Salia Health - Privacy Policy

1. Introduction.

Salia Health, LLC (“Salia”, “Company”, “we”, “us”, or “our”) is committed to maintaining robust privacy protections for our users. This Privacy Policy is designed to help you understand how we collect, use, and safeguard the information you provide to us and to assist you in making informed decisions when using our website (www.saliahealthcare.com) or the Salia App (together, the “Platforms”).

2. Scope.

This Privacy Policy applies to members who access healthcare services through the Salia Network, employers who provide their employees with access to Salia’s services, providers contracted within the Salia Network, and use of the Salia App, website, and related services. This policy does not apply to services provided outside the Salia Network or to any government-funded insurance programs, which are not accepted by Salia.

3. Information Collection, Use, and Purpose.

We collect a variety of information from our users, including personal identifiers such as names, email addresses, geographic locations, dates of birth, ages, and sexes. We also collect comprehensive medical and health-related information, including Protected Health Information (“PHI”), which may include eligibility data provided by your employer; medical services received from Salia Network providers; claims and payment information processed through Availity; and utilization data for awareness campaigns and reporting. This data is obtained through direct interactions on our website and application, through communications with providers and Availity, as well as through cookies and third-party analytics tools. Your information is collected to verify eligibility for services in the Salia Network; facilitate provider scheduling, navigation, and claims submission; conduct awareness campaigns to encourage high-value care; generate a Salia Impact Score (“SIS”) to measure and report program outcomes; communicate with you regarding services, campaigns, and updates; and comply with applicable law and regulations, including HIPAA and HITECH. Third-party vendors comply with U.S. data protection laws, ensuring the security and confidentiality of your personal data.

4. Data Sharing, Disclosure, and Third-Party Relations.

Your personal data is a critical aspect of our operations, and we take the responsibility of handling it with the utmost care. We do not sell or lease user data to third parties for their marketing purposes. Third-party vendors and service providers engaged by us are contractually bound to respect the confidentiality of your information. Additionally, we may disclose personal information when legally required, or in situations where such disclosure is necessary to protect our rights or the rights of others. We conduct audits to ensure the accuracy and security of your personal data.

5. User Rights and Data Governance.

In accordance with data protection laws, you have the right to access, correct, or request the deletion of your personal data. You may also limit or object to the processing or sharing of your data, subject to legal and operational limits. Requests regarding your data rights can be directed to our designated contact point, as detailed at the end of this policy. Our advanced security measures include end-to-end encryption and secure storage facilities, fully compliant with U.S. data protection laws including HIPAA and HITECH.

6. Data Security Measures and Protocols.

The security of your personal data is paramount. We employ advanced security measures to protect against unauthorized access, alteration, disclosure, or destruction of your information. Compliance with industry-standard protocols and continuous monitoring ensures the integrity and security of your data.

Despite safeguards, no system is 100% secure. Members are encouraged to use strong passwords and maintain confidentiality of their Salia App access.

7. Data Retention and Destruction Policies.

We retain personal data only as long as necessary to fulfill the purposes for which it was collected. Data is securely destroyed or anonymized upon the expiration of the retention period.

8. Cross-Border Data Transfers.

Our services are currently confined within the territorial bounds of the United States. We do not engage in international data transfers, ensuring that your data remains under the jurisdiction of U.S. privacy laws. We operate exclusively within the United States, adhering strictly to U.S. privacy laws.

9. Do Not Track Signals.

Our website respects and responds to Do Not Track (“DNT”) signals. We modify our tracking practices in accordance with your browser’s DNT settings, ensuring that your preferences in terms of tracking are honored.

10. Children’s Privacy.

We do not knowingly collect or solicit personal information from children under the age of 13 without parental or guardian consent. Dependents covered under employer eligibility will have their information managed in compliance with HIPAA and applicable laws.

11. Opt-Out & Unsubscribe from Third-Party Communications.

We provide users with the opportunity to opt-out of having their personal information used for certain purposes. This includes opting out of receiving communications from third-party partners and withdrawing consent for the disclosure of personal information.

12. Tracking User Behavior.

We monitor user behavior on our website to enhance user experience, tailor our services, and conduct market research. This tracking is conducted in a manner that respects user privacy and preferences.

13. Use of Cookies and Web Beacons.

Cookies and web beacons are used on our website to improve user experience, analyze trends, administer the site, and gather demographic information about our user base as a whole. Users can control the use of cookies at the individual browser level.

14. External Data Storage Sites.

We may store data on servers provided by third-party hosting vendors with whom we have contracted, ensuring that these vendors adhere to our strict data protection standards. Our third-party hosting vendors are based in the United States and comply with all relevant U.S. data protection standards.

15. Legal and Governmental Use of PHI.

In compliance with legal and governmental requirements, we may use or disclose your PHI as necessary and in accordance with applicable laws and regulations.

16. Communication Platforms.

We utilize various communication platforms to keep you informed about your care and treatment, send appointment reminders, and notify you about healthcare-related services or benefits that may be of interest to you.

17. Telehealth.

The laws that protect the privacy and confidentiality of PHI also apply to telehealth. Information obtained during telehealth that identifies you will not be given to anyone without your consent except for purposes of treatment, education, billing, and healthcare operations. By using telehealth services, you consent to Salia sharing your PHI with certain third parties.

18. Changes to this Policy.

This Privacy Policy may be updated from time to time to reflect changes in our practices, technology, legal requirements, and other factors. Users will be notified through the Salia App or other reasonable means of communication when updates are made. We encourage users to periodically review this policy for the latest information on our privacy practices.

19. Contact Information for Privacy Concerns.

Should you have any questions or concerns regarding this Privacy Policy or the handling of your data, you can reach us at webmaster@saliahealthcare.com. We will investigate and attempt to resolve any complaints and disputes regarding the use and disclosure of personal information in accordance with this Privacy Policy.

20. Acknowledgement and Consent.

By using the Salia Platforms, you acknowledge that you have read and understood this Privacy Policy and agree to its terms. You also consent to the collection, use, and disclosure of your information as outlined in this policy.