Privacy statement.

Privacy statement (US)

This privacy statement was last updated on 07/23/24, and applies to citizens and legal permanent residents of the United States.

In this privacy statement, we explain what we do with the data we obtain about you via https://www.patientonlinepay.com. We recommend you carefully read this statement. In our processing, we comply with the requirements of privacy legislation. That means, among other things, that:

  • we clearly state the purposes for which we process personal data, and we do this by means of this privacy statement;

  • we aim to limit our collection of personal data to only the personal data required for legitimate purposes;

  • we first request your explicit consent to process your personal data in cases requiring your consent;

  • we take appropriate security measures to protect your personal data, and also require this from parties that process personal data on our behalf;

  • we respect your right to access your personal data or have it corrected or deleted, at your request; and

  • we engage only with certain partners, providers, and their respective agencies, as required.

Our Privacy Statement outlines how PatientOnlinePay.com (Site), Parent Company (Company), BillPay and MobilePay partners (Partners), Medical Service Providers (Providers) and their respective Collection Agencies (Agencies); collect, share, store and use your information for insurance updates and billing and payment purposes when:

  • you use our website, update insurance webforms, and enable sms text to pay mobile application;

  • you engage our billing services;

  • you contact and communicate with us, both online and offline; and

  • you default on payment and your account is sent to collections.

If you have any questions or want to know exactly what data we keep of you, please contact us.

 

1.0 Purpose and categories of data

 We may collect or receive personal information for a number of purposes connected with our business operations which may include the following:

  

1.1 Contact

 The following categories of data are collected through phone, mail, email and/or webforms:

  • first and last name;

  • home or other physical address, including street name and name of a city or town;

  • email address;

  • telephone number;

  • date of birth;

  • any other identifier that permits the physical or online contacting of a specific individual;

  • IP address;

  • professional or employment-related information;

  • internet activity information, including, but not limited to, browsing history, search history, and information regarding a consumer's interaction with an internet web site, webform, application, or advertisement; and

  • geolocation data.

 

1.2 Site statistics & analytics

 The following categories of data are collected for purposes of compiling and analyzing statistics and analytics toward website improvement, development and site administration.

  • IP address;

  • internet activity information, including, but not limited to: browsing history, search history, webform, and information regarding a consumer's interaction with an internet web site, application, or advertisement; and

  • geolocation data.

 

1.3 Communications

We may use your information and Communications as well as that of our Partners whom you engage, for the following purposes whether online or offline, and including but not limited to:

  • we notify you about changes to our Site;

  • we enforce our terms, conditions, and policies;

  • we update and administer the Site;

  • we personalize and tailor content you receive;

  • we compile data analytics (including market research, trend analysis, financial analysis, site statistics and site analytics);

  • we update and improve our Site’s user interface, usability and user experience (including design, and operational and improvements of our Site);

  • we manage and evaluate the effectiveness of our Communications, to perform accounting, auditing, billing, reconciliation and collection activities, as well as other necessary internal functions;

  • we protect against and prevent identify theft and fraud and/or other criminal activity, claims and other liabilities;

  • we comply with and enforce required industry policies and standards, including this Privacy Statement and other related terms of use; and

  • we comply with legal requirements and obligations to protect the vital interests of our customers and employees by preventing and responding to fraud and abuse, illegal activity, harmful content distributed through our Site, and unlawful use and/or selling of our Site data and content.

 

2. Sharing with other parties

We only share or disclose this data to other recipients for the following purposes.

  • with Your Consent in writing, online via “click-through” on our Site, and  via telephone or email Communications;

  • with our Partners for billing, payment and operational purposes to complete a transaction;

  • with Providers for the purpose of data transfer to the location where the service provider is located; and

  • with Providers’ Agencies for default billing and collections.

 

3. Disclosure practices

We disclose personal information if we are required by law or by a court order, in response to a law enforcement agency, to the extent permitted under other provisions of law, to provide information, or for an investigation on a matter related to public safety.

 

4. Privacy control

Our website responds to and supports the Do Not Track (DNT) header request field. If you turn DNT on in your browser, those preferences are communicated to us in the HTTP request header, and we will not track your browsing behavior.

  We provide you the ability to exercise your rights for privacy control of some of your information. If you have questions or complaints about how we have handled your information or responded to your requests, please contact us at patient@patientonlinepay.com. You also have the right to file a complaint with any competent data protection authority, regulator, or governmental agency, where appropriate and depending on where you live.

  CA Residents:

California Consumer Privacy Act (CCPA)

  

5. Cookies

Our website uses cookies. For more information about cookies, please refer to our Cookie Policy on our Cookie Policy (US) webpage.

  We have concluded a data processing agreement with Google. 

6. Security

We are committed to the security of personal data. We take appropriate security measures to limit abuse of and unauthorized access to personal data. This ensures that only  necessary persons have access to your data, that access to the data is protected, and that our security measures are regularly reviewed.

