HIPAA Compliance - Where Do I Start? - 5 Essential Steps

PRIVACY POLICY

Last updated on May 31, 2018

VITERIUM, LLC (“us”, “we”, or “our”) operates the www.viterium.net website (the “Service”).

This page informs you of our policies regarding the collection, use, and disclosure of personal data when you use our Service and the choices you have associated with that data.

We use your data to provide and improve the Service. By using the Service, you agree to the collection and use of information in accordance with this policy. Unless otherwise defined in this Privacy Policy, terms used in this Privacy Policy have the same meanings as in our Terms and Conditions, accessible from  www.viterium.net.

Definitions

Personal Data 
Personal Data means data about a living individual who can be identified from those data (or from those and other information either in our possession or likely to come into our possession).
Usage Data
Usage Data is data collected automatically either generated by the use of the Service or from the Service infrastructure itself (for example, the duration of a page visit).
Cookies 
Cookies are small pieces of data stored on a User’s device.
Data Controller 
Data Controller means a person who (either alone or jointly or in common with other persons) determines the purposes for which and the manner in which any personal data are, or are to be, processed. For the purpose of this Privacy Policy, we are a Data Controller of your data.
Data Processor (or Service Providers) 
Data Processor (or Service Provider) means any person (other than an employee of the Data Controller) who processes the data on behalf of the Data Controller. We may use the services of various Service Providers in order to process your data more effectively.
Data Subject 
Data Subject is any living individual who is the subject of Personal Data.
User 
The User is the individual using our Service. The User corresponds to the Data Subject, who is the subject of Personal Data.

Information Collection And Use

We collect several different types of information for various purposes to provide and improve our Service to you.

Types of Data Collected

Personal Data 
While using our Service, we may ask you to provide us with certain personally  identifiable information that can be used to contact or identify you  (“Personal Data”). Personally identifiable information may include, but is not  limited to:
- Email address
- First name and last name
- Phone number
- Address, State, Province, ZIP/Postal code, City (for contest giveaways only)
- Cookies and Usage Data
We may use your Personal Data to contact you with newsletters, marketing or promotional materials and other information that may be of interest to you. You may opt out of receiving any, or all, of these communications from us by following the unsubscribe link or instructions provided in any email we send or by contacting us.
- Usage Data
  We may also collect information on how the Service is accessed and used (“Usage Data”). This Usage Data may include information such as your computer’s Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Service that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic  data.
- Location Data 
  We may use and store information about your location if you give us permission to do so (“Location Data”). We use this data to provide features of our Service, to improve and customize our Service. You can enable or disable location services when you use our Service at any time, through your device settings.
- Tracking & Cookies Data
  We use cookies and similar tracking technologies to track the activity on our  Service and hold certain information. Cookies are files with small amount of data which may include an anonymous unique identifier. Cookies are sent to your browser from a website and stored on your device. Tracking technologies also used are beacons, tags, and scripts to collect and track information and to improve and analyze our Service. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.
Examples of Cookies we use:
Session Cookies. We use Session Cookies to operate our Service.
Preference Cookies. We use Preference Cookies to remember your preferences and various settings.
Security Cookies. We use Security Cookies for security purposes.

Use of Data
VITERIUM uses the collected data for various purposes:
- To provide and maintain our Service
- To notify you about changes to our Service
- To allow you to participate in interactive features of our Service when you choose to do so
- To provide customer support
- To gather analysis or valuable information so that we can improve our Service
- To monitor the usage of our Service
- To detect, prevent and address technical issues
- To provide you with news, special offers and general information about other goods, services and events which we offer that are similar to those that you have already purchased or enquired about unless you have opted not to receive such information
Retention of Data
VITERIUM will retain your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your Personal Data to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies.

VITERIUM will also retain Usage Data for internal analysis purposes. Usage Data is generally retained for a shorter period of time, except when this data is used to strengthen the security or to improve the functionality of our Service, or we are legally obligated to retain this data for longer time periods.

Transfer Of Data
Your information, including Personal Data, may be transferred to — and maintained on — computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction.

If you are located outside United States and choose to provide information to us, please note that we transfer the data, including Personal Data, to United States and process it there.

