Secure Messaging

Privacy


Doctors Services Group User Privacy Policy


Last Updated: December 8th, 2015


Privacy Principles

Doctors Services Group (“DSG”, or “we” or “us”) provides services to healthcare providers and their patients including an online messaging and uninsured services billing platform. DSG respects your privacy and is committed to protecting it. This Privacy Policy sets out the manner in which DSG collects, uses, maintains, discloses and protects information collected from users (hereinafter referred to as “Users or “you” or “your”) of the dsgsecure.com website ("Site"). This Privacy Policy applies to all personal information including personal health information that is collected by DSG through the Site and services provided by DSG.


This Privacy Policy does not cover the privacy practices of healthcare providers whom DSG provides services to. Healthcare providers whom DSG provides services to will have their own privacy policy and practices relating to retention and security of your data. Please contact your healthcare provider for their privacy policy and practices.


By using this Site and services provided by DSG that are accessible through the Site (collectively “the Services”) you acknowledge that you have read, understand, accept and agree to the terms of this Privacy Policy and DSG’s Terms of Use. If you disagree with or do not accept this Privacy Policy or any part of it, please do not use this Site.


DSG has the discretion to modify or update this Privacy Policy at any time. When we do, we will revise the “last updated” date at the top of this Privacy Policy. Your continued use of the Site following the posting of changes to this Privacy Policy will be deemed your acceptance of those changes. We encourage you to frequently check this page for any changes, to stay informed about how we protect the personal information we collect.


You acknowledge and agree that it is your responsibility to review this Privacy Policy periodically and become aware of any updates. You are also responsible for ensuring your satisfaction with your healthcare provider’s privacy policy and practices.



Definitions

DSG Secure means the private, encrypted online messaging and uninsured services billing platform for healthcare providers who have registered with DSG (“Healthcare Provider(s)”) to communicate online in a secure environment with their patients who have been invited by the Healthcare Provider to use the Services and who have registered with DSG (“Patients”).


Personal Information in this Privacy Policy means an individual’s identifying information such as name and date of birth that is collected, used and/or disclosed by DSG in the course of providing the Services to you and includes personal health information such as health card number, medical test results, uninsured services used and email communication sent by your Healthcare Provider to you containing medical advice.



Collection and Use of Personal Information

DSG collects and uses Personal Information from you in a variety of ways including, but not limited to, when you register on the Site, and in connection with other activities, services, features or resources available on the Site. You may be asked for Personal Information, as appropriate, including name, email address, date of birth and phone number. Personal Information collected by DSG is used to provide you with the Services and support. You may visit our Site anonymously. We will collect Personal Information from you only if you voluntarily submit such information to us. You can always refuse to submit Personal Information, however, it may prevent you from engaging in certain Site related activities and may affect the Services that we provide to you.


DSG may collect your Personal Information for the following purposes:

  1. To create an account (“Account”): We will use Personal Information in order to create an Account. Personal Information collected is used solely to provide you with the Services.
  2. To communicate with you: We may use the email address you provide to respond to your inquiries, questions, and/or other requests and to issue receipts.
  3. To assist Healthcare Providers: We collect and use Personal Information received from Healthcare Providers and/or their Patients to enable them to exchange messages and communicate through DSG Secure.
  4. To maintain your Account: We also collect and use Personal Information to maintain your Account and process payments for Services.

We do not share Personal Information with outside parties except to the extent necessary to provide the Services.


All Personal Information collected from a Healthcare Provider or Patient is stored in a record (“Record”) which can be accessed by the Healthcare Provider through DSG Secure.


We may collect non-personal information about you whenever you interact with our Site. Non-personal information may include the browser name, the type of computer and technical information about you, means of connection to our Site, such as the operating system, the Internet service providers you utilize and other similar information.



Web Browser Cookies

Our Site may use "cookies" to enhance User experience. Your web browser places cookies on your hard drive for record-keeping purposes and sometimes to track information about you. You may choose to set your web browser to refuse cookies, or to alert you when cookies are being sent. If you do so, note that some parts of the Site may not function properly.



Consent and Withdrawal of Consent

You consent to the collection, use and disclosure of your Personal Information in accordance with this Privacy Policy in order for DSG to provide you with the Services. You may withdraw consent to certain uses or disclosures of your Personal Information with reasonable notice and subject to legal and contractual restrictions. When we receive a consent directive from you or your authorized representative, we will act on your instruction and, if applicable, inform the appropriate Healthcare Provider. Such withdrawal of consent may limit DSG’s ability to provide you with the Services.



