Updated: May 2018
Understanding How Information Is Collected:
Information You May Choose to Provide to Us
We may collect information, including personally identifiable information, from you if you choose to provide that information. For example, you may provide us with your name and contact information (such as an email address), date of birth, or other details of that nature, when you sign up for our newsletters, participate in contests, sweepstakes, or other promotions on healthexchange.org, or apply for a job with healthexchange.org.
You also may choose to provide personally identifiable information about yourself when you participate in surveys, forums or discussions, or other Interactive Services on healthexchange.org. Please be aware that information you post may be viewed or captured by anyone who visits healthexchange.org, therefore you should avoid posting sensitive or personal information that you would not want to be available to the public.
Information That Is Automatically Collected
When you access healthexchange.org, we and our third-party partners and service providers may automatically collect certain information from your device or web-browser about your visit using tools such as cookies, web beacons, and other data collecting and tracking technologies, to help us understand how our users use healthexchange.org and to target advertising messages to you. We and our third-party partners and service providers may also collect and track information about your online activities over time and across different websites, applications, and devices using certain data matching techniques. The information collected automatically when you visit healthexchange.org may include your IP address, characteristics of your operating system, information about your browser and system settings, data about the computer or mobile device you use to access healthexchange.org, unique device identifiers, clickstream data (which shows the page-by-page path you take as you browse healthexchange.org), and other information that generally is not considered personally identifiable. This information is not linked to any personally identifiable information, unless expressed consent has been given.
Cookies and Tracking Technologies
To manage our automatic data collection, we, and our third-party partners and service providers, may place tags (often referred to as “web beacons” or “pixel tags”) and other tracking mechanisms on pages on healthexchange.org, in videos, or in emails we send to you. Web beacons are small files that link web pages to particular web servers and their cookies, and they may be used for a variety of purposes, such as counting the number of visitors to healthexchange.org, analyzing how users navigate around healthexchange.org, assessing how many emails that we send are actually opened and which articles or links are viewed by visitors.
We also use third-party web analytics services, such as Google Analytics, on healthexchange.org to provide us with statistics and other information about visitors to healthexchange.org. Click here to learn more about Google Analytics and how you may opt out.
Finally, companies that provide certain third-party apps, tools, widgets, and plug-ins that may appear on healthexchange.org (for example, Facebook “Like” or “Share” buttons), also may use automated means to collect information regarding your interactions with these features. This information collection is subject to the privacy policies or notices of those third parties.
"Do Not Track” Signals. Your browser settings may allow you to automatically transmit a “do not track” signal to websites and online services you visit. At this time there is no consensus among industry participants as to the meaning of “do not track” in this context. Like many other websites, healthexchange.org is not configured to respond to “do not track” signals from browsers. Click here to learn more about “do not track” signals.
Information We Obtain From Other Sources
We may supplement the information we collect with information from third-party partners and service providers, including data brokers, customer acquisition vendors, and other companies that collect contact and consumer information such as demographic and interest data, in order to learn more about our users, better tailor the content and offers we make available to you, and for other lawful business purposes. We may combine the information we receive from those other (online and offline) sources with information we collect through healthexchange.org.
Social Network and Platform Integration
How We May Use Information We Collect
We, and our third-party partners and service providers, may use the information gathered on healthexchange.org for various purposes, including the purposes listed below. For example, if you were to contact us with a question and provide your email address, we would use the email address you provided to respond to your inquiry. In addition, we use information we collect from you and through healthexchange.org to:
- Provide information, products and services you request (such as when you sign up to receive our email newsletters) or that we otherwise believe would interest you, including promotional offers from us and third-party partners;
- Respond to requests, questions, complaints, and comments, and provide other types of user support and customer care;
- Direct you to portions of healthexchange.org or other third-party websites or services, that we believe may interest you;
- Customize content, features, advertisements or other marketing messages we and third parties show you, on healthexchange.org and elsewhere online;
- Process and reply to applications for employment with healthexchange.org;
- Communicate about, and administer your participation in, events, programs, contests, sweepstakes, and other offers or promotions;
- Carry out, evaluate, and improve our business (which may include without limitation developing new features for healthexchange.org; analyzing and enhancing the user experience on healthexchange.org; assessing the effectiveness of our marketing and advertising; and managing our communications);
- Perform data analytics regarding usage of healthexchange.org (including market and customer research, trend analysis, financial analysis, and anonymization of personal information);
- Guard against, identify, and prevent fraud and other criminal activity, claims, and other liabilities;
- Comply with applicable legal requirements, law enforcement requests, and our company policies; and
- For other purposes that are disclosed at the time you provide your information, with your consent.
