Effective: February 6, 2024
OVERVIEW
PERSONAL DATA WE COLLECT
- Categories of Personal Data We Collect
- How We Use Your Personal Data
- How We Obtain Your Personal Data
- Who We Share Your Personal Data With
- Personal Data We Share
YOUR RIGHTS REGARDING PERSONAL DATA
- Accessing, Modifying, Rectifying, and Correcting Collected Personal Data
- Your California Privacy Rights
- Your Nevada Rights
- Your Virginia and Utah Privacy Rights
YOUR CHOICES
- Communications Opt-Out
- Location Information
- Cookies, Web Tracking, and Advertising
PROTECTING PERSONAL DATA
DATA RETENTION
OTHER IMPORTANT INFORMATION ABOUT PERSONAL DATA AND THE SERVICES
- Collection of Personal Data from Children
- Third-Party Websites and Services
- HIPAA
- Business Transfer
- Do Not Track
- Storage of Personal Data
MODIFICATIONS AND UPDATES TO THIS PRIVACY NOTICE
APPLICABILITY OF THIS PRIVACY NOTICE
ADDITIONAL INFORMATION AND ASSISTANCE
1. OVERVIEW
Airrosti Rehab Centers, LLC (“Airrosti,” “we” or “us”) is committed to respecting the privacy rights of visitors to the websites operated by Airrosti, including without limitation www.airrosti.com (the “Site”), www.portal.airrosti.com (the “Patient Portal”), all subdomains, all social media accounts held or operated by Airrosti (collectively, the “Sites”), our apps that we may provide, the patient Airrosti Remote Recovery platform, and all clinical guidance, content, and services that we may offer from time to time (collectively, the “Services”) made available or provided from the Sites. The Patient Portal is an Internet application that enables a patient to have secure web-based access to personal medical information, as released by the treating health care provider, and allows a patient to view, among other things, past appointment information as well as schedule future appointments. This Privacy Notice explains our practices with respect to personal data we collect and process about you and is intended to comply with privacy laws applicable to Airrosti and the operation of the Site, the Patient Portal and the Services. If you have questions, comments, or concerns about this Privacy Notice or how we process your information, please see the bottom of this Privacy Notice for information about how to contact us.
Please review the following to understand how we process and safeguard personal data about you. By using any of our Services, whether by visiting our website or otherwise, and/or by voluntarily providing personal data to us, you acknowledge that you have read and understand the practices contained in this Privacy Notice. This Privacy Notice may be revised from time to time, so please ensure that you check this Privacy Notice periodically to remain fully informed.
2. PERSONAL DATA WE COLLECT
We collect information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household (“personal data”). In addition, we may collect data that is not identifiable to you or otherwise associated with you, such as aggregated data, and is not personal data. To the extent this data is stored or associated with personal data, it will be treated as personal data; otherwise, the data is not subject to this notice.
a. Categories of Personal Data We Collect
The types of personal data we collect about you depends on your interactions with us and your use of the Services. In the past twelve (12) months, we collected the below categories of personal data from our users:
1. Identifiers such as a real name, alias, postal address, unique personal identifier, online identifier, internet protocol address, email address, account name, social security number, driver’s license number, passport number, or other similar identifiers.
2. Personal data categories listed in the California Customer Records statute (Cal. Civ. Code 1798.80(e)).
3. Characteristics of protected classifications under California or federal law.
4. Commercial information, including records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.
5. Internet or other electronic network activity information, including, but not limited to, browsing history, search history, and information regarding a consumer’s interaction with an internet website, application, or advertisement.
6. Geolocation data.
7. Audio, electronic, visual, thermal, olfactory, or similar information.
8. Professional or employment-related information.
9. Inferences drawn from any of the information above to create a profile about a consumer reflecting the consumer’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.
10. Personal data that is deemed “sensitive personal data,” such as, health information; sex life or sexual orientation; and account log-in details if you use our Patient Portal.
We will not collect additional categories of personal data other than those categories listed above. If we intend to collect additional categories of personal data, we will provide you with a new notice at or before the time of collection.
b. How We Use Your Personal Data
We collect and process your personal data for the following business and commercial purposes:
1. Providing, predicting, or performing, including maintaining or servicing accounts, providing customer service, processing or fulfilling transactions, and verifying customer information.
2. Managing your inquiries and communicating with you by email, mail, text message (SMS, MMS), telephone, video, push notification, and other methods of communication, to provide notifications about certain features of our Sites or the Services to measure consumer interest in our various services, and to inform you about various products and services offered on the Sites (including both our own products and the products of others). These offers may be based on information provided by you in your account settings, in surveys, from information that may indicate your preferences, as well as information available from external sources. These e-mail offers will come exclusively from Airrosti or its affiliates.
