Privacy

Policy

Last Updated: May 1st, 2023

Introduction and Definitions

Introduction

This Privacy Policy applies to and governs the online platform of DCoding Labs LLC, along with its sub-domains and other of our operated websites (hereinafter referred to as, “DCoding”). It is recommended that on top of carefully reviewing this Privacy Policy, you also review and familiarize yourself with the Terms, rules, guidelines and ancillary policies (if any), all included herein by reference.

For end-users that have executed a Statement of Work, Services Agreement or analogous document duly executed by the parties hereto, this Policy will supplement any personal data and privacy terms set forth in such ancillary documents.

This Policy also applies to PI collected through the mobile version of our website, independently of the mobile operative system, mobile device or browser you use to access it.

By accessing or using our Platform, you affirm that you have read, understood, and agreed to this Policy and our Terms.

Definitions

The following defined terms will be used in this Policy, whether they are used in the singular or plural form.  Any capitalized terms not defined in this Policy shall have the meanings set forth in our Terms, guidelines, terms, or rules referenced therein, as applicable.

  • “Policy” shall mean this Privacy Policy.
  • DCoding” and “our”, “us” or “we” shall mean DCoding Labs LLC.
  • Site” shall mean www.dcodinglabs.com.
  • “you” and “yours” as a visitor or registered user of our Site.
  • “PI” shall mean Personally Identifiable Information.
  • “Terms” shall mean our Terms and Conditions of Service for the Site.
  • “Services” shall mean our suite of rendered online services.
  • “Covered Entity” shall be construed in accordance with governing HIPAA rules and shall mean a person or entity, including physicians, health care providers, health plans, health care clearinghouses, and health care providers, who electronically transmit any health information in connection with transactions for which the U.S. Department of Health and Human Services has adopted standards.
  • “PHI” shall mean Protected Health Information, with the meaning set forth in 45 CFR 160.103, and shall be limited to the information created or received by DCoding Labs from or on behalf of a Covered Entity.  For reference purposes, PHI shall include EPHI.
  • “EPHI” shall mean Electronic Protected Health Information, with the meaning set forth in 45 CFR 160.103, and shall be limited to information created, received, maintained, or transmitted electronically by DCoding on behalf of a Covered Entity.
  • “HIPAA” shall mean the Health Insurance Portability and Accountability Act of 1996, Public Law 104-191, and any subsequent amendments, modifications, or revisions.
  • “HITECH” shall mean the Health Information Technology for Economic and Clinical Health Act Public Law 111-115.
  • “PI” shall mean Personal Information, as herein defined.
  • “Personal Information” shall mean information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context and shall be construed in accordance with governing privacy laws and information security standards.

In addition, the terms “collect”, “process”, “treat”, “use”, “share”, “disclose”, “divulge” and analogous words shall refer to your PI and other data collected from our visitors and end users.

User Agreement & Registration

DCoding provides a number of online Services related to software developing, some of which are required to comply with the HIPAA Act and the HITECH Act.

For any of DCoding’s Services that implicate HIPAA, any information relating to Patient(s) or Covered Entities stored and resides on servers that comply with the requirements of the security standards of the HIPAA Act and HITECH Act regarding PHI and EPHI.  Access to any Covered Entities’ PHI is restricted to DCoding’s employees, contractors, and agents who have a need to access that information in order to operate, develop or improve our services.  All such persons are and shall be bound by DCoding’s confidentiality and non-disclosure obligations.

As a user of our Site, you might be asked to agree to this Policy by clicking on the “I Agree” checkbox on the registration page, box, tab or other analogous means. Through that action, you thereby acknowledge and agree to the terms of this Policy, which is and constitutes a legal, binding agreement between you and DCoding.

At DCoding, we view privacy as a key part of the value that we deliver to our end-users, and this Policy was developed to describe our core values regarding the data our customers entrust to us. Overall, this Policy is freely available for your review prior to registration, and if you do not agree to its terms, your remedy shall consist in its entirety of not opening an account and exiting the web tab through which you visited our Site.