Your consent to this Privacy Policy followed by your submission of such information represents your agreement to that transfer. VITERIUM will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and no transfer of your Personal Data will take place to an organization or a country unless there are adequate controls in place including the security of your data and other personal information.

Disclosure Of Data
Business Transaction
If VITERIUM is involved in a merger, acquisition or asset sale, your Personal Data may be transferred. We will provide notice before your Personal Data is transferred and becomes subject to a different Privacy Policy.

Disclosure for Law Enforcement 
Under certain circumstances, VITERIUM may be required to disclose your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government agency).

Legal Requirements 
VITERIUM may disclose your Personal Data in the good faith belief that such action is necessary to:
- To comply with a legal obligation
- To protect and defend the rights or property of VITERIUM
- To prevent or investigate possible wrongdoing in connection with the Service
- To protect the personal safety of users of the Service or the public
- To protect against legal liability
Security Of Data 
The security of your data is important to us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security.

“Do Not Track” Signals 
We do not support Do Not Track (“DNT”). Do Not Track is a preference you can set in your web browser to inform websites that you do not want to be tracked. You can enable or disable Do Not Track by visiting the Preferences or Settings page of your web browser.

Your Rights
VITERIUM aims to take reasonable steps to allow you to correct, amend, delete, or limit the use of your Personal Data.

Whenever made possible, you can update your Personal Data directly within your account settings section. If you are unable to change your Personal Data, please contact us to make the required changes.

If you wish to be informed what Personal Data we hold about you and if you want it to be removed from our systems, please contact us at info@VITERIUM.net.

In certain circumstances, you have the right:
- To access and receive a copy of the Personal Data we hold about you
- To rectify any Personal Data held about you that is inaccurate
- To request the deletion of Personal Data held about you
You have the right to data portability for the information you provide to  VITERIUM. You can request to obtain a copy of your Personal Data in a commonly used electronic format so that you can manage and move it.

Please note that we may ask you to verify your identity before responding to such requests.

Service Providers
We may employ third party companies and individuals to facilitate our Service  (“Service Providers”), to provide the Service on our behalf, to perform Service-related services or to assist us in analyzing how our Service is used.

These third parties have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.

Analytics
We may use third-party Service Providers to monitor and analyze the use of our  Service.

Google Analytics
Google Analytics is a web analytics service offered by Google that tracks and reports website traffic. Google uses the data collected to track and monitor the use of our Service. This data is shared with other Google services. Google may use the collected data to contextualize and personalize the ads of its own advertising network.

You can opt-out of having made your activity on the Service available to Google Analytics by installing the Google Analytics opt-out browser add- on. The add-on prevents the Google Analytics JavaScript (ga.js, analytics.js, and dc.js) from sharing information with Google Analytics about visits activity.

For more information on the privacy practices of Google, please visit the Google Privacy & Terms web page: http://www.google.com/intl/en/policies/privacy/

Behavioral Remarketing
VITERIUM does not conduct remarketing campaigns.

Payments
We may provide paid products and/or services within the Service. In that case, we use third-party services for payment processing (e.g. payment processors). We will not store or collect your payment card details. That information is provided directly to our third-party payment processors whose use of your personal information is governed by their Privacy Policy. These payment processors adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, Mastercard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of payment information.
The payment processors we work with are:
- Stripe: their Privacy Policy can be viewed at https://stripe.com/us/privacy
Links To Other Sites
Our Service may contain links to other sites that are not operated by us. If you click on a third party link, you will be directed to that third party’s site. We strongly advise you to review the Privacy Policy of every site you visit. We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.

Children’s Privacy
Our Service does not address anyone under the age of 13 (“Children”). We do not knowingly collect personally identifiable information from anyone under the age of 13. If you are a parent or guardian and you are aware that your child has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children without verification of parental consent, we take steps to remove that information from our servers.

Changes To This Privacy Policy
We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page. We will let you know via email and/or a prominent notice on our Service, prior to the change becoming effective and update the “effective date” at the top of this Privacy Policy.

You are advised to review this Privacy Policy periodically for any changes.  Changes to this Privacy Policy are effective when they are posted on this page.

