The updates to the Privacy Statement apply to your use of the Services when you view, access, or otherwise use the Services. To fully understand the changes and terms that will govern your use of our Services, please fully read the Privacy Statement.
Specifically, the most recent changes include:
- Clarifying certain sections to address requirements under the California Consumer Privacy Act (“CCPA”) such as the categories of personal information collected, used, and shared; and,
- Updating, clarifying, and simplifying existing language.
At QRepublik, your privacy is a top priority. QRepublik is committed to being a good steward of your Personal Information (defined below), handling it in a responsible manner, and securing it with administrative, technical, and physical safeguards.
We also believe in being honest, direct, and transparent when it comes to your data. QRepublik follows three guiding principles when it comes to your privacy:
- Transparency. We work hard to be transparent about what Personal Information we collect and process.
- Simplicity. We try to use easy-to-understand language to describe our privacy practices to help you make informed choices.
- Control. We give you control over the Personal Information you provide to us, including any of your personal health information, and how it is used, shared, and retained.
Other Important Things for You To Understand When You Use Our Services
You always maintain ownership of your Personal Health Information (PHI) (defined below)—you can manage and delete it as described in this Privacy Statement. Our full Privacy Statement is below, and we encourage you to read it. It covers all QRepublik websites, services, and mobile apps that link to this Privacy Statement.
3. Collecting and Using Your Personal Data
Types of Data Collected
Usage Data is collected automatically when using the Service.
Usage Data may include information such as Your Device's Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Service that You visit, the time and date of Your visit, the time spent on those pages, unique device identifiers and other diagnostic data.
When You access the Service by or through a mobile device, We may collect certain information automatically, including, but not limited to, the type of mobile device You use, Your mobile device unique ID, the IP address of Your mobile device, Your mobile operating system, the type of mobile Internet browser You use, unique device identifiers and other diagnostic data.
We may also collect information that Your browser sends whenever You visit our Service or when You access the Service by or through a mobile device.
Information from Third-Party Social Media Services
The Company allows You to create an account and log in to use the Service through the following Third-party Social Media Services:
If You decide to register through or otherwise grant us access to a Third-Party Social Media Service, We may collect Personal data that is already associated with Your Third-Party Social Media Service's account, such as Your name, Your email address, Your activities or Your contact list associated with that account.
While using Our Service, We may ask You to provide Us with certain personally identifiable information that can be used to contact or identify You. Personally identifiable information may include, but is not limited to:
First name and last name
Address, State, Province, ZIP/Postal code, City
Information Collected while Using the Application
While using Our Application, in order to provide features of Our Application, We may collect, with Your prior permission:
We use this information to provide features of Our Service, to improve and customize Our Service. The information may be uploaded to the Company's servers and/or a Service Provider's server or it may be simply stored on Your device.
You can enable or disable access to this information at any time, through Your Device settings.