Accordingly, by registering with us and/or otherwise using our products and services, you consent to the collection, transfer, processing, storage, and disclosure of your PI as described in this Policy.

User Eligibility

DCoding does not knowingly provide its Services to the following categories: 

  1. people under the age of thirteen (13); 
  2. (ii) convicted criminals; 
  3. (iii) people that have had their account previously disabled for violations of our Terms or Policy; or
  4. (iv) people that are otherwise prohibited from receiving our products, Services, or software under applicable laws.

Users are prohibited from providing DCoding with personally identifiable information of people under the age of thirteen (13) without the consent of their parents or legal guardians. DCoding does not knowingly collect any kind of information from any person under the age of thirteen (13). In compliance with the Children’s Online Privacy Protection Act of 1998, 15 U.S.C. 6501–6505 (“COPPA”), if we learn or have reason to suspect that any user or that any client, project or customer data appertains people under the age of thirteen (13), we will freeze and/or delete any PI under that user’s account, without prior notice and with no liability to DCoding. 

We reserve the right to request any and all applicable proof of identification and consent proof from our users, at any moment, without prior notice, and at our sole and final discretion.  Upon the failure to provide such proof of age, we reserve the right to immediately freeze, block or cancel the account, with no liability.

How We Collect Personal Information

For purposes of this Policy, the Site shall be the initial point of contact between you and DCoding, and will serve as the point of collection of any personal data you may provide us. As per HIPAA and HITECH rules, we do not always need express consent from Patients in order to collect PHI, which includes, but will not be limited to, Patient’s Personal Information, Covered Entity’s staff names and emails, personal addresses, cell phone numbers, Social Security Numbers, insurance carriers information and PHI exchanged using our platform. Generally, through the provision of the Services, DCoding may collect, process, treat, analyze and/or temporary access the following types of PI:
SourceCategory of Personal DataPersonal Data Collected
YouIncludes information that can be used to personally identify an individual person.  You hereby represent and warrant to DCoding that you have the necessary rights and authorizations required for the disclosure of any and all PI.
  • Email
  • Phone
  • Age
  • IP address & geo-location
  • Metadata of emails
  • Usernames and credentials
Commercial InformationIncludes certain commercially identifying information collected by us when a business that you interact or transact with, in turn, provides DCoding with information about you or the companies that you work with. This collection will occur through our Site as per the execution of our Services.  There may be sections of the Site displaying third party components, which may or may not be evident to the end-user.  In such regard, for said third party platforms, their own privacy policies will govern such service provision.
  • Business name
  • Business address
  • Commercial contacts list
  • Email address
  • Telephone number
  • Expenses, invoices, financial statements, details of financial transactions
  • Payroll details
  • Payment details
  • Tax return details
  • Information about your customers, vendors or employees
  • Income and wage information
Verification DataIncludes information collected in order to verify your identity or the identity of a third party person in order to execute our platform’s functionalities, such as tax returns and credit reporting.
  • Name
  • Social Security Number
  • Social Insurance Number
  • Driver’s license
  • Government-issued identification
Non-Personal InformationIncludes information such as anonymous usage data, that is, that cannot be used to personally identify an individual person, including general demographic information that we may collect and preferences that are generated based on the data you submit.
  • Number of clicks
  • Platform type
  • Anonymized data
User Generated ContentIncludes information and content that you post, upload, use, subscribe to or otherwise enjoy when using DCoding.
  • Product images
  • Stock photos
Social Media PlatformsIncludes information obtained from third party social media platforms when our users use single sign on authentication services such as those provided by Amazon, Google and Facebook (as available). It also includes information publicly available from third party social media platforms. For more information, please read the terms and policies of such third party platforms.  Please take into account that such third party platforms may in turn disclose and share your personal information according to their own rules, guidelines and policies. Any changes in such a platform’s functionalities will be the sole and final responsibility of the social media network.
  • Friends list
  • Email
  • Personal image gallery
  • Viewing history
  • Viewing preferences
  • Likes
  • Saved items
  • Saved pages
Technical Website InformationAs you navigate through the Site, a desktop or a mobile browser, certain information can be passively collected (that is, gathered without you actively providing the information) using various technologies and means.
  • HTML5 local storage
  • Browser cache
  • IP address
  • Cookies
  • Internet tags
  • Navigational data
Internet Protocol (IP) addressesAn IP Address is a number assigned to your computer by your Internet service provider so you can access the Internet and is generally considered to be non-personally identifiable information, because in most cases an IP address is dynamic (changing each time you connect to the Internet), rather than static (unique to a particular user’s computer).
Financial InformationIf you make a purchase on our Site, our third party payment processors will execute, manage and process payments encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction.     PCI-DSS requirements help ensure the secure handling of credit card information by our Site and its service providers. All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover.
  • Purchase history
  • Sensible financial information
  • Credit card data
Aggregated StatisticsWe may receive aggregated, non-individualized PI from advertisers or publishers, along with aggregate statistics, metrics, and other reports about the performance of their ads or content in your Shopify account. We may share aggregated anonymized or de-identified information with third parties for research, marketing, analytics, and other purposes.
  • Number of unique user views
  • Demographics about the users who saw the content
  • Conversion rates
  • Clicks
  • Date and time information
Geographical Location InformationIncludes information on the precise geo-location of your device with your consent. This option can be disabled on your web browser and your mobile device.
Camera & MicrophoneCertain features of our Services may require access to your camera and microphone This option can be disabled on your web browser and your mobile device.

