We intend to provide our Services in the United States. Accordingly, this Policy, and our collection, use, and disclosure of your Personal Information (as defined below) is governed by U.S. law. We do not represent or warrant that the Application, or any functionality or feature thereof, is appropriate or available for use in any particular jurisdiction. If you choose to access or use the Application from outside the United States, you do so on your own initiative and at your own risk, and are responsible for complying with any and all local laws, rules and regulations. By using the Application and submitting any Personal Information from outside the United States, you acknowledge that the Application is subject to U.S. law and consent to the transfer of your Personal Information to the United States, which may provide a different level of data security than in your country of residence.
In order for you to use the Services, we will require you to provide us with identifying information (“Personal Information”). We and our service providers will collect Personal Information from you that includes, but is not limited to: (1) your name and your contact data (such as your email address, phone number, billing and physical addresses, and your Application login and password); (2) demographic data (such as your gender, your date of birth and your zip code); (3) payment information (such as your credit or debit card number); (4) confirmation that your Provider provided services to you. If you communicate with us by, for example, e-mail or letter, any information provided in such communication may be collected as Personal Information.
In addition to the information that we collect directly from you, we may also collect certain Personal Information about you from or on behalf of your Providers. We use and disclose this information only in accordance with your express authorization which you provide by your use of the Application. Please be aware that if you subsequently withdraw your authorization, you will not be able to use the Services through the Application.
In connecting you with a Provider, the Application will collect Personal Information from you and transmit it electronically. We will use administrative, physical, and technical safeguards to protect the security and privacy of information held in the Application. Our infrastructure is kept in a secured data center that protects against unauthorized access to the physical servers, backups and any element used to store and/or process personal data. Only authorized personnel can access the data center. Our systems and databases are backed up regularly to help protect the data in case of a catastrophe. The data center that stores our servers has policies and procedures in place designed to safeguard the equipment that our data is stored on. We regularly upgrade our system software to include the latest security features. Our servers are protected by a firewall system, which is designed to keep unwanted traffic or access out of our computer network. We also employ an intrusion prevention service (IPS) provided by a secured data center operated by a professional company. We also use security methods to determine the identity of each registered user, so that appropriate rights and restrictions can be enforced for that user. Reliable verification of user identity is called “authentication.” All communication between our Web server, your browser and our mobile apps is encrypted with SSL (Secure Sockets Layer) to guard against network eavesdroppers. Your password is internally encrypted in our system to prevent unauthorized access to the system. Validations are built throughout the application to capture the most reliable information. Only the last 4 digits of your credit card number is stored on our servers.
We may use mobile application tracking and/or analytics services. These services may record unique mobile gestures such as tap, double-tap, zoom, pinch, scroll, swipe and tilt but do not collect personally identifiable information that you do not voluntarily enter in the Application. These services do not track your browsing habits across mobile applications that do not use the same services. We are using the information collected by these services to understand user behavior and optimize site performance.
We will also use web beacons (invisible images often referred to as pixel tags or clear GIFs) in order to recognize users and assess traffic patterns, and we will include web beacons and cookies in our email messages in order to count how many email messages have been opened.
On March 24, 2020, Governor Greg Abbott ordered every public or private entity that is utilizing an FDA-approved test, including an emergency use authorization test, for human diagnostic purposes of COVID-19, to submit to DSHS, as well as to the local health department, daily reports of all test results (the “Executive Order”). Austin Rapid Test must comply with the Executive Order.
In order to comply with the Executive Order, Austin Rapid Test will submit all COVID-19 test results, including positive, negative, and indeterminate results of all tests conducted by Austin Rapid Test to results to the Texas Department of State Health Services and to the local public health authority. Lab reports must include all information required by the Texas Administrative Code (TAC) Chapter 97.3, including the following: patient name; identification number; patient address; telephone number; age; date of birth; sex; race; ethnicity; disease; diagnostic indicators (date specimen collected, specimen source, disease test type, test results, date of report, and clinical indicators); date of onset; physician or practitioner name; address; and telephone number. If Austin Rapid Test is collecting and submitting specimens to a third party laboratory to conduct the test, that laboratory will be required to report all testing results.
Your Personal Information will be disclosed:
to our contracted service providers that provide services such as hosting of the Application, data analysis, IT services and infrastructure, customer service, email delivery, auditing and other similar services;
to Providers, including your Providers, to schedule and fulfill appointments and provide healthcare services and confirm those services were delivered to you;
to identify you to anyone to whom you send messages through the Application;
for other treatment, payment or health care purposes of your Provider;
a successor company in the event of any reorganization, merger, sale, joint venture, assignment, transfer, liquidation or other disposition of all or any portion of our business, assets or stock (including in connection with any bankruptcy or similar proceeding); and
Our disclosure of your Personal Information may also be subject to certain restrictions set forth in an agreement between us and your Provider.
