1 February 2021
Our Services are provided only in the United States for use by Physicians and U.S. residents that are Patients of those Physicians or more minimally by Visitors. There are three kinds of users of our Services:
We are a service provider to your Physician, and your Physician is providing our services to you as a benefit of your relationship with that Physician. The records, data and information that are stored by our Services are usually controlled by your Physician and may be subject to HIPAA (described below).
Opul provides Services only within the United States of America to residents of the United States. When you use our Services, the information you enter will be sent to and stored in our servers in the United States.
If you are a Patient, our Services are being used by your Physician to store and process information that may include health information that can identify you (known as “Protected Health Information”). The Protected Health Information that we may store, use and disclose depends on what your Physician provides or what you provide as a Patient of your Physician and generally falls into one of these categories:
If you are a Physician or a Visitor, we are not collecting Protected Health Information about you unless you are also a Patient with an account on the Opul Platform, in which case we would collect such information only in your capacity as a Patient.
Through our websites and mobile apps and our other Services, we also collect and store data that we use to provide and improve the functionality of our websites and mobile apps and provide the Services as well as to improve those Services. This section will give you more information about the kinds of information we collect, but the specific information we collect will depend on the type of user you are, and whether you are using our app or visiting our website.
Our goal in using and sharing information is to create better services for visitors, and for Patients and your Physician. Here is how we use and share, or not share, the different kinds of information we collect.
If you are a Physician, you have the ability to access, modify, delete and/or add to the data you provide us, including Patient information.
If you are a Patient and would like to review or request changes to the information that we collect about you, please contact us at email@example.com. Because your account may be a business record for your Physician, our ability to make changes to or delete account information may be limited by applicable law, including HIPAA, or as agreed to between you and your Physician.
The Services have security measures in place to prevent the loss, misuse, and alteration of the information that we obtain from you, but we make no assurances about our ability to prevent any such loss or misuse to you or to any third party.
Opul will retain Personal Information that you or a Physician input into our Services or Personal Information generated by the Opal platform or in certain circumstances by our other Services (i) for a minimum of seven years following the date it is entered or created; (ii) for such longer minimum time period as may be required by law for specific types of information; or (iii) as may be set forth in services agreements between us and/or your Physician or any specific agreements between you and us (the “Retention Period”). Opul may delete data after the Retention Period, but it is not obligated to do so. Subject to applicable law, Opul also may retain data for longer than the Retention Period, but it is not obligated to do so.
Our Services are used by you and your Physician. We do not input, electronically limit or control the input of any data by your Physician.
We understand and are committed to respecting the sensitive nature of children’s privacy online. We provide our Services for use by adults 17 years old and older and do not direct any of our content or Services specifically at persons under 17 years of age. Accounts for Patients under 17 years of age may only be accessed and used by the Patient’s legal guardian. If we learn or have reason to suspect that a Services user is under age 13, we will block that person’s access to the account until it can be verified that the user is over 13. If we learn or have reason to suspect that a Services user is under age 17, we may exercise our right to terminate the account.