How We Use Personal Information

We will store PI for the purposes of managing collaboration with other users, improve your user experience and contact you about inquiries for our Services.  Overall, we use the collected PI in order to:

  • Provide our Services.  To personalize your user experience and to allow us to deliver our Services to our customers, among other functionalities that include, but are not limited to, managing customer profiles, user registrations, responding to customer support requests, process transactions, and follow up with user support (e.g. live chat, email or phone inquiries).
  • Account Configuration.  To tailor the content and information that we may send through DCoding, process any user credentials, process any content which we may provide access to, suggest new content offerings, offer account customization, provide personalized help and user instructions, and to otherwise personalize your experiences while using our platform.
  • User Communications.  We may use your PI in order to enable user-to-user and user-to-business communications.
  • User Evaluation.  Evaluate your eligibility for financial or other marketing offers, products and services and assess whether we can provide certain features to you, such as your free credit reports and scores.
  • Community management.  We may use de-identified PI on our social media pages and our community pages.

Promotion of our Services.  We may use de-identified PI in order to market our Services, products and platforms, including delivering promotional materials, recommendations and other non-transactional commercial communications via email, post, telephone, SMS or push notifications.

Protection of our Services.  We may use your PI as part of our efforts to keep our Site safe and secure (for example, for fraud monitoring, identity theft and fraud prevention).

Aggregated Statistics.  We may use your PI to combine and anonymize information about your interactions with DCoding to create aggregate, anonymized statistics for use in research and for marketing, promoting, improving and developing our Services.

Enforce our Terms and Policies.  We may use your PI to protect our Services against misuse or abuse of our Services and ensure compliance with our Terms, including in relation to content our customers send or display through DCoding.

Respond to user inquiries/offer support to users.  We may use your information to respond to your inquiries and solve any potential issues you might have with the use of our Services.

Research and Development.  DCoding also will share de-identified data with select partners for research and product development.

Sending Promotional Communications.  We and our third-party marketing partners may use the personal information you send to us for our marketing purposes if this is in accordance with your marketing preferences. For example, when expressing an interest in obtaining information about us or our Site, subscribing to marketing or otherwise contacting us, we will collect personal information from you.

If you do not wish to disclose any or part of your PI to us, you may still be able to use some of the functionalities of our Site and Services, though we will not be able to guarantee that you will be able to enjoy them at their fullest if you elect not to disclose it to us.

Information provided by Third Parties

DCoding is designed to help your business connect with third parties in order to improve your ERP processes.  These integrations include accounting, tax filing, points of sale, manufacturing, logistics, customer lists and customer relations management.

