Yosi Privacy Policy

Our customers trust us to safeguard their privacy and the security of their personal information. We take the privacy of our customers, users, and visitors to our Site seriously and we are committed to providing you with clear and concise terms of privacy policy.​

This Privacy Policy governs the manner in which Yosi, Inc (“Yosi”, “Us”, “We”, “Yosi Service”, “The Service”, “Yosicare”, “Yosi Patient Registration Mobile Application”, “Yosi App”, “Healthy Village”, “Healthy Village App”, “Healthy Village at Claremont”, “Yosi Patient Registration Tablet Application”, “YosiMD”) collects, uses, maintains and discloses information collected from users (each, a “User”) of the www.yosicare.com website (“Site”), the Yosi mobile application (“app”) as available from the Google Play Store ® and the Apple App Store ®, the Yosi MD application and associated services that we provide. This privacy policy applies to the Site and all products and services offered by Yosi, Inc.

Your use of the Yosi Service is governed by this Privacy Policy and the additional terms as set forth in the Terms of Use. By continuing to use the service you agree to the terms as set forth in the Terms of Use as well as to Yosi’s practices of collection, tracking, use, and sharing of all of the categories of your personal information as outlined in this Privacy Policy. If you do not agree with the terms set forth in either the Terms of Use or in this Privacy Policy, please discontinue your use of the Yosi Service. If you are using the service on behalf of someone else (spouse, child, employer etc.), you represent that you are authorized to accept the terms set forth in the Terms of Use and this Privacy Policy on their behalf.

Yosi Service and associated functionalities and are not meant for use by children. By accessing, using and/or submitting information into the service, you undertake that you are 13 years of age or older. If we discover that a registered user is under the age of 13 years, we will promptly notify said user and proceed to delete the records from the Yosi database.

What Categories of information do we collect?​

Personal Information:

We may collect personal identification information such as but not limited to, name, phone number, email address, address, gender, date of birth, health insurance details from Users in a variety of ways, including, but not limited to, when Users visit our Site, register on the Site, download and register with the Yosi App, register with YosiMD at the doctor’s office, subscribe to the newsletter, respond to a survey, fill out a form, and in connection with other activities, services, features or resources we make available on our Site and/or the Yosi App and YosiMD.

Users may be asked for, as appropriate, name, email address, mailing address, phone number. We collect personal identification information from Users only if they voluntarily submit such information to us. Users can always refuse to supply Personally Identifiable Information (PII), and/or Protected Health Information (PHI) except that it may prevent them from engaging in certain Site and/or Yosi App related activities.

Users may voluntarily supply Yosi with the following aspects of Personally Identifiable Information(PII) and/or Protected Health Information (PHI) in order for Yosi to to provide its primary purpose functionalities. The User’s decision not to provide this information may affect their ability to avail of some of functionalities offered through The Service:

a. Users phone number – This information is collected either voluntarily from the User or from their healthcare or social care provider. Users may receive text messages from their healthcare provider or the social worker via the Yosi Service. Users sharing their phone numbers with their health care provider or their social worker will be considered as implicit permission to receive text messages from The Service on behalf of these entities. Based on this implicit permission (in some renderings of The Service where the partner entity requires us to do so) Yosi will send an initial Subscribe/Unsubscribe text message which gives the User the option to stop receiving any further text messages. When the User explicitly shares this information with The Service, they consent to a default set of texting options which, where applicable, they can alter from within The Service (some renderings of The Service are mainly informational in nature and rely on the User’s preferences to disseminate relevant information to the User’s devices. In these renderings the User has the ability to modify their text messaging preferences from within The Service.)

b. Information such as, but not limited to Social Security Numbers and Date of Birth of the User and the primary insurance holder (if applicable), under whose health insurance the User is covered. By continuing the use of The Service, the User is acknowledging that they are authorized to accept this Privacy Policy on behalf of the primary insurance holder under whose insurance coverage the User is covered.

c. Protected Health Information such as, but not limited to medical history and medications, past surgeries, allergies and past medical visits.

d. If you have opted to aggregate your Health Kit ® or Google Fit ® data into the Yosi App, we may collect this information on your behalf.​

Users may also provide us with electronic signatures (or esign) in different sections of the Yosi Service. The signature may be collected in the form of actual signature placed by the user on a touchscreen device (with or without the assistance of a pointing device), placing an image of the user’s signature where required and/or electronic acknowledgement (by performing an action on the service) which can be construed as e-signature due to the unique nature of the login credentials provided to each user. The user acknowledges that in providing such electronic signature, they have read and understood the particular section to which the esign pertains and that their electronic signature can and will be used in lieu of their signature on paper (the use of which the Yosi service is striving to eliminate)

Non-personal identification information:

We may collect non-personal identification information about Users when they interact with Yosi.. Non-personal identification information may include the browser name, the type of computer and technical information about Users’ means of connection to our Site and/or the Yosi App, such as the operating systems, the device Ids, location, the Internet service providers utilized, and other similar information.

Web browser cookies

The Yosi Service stores a cookie on your computer if you have cookies enabled. If you do not have cookies enabled, you may not be able to use some features of the Yosi Service. A cookie is simply a text file, which indicates your Yosi session identification number. This cookie will only be returned to our server if your browser is set to allow sending of cookies (you can also set it to check for permission before sending cookies).