|Last Name||must be distributed||Personal Identification|
|Name||must be distributed||Personal Identification|
|Middle name (if any)||distributed at the option of the subject|
|Year of birth||must be distributed||Personal Identification|
|Birth month||must be distributed||Personal Identification|
|Date of birth||must be distributed||Personal Identification|
|Address||distributed at the option of the subject||If the swipe is switched to the YES position|
|Diseases||distributed at the option of the subject||If the swipe is switched to the YES position|
|Insurance Information||distributed at the option of the subject||If the swipe is switched to the YES position|
|Emergency Contact Points||distributed at the option of the subject||If the swipe is switched to the YES position|
|Allergies||distributed at the option of the subject||If the swipe is switched to the YES position|
|Attending physicians||distributed at the option of the subject||If the swipe is switched to the YES position|
|Procedures||distributed at the option of the subject||If the swipe is switched to the YES position|
|Laboratory Research||distributed at the option of the subject||If the swipe is switched to the YES position|
|Vaccination||distributed at the option of the subject||If the swipe is switched to the YES position|
|Medicines||distributed at the option of the subject||If the swipe is switched to the YES position|
|Medical digital documents||distributed at the option of the subject||If the swipe is switched to the YES position|
|Responsible Persons||distributed at the option of the subject||If the swipe is switched to the YES position|
|Additional Information||distributed at the option of the subject||If the swipe is switched to the YES position|
|Pregnancy||distributed at the option of the subject||If the swipe is switched to the YES position|
|Special categories of personal data*|
|Race||distributed at the option of the subject||If the swipe is switched to the YES position|
|Nationality||distributed at the option of the subject||If the swipe is switched to the YES position|
|Health status||distributed at the option of the subject||If the swipe is switched to the YES position|
|Biometric Personal Data**|
|Biometric Personal Data||distributed at the option of the subject||If the swipe is switched to the YES position|
and other medical and health information you choose to share with us; and (e) other information that you voluntarily choose to provide to us including without limitation your Social Security Number, unique identifiers such as passwords, and Personal Information in e- mails or letters that you send to us. You may still access and use some of the Services if you choose not to provide us with some Personal Information, but certain features may not be accessible to you as a result.
Please note: Information about deceased persons is not Personal Information under this Privacy Statement.
4. Billing Information
5. Traffic Data
We also may automatically collect certain data elements when you use the Services, such as (a) IP address; (b) domain server; (c) type of device(s) used to access the Services; (d) web browser(s) used to access the Services; (e) referring webpage or other source through which you access the Services; (f) geolocation information; and (g) other statistics and information associated with the interaction between your browser or device and the Services (collectively “Traffic Data”). Depending on applicable law, some Traffic Data may be Personal Information. We may also collect addition information, which may be Personal Information, as otherwise described to you at the point of collection or pursuant to your consent.
6. HIPAA and PHI
Under a federal law called the Health Insurance Portability and Accountability Act (“HIPAA”), some of the demographic, health and/or health-related information that QRepublik collects as part of providing the Services may be considered “protected health information” or “PHI.” Specifically, when QRepublik receives identifiable information about you from or on behalf of your Healthcare Providers, this information is PHI. HIPAA provides specific protections for the privacy and security of PHI and restricts how PHI is used and disclosed. QRepublik may only use and disclose your PHI in the ways permitted by your Healthcare Provider(s). If you choose to use the Services, you agree that QRepublik may use and disclose your PHI in the same way it uses and discloses your Personal Information that is not PHI.
QREPUBLIK ENABLES PATIENTS TO VOLUNTARILY AND SELECTIVELY TRANSMIT PHI TO TRUSTED HEALTHCARE PROVIDERS. THIS FEATURE IS INTENDED TO STREAMLINE PATIENT INTAKE WORKFLOWS, IMPROVE COMMUNICATION, AND FACILITATE CARE DELIVERY.
7. How We Collect Information
We collection information (including Personal Information and Traffic Data) when you use and interact with the Services, and in some cases from third-party sources. Such information includes (but is not limited to): when you use the Services’ interactive tools and services, when you voluntarily provide information via health assessment questionnaires, when you use the “Contact Us” function on the Site, send us an e-mail, or otherwise contact us.
8. How We Use Information
We use the information we collect, including Personal Information, to provide and continuously improve the Services. In particular, we use this information to: (a) help Patient Users consolidate important medical information; (b) enable Patient Users to transmit important medical information to trusted care providers; (c) communicate patient-reported information to patient- selected care providers; and (d) send Patient Users alerts to help better manage health concerns. When QRepublik users use the Services to query state immunization registries to access personal and/or family immunization records, QRepublik will collect user-reported information (e.g., First Name, Last Name, Date of Birth, Sex, cellphone number, and/or e-mail). QRepublik retrieves and stores information from state immunization registries such as but not limited to immunization records (including line-level detail about shots such as when and where immunizations were administered, immunization manufacturer, and other relevant clinical information), immunization forecasting schedules, allergies, contradictions, immunities, home address, and renderings of official state-issued immunization reports and certificates. QRepublik primarily stores immunization data for the user’s enjoyment. QRepublik reports deidentified immunization-related data (e.g., number of immunization records obtained using QRepublik) to state immunization registries and other public health partners. We may use information that is neither Personal Information nor PHI (including non-PHI Personal Information that has been de-identified and/or aggregated) to better understand who uses QRepublik and how we could enhance our products and services.