Contact Us
If you have any questions about this Privacy Policy, please contact by email: info@VITERIUM.net

Last updated on May 31, 2018

Terms of Use

Welcome to the website (the “Website”) of Viterium, LLC (“Viterium”). Viterium and its associates provide their services to you subject to the following terms and conditions. If you visit this website, or purchase products and services from Viterium you accept these conditions. Please read them carefully.

Warranty

Please note that all hardware and software is warranted by the manufacturer and not by Viterium. All warranty information will be provided upon request.

Refunds

Please note all sales are final and no refunds will be issued. In the unlikely event a refund is authorized it is subject to an administrative fee of 50%, not including any other fees or charges that will be provided upon issuance of any refund amount. Viterium reserves the right to issue a credit towards services only in lieu of a refund.

Privacy

Please review our Privacy Notice, which also governs your visit to our Website, to understand our practices.

Electronic Communications

When you visit Viterium or send e-mails to us, you are communicating with us electronically. You consent to receive communications from us electronically. We will communicate with you by e-mail or by posting notices on this Website. You agree that all agreements, notices, disclosures and other communications that we provide to you electronically satisfy any legal requirement that such communications be in writing.

Copyright

All content included on this Website, such as text, graphics, logos, button icons, images, audio clips, digital downloads, data compilations, and software, is the property of Viterium, its content suppliers, or by third parties who have licensed their materials to Viterium and is protected by U.S. and international copyright laws. The compilation of all content on this Website is the exclusive property of Viterium, with copyright authorship for this collection by Viterium, and protected by international copyright laws.

Trademarks

Viteriumtrademarks may not be used in connection with any product or service that is not Viterium, in any manner that is likely to cause confusion among customers, or in any manner that disparages or discredits Viterium. All other trademarks not owned by Viterium or its subsidiaries that appear on this Website are the property of their respective owners, who may or may not be affiliated with, connected to, or sponsored by Viterium or its subsidiaries.

License and Site Access

Viterium grants you a limited license to access and make personal use of this Website and not to download (other than page caching) or modify it, or any portion of it, except with express written consent of Viterium. This license does not include any resale or commercial use of this Website or its contents: any collection and use of any product/service listings, descriptions, or prices: any derivative use of this Website or its contents: any downloading or copying of account information for the benefit of another merchant: or any use of data mining, robots, or similar data gathering and extraction tools. This Website or any portion of this Website may not be reproduced, duplicated, copied, sold, resold, visited, or otherwise exploited for any commercial purpose without express written consent of Viterium. You may not frame or utilize framing techniques to enclose any trademark, logo, or other proprietary information (including images, text, page layout, or form) of Endecom and our associates without express written consent. You may not use any meta tags or any other “hidden text” utilizing Viterium name or trademarks without the express written consent of Viterium. Any unauthorized use terminates the permission or license granted by Viterium. You are granted a limited, revocable, and nonexclusive right to create a hyperlink to the home page of Viterium so long as the link does not portray Viterium, its associates, or their products or services in a false, misleading, derogatory, or otherwise offensive matter. You may not use any Viterium logo or other proprietary graphic or trademark as part of the link without express written permission.

Solely Intended for United States Users

Unless otherwise explicitly specified on the Website, the information on all of the Website is intended solely for use and access by persons residing in the United States, its territories, and possessions. Viterium controls and operates its Website from offices located in the United States and makes no representations or warranties that the information, products or services contained on the Website is appropriate for use or access in other locations. Anyone using or accessing any of the Website from other locations does so on their own initiative and are responsible for compliance with local United States laws, if and to the extent applicable.

Your Membership Account

Use of certain features on the Website might be limited and/or require registration. Viterium shall have the right, in its sole discretion, to refuse or restrict anyone from access to the Website at any time for any reason. Upon registration, you may select your user ID and password (collectively “Password”) for access to and use of the applicable portion of the Website. When registering for your Password, you must provide accurate and complete information. If you use this Website, you are responsible for maintaining the confidentiality of your account and Password and for restricting access to your computer, and you agree to accept responsibility for all activities that occur under your account or Password. If you are under 18, you may use our Website only with involvement of a parent or guardian. Viterium and its associates reserve the right to refuse service, terminate accounts, remove or edit content, or cancel orders in their sole discretion. You agree to use your best efforts to maintain the security of your Password. You shall not disclose your Password to anyone else, and you shall not use anyone else’s Password. You agree to notify Viterium immediately about any unauthorized use of your Password or any breach of security. You further agree that Endecom shall not be responsible for your failure to comply with this Section or any loss or damage arising out of, or related to, your use of your Password by you or anyone other than Endecom.

