Version 1.0
Effective Date: January 4, 2012

Cureatr Inc. Privacy Policy

Welcome to Cureatr! Physicians who wish to use Cureatr's messaging software and services ("Licensed Application") are required to register for the service and provide certain registration information to Cureatr. Accordingly, we have developed this Privacy Policy to describe our policies and procedures with respect to such information, as well as additional information that you provide to Cureatr from time to time. This Privacy Policy applies only to registration data that is provided by the physicians who register for and use the Licensed Application. It does not apply to the content of the messages that are transmitted through the Licensed Application. The security of the messages that are transmitted through our Licensed Application is governed by the HIPAA Security Rule.

  1. When you open an account with Cureatr Inc. ("Cureatr") and provide information to Cureatr, you are voluntarily accepting the terms and conditions of the Terms Of Service, the HIPAA Addendum, this Privacy Policy, and any other agreement or policy incorporated by reference.

    Information Received

  2. Cureatr receives the information you provide when you open an account with Cureatr, including but not limited to: your name, email address, birth date, location of work, medical degree status, position in institution of employment, area of specialty, medical school or training institution(s), year of graduation, and/or institutional affiliations.

  3. Cureatr receives information from third party sources that you have authorized or is already publicly available, such as information from medical databases.

  4. Cureatr receives information you choose to transmit to others or information other Cureatr users choose to transmit to you through Cureatr's Licensed Application, including but not limited to the content contained in text messages transmitted through Cureatr's Licensed Application. This provision only applies to non-Protected Health Information ("PHI") transmitted through the Licensed Application. Transmission and retention of PHI is covered by the HIPAA Security Rule.

  5. Cureatr receives information whenever you interact with its Licensed Application, including but not limited to when you log on, when you log off, when you send someone a text message, or when you read a message that has been sent to you. For example, when you access Cureatr's Licensed Application, the information may be stored in cookies, which are data files stored by your web browser on your computer, and/or web server logs and log files, which are records for when you request to view a webpage. This information helps Cureatr recognize you and customize your experience with Cureatr's Licensed Application

  6. Cureatr receives information from you whenever you communicate directly with Cureatr, such as when you have you have requested customer service support.

    How Information Is Used or Shared

  7. Cureatr uses the information received from you to do the following:

    1. Update, improve, expand, and customize the services provided by our Licensed Application to you;

    2. Improve our efforts to keep the Licensed Application and the information transmitted safe and secure;

    3. Use data that does not contain personally-identifying information for research;

    4. Disclose any information required to do so by law, or where Cureatr has a good faith belief that such disclosure is reasonably necessary to: (a) comply with mandatory legal processes, including but not limited to, subpoenas and court orders; (b) protect the rights, property, or personal safety of Cureatr or our users; and/or (c) enforce the terms and conditions of the Terms Of Service Agreement, the HIPAA Addendum, this Privacy Policy, and any other agreement or policy incorporated by reference; and/or

    5. Provide information to third party service providers that manage our databases.

  8. Except as otherwise disclosed in this Privacy Policy, while you have permitted Cureatr to use the information received, Cureatr will not share information received from you with third parties unless Cureatr has:

    1. Received your permission to share the information; and/or

    2. Provided you notice about sharing such information, such as by posting this notice.

  9. Cureatr will provide users with thirty (30) days' notice if it has been sold, acquired, merged, sold some of its assets, or has been involved in some other action affecting Cureatr's ownership and control. During this time period, users can exercise their right to terminate their accounts or remove information in their accounts. If users do not terminate their accounts or remove information in their accounts during this time period, the information received may be transferred to the third party involved in the sale, acquisition, merger, or change-of-ownership action.

    How You Can Control Your Information

  10. You have a right to access, modify, or update information or delete non-required information that Cureatr has received about you after you open an account with Cureatr and become a user. Required information is information Cureatr needs to open an account for you with its Licensed Application.

  11. You can opt out of the feature that sends you notifications regarding commercial, educational, or financial opportunities relating to your account and/or communications.

  12. If you want to stop using your account, you can terminate it by contacting Cureatr at [email protected].

    How We Secure Your Information

  13. To access your account and information through Cureatr's Licensed Application, you must have a unique user name and password. You are responsible for keeping your login password secure and confidential and not permitting others to use your login credentials to access your account. Please log out of your account when you are not using it. After a period of inactivity, your account will automatically log off.

  14. Cureatr follows a wide range of industry-standard security best practices to protect your data from loss, corruption, or unauthorized access.

  15. Cureatr relies on third party services for some elements of its system infrastructure. We carefully vet the services we use and require the ones that handle customer data to satisfy legal standards and to follow industry-standard security, compliance and auditing practices (for an example, please see Amazon Web Services Security and Compliance information at http://aws.amazon.com/security/). Regardless of the level of trust we place in a third-party service, we always encrypt the most sensitive data, including customer messages.

  16. If you believe that your account security has been compromised for any reason, please contact [email protected].

    Protected Health Information

  17. Cureatr secures PHI that is subject to HIPAA and that is transmitted through its Licensed Application in compliance with HIPAA Security and Privacy Regulations, the HITECH Act, and applicable state regulations. The HIPAA Security Rule addresses security of PHI.

    Changes to Privacy Policy

  18. From time to time, Cureatr may make changes to this Privacy Policy or other applicable agreements and policies. These changes will be posted at cureatr.com and you will be notified through your mobile device and/or the email address you provide to Cureatr. If you continue to use Cureatr's Licensed Application and services, you agree to be bound by the terms and conditions of the revised Privacy Policy, or any other applicable agreements and policies.

    Minors

  19. Cureatr is intended for individuals who are licensed physicians or health care professionals in good standing or verified medical students in the United States who are 18 years of age or older.

    How You Can Contact Us

  20. If you have any questions, comments, or concerns, please contact Cureatr by email at [email protected].