9. Disclosure of Information
We may disclose certain information that we collect from Patient Users. In particular, we may disclose certain information, including Personal Information and/or PHI, when: (a) Patient Users transmit medical data to patient-selected care providers (by using QRepublik to scan a care provider’s QRepublik QR code); (b) we believe that Patient Users experience emergency medical situations; and (c) when Patient Users use QRepublik to remotely update care providers. QRepublik will not disclose Personal Information without your consent. We do not sell e-mail addresses to third parties. We may, however, share your e-mail addresses with our business partners to enable them to help QRepublik customize our advertising. We may use information that is neither Personal Information nor PHI (including non-PHI Personal Information that has been de-identified and/or aggregated) to better understand who uses QRepublik and how we could enhance our products and services. We may also need to disclose your Personal Information or any other information we collect if we determine in good faith that such disclosure is needed to: (a) comply with applicable law, regulation, court order, or other legal process; (b) protect the rights, property, or safety of QRepublik or another party; (c) enforce the Agreement or other agreements with you; or (d) respond to claims that any posting or other content violates third-party rights.
10. Public Information
MEDICATION REMINDERS WITHIN THE APP
The QRepublik Application is intended as a helpful backup reminder system that you can personalize for taking your medications. You should not and must not rely on the Application as your primary tool for determining whether and when to take medication, the Application might not function as intended. Specifically, the Application will not operate properly if your device is broken or powered off, if the Application software is not enabled or if any hardware or software on your device prevents the Application from operating as intended. The maintenance of your mobile and computing devices is under your responsibility. You acknowledge that the Application, and the utility of any of its alerts or notifications, depends on information that you input into the Application. You are solely responsible for ensuring that the correct medication is taken at the proper times and in the proper dosages. Persons using the Application assume full responsibility for the use of the Application and agree that we are not responsible or liable for any claim, loss, or damage arising from the use of the Application.
11. Information Security
12. Information Provided by or on Behalf of Children
The Services are not intended for use by children under the age of 13. QRepublik does not knowingly collect information from children, not are the Services directed to children. By accessing, using and/or submitting information to or through the Services, you represent that you are not younger than age 13. If we learn that we have received any information directly from a child under age 13 without his/her parent’s consent, we will use that information only to respond directly to that child (or his/her parent or legal guardian) to inform the child that he/she cannot use the Services and subsequently we will delete that information. If you are between age 13 and the age of majority in your place of residence, you may use the Services only with the consent of or under the supervision of your parent or legal guardian. If you are a parent or legal guardian of a minor child, you may, in compliance with the Agreement, use the Services on behalf of such minor child. Any information that you provide us while using the Services on behalf of your minor child will be treated as Personal Information as otherwise provided herein.
QRepublik does not rent, sell, or share your Personal Information within third parties except to provide products or services you’ve previously requested, or unless we have your express permission, or under the following circumstances:
13. Controlling Personal Information
Registered Patient Users may view and modify certain data elements, including Personal Information, submitted to QRepublik. QRepublik reserves the right to retain information from closed accounts, including to comply with law, prevent fraud, resolve disputes, enforce the Agreement, and take other actions permitted by applicable law.