How We May Share Information
Our agents, vendors, consultants, and other service providers may have access to information we collect through healthexchange.org to carry out work on our behalf. In addition, certain service providers may collect or access information through healthexchange.org to enable or provide services, tools, or other features available on healthexchange.org. We also may share information:
- With our affiliates for internal business purposes;
- With third parties for marketing purposes, including social media networks, data management platforms, and other advertising technology providers; for example, we may match your email address with third parties with whom you have also consented to share your email address and use such match to deliver custom offers or emails to you on healthexchange.org and elsewhere online;
- If we are required to do so by law, regulation, or legal process (such as a court order or subpoena);
- In response to requests from government agencies, such as law enforcement authorities, or other governmental bodies;
- If we believe disclosure is necessary or appropriate to prevent physical harm or financial loss, in connection with an investigation of suspected or actual illegal activity, or to protect and defend our legal rights or property.
- With advertisers and other partners to inform them about the nature of our user base;
- In the event we sell or transfer all or a portion of our business or assets (including a reorganization, dissolution, or liquidation); and
- With your consent or at your discretion.
Your Privacy Choices
Unsubscribe from emails. To unsubscribe from a particular newsletter, click the “unsubscribe” link at the bottom of that email newsletter. If you would like to globally opt-out from all email campaigns, please send an email to email@example.com with “Unsubscribe” in the subject line. When we send newsletters to subscribers we may allow advertisers or partners to include messages in those newsletters, or we may send dedicated newsletters and marketing messages on behalf of those advertisers or partners. We may disclose your opt-out choices to third parties so that they can honor your preferences in accordance with applicable laws.
Disabling local shared objects (“Flash cookies”). We may use other kinds of local storage that function similarly, but are stored in different parts of your computer from ordinary browser cookies, including Flash cookies placed on your device or web browser via the Adobe flash plug-in. Your browser may allow you to disable its HTML5 local storage or delete information contained in its HTML5 local storage. Click here for further details about deleting information contained in “local shared objects” or adjusting related preferences.
Options concerning third-party ad networks. For more information about third-party ad networks and services that use these technologies, you can visit www.aboutads.info and click here to opt out or to learn more about your options. You also may visit the NAI’s site for additional options on how to opt out of interest-based advertising.
How We Protect Personal Information
We maintain reasonable and appropriate administrative, technical, and physical safeguards designed to protect the personal information you provide against accidental, unlawful, or unauthorized destruction, loss, alteration, access, disclosure, or use. However, it is not possible to guarantee the security of information transmitted online. You use healthexchange.org and provide us with information at your own discretion and risk.
EU General Data Protection Regulation (GDPR)
The GDPR requires users in the EEA, Switzerland or the UK with specific information about the processing of their “Personal Data.” Personal Data is data that can identify a unique user or device - for instance, names, addresses, cookie identifiers, precise location data, and biometric data.
Common information collect is: Name, Mailing Address, Phone, Email Address, IP Address, and information about your browser and system settings, data about the computer or mobile device. For more information on the types of data we collect, please see the “How Your Information is Collected” section.
This data is used to provide information / services requested, customize content, improve business performance, data analytics, and guard against theft and fraud. For more information on how we use the data, please see the “How We May Use The Information We Collect” section.
As a company that operates in the United States, data will need to be transferred from the EEA, Switzerland and the UK to the United States. More information on this, please see the “Users For Outside the United States” and “How We Protect Personal Information” sections.
Your Specific Rights as a Data Subject
The GDPR provides the right to access, rectify, or erase any Personal Data collected through our website.
- You have the right to data portability and the right to restrict / object to the processing of Personal Data collected.
- You have the right to ask to not have your Personal Data processed (by us, or a third-party partner) for marketing purposes or purposes substantially different than it was originally collected.
- You have the right to withdraw consent at any time.
To enact one, or all, of these rights, contact us (instructions in the “How to Contact Us” section) and identify which right you intend to enact. A response to your request will happen within 30 days. Additional information may be required to confirm your identity.
We may continue to store necessary information, even after a data subject request, to comply with our legal obligations, resolve disputes, prevent fraud, and enforce our agreements.
You have the right to file a complaint with a European supervisory authority if you have any concerns with our compliance. Contact details for data protection authorities in the EEA are available here.
Links From healthexchange.org to Other Websites
Surveys, Quizzes and Other Features
healthexchange.org is intended for a general audience and are not designed or intended for use by children under the age of 13. We do not knowingly collect personal information from children under the age of 13. If we become aware that we have collected personal information from a child under the age of 13, we will delete any such information.
Users Outside the United States
Our Notice to California Residents
Subject to certain limits, under California law, California residents may ask us to provide them with a list of the categories of personal information that we have disclosed to third parties for those third parties’ direct marketing purposes during the preceding calendar year, as well as the identity of those third parties. California residents may contact us (instructions in the “How to Contact Us” section) to make a request for this information.
How to Contact Us
If you have questions about this policy or about our privacy practices, you may contact us by emailing firstname.lastname@example.org. If you are a California resident inquiring about your California privacy rights, please include “California privacy rights request” in the subject line of your email.
You may also write to:
1712 Pioneer Avenue, Suite 201
Cheyenne, WY 82001