our Sites and Services; (iv) to protect and defend the rights, privacy, safety and property of Journey Health, you or others; and (v) to respond to requests from courts, law enforcement agencies, regulatory agencies, and other public and government authorities.
    • For any other purpose disclosed by us when you provide the information; and
    • With your consent.

We will NOT share your Personal Information with any third parties except as expressly indicated in this Privacy Policy.

 

4. Information You Share With Third Parties

This Privacy Policy addresses our use and disclosure of information we collect from and/or about you on our Sites or through our Services.  Information made available through the Services to healthcare providers is required to be used by such entities in accordance with all applicable laws, including HIPAA.  If you disclose information to others, including, for example, a partner providing goods and services, different rules may apply to their use or disclosure of the information you disclose to them.  The use and disclosure restrictions contained in this Privacy Policy will not apply to any third party.  We do not control the privacy policies of third parties, and you are subject to the privacy policies of those third parties where applicable.  When you click on links on our Sites you may leave our Sites. We are not responsible for the privacy practices of other sites, and we encourage you to read their privacy statements.

 

5. Your Rights and Choices

We strive to provide you with choices regarding the Personal Information you provide to us, and you have a number of rights with respect to how it is shared. Unless instructed otherwise, you can exercise these rights and choices using the information in the Contact Us section at the end of this Privacy Policy.  Please note that you may have different rights and choices with regard to any PHI as described in a provider’s NPP; here is the Practices’ NPP.

a) Opting Out of Promotional Offers. If you do not wish to have your email address used by Journey Health for marketing or to promote our Services, you can opt out at any time by clicking the unsubscribe link at the bottom of any email or other marketing communications you receive from us. The unsubscribe function at the bottom of a specific email is designed to only remove you from that particular email list, not all Journey Health communications. Please allow 48 hours to be removed from a list. Please note that if you opt out of receiving promotional emails from us, we may still send you important administrative messages that are required in order to provide you with our Services or for other reasons disclosed in this Privacy Policy.

b) View or change your account personal information. If you are a Provider and have registered for an account with Journey Health, you are able to add and edit certain elements of your profile and account information.

c) Deletion of your Personal Information. If you would like to delete or deactivate your account, please Contact Us to make a request. In some cases, we are unable to delete or deactivate your account and/or its associated data, as we are required to maintain a record of care provided on behalf of our provider clients, or for other legal reasons. When we deactivate or delete an account, we may retain certain information for legitimate business purposes or to comply with legal or regulatory obligations. If we have disclosed Personal Information to third parties as permitted under this Privacy Policy, we may no longer be able to access this data or compel its deletion or modification by such party. Even if we delete Personal Information, if your Personal Information was incorporated into any De-identified Data, we may continue to keep the De-identified Data and will continue to use De-identified Data as permitted under this Privacy Policy.

d) Tracking Technologies and Advertising: You can set your browser or operating system to refuse all or some Cookies, or to alert you when Cookies are being sent. If you disable or refuse cookies, please note that some parts of our Sites may then be inaccessible or not function properly. Please see our Cookie and Analytics Policy below for more information.

If you wish to opt out of our sharing of the data that is gathered when you visit our Sites for purposes of targeted digital advertising, we encourage you to visit the Network Advertising Initiative or the Digital Advertising Alliance’s Self-Regulatory Program for Online Behavioral Advertising for more information about opting out of seeing targeted digital advertisements. You may also visit these websites for more information on how you can opt back into the sharing of data. Please note that Journey Health does not maintain this web tracking data in an identifiable manner.

We do not support “Do Not Track” functionality. Do Not Track is a preference you can set in your web browser to inform websites that you do not want to be tracked. You can enable or disable “Do Not Track” by visiting the Preferences or Settings page of your web browser.