Reviews, Comments, Emails, and Other Content

Visitors may post reviews, comments, and other content: and submit suggestions, ideas, comments, questions, or other information, so long as the content is not illegal, obscene, threatening, defamatory, invasive of privacy, infringing of intellectual property rights, or otherwise injurious to third parties or objectionable and does not consist of or contain software viruses, political campaigning, commercial solicitation, chain letters, mass mailings, or any form of “spam.” You may not use a false e-mail address, impersonate any person or entity, or otherwise mislead as to the origin of a card or other content. Viterium reserves the right (but not the obligation) to remove or edit such content but does not regularly review posted content. If you do post content or submit material, and unless we indicate otherwise, you grant Viterium and its associates a non-exclusive, royalty-free, perpetual, irrevocable, and fully sublicensable right to use, reproduce, modify, adapt, publish, translate, create derivative works from, distribute, and display such content throughout the world in any media. You grant Viterium and its associates and sublicensees the right to use the name that you submit in connection with such content, if they choose. You represent and warrant that you own or otherwise control all of the rights to the content that you post: that the content is accurate: that use of the content you supply does not violate this policy and will not cause injury to any person or entity: and that you will indemnify Viterium or its associates for all claims resulting from content you supply. Viterium has the right but not the obligation to monitor and edit or remove any activity or content. Viterium takes no responsibility and assumes no liability for any content posted by you or any third party.

Disclaimer

THIS WEBSITE IS PROVIDED BY VITERIUM ON AN “AS IS” AND “AS AVAILABLE” BASIS. VITERIUM MAKES NO REPRESENTATIONS OR WARRANTIES OF ANY KIND, EXPRESS OR IMPLIED, AS TO THE OPERATION OF THIS SITE OR THE INFORMATION, CONTENT, MATERIALS, OR PRODUCTS INCLUDED ON THIS SITE. YOU EXPRESSLY AGREE THAT YOUR USE OF THIS SITE IS AT YOUR SOLE RISK. TO THE FULL EXTENT PERMISSIBLE BY APPLICABLE LAW, VITERIUM DISCLAIMS ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. VITERIUM DOES NOT WARRANT THAT THIS SITE, ITS SERVERS, OR E-MAIL SENT FROM VITERIUM ARE FREE OF VIRUSES OR OTHER HARMFUL COMPONENTS. VITERIUM WILL NOT BE LIABLE FOR ANY DAMAGES OF ANY KIND ARISING FROM THE USE OF THIS SITE, INCLUDING, BUT NOT LIMITED TO DIRECT, INDIRECT, INCIDENTAL, PUNITIVE, AND CONSEQUENTIAL DAMAGES. CERTAIN STATE LAWS DO NOT ALLOW LIMITATIONS ON IMPLIED WARRANTIES OR THE EXCLUSION OR LIMITATION OF CERTAIN DAMAGES. IF THESE LAWS APPLY TO YOU, SOME OR ALL OF THE ABOVE DISCLAIMERS, EXCLUSIONS, OR LIMITATIONS MAY NOT APPLY TO YOU, AND YOU MIGHT HAVE ADDITIONAL RIGHTS.