“Non-Personal Information” is any information that does not reveal your specific identity. The types of Non-Personal Information that we collect are described in more detail below under “How We Collect Non-Personal Information.”
We and our contracted service providers will collect Non-Personal Information in a variety of ways, including:
Through your device: Certain information is collected automatically through your device, such as your operating system name and version, device manufacturer and model, device identifier, language, the name and version of the software application you are using. We use this information to ensure that the Application functions properly and to understand usage of the Application.
Through server log files: Your “IP Address” is a number that is automatically assigned to the device that you are using by your Internet Service Provider (ISP). An IP Address is identified and logged automatically in our server log files whenever a user uses the Application, along with the time of the use and the pages visited within the Application. We use IP Addresses for purposes such as helping to calculate Application usage levels, diagnosing server problems and administering the Application.
Physical Location: If you give us your consent, we may collect information about the physical location of your device, for example, using your device’s GPS functionality. We may use such information to provide you with personalized location-based services and content (for example, information regarding local Providers). We may also share your device’s physical location, combined with information about what advertisements you viewed and other information we collect, with our marketing partners to enable them to provide you with more personalized content and to study the effectiveness of advertising campaigns. You will be permitted to allow or deny such uses and/or sharing of your device’s location, but if you choose to deny such uses and/or sharing, we and/or our marketing partners may not be able to provide you with the applicable personalized services and content.
From you: We will collect Non-Personal Information such as your general geographic location, as well as other information, such as your preferred means of communication, when you voluntarily provide such information to us. Unless combined with Personal Information, this information does not personally identify you or any other user of the Application.
By de-identifying information: Aggregated Personal Information is information that is derived from Personal Information that does not personally identify you or any other user of the Application. For example, we may aggregate Personal Information to calculate the percentage of our users who have a particular telephone area code or a particular health condition.
Because Non-Personal Information does not personally identify you, we may use and disclose Non-Personal Information for any purpose. In some instances, we may combine Non-Personal Information with Personal Information (such as combining your zip code with your name, or with your name together with a health condition). If we combine any Non-Personal Information with Personal Information, the combined information will be treated by us as Personal Information as long as it is so combined.
The Application will feature community areas and other public forums where users can share information and post reviews or questions. Any information that you may reveal in a review posting or other online discussion or forum is open to the public and is not in any way private. You should think carefully before disclosing any Personal Information in any public forum. What you have written may be seen and/or collected by third parties and may be used by others in ways we are unable to control or predict.
We seek to use reasonable physical, technical and administrative measures to protect Personal Information under our control. Unfortunately, no data transmission over the Internet or data storage system is 100% secure, and therefore we cannot guarantee against all potential security breaches.
If you have reason to believe that your interaction with us is no longer secure (for example, if you feel that the security of any account you might have with us has been compromised), please notify us of the problem immediately.
We give you choices regarding our use and disclosure of your Personal Information for marketing purposes. Specifically, you may opt-out from:
Receiving marketing-related emails from us based upon your Personal Information: If you no longer want to receive marketing-related emails from us on a going-forward basis, you may opt-out of receiving such marketing related emails by using the Unsubscribe feature embedded in the email or by mailing us at the address below.
Our sharing of your Personal Information with affiliates for their marketing purposes: If you would prefer that we do not share your Personal Information on a going-forward basis with our affiliates for their marketing purposes, you may opt-out of such sharing by mailing us at the address below.
We will try to comply with your request(s) as soon as reasonably practicable. Please note that if you opt-out as described above, we will not be able to remove your Personal Information from the databases of our affiliates with whom we have already shared such information (i.e., to which we have already provided such information as of the date that we implement your opt-out request). Please also note that if you do opt-out of receiving marketing-related messages from us, we may still send administrative messages to you; you cannot opt-out from receiving administrative messages.
If you would like to review or update your Personal Information that has been previously provided to us, you may do so by logging into your account within the Application. We will try to comply with your request to update your Personal Information as soon as reasonably practicable. We are not responsible for changing information from the databases of third parties with whom we have already shared your Personal Information. You may have additional rights to access, correct or modify the health information that is held by your Provider.
As a registered user of the Services, you can modify some of the Personal Information you have included in your profile or change your username by logging in and accessing your account. Upon your request, we will use commercially reasonable efforts to delete your account and the Personal Information in your profile; however, it may be impossible to remove your account without some residual information being retained by us, and we may be required by law or our agreement with your Provider to retain certain information. We have no obligation to delete any data or information you provide on a Patient History Form following termination of your account or the account of any Provider to whom your Patient History Form was submitted through the Services. Registered users who wish to close their account should mail us at the address below.