Finally, please note that opting out of advertising networks does not necessarily mean that you will not receive advertisements while using our Sites or on other websites.

e) Your Washington privacy rights. Effective March 2024, Washington State provides individuals with certain rights with respect to their “consumer health information.” We will update this section with regard to how we will comply with this law.

f) Your California privacy rights.  California residents have certain rights with respect to our sharing of their personal information with third parties for their own direct marketing purposes. We do not disclose personal information to third parties for their own direct marketing purposes. However, because California residents have the right to request information regarding such practices under California’s “Shine the Light” Law, please contact us using the information in the Contact Us section. You must include your full name, email address and postal address in your email or mail request so that we can verify your California residence and respond. “Personal information” under this California law means any information that is identified, described, or was able to be associated with an individual at the time of disclosure.

g) Your Nevada privacy rights.  Nevada residents have the right to request to opt out of any “sale” of their personal information under Nevada SB 220.  We do not currently sell personal information under Nevada law; however, you may still request to opt out of the future sale of your personal information.  If you are a Nevada resident and would like to make such a request, please contact us using the information in the Contact Us section at the end of this Privacy Policy, and provide “Nevada Privacy Rights” in the subject line.  You must include your full name, email address and postal address in your request so that we can verify your Nevada residence and respond.  In the event we sell your personal information after the receipt of your request, we will make reasonable efforts to comply with such request.

 

6. Data Security

The security of your Personal Information is important to us, but remember that no method of transmission over the Internet, or method of electronic storage, is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security. We maintain appropriate technical, administrative, and physical safeguards to help protect the security of your personal information against unauthorized access, destruction, loss, alteration, disclosure or misuse, including by employing encryption technology for information sent and received by us. We encourage you to secure your account with a strong password and to keep your password private.

You should report any known or suspected security violations via the information found below in the Contact Us section.

 

7. No International Data Transfers

Our Sites are operated exclusively in the United States and intended for users located in the United States.

 

8. Location-enabled Features

Certain location-enabled features may be made available through our Sites to ensure you are connected to a  provider who is able to provide services to you in your location. These services are provided by Google, Apple, and other third-party providers. When accessing these functionalities, you are agreeing to additional Terms of Service and Privacy Policies, such as Google Maps’ Terms of Service and Privacy Policy or Apple Maps’ Terms of Service and Privacy Policy. Please review the individual company Terms of Service and Privacy Policies for more information on how each company handles your Personal Information.

 

9. Cookie and Analytics Policy

a) CookiesWhen you visit our Sites, we may collect information from you automatically through Cookies. We also rely on partners to provide many features of our Sites using data about your use of the Sites. We use Cookies for the following purposes:

    • Necessity.  To enable features that are necessary for providing you the services on our Sites, such as keeping you signed in, improving security, and preventing and detecting fraud.
    • Preference.  To allow us to remember your preferences and identify you when you return to our Sites.
    • Analytics.  To allow us to understand how our Sites are being used, track site performance and content views, and make improvements to the content, products, or services.
    • Advertising.  To deliver targeted advertising based on your preferences, location, and/or interests across different services and devices and measuring effectiveness of ads.
    • Social Media.  To enable the sharing of content from our Sites through social networking and other sites.

You can modify your browser settings to decline or accept Cookies. However, in a few cases, some of our Sites’ features may not function as designed.

b) Web Beacons. Our Sites may contain small electronic files known as web beacons, pixel tags or clear GIFs, which are used to demonstrate that a webpage or email was accessed or opened, or that certain content was viewed or clicked.

c) Analytics Tools. We use tools such as Google Analytics to collect certain information relating to your use of the Website and/or Systems. Google Analytics uses Cookies to help us analyze how users use the Sites. We may also use Google Analytics Advertising Features or other advertising networks to provide you with interest-based advertising based on your online activity.

You may prevent your data from being used by Google Analytics by installing the Google Analytics Opt-out Browser Add-on form.

 

10. Children’s Privacy

Our Sites are for adults, which means you must be at least 18 years old or if under 18, are a parent, pregnant, or declared emancipated by a court order or otherwise determined to be an emancipated minor as determined by the state where you live to register or use our Sites, including our account features.

If you are a parent or guardian and you are aware that a child under age 13 has provided us with personal information without parental consent, please contact us using the information in the Contact Us section. If we become aware that we have collected personal information from children under age 13 without verification of parental consent, we will take steps to remove that information from our servers.

 

11. Changes to this Privacy Policy

We may change this Policy from time to time to reflect new services or changes in our data practices or relevant laws. The “effective date” legend at the top of this Policy indicates when this Policy was last revised. Any changes are effective when we post the revised Policy on the Sites. If we make any material changes to this Policy, we will take reasonable measures to notify you via email and/or a prominent notice on our Site prior to the change becoming effective, and will update the effective date at the top of this Policy. You are advised to review this Policy periodically for any changes.

 

12. Contact Information

If you have any questions, concerns, complaints or suggestions regarding our Privacy Policy, you can contact us at privacy@quiltedhealth.com.