Limitation of Liability

UNDER NO CIRCUMSTANCES AND UNDER NO LEGAL OR EQUITABLE THEORY, WHETHER IN TORT, CONTRACT, STRICT LIABILITY OR OTHERWISE, SHALL VITERIUM OR ANY OF ITS EMPLOYEES, DIRECTORS, OFFICERS, AGENTS, VENDORS, OR SUPPLIERS BE LIABLE TO YOU OR TO ANY OTHER PERSON FOR ANY INDIRECT, SPECIAL, INCIDENTAL OR CONSEQUENTIAL LOSSES OR DAMAGES OF ANY NATURE ARISING OUT OF OR IN CONNECTION WITH THE USE OF OR ACCESS TO OR INABILITY TO USE OR ACCESS THIS WEBSITE, INCLUDING, WITHOUT LIMITATION, DAMAGES FOR LOST PROFITS, LOSS OF GOODWILL, LOSS OF DATA, WORK STOPPAGE, ACCURACY OF RESULTS, OR COMPUTER FAILURE OR MALFUNCTION, EVEN IF AN AUTHORIZED REPRESENTATIVE OF VITERIUM HAS BEEN ADVISED OF OR SHOULD HAVE KNOWN OF THE POSSIBILITY OF SUCH DAMAGES. YOU AGREE THAT YOU, AND NOT VITERIUM, SHALL ASSUME THE ENTIRE COST OF ALL NECESSARY SERVICING, REPAIR OR CORRECTION IN THE EVENT OF ANY SUCH LOSS OR DAMAGE. IN NO EVENT WILL VITERIUM BE LIABLE FOR ANY DAMAGES IN EXCESS OF ONE HUNDRED UNITED STATES DOLLARS ($100.00) FOR ANY CLAIMS ARISING FROM OR RELATED TO THIS TERMS & CONDITIONS.

Indemnification

YOU AGREE TO DEFEND, INDEMNIFY AND HOLD VITERIUM AND ITS OWNERS, AFFILIATES, SUBSIDIARIES, DIRECTORS, SHARE HOLDERS, OFFICERS, EMPLOYEES, AGENTS, AND CONTRACTORS HARMLESS FROM AND AGAINST ANY AND ALL CLAIMS, DAMAGES, COSTS, AND EXPENSES, INCLUDING ATTORNEYS’ FEES, ARISING FROM OR RELATED TO (I) YOUR USE OF THIS WEBSITE AND/OR (II) YOUR BREACH OF ANY OF THE TERMS OR CONDITIONS OF THIS TERMS & CONDITIONS.

Applicable Law

By visiting Viterium, you agree that the laws of the state of Pennsylvania, United States, without regard to principles of conflict of laws, will govern these Conditions of Use and any dispute of any sort that might arise between you and Viterium or its associates.

Disputes

Any dispute relating in any way to your visit to Viterium or to products/services you purchase through Viterium shall be submitted to confidential arbitration in Pennsylvania, United States, except that, to the extent you have in any manner violated or threatened to violate Viterium intellectual property rights, Viterium may seek injunctive or other appropriate relief in any state or federal court in the state of Pennsylvania, United States, and you consent to exclusive jurisdiction and venue in such courts. Arbitration under this agreement shall be conducted under the rules then prevailing of the American Arbitration Association. The arbitrator’s award shall be binding and may be entered as a judgment in any court of competent jurisdiction. To the fullest extent permitted by applicable law, no arbitration under this Agreement shall be joined to an arbitration involving any other party subject to this Agreement, whether through class arbitration proceedings or otherwise.

Site Policies, Modification, and Severability

Please review our other policies posted on this Website. These policies also govern your visit to Viterium. We reserve the right to make changes to our Website, policies, and these Conditions of Use at any time. If any of these conditions shall be deemed invalid, void, or for any reason unenforceable, that condition shall be deemed severable and shall not affect the validity and enforceability of any remaining condition.

Questions

Questions regarding our Conditions of Usage, Privacy Policy, or other policy related material can be directed to our support staff by clicking on the “Contact Us” link on the Website’s homepage. Or you can email us at: kyle.knapp@viterium.net.

HIPAA Compliance – Where Do I Start?

Five Essential Steps to HIPAA Compliance

Risk Analysis/Assessment

Develop and Implement Policies and Procedures

Develop an Incident Response Plan

Train Employees on HIPAA Requirements

Repeat

Foster a Culture of Security

Recent Posts

Categories

Subscribe

News, Tech Tips & More Delivered Directly

Success! Thank you for subscribing!

PRIVACY POLICY

Definitions

Information Collection And Use

Use of Data

Retention of Data

Transfer Of Data

Disclosure Of Data

Your Rights

Service Providers

Analytics

Behavioral Remarketing

Payments

Links To Other Sites

Children’s Privacy

Changes To This Privacy Policy

Contact Us