Limits on Collection

DSG limits the collection and use of Personal Information to that which is required for the purposes identified above. DSG does not collect Personal Information or allow Personal Information to be used other than for the purposes identified above except with your express consent or as required by law.



Limiting Use, Disclosure and Retention of Personal Information

Due to the sensitive nature of the Personal Information that we collect, we will not use or disclose such Personal Information other than for those purposes for which it is collected except with your consent or as required or permitted by law.


We will not sell, lease or trade your Personal Information to any third parties. We may share generic aggregated demographic information not linked to any Personal Information regarding visitors and users with our business partners, trusted affiliates and advertisers.


Access to Personal Information is limited to the DSG personnel who require it to provide the Services.

If you are using the Services, we may disclose your Personal Information to the Healthcare Provider(s) to whom you have given access to in the course of using the Services.


From time to time, we use the services of third party contractors and service providers in the operation of our business, and may disclose your Personal Information to them when using their services. We limit access to Personal Information by such third parties to that which is necessary for performing their services. For example, hosting of data, including Personal Information, on servers operated by third party hosting companies. We use service providers that we believe are reputable and who are able to satisfy our expectations in connection with secure handling of personal information. Personal Information collected by us may be stored or processed outside of Canada in jurisdictions such as the USA. Such Personal Information may be subject to the legal regulations of those countries/governmental jurisdictions. We cooperate with law enforcement authorities and demands for information that are legally made by such authorities.



Accuracy

We are committed to ensuring that your Personal Information on record is accurate, complete and up to date. You are responsible for notifying us of any relevant changes in your Personal Information. You can notify us of any changes using the contact form.



Accessing Your Personal Information

We will ensure that you can access your Personal Information upon request subject to certain exceptions under applicable privacy laws. We will comply with applicable laws when such request is made. Please note that the right to access your Personal Information is not absolute and we may decline such access requests where required to do so under applicable law.


We will not give Patients access to Personal Information that we collect or use on behalf of their Healthcare Provider that they would not generally have access to through their use of the Services. Requests for access to such information must be made to your Healthcare Provider.



Safeguarding Your Personal Information

We adopt appropriate data collection, storage and processing practices and security measures to protect against unauthorized access, alteration, disclosure or destruction of your Personal Information, stored on our Site. We encrypt your Personal Information when it is stored or transferred offsite and protect our servers and other unencrypted storage with physical security. We ensure that sensitive and private data exchanged between the Site and its Users happens over a TLS/SSL secured communication channel and is encrypted and protected with digital signatures, and requires strong passwords for access.


Although recognized industry standards are used to protect your Personal Information from unauthorized access to or disclosure of such Personal Information, we cannot guarantee complete confidentiality and security over the Internet. Internet use and communication is at risk of interception. You acknowledge and agree that we shall not be responsible for any damages you may suffer as a result of transmission of Personal Information over the Internet and that any communication is at your own risk.



Deletion and Retention of Personal Information

We retain Personal Information only as long as is necessary for the fulfillment of the purposes identified above or as required by law, which may be after the termination of DSG’s relationship with you. You must notify DSG using the contact form if you want to close your Account and no longer want your Personal Information to be retained by DSG

You acknowledge and agree that it may not be possible for DSG to completely delete all Personal Information due to technological and legal restrictions. In addition, your Healthcare Provider may have retained copies of your Record in accordance with their own privacy policy which DSG does not have control over.



Your Responsibilities

You are responsible for safeguarding your Personal Information and for ensuring that you do not disclose your Account access information to third parties. This includes but is not limited to, keeping Account passwords private, not sharing Account passwords with anyone else, ensuring that sufficient security software is installed and running on your computer or device such as anti-virus software, network firewalls and a properly encrypted wireless connection that will prevent third party access. You will notify us immediately of a privacy or security breach that may impact the Services, such as compromise of your email or Account password. DSG is not responsible for any failure by you to secure your own device and its access to the internet, your use of public or unsecured networks or failure to eliminate malware all of which could make your Account susceptible to a privacy breach.



Concerns and Contact

If you have any questions or concerns about this Privacy Policy and its application to your Personal Information, or for any access or correction requests, please contact us at:


Doctors Services Group
146 Laird Dr. Suite 203
Toronto, ON
M4G 3V7
(416) 447-3666


Email: Please use our contact form.