Upon the case where you elect to input information about third parties onto DCoding, you must only do so if you have first obtained appropriate consent and authorization from such third parties, including having an appropriate legal basis for doing so as required under applicable law.

We may use your PI and the information of the companies or platforms you work with when you elect to sync a non-DCoding account or third party service with your DCoding account, and in such case we will receive information from that account/service according to your settings with that account/service.

In addition, we may use your PI and the information of the companies or platforms you work with when you elect to collect, process, store or disclose such information from other users using DCoding (e.g., your accountant, bookkeeper, tax preparer, affiliates and agents, your employer or other business customers).

How We Disclose Personal Information

For Machine Learning and Automated ProcessingFrom time to time we may process your PI using automated and manual (human) methods. Our automated methods include artificial intelligence (AI) and a range of technologies commonly called machine learning.We provide you with personalized Services, and also recommendations and experiences designed to have our Services “learn” and “reason” to improve our ability to personalize and enhance your experience with DCoding.
To Business SuccessorsIf our business is sold or merges in whole or in part with another business that would become responsible for providing our Services to you, we retain the right to transfer your PI to the new business.The new business would retain the right to use your PI according to the terms of this Policy as well as to any changes to this privacy notice as instituted by the new business.  We will also retain the right to transfer your PI if our company files for bankruptcy and some or all of our assets are sold to another individual or business.
Lawful DisclosureWe reserve the right to disclose any or all gathered PI and/or data, when the following circumstances arise: (i) if necessary under an applicable law; (ii) in reply to a legal demand, warrant or subpoena from an agency of the law; (iii) to protect ourselves and our affiliates from any legal third party claims and procedures that may be brought to us (inclusive of takedown notices); and/or (iv) to prevent or cause cessation of any undertakings that may be construed by us as having the ability to be or cause a predicament or hazard to us. This includes government agencies such as tax agencies, or as required institutional risk control programs.We, or our affiliates, clients, contractors, licensors, officers, agents and/or representatives, will reserve the right to allow access to any of your PI when we think it is reasonably important or when you breach the terms mentioned in this Policy.
Vital InterestsWe may disclose your PI where we believe it is necessary to investigate, prevent, or take action regarding potential violations of our policies.We may investigate suspected fraud, situations involving potential threats to the safety of any person and illegal activities, or use PI as evidence in litigation in which we are involved.

Disclosure to Third Party PI Processors

In order to provide our Services, we use third-party platforms and tools that are governed by their own terms, policies and personal data collection practices and policies.  Accordingly, by acknowledging your consent to this Policy, you are also acknowledging being subject to the applicable terms and conditions of such third party platforms, which provide functionalities that include aggregated statistics.  Upon any conflict among our Policy and those of our sub-processors, the terms of them will prevail only insofar as the conflicting term(s).

In certain circumstances, there may be more than one data controller processing your PI.  In these situations, we act as an independent data controller over our PI processing activities – meaning that we make determinations over how your personal information will be processed independently from those of third party data controllers. 

Said other data controllers have their own obligations under applicable information privacy laws, and DCoding is not responsible for the processing of third party data controllers (including our own end-users) and you should contact them directly for any queries on how they process your personal information and for exercising your privacy rights in relation to such processing.

Your Choices as Our User

You can decline to submit certain information and PI to DCoding, in which case we will not be able to provide certain of our Services to you. 

You can update or modify your account information at any time by logging in to your account. You may also make a number of other adjustments to settings or the display of information about you.  You have the option to terminate your DCoding account at any time; for more information, please review our Terms or your specific vendor agreement or order form with DCoding.

Commercial Message Communications Authorization

Occasionally, we will ask you for express permission and approval to receive electronic messages in electronic format which are then sent to an electronic address and that contains a message asking recipients to participate in commercial activities such as newsletters, purchase of products, services and invitations to participate in surveys.

We will send you service-related announcements on occasions when it is necessary to do so.  For instance, if our Service is temporarily suspended for maintenance, or a new enhancement is released, which will affect the way you use our services, we might send you an email notifying you.  Generally, you may not opt-out of these communications, which are neither commercial nor promotional in nature.  

