Commitment to Security
Applications and systems hosted by Bright Health all have physical, electronic and procedural safeguards in place to help prevent unauthorized access and maintain data security. Bright Health applies security safeguards appropriate to the sensitivity of the information, such as retaining information in secure facilities and making personal information accessible only to authorized employees on a need-to-know basis.
Storage of Information
Personal information you share with us is stored on our database servers at secure data centers in Canada operated by Bright Health or third parties who have contractually agreed to equal or stronger privacy policies. For text messaging and credit card processing, Bright Health may use a third party service provider that may store information related to these services outside of Canada. In that eventuality the data may be subject to the laws of that jurisdiction. At no time does Bright Health store health information outside of Canada.
Disclosure of Information
Bright Health does not disclose Personal Information to third parties except i) to comply with legal requirements such as a law, regulation, warrant, subpoena or court order, ii) to deliver its products and services and where the third party has equal or stronger privacy policies and procedures in place, iii) in the case of miDASH and myhealthkey information entered by a user may be shared with their health care provider who is subject to privacy regulation or iv) with your prior written consent. Note: In the case of a MOIS EMR physician who has joined the Health Data Coalition (‘HDC’), aggregate and anonymous data may be transferred to the HDC uniquely for quality improvement in primary care. Under no circumstances does Bright Health sell, trade, barter, exchange or disclose for consideration any Personal Information.
In the eventuality of a merger or sale of Bright Health or its products, the receiving organization will be contractually obliged to maintain equal or stronger policies. You will be notified via email and/or prominent notice on our website of any change in ownership or uses of your Personal Information.
Use of Personal Information
Any information gathered or stored by our Sites and Products is used to deliver the services offered by those Sites and Products. It may also be used by Bright Health anonymously and in aggregate to improve our Sites and Products. It is also used to send you notices (in some cases relating to patient safety, for example) relating to our Sites and Products and, optionally, our organization.
Choice and Access to Personal Information
If your Personal Information changes, or if you no longer desire our service, you may correct, update, and delete/deactivate it by logging into your account and making the appropriate changes or by emailing our customer support at email@example.com.
Testimonials, Ratings and Reviews
We post customer testimonials on our website which may contain Personal Information. We obtain the customer’s consent prior to posting the testimonial and attaching the users name along with their testimonial. If you want your testimonial removed, please contact us at firstname.lastname@example.org.
Bright Health has designated a Privacy Officer who is accountable for compliance with privacy legislation and these policies. All Bright Health employees receive privacy training and understand their responsibility to protect your health care information.
Updates to this Policy
Questions regarding our privacy policies and practices can be directed to our Privacy Officer, whose contact details are located below.
Bright Health Solutions Society
Prince George, BC V2L 3M6
T: (250) 564-2644 F: (250) 564-2655