Parachute does not knowingly collect or solicit Personal Information from anyone under the age of 13 or knowingly allow such persons to register on the Services.
In the event that we learn that we have collected Personal Information from a child under age 13 without verification of parental or guardian consent, we will delete that information. If you believe that we might have any information from or about a child under 13 without parental or guardian consent, please contact us.
Upon registration with the Services, a user profile is required to customize the functionality surfaced to the user. We collect certain personally identifiable information, including name, email, licenses required for certain authorizations, and professional affiliation (collectively, “Personal Information”).
A. Information We Collect about Patients
We may collect the following information about the patient (“Patient”) from the Patient’s applicable clinician (“Clinician”) through the Portal with the Patient’s prior written consent, as applicable, and as obtained by Clinician:
Communication with suppliers and providers
Clinician agrees to obtain all required Patient consents or authorizations before submitting any Patient information to the Portal.
B. Information We Collect About Clinicians
We may collect the following information about the Clinician (or other members of the Clinician’s practice that may assist the Clinician in using the Portal):
C. Information We Collect About Suppliers
We may collect the following information about the supplier:
In addition, the following additional information can be collected via the Portal:
D. Cookies and Authentication Tokens
For security purposes, an authentication token is granted when you provide valid credentials that lasts 4 hours, then cuts off access and re-prompts for credentials again [see VII security for details].
Parachute does not track users across third party websites, and therefore does not use or respond to “do not track” signals in your web browser.
We use the information that we collect from you to provide you with the Services, support and enhance your use of the Services, to monitor which features of the Services are used most and to allow us to determine which features we need to focus on improving. If you choose to provide us with Personal Information, you consent to the transfer and storage of that information on our servers located in the United States.
We may also use your contact information to send you push, email and other types of notifications regarding the prescription or order fulfillment process, or other information that you have requested notifications about. You may opt-out of these communications if you do not wish to receive them.
We use non-Personal Information collected from users of the Services in the aggregate, so that we can improve the Services and for business and administrative purposes.
B. Clinician Information
Information regarding Clinicians is collected via the Portal and is used to create Clinician accounts that can be accessed through the Services. Suppliers are able to see the source of the prescription or other order.
C. Supplier Information
Information regarding Suppliers is collected via the Portal and is used to create Supplier accounts that can be accessed through the Services. Clinicians are able to see the destination of the prescription or other order.
D. Patient Information
Patient information submitted through the Services is used for the processing of patient prescriptions or other orders at the Supplier and for prescribing to Patients by Clinicians.
E. Diagnose Website Problems
Parachute uses your Internet Protocol (IP) address to help diagnose problems with our computer server, and to administer the Website. Your IP address is also used to gather broad demographic data. It is not stored or linked to your personal profile information, such as name or contact information.
F. Service-related Announcements
We will send you strictly service-related announcements on rare occasions when it is necessary to do so. For instance, if our service is temporarily suspended for maintenance, we might send you an email.
Generally, you may not opt-out of these communications, which are not promotional in nature. If you do not wish to receive them, you have the option to deactivate your account.
G. Customer Service
Users are only granted access to our system with a username and password. Upon providing valid credentials, a user is granted an authentication token that lasts 4 hours, then cuts off access and re-prompts for credentials again.
All access to our site is conducted via https (TLS encryption). All internal communications are TLS (Transport Layer Security) encrypted as well. All information we collect is securely stored within our database, and we use standard, industry-wide, commercially reasonable security practices such as 256-bit encryption, firewalls and TSL.
However, as effective as encryption technology is, no security system is impenetrable. We cannot guarantee the security of our database, nor can we guarantee that information you supply won’t be intercepted while being transmitted to us over the Internet, and any information you transmit to Parachute you do at your own risk. We recommend that you use unique numbers, letters and special characters in your password and not disclose your password to anyone. For your protection, Parachute may also require you to use a two-factor authentication process to verify the identity of your account. If you do share your password or Personal Information with others, you are responsible for all actions taken in the name of your account. If your password has been compromised for any reason, you should immediately notify Parachute at firstname.lastname@example.org and change your password.
California Civil Code Section § 1798.83 permits users of our Services that are California residents to request certain information regarding our disclosure of Personal Information to third parties, if any, for their direct marketing purposes (which Parachute does not currently engage in) or choose to opt out of such disclosure. To make such a request, you may contact us by email at email@example.com.
Parachute Health, LLC
Attention: Privacy Officer
120 E 23rd St, FL 5, New York, NY 10010