You have the right to object to the processing of your PI if grounds for said objection are to direct marketing.  You also have the right to opt out of receiving promotional communications at any time by: (i) contacting us; (ii) when we may ask you to confirm or update your marketing preferences if you instruct us to provide further the features and functionality of our Services; (iii) if there are changes in the law, regulation, or the structure of our business.

Cookie Policy

Periodically, we may place what are known as ‘cookies’ inside your computer device for the purpose of tracking and collecting data in regard to your utilization of our Site, our other websites and our Services.   These files are small texts that our site transfers to your device, and which allow us to recognize you and obtain certain data.  By agreeing to accept our use of cookies, you are giving us, and the third parties we partner with, permission to place, store, and access some or all the cookies described below on your computer:

Necessary Cookies.  These cookies are necessary for proper functioning of our Services, such as displaying content, logging in, validating your session, responding to your request for services, and other functions.   Most web browsers can be set to disable the use of cookies.  However, if you disable these cookies, you may not be able to access features on our website correctly or at all.

Functional Cookies.  These cookies enable the Site to remember our user’s choices while using our Services, such as their language, user name, and other personal settings.  They can also be used to deliver services, such as letting a user make a blog post, listen to audio, or watch videos on the Site.

Efficiency Cookies.  These cookies collect information about how you use DCoding (e.g. which pages you visit, and if you experience any errors).   This helps us to improve the way our Services work, understand the interests of our users, and measure the effectiveness of our advertising.  Some of our efficiency cookies are managed for us by third parties, and these cookies do not collect information that could identify you.

Demographics and Interests Reporting Cookies.  These cookies allow devices to link the actions of a user during a browsing session and for a variety of purposes, such as remembering what a user has put in their shopping cart as they browse a website.  Session cookies also permit users to be recognized as they navigate a platform so that any item or page changes they make are remembered from page to page.  Session cookies expire after a browser session; thus, they are not stored long term. 

Persistent Cookies.  These cookies are stored on a user’s device in between browser sessions, which allows us to remember the user’s preferences or actions across a website (or, in some cases, across different websites).

Session Cookies.  We use session cookies to operate our Service by remembering the user credentials that you use for our Site.  Please keep in mind that the user access credentials for admin accounts are encrypted and are not shared with any user.

Preference Cookies.  We use preference cookies to remember your preferences and other settings.

Security Cookies.  We use security cookies for various security purposes.

We may also collect and use the data contained in log files, which may include your IP address, your ISP, the browser you used to visit our platform, the time you visited our platform and which sections you visited.

When you access our platform via a mobile device, we may use your mobile device ID (i.e. the unique identifier assigned to a mobile device by the manufacturer) and/or Advertising ID (for Apple iOS) instead of cookies in order to recognize you and track displayed web pages, along with their performance.  For the latest versions of Apple iOS, your device would request you one or more times for your express consent for advertising tracking.

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent.  If you wish so, you can easily disable cookies on your web browsing software by following the step-by-step guides located at www.youradchoices.com for US visitors and www.youronlinechoices.eu for EU visitors.

For mobile users, you have controls in your device’s mobile OS that enables you to choose whether to allow cookies, or share your advertising ID with companies like DCoding or our advertising service providers. For information on controlling your mobile choices, you can visit www.networkadvertising.org.

Security of Collected Information

To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.   Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all requirements and implement additional generally accepted industry standards.

You can be assured that personal information collected through the Site is secure and is maintained in a manner consistent with current industry standards.  The importance of security for all personal information associated with our subscribers is of utmost concern to us.  

Your personal information is protected in several ways, and we protect inputted information by undertaking the reasonable technical and administrative security measures (e.g. firewalls, data encryption, physical & administrative access controls to the data and servers) that limit the risk of loss, abuse, unauthorized access, disclosure, and alteration.