14. Immunization Records
If you choose to utilize the Services to search state and local immunization registries, you authorize QRepublik to query state immunization registries identified in the application and certify that you are authorized to access any relevant immunization records you obtain through QRepublik. QRepublik utilizes user-provided data (i.e., First Name, Last Name, Date of Birth, Sex, and your verified cellphone or e-mail addresses) to search state and local immunization registries. QRepublik verifies your cellphone and/or e-mail addresses via multi-factor authentication. If you believe that anybody has unauthorized access to any of your cellphone numbers or e-mail addresses, you must rectify the situation immediately by either a.) changing all relevant passwords or b.) contacting your state or local immunization registry. If you believe that an estranged spouse, partner, or anybody not authorized to access your child’s records has access to your child’s records through QRepublik, you must contact your state or local immunization registry immediately to resolve any custody-related issues
15. Additional Disclosures for California Residents
This section applies to California residents when and if the California Consumer Protection Act is applicable to our Site and Services about whom we have collected Personal Information, including through the use of our Site or Services, by purchasing or utilizing our Service, or by communicating with us electronically, in paper correspondence, or in person. For purposes of this section, the term "Personal Information" includes information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular California consumer or household.
We may disclose the following types of Personal Information to third parties for a business or commercial purpose, as further described: identifiers, medical and health insurance information, protected classifications under applicable law, commercial information, biometric information, internet or similar network activity, geolocation data, sensory data, professional or employment-related information, alerts for upcoming or overdue immunizations, and inferences from other Personal Information. Functionality within the QRepublik platform enables consumers to consolidate and share Personal Information with care providers.
You may be entitled by applicable law to exercise the following rights with respect to your Personal Information:
- Right to Know. You have the right to request what Personal Information we collect, use, disclose, and/or sell, as applicable.
- Right to Delete. You have the right to request that we delete the Personal Information that we have collected about you.
- Right to Opt-out of the Sale of Personal Information. You have the right to request to be opted-out from the sale of your Personal Information.
- Right to Non-Discrimination. You have the right not to receive discriminatory treatment by us for the exercise of the privacy right described herein.
You may also authorize someone to exercise the above rights on your behalf. If we have collected information on your minor child (e.g., immunization records), you may exercise the above rights on behalf of your minor child. In addition, residents of California also have the right to request once per calendar year certain information with respect to types of Personal Information (as defined by California law) we share with third parties for those third parties’ direct marketing purposes, as the identities of the third parties with whom we have shared such information during the immediately preceding calendar year.
The above rights are subject to our ability to reasonably verify your identity and authority to make these requests by providing verifiable information such as the following:
- Provide sufficient information that allows us to reasonably verify you are the person about whom we have collected Personal Information or an authorized representative.
- Describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it. We cannot respond to your request if we cannot verify your identity or authority to make the request and confirm the Personal Information relates to you.
To exercise your rights, submit your request by e-mail at firstname.lastname@example.org. We will respond to authorized and verified requests as soon as practicable and as required by law. In addition, the above rights are subject to various exclusions and exceptions under the law, and, under certain circumstances, we may be unable to implement your request. We will advise you of any reason for denying or restricting a request.
16. COVID-19 Immunization Records
Through partnership with public health agencies, QRepublik offers consumer access to COVID-19 immunization records. As such, QRepublik only accesses personal and sensitive data required directly to support COVID-19-related efforts. Specifically, QRepublik uses this data to facilitate consumer access to personal and family immunization records.
QRepublik supports the capability for users to select a profile picture. This functionality is entirely optional. QRepublik users that choose to select a profile picture will need to engage their phone’s camera and/or saved photos.
18. External File Storage
QRepublik supports the capability for users to share and/or save a PDF copy of their personal and family immunization records. As such, QRepublik may require access to read and/or write to your phone’s file storage.