3. Providing, maintaining and improving our Services as well as to develop new products and services to be offered as part of the Services. For example, we may use personal data to analyze data, to improve our Services and to tune our outputs based on a particular individual’s patterns of usage of our Services.
4. Auditing related to a current interaction with the consumer and concurrent transactions, including, but not limited to, counting ad impressions to unique visitors, verifying positioning and quality of ad impressions, and auditing compliance with this specification and other standards.
5. Detecting security incidents, protecting against malicious, deceptive, fraudulent, or illegal activity, and prosecuting those responsible for that activity.
6. Debugging to identify and repair errors that impair existing intended functionality.
7. Short-term, transient use, including, but not limited to, the contextual customization of ads shown as part of the same interaction.
8. Undertaking activities to verify or maintain the quality or safety of the services or devices owned, manufactured, manufactured for, or controlled by us, and to improve, upgrade, or enhance the services or devices owned, manufactured, manufactured for, or controlled by us.
9. Complying with applicable laws, regulations, rules and requests of relevant law enforcement and/or other governmental agencies, or for other purposes, as permitted or required by law.
10. As necessary or appropriate to protect the rights, property, and safety of our users, us, and other third parties.
We will not use the personal data we collected for materially different, unrelated, or incompatible purposes without providing you with notice and obtaining your consent.
c. How We Obtain Your Personal Data
We collect your personal data from the following categories of sources:
- Directly from you. We collect personal data from you when you voluntarily submit it to us, including by establishing a customer account, applying for a job with us, event sign-up, requesting information, clinical medical intake, or sending or receiving electronic notices or other similar communications through the Services, including with your provider.
- Automatically or indirectly from you. When you browse or use the Services, we utilize commonly-used logging and analytics tools, including Google Analytics, to collect information about your device, the network used to access the Services, and information about your use of the Services (such as how you navigate and move around the Services).
Information collected automatically includes the software and hardware attributes of the device you use to access the Services, unique device ID information, regional and language settings, performance data about the Services, network provider, and IP address (a number assigned to your device when you use the Internet). In addition, information is collected passively in the form of log files and third-party analytics (including Google Analytics) that record website activity. For example, log file entries and analytics data are generated every time you visit a particular page on our website, and track the dates and times that you use the Services, the pages you visit, the amount of time spent on specific pages, and other similar usage information, and general data (including the name of the web page from which you entered our website).
We also use certain technologies on the Services, including pixel tags, that allow us, our service providers, and other third parties to store information locally on your device, identify your device, track your interactions with messages we send, and track activity over time and across websites. Our use of cookies is described in more detail below. We also utilize a standard technology called a “cookie” to collect information about how the Services are used, track usage of the Sites and the Services, and further customize your experience when you are visiting the Sites or using the Services. By tracking usage, we can best determine what features of the Sites and the Services best serve our users. Without cookies, the features would “forget” items that may be stored. The session information used by the Sites is deleted when your browser is closed.
- From our Service Providers. For example, business lead generators, commercial email providers, and other service providers we engage.
d. Who We Share Your Personal Data With
We share personal data with the following categories of third parties:
- Our service providers.
- Our affiliated entities and business partners.
- Government agencies or regulations when permitted or required to do so by law; in response to a request from a law enforcement agency or authority or any regulatory authority; and/or to protect the integrity of the Services or our interests, rights, property, or safety, and/or that of our users and others.
e. Personal Data We Disclose
We do not “sell” or “share” your personal data as defined by applicable privacy laws to third parties for money.
In the past twelve (12) months, we shared for a business purpose the following categories of personal data with our service providers for a business purpose:
- Identifiers (e.g. name, address, email address, government ID, IP address);
- Personal data categories listed in Cal. Civ. Code 1798.80(e) (e.g. insurance policy number, employment history, medical information, health insurance information);
- Characteristics of protected classifications under California or federal law;
- Commercial information;
- Internet or other electronic network activity information;
- Geolocation data; and
- Professional or employment-related information.
3. YOUR RIGHTS REGARDING PERSONAL DATA
You have certain rights regarding the collection and processing of personal data. You may exercise these rights, to the extent they apply to you, by contacting us at the information provided at the end of this Privacy Notice, or by following instructions provided in this Privacy Notice or in communications sent to you.
Your rights vary depending on the laws that apply to you, but may include:
- The right to know whether, and for what purposes, we process your personal data;
- The right to be informed about the personal data we collect and/or process about you;
- The right to learn the source of personal data about you we process;
- The right to access, modify, and correct personal data about you (see the “Accessing, Modifying, Rectifying, and Correcting Collected Personal Data” section below for more information); and
- The right to know with whom we have shared your personal data with, for what purposes, and what personal data has been shared (including whether personal data was disclosed to third parties for their own direct marketing purposes).
See “Your California Privacy Rights” and “Your Nevada Privacy Rights” for more information about certain legal rights.