At ModernManHealth.com, safeguarding your confidentiality and protecting your protected health information (“PHI”) is a primary concern. As part of this commitment, ModernManHealth.com has followed Ten Privacy Principles to govern our actions as they relate to the use of PHI. The Ten Privacy Principles are as follows:
Principle 1 – Accountability. ModernManHealth.com is responsible for maintaining and protecting any PHI under our control. In fulfilling this mandate, ModernManHealth.com has designated an individual who is accountable for our compliance with the Ten Privacy Principles.
Principle 2 – Identifying Purposes. The purposes for which PHI is collected shall be identified before or at the time the information is collected.
Principle 3 – Consent. The knowledge and consent of the customer is required for the collection, use or disclosure of PHI except where otherwise required or permitted by law.
Principle 4 – Limiting Collection. The PHI collected must be limited to those details necessary for the purposes identified by ModernManHealth.com. PHI must be collected by fair and lawful means.
Principle 5 – Limiting Use, Disclosure and Retention. PHI may only be used or disclosed for the purpose for which it was collected unless the Customer has otherwise consented, or when it is required or permitted by law. PHI may only be retained for the period of time required to fulfill the purpose for which it was collected.
Principle 6 – Accuracy. PHI must be maintained in as accurate, complete and up-to-date form as is necessary to fulfill the purposes for which it is to be used.
Principle 7 – Safeguarding PHI. PHI must be protected by security safeguards that are appropriate to the sensitivity level of the information.
Principle 8 – Openness. ModernManHealth.com is required to make information available to Customers concerning the policies and practices that apply to the management of their PHI.
Principle 9 – Customer Access. Upon request, a Customer shall be informed of the existence, use and disclosure of their PHI, and shall be given access to it. Customers may verify the accuracy and completeness of their PHI, and may request that it be amended, if appropriate.
Principle 10 – Handling Customer Complaints and Suggestions. Customers may direct any questions or enquires with respect to the privacy principles outlined above or about our practices by contacting ModernManHealth.com’s Privacy Officer.
The guidelines below, in tandem with the Health Insurance Portability and Accountability Act (“HIPAA”) as well as our HIPAA Compliance Policy, set forth the principles we use in gathering, using, maintaining, and protecting PHI you provide us.
The Types of Protected Health Information (“PHI”) We Collect
ModernManHealth.com gathers and uses only such PHI that is necessary for providing our services and fulfilling your orders. It typically includes the following personal information:
a) Name; b) mailing address; c) e-mail address; d) telephone numbers; e) occupation; f) employment status; g) age; h) height; i) weight; j) sex; k) date of birth; l) referral source; m) name of your primary physician and his or her contact information; n) existence and types of drug allergies; o) medications requested; p) family medical history information; q) your personal medical history information; r) details of your existing medications; s) credit card information (including card type and number, expiry date and name of card holder); t) banking information (including transit and account numbers); and u) prescription information.
The choice to provide us with PHI is always yours. However, your decision to withhold particular details may limit the products and services we are able to provide and make it more difficult for us to advise you or suggest appropriate alternatives. If we are unable to accommodate your request based on the information that has been provided, we may ask for additional details in order to identify other ways to be of assistance. We may also maintain a file containing contact history that is used for customer inquiry purposes.
We may collect anonymous/non-personal information. Anonymous/non-personal information is information that cannot be associated with or traced back to a specific individual or business entity.
The Purposes for which we use Protected Health Information (“PHI”)
We use your PHI to communicate with you, enhance your visit to our website, allow processing of your prescription orders, and effectively provide the products and services you have requested. In accordance with HIPAA as well as our HIPAA Compliance Policy, we may also provide your PHI to an affiliated company, a licensed pharmacy or to a prescribing physician in order to fulfill your prescription.
We may, with your prior authorization and in accordance with HIPAA as well as our HIPAA Compliance Policy, use your PHI to offer additional products and services sold by ModernManHealth.com. In the event of a sale of all or substantially all of the assets of ModernManHealth.com, records containing PHI may be transferred to the purchaser. We will not furnish your PHI to an outside organization for its use in marketing or solicitation without your prior authorization.
In some instances such as a legal proceeding or court order, we may also be required to disclose certain PHI to authorities. Only the PHI specifically requested is disclosed and we will take precautions to satisfy ourselves that the authorities who are making the request have legitimate grounds to do so.
There are some situations where we are legally permitted to disclose PHI such as employing reasonable and legal methods to collect a delinquent account, a medical emergency or suspicion of illegal activities.
We sometimes contract outside organizations to perform specialized services in coordinating and managing your healthcare. Our trusted service suppliers may at times be responsible for processing and handling some of the PHI we have received from you.
In the event that your PHI is to be used or disclosed for a purpose not expressly stated herein or in our HIPAA Compliance Policy, we will obtain your prior authorization before such use or disclosure takes place.
When you visit our website, information is not collected that could identify you personally unless you choose to provide it voluntarily. You are welcome to browse our website at any time anonymously and privately without revealing any PHI about yourself.
We use current technologies and maintain security standards to ensure that your PHI is protected against unauthorized access, disclosure, inappropriate alteration, or misuse. All safety and security measures are also appropriate to the sensitivity level of your PHI. Electronic client files are kept in a secured environment with restricted access. Paper-based files are stored in restricted access areas.
We manage our server environment appropriately and our firewall infrastructure is strictly adhered to. Our security practices are reviewed periodically and we employ current technologies to assist us in protecting the confidentiality and privacy of your PHI.
In the course of daily operations, we attempt to restrict access to PHI to authorized employees who have a legitimate business purpose and reason for accessing it. As a condition of their employment, all employees of ModernManHealth.com are required to sign a confidentiality agreement, abide by the privacy standards we have established and to follow all applicable laws and regulations. Unauthorized access to and/or disclosure of PHI by an employee of ModernManHealth.com is strictly prohibited. All employees are expected to maintain the confidentiality of PHI at all times and failing to do so will result in appropriate disciplinary measures, which may include dismissal.
In the event of a security breach, you will be notified as soon as possible if it is believed that your PHI has been accessed, acquired, used, or disclosed.
Accessing and Amending Your Protected Health Information (“PHI”)
Decisions are often made based on the information we have. Therefore, it is important that your PHI is accurate and complete. As a customer, you have the right to access, verify and amend the PHI held in your personal and financial files.
To help us keep your PHI up-to-date, we encourage you to amend inaccuracies and make corrections as often as necessary. Despite our efforts, errors sometimes do occur. Should you identify any incorrect or out-of-date PHI in your file(s), we will make the proper changes and provide you with a copy of the corrected PHI. Where appropriate, we will communicate these changes to other parties who may have unintentionally received incorrect PHI from us.
If you have any questions or concerns regarding the nature, purpose and consequences of our collection, use, or disclosure of your PHI, please contact us.
Customers may direct any questions or enquires with respect to our practices or your personal information by contacting our Privacy Officer, as follows:
Modern Man Health
400- 500 Portage Ave
Winnipeg, MB, Canada
Attention: Privacy Officer
Telephone No. (888) 206-2701
Facsimile No. (888) 533-9698
E-Mail: [email protected]
Updating this Policy
last updated: April 19, 2021