20. Account Creation and Your Engagement with QRepublik
The Personal Information required to create an account with QRepublik is limited to your name, an email address, password, country.
|Credit Card/Payment Information||Payment information, such as your credit card number, and your billing and shipping address(es), when you make a purchase.|
|Profile Information||We collect the information that you provide when you voluntarily create a user profile (for example, a profile image, your name, age, or location). This information may be seen by other Users (defined in the QRepublik Terms and Conditions, so please consider limiting this information and using a username that is different from your real name to protect your privacy.|
|User Provided Content||Information you provide when you voluntarily contribute to the Services, for example, content you upload or contributions to community discussions, and, information you voluntarily provide in response to our email surveys, or questionnaires available through the Services. This may include health or medical information.|
|Note About Health-Related Information||QREPUBLIC INC is not a covered entity under the Health Insurance Portability and Accountability Act (“HIPAA”), and as a result no User Provided Content as defined in the QRepublik Privacy Statement) provided by you is subject to or protected by HIPAA.|
|Your Communications||Your communications with other Users through our communications features and information you provide in communications with QRepublik community and support teams for our other Services, including audio and visual information (such as recordings of calls with QRepublik Customer Services or information voluntarily shared when doing consumer insights research).|
|Contests and Promotions||Personal Information when you voluntarily participate in contests and special promotions we run or sponsor.|
|Other Protected Classifications and Sensitive Data||We may collect information related to certain protected classifications such as gender or marital status.|
Account creation also requires you to agree to the QRepublik Terms and Conditions and this Privacy Statement.
By creating an account, you are telling us that you understand QRepublik will collect, process, and share your Personal Health Information as described in this Privacy Statement.
Access to QRepublik content is self-generated.
At any time, you can delete information you have uploaded into your account. You can also delete your entire account.
QRepublik maintains a comprehensive information security program designed to protect our customers’ Personal Information using administrative, physical, and technical safeguards.The specific security measures used are based on the sensitivity of the Personal Information collected. We have measures in place to protect against inappropriate access, loss, misuse, or alteration of Personal Health Information under our control.The QRepublik IT Team regularly reviews our security and privacy practices and enhances them as necessary to help ensure the integrity of our systems and your Personal Information. We use secure server software to encrypt Personal Health Information, and we only partner with security companies that meet and commit to our security standards. While we cannot guarantee that loss, misuse, or alteration of data will not occur, we use reasonable efforts to prevent this. It is also important for you to guard against unauthorized access to your Personal Information by maintaining strong passwords and protecting against the unauthorized use of your own computer or device.
22. Availability of Services
Although we aim to offer you the best possible service we make no promise that the Services will be without fault or interruption. If any fault occurs, you should report it to email@example.com and we will attempt to resolve the issue as soon as we reasonably can.
23. Linking your Medical ID to your profile
We choose to meet the highest possible standards to earn your trust.
For your safety, your Medical ID can only be linked to one profile, it is impossible to untie or change the owner of your Medical ID in the future. You can block it at any time by clicking the "block" button in the corresponding section
24. Changes to This Statement
We may modify this Privacy Statement at any time, but we will provide prominent advance notice of any material changes to this Statement, such as posting a notice through the Services, on our websites, or sending you an email, to provide you the opportunity to review the changes and choose whether to continue using the Services.
We will also notify you of non-material changes to this Statement as of their effective date by posting a notice through the Services, on our websites, or sending you an email.
If you object to any changes, you may delete your account as described below.
25. Identity and Contact Details of the Data Controller
If you reside in the United States or Outside the United States, QREPUBLIC, INC. is responsible for the use of your data and for responding to any requests related to your Personal Information.
Contact information for QREPUBLIC, INC. is listed at the bottom of this Statement.
Official Correspondence Can Be Sent Either To:
Email : firstname.lastname@example.org
|For Users Located in the United States||For Users Located Outside of the United States|
10685-B Hazelhurst Dr. # 30482
Houston, TX 77043
10685-B Hazelhurst Dr. # 30482.
Houston, TX 77043
For QRepublik Customers: QRepublik customers can reach us using our number at 1610 244 1396.