International Transfer Notice

We have our headquarters in the State of Illinois, United States of America (USA).  Henceforth, your PI may be accessed by us or our affiliates, agents, partners and third-party service providers in the USA and our locations which may or may not be located in your country of residence, and you hereby consent to such access and transfer by simple disclosure.  For European Union (EU) Patients, please be reminded that the EU has not found the United States and some other countries to have an adequate level of protection of PI under Article 45 of the GDPR.

Notice to Illinois Residents

In compliance with the Illinois Personal Information Protection Act, 815 ILCS 530, et seq., we: (i) have obtained (or will obtain as necessary) your express consent for the collection, use and/or disclosure of your PI; (ii) offer measures for the update and edition of your PI; (iii) provide public and free contact details; (iv) have specified the purpose and use of you PI; (v) have indicated the procedure for notification in case of any actual or alleged breach of privacy; (v) ensure the freedom of information; (vi) protect your right to privacy; (vii) respect agreements, assessments and information recovery with our end-users.

Notice to California Residents

Pursuant to the California Consumer Privacy Act of 2018 (the “CCPA”), DCoding and its affiliates here to provide the following Privacy Policy notice regarding the categories of PI that we have collected or disclosed within the preceding twelve (12) months about California residents who are not employees, independent contractors, owners, directors, officers, or job applicants of DCoding, or emergency contacts or benefits beneficiaries of the foregoing.

Henceforth, the CCPA provides Californians with the following rights:

Requests for Information:  you (or your authorized agent) can request a copy of your PI, including how we have collected, used, and shared your PI over the past 12 months (if any), including the categories of PI we collected and our purposes for doing so; the categories of sources for that information; the categories of third parties with whom we shared it for a business purpose and our purposes for doing so.

Your Right to Notification:  under the CCPA, we cannot collect new categories of PI or use them for materially different purposes without first notifying you.

Nondiscrimination for exercising your CCPA Rights:  the CCPA prohibits us from discriminating against you for exercising your rights under the law.  Such discrimination may include denying services, charging different prices or rates for services, providing a different level or quality of services, or suggesting that you will receive a different level or quality of goods or services as a result of exercising your rights.

Your Right to Delete PI:  you can request that we delete your PI by contacting us.  You also can request that we delete specific information, and we will honor such requests, unless a due exception applies, such as when the information is necessary to complete a transaction, verify a fraud, review a chargeback or contract for which it was collected or when it is being used to detect, prevent, or 

investigate security incidents, comply with laws, identify and repair bugs or ensure another consumer’s ability to exercise their free speech rights or other rights provided by law.

Please take into consideration that we may deny your deletion request if retaining the PI is necessary for us, our affiliates or our service providers in order to:

Complete the transaction for which we collected the PI information, provide a good or service that you requested, take actions reasonably anticipated within the context of our ongoing business relationship with you, or otherwise perform our contract with you;

Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities;

Debug our products to identify and repair errors that impair existing intended functionality;

Exercise free speech, ensure the right of another consumer to exercise their free speech rights, or exercise another right provided for by law;

Comply with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546 seq.);

Enable solely internal uses that are reasonably aligned with consumer expectations based on your relationship with us;

Comply with a legal obligation that has substantive grounds;

Make other internal and lawful uses of that information that are compatible with the context in which you provided it.

Overall, we have, may or will collect the following categories of PI from our users, customers and individuals, as necessary to fulfill our legal obligations and operational business purposes:

Personal information, as defined in the California Customer Records Law, such as contact information and financial information;

Identifiers, such as online identifier, IP address and name;

Financial information, such as transaction information and history and securities trading information and history;

Internet or network activity information, such as browsing history and interactions with our and other websites and systems;

Geo-localization data, such as device location and IP location;

Audio, electronic, visual and similar information, such as video recordings and multimedia content created in connection with our business activities; and

Inferences drawn from any of the PI listed above to create a profile or summary about, for example, an individual’s preferences and characteristics.

Covered Entity (and any underlying Patient information)

We understand the importance of privacy and are committed to maintaining the confidentiality of your PHI.   Accordingly, we make a secured record of the medical-related text messages that we process.