 

7. Third party websites

This privacy statement does not apply to third party websites connected by links on our website. We cannot guarantee that these third parties handle your personal data in a reliable or secure manner. We recommend you read the privacy statements of these websites prior to making use of these websites.

 

8. Amendments to this privacy statement

We reserve the right to make amendments to this privacy statement. It is recommended that you consult this privacy statement regularly in order to be aware of any changes. In addition, we will actively inform you wherever possible.

 

9. Accessing and modifying your data

If you have any questions or want to know which personal data we have about you, please contact us by sending your request in writing to patient@patientonlinepay.com. We will respond to your request as soon as possible and in accordance with applicable laws and regulations.

Please make sure to always clearly state who you are, so that we can be certain that we do not modify or delete any data of the wrong person. We shall provide the requested information only upon receipt of a verifiable consumer request. You can contact us by using the information below. You have the following rights:

 

9.1 Right to know what personal information is being collected about you

          A consumer shall have the right to request that a business that collects personal information about the consumer disclose to the consumer the following:

  • the categories of personal information it has collected about that consumer;

  • the categories of sources from which the personal information is collected;

  • the business or commercial purpose for collecting or selling personal information;

  • the categories of third parties with whom the business shares personal information; and

  • the specific pieces of personal information it has collected about that consumer.

 

9.2 The right to know whether personal information is sold or disclosed and to whom

         A consumer shall have the right to request that a business that sells the consumer’s personal information, or that discloses it for a business purpose, disclose to that consumer:

  • the categories of personal information that the business collected about the consumer;

  • the categories of personal information that the business sold about the consumer and the categories of third parties to whom the personal information was sold, by category or categories of personal information for each third party to whom the personal information was sold; and

  • the categories of personal information that the business disclosed about the consumer for a business purpose.

 

9.3 The Right to equal service and price, even if you exercise your privacy rights

         We shall not discriminate against a consumer because the consumer exercised any of the consumer’s privacy rights, including, but not limited to, by:

  • denying goods or services to the consumer;

  • charging different prices or rates for goods or services, including through the use of discounts or other benefits or imposing penalties;

  • providing a different level or quality of goods or services to the consumer, if the consumer exercises the consumer’s privacy rights; and

  • suggesting that the consumer will receive a different price or rate for goods or services or a different level or quality of goods or services. However, nothing prohibits us from charging a consumer a different price or rate, or from providing a different level or quality of goods or services to the consumer, if that difference is reasonably related to the value provided to the consumer by the consumer’s data.

 

9.4 The right to delete any personal information

  • A consumer shall have the right to request that a business delete any personal information about the consumer which the business has collected from the consumer.

  • A business that receives a verifiable request from a consumer to delete the consumer’s personal information pursuant to subdivision (a) of this section shall delete the consumer’s personal information from its records and direct any service providers to delete the consumer’s personal information from their records.

  • A business or a service provider shall not be required to comply with a consumer’s request to delete the consumer’s personal information if it is necessary for the business or service provider to maintain the consumer’s personal information in order to:

  • Complete the transaction for which the personal information was collected, provide a good or service requested by the consumer, or reasonably anticipated within the context of a business’s ongoing business relationship with the consumer, or otherwise perform a contract between the business and the consumer.

  • Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity; or prosecute those responsible for that activity.

  • Debug to identify and repair errors that impair existing intended functionality.

  • (Exercise free speech, ensure the right of another consumer to exercise his or her right of free speech, or exercise another right provided for by law.

  • Comply with the California Electronic Communications Privacy Act pursuant to Chapter 3.6 (commencing with Section 1546) of Title 12 of Part 2 of the Penal Code.

  • Engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the businesses’ deletion of the information is likely to render impossible or seriously impair the achievement of such research, if the consumer has provided informed consent.

  • To enable solely internal uses that are reasonably aligned with the expectations of the consumer based on the consumer’s relationship with the business.

  • Comply with a legal obligation.

  • Otherwise use the consumer’s personal information, internally, in a lawful manner that is compatible with the context in which the consumer provided the information.

 

10. Selling and disclosure of personal data to third parties

We have not sold consumers’ personal data in the preceding 12 months.

A list of the categories we have disclosed for a business purpose in the preceding 12 months:

  • first and last name;

  • home or other physical address, including street name and name of a city or town;

  • email address;

  • IP address;

  • professional or employment-related information;

  • Internet activity information, including, but not limited to, browsing history, search history, and information regarding a consumer's interaction with an Internet Web site, application, or advertisement; and

  • geolocation data.

 

11. Children

Our website is not designed to attract children, and it is not our intent to collect personal data from children under the age of consent in their country of residence. We therefore request that children under the age of consent do not submit any personal data to us.

 

12. Contact details

Email: patient@patientonlinepay.com