We are required by law to maintain the privacy of PHI, in order to provide Patients with notice of our legal duties and privacy practices related thereto, and to notify affected Patients of a data breach.

Accordingly, our Services and Site are hosted on different servers and infrastructure than those that host the actual PHI that we process (as applicable).  For purposes of clarification, the servers and infrastructure that host the PHI are at least SSL compliant, as mandated by HIPAA and HITECH.

We hereby remind you that you may have specific legal rights under we may, under HIPAA and HITECH rules, such as: (a) the right to request certain restrictions on uses and disclosures of your PHI; and (b) the right to inspect your PHI, with limited exceptions; and (c) the right to amend your PHI that you believe is incorrect or incomplete.

In order to enforce your rights, please first contact the Covered Entity treating your PHI by a written request specifying what PHI you want to limit, what limitations on our use or disclosure of that PHI you wish to have imposed, or if you want to inspect it or get a copy of it; and if you want a copy, your preferred form and format.

We will comply with all reasonable requests submitted in writing which specify how or where you wish to receive these communications.   We reserve the right to charge a reasonable fee which covers our costs for labor, supplies, postage, and if requested and agreed to in advance, the cost of preparing an explanation or summary.   

We may deny your request under limited circumstances.   If we deny your request to access your child’s records or the records of an incapacitated adult you are representing because we believe allowing access would be reasonably likely to cause substantial harm to the patient, you will have a right to appeal our decision.  If we deny your request to access your psychotherapy notes, you will have the right to have them transferred to another mental health professional.

If you elect to contact us before contacting the Covered Entity treating your PHI, we may, under HIPAA and HITECH rules, deny your request if we do not have the PHI that you refer to, if we did not create the information (unless the Covered Entity that created the information is no longer available to make the amendment), if you would not be permitted to inspect or copy the information at issue, or if the information is accurate and complete as is.  If we deny your request, you may submit a written statement of your disagreement with that decision, and we may, in turn, prepare a written rebuttal.  All information related to any request to amend will be maintained and disclosed in conjunction with any subsequent disclosure of the disputed information.

Right to a Paper or Electronic Copy of this Notice.  You have a right to notice of our legal duties and privacy practices with respect to your PHI, including a right to a paper copy of this Policy and our Business Associate Agreement, even if you have previously requested its receipt by e-mail or if you reviewed it online on the Site.  If you would like to have a more detailed explanation of these rights or if you would like to exercise one or more of these rights, please contact our Privacy Practices Office.

If you are not satisfied with the manner in which Patient Pass handles a user complaint, you may submit a formal complaint to the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) by email to ocrmail@hhs.gov or call the U.S. Department of Health and Human Services, Office for Civil Rights toll-free at: 1-800-368-1019, TDD: 1-800-537-7697.

The complaint form may be found at www.hhs.gov/ocr/privacy/hipaa/complaints/hipcomplaint.pdf.  You will not be penalized in any way for filing a complaint.

Amendments to this Policy

Periodically, and at the final discretion of ourselves, we may update, change, suspend and modify or/our Site, our Services, this Policy and or our Terms, in whole or in part, at any moment and without prior notice. We hereby reserve such right in order to operate our business and protect ourselves. Your use after any changes indicate your acceptance thereof and we will post a notice regarding such changes on our Site, and may also write an email to you or otherwise notify you.

If we make any changes to this Policy that materially change how we treat your PI, we will endeavor to provide you with prompt notice of such changes, such as through a prominent notice on the Site, through a push notification or to your email address of record.  Where required by law, we will obtain your consent or give you the opportunity to opt-out of such.

Contact

If you have any questions or comments about us, our Site, our Terms and/or this Policy, please contact us. Note that communications made by email or the “Contact Us” page does not constitute legal notice to the DCoding legal entity.

Email address: privacy@dcodinglabs.com

Postal address:

DCoding Labs LLC
230 E Ohio Street, Suite 410 1567 
Chicago, IL 60611

Social media
DCoding Labs LLC
230 E Ohio Street, Suite 410 1567
Chicago, IL 60611

Copyright © 2024 DCoding Labs

Privacy Policy