We use cookies for a variety of purposes intended to better the Yosi Service. For example, we use this cookie to identify existing users of the Yosi Service when they enter the web site so that we are able to pre-fill their information and so that they may receive a start page more optimized for current subscribers than for new users. We also use a cookie to maintain session information for logged in users, to prevent the need for re-entry of login information when browsing outside the Yosi Service. We reserve the right to use cookies to deliver content specific to your needs and interests. We may also use cookies to track user trends and patterns in order to better understand and improve areas of our sites that our users find valuable. Information collected by Yosi cookies is not linked to your personally identifiable information. We reserve the right to use unaffiliated third parties to provide services such as web analytics and to display ads on our sites. These types of services may utilize cookies. Cookies received with these services are collected by these unaffiliated third parties; we do not have access to this information. These cookies will not be linked to personally identifiable information provided as part of the required information needed to register for the Yosi Service. The use of cookies by our partners is not covered by this Privacy Policy. We do not have access to or control over these cookies.​

Some web browsers incorporate a Do Not Track (DNT) or a similar feature to signal to website operators that the User does not want his/her activities tracked. However, there is currently no industry consensus as to what constitutes a DNT signal and/or the essential/non-essential activities that it may be signaling the website operators to stop tracking. For these reasons many website operators including Yosicare.com do not act on DNT signals. For more information on DNT signals, please visit http://allaboutdnt.com.​

What guidelines do we use to protect your personal information?​

Some of the Protected Health Information (PHI) and Personally Identifiable Information (PII) that we collect are protected under the HIPAA (Health Insurance Portability and Affordability Act) of 1996, more specifically under section 13410(d) of the HITECH (Health Information Technology for Economical and Clinical Health) Act. Yosi’s disclosure of your PHI is strictly guided by these federal rules which require us to obtain specific permission before any disclosure of your PHI.

How we use collected information​

Yosi may collect and use Users’ personal information for the following purposes:

Improve customer service – Information you provide helps us respond to your customer service requests and support needs more efficiently.

Facilitate user transaction – Yosi Service may send the user, emails or text messages to directly facilitate communication between the user and any of their health care providers such as but not limited to medical practices, pharmacies, labs and other associated health care establishments with whom the user is seeking to transact. Your healthcare provider may also contact you directly or via the Yosi Service to communicate transaction related alerts including but not limited to your appointment scheduling, prescription pickup notice, lab result availability and any other related notification.

Personalize user experience – We may use information in the aggregate to understand how our Users as a group use the services and resources provided on our Site.

Improve The Service – We may use feedback you provide to improve our products and services.

Run a promotion, contest, survey or other Site feature – To send Users information they agreed to receive about topics we think will be of interest to them.

Send periodic emails or text messages – We may use the email address and or mobile phone numbers to send the User, information and updates pertaining to their profile and their activities, including but not limited to, text messages on behalf of the User’s healthcare provider regarding upcoming appointments or medication reminders. It may also be used to respond to the User’s inquiries, questions, and/or other requests. If User decides to opt-in to our mailing list, they will receive emails and/or text messages that may include company news, updates, related product or service information, etc. If at any time the User would like to unsubscribe from receiving future emails or text messages, they may do so by contacting us via our Site. Text messages sent on behalf of User’s health care provider are governed by their texting policies and are not subject to Yosi opt-out.

However, in order to ensure the quality of the Yosi Service, Yosi will send you strictly service-related announcements on rare occasions when it is necessary to do so. These include a “Welcome Notice” to confirm new membership, notifications of password changes or “account lockouts”, notification of any material changes to the Terms of Use or to the Privacy Policy and other “customer satisfaction” and “customer service” issues. Generally, you may not opt-out of these communications, which are not promotional in nature. If you do not wish to receive them, you have the option to deactivate your account.​

Yosi may also contact you via push notifications for important reminders and product updates. Explicit permission is sought for use of this mechanism through the mobile operating platforms. At any time during the use of the Yosi App you have the option of activating or deactivating this option from the mobile platform’s settings menu. However, in doing so, you may lose the ability to avail of some advanced features and services provided by Yosi.

How we disclose collected information​

With Yosi, at all times, you control your profile and to whom your Protected Health Information is sent. You should check with your healthcare provider (with whom you may have instructed Yosi to share your PHI) to understand how they protect the privacy of your information once it is shared with them.

You own your PHI and can at any point, decide which portions of this information can be shared, and with whom. Please check the following link for more information on your rights as a patient.

http://www.hhs.gov/hipaa/for-individuals/guidance-materials-for-consumers/index.html

Your personal information will not be sold, shared, rented or traded with any affiliated or unaffiliated third parties, except to provide you with the services as set forth in the Yosi Terms of Use (this may include information exchange with our agents, vendors or service providers who perform functions on our behalf). For example, in order to provide you with the primary purpose services, Yosi may disclose your PHI and PII to the doctor’s office where you specifically direct Yosi to send your information. Yosi may also, upon request from your healthcare provider, share your PHI and PII with the provider, to whom the originally authorized provider is referring you. This may include a referred doctor or specialist’s office, pharmacy, laboratory and/or associated health care services such as physical therapy. Except when being directly referred by your healthcare provider, the timing and the intended recipient of this disclosure is directly controlled by you, the User. Yosi may also share your PHI and PII with the insurance provider who is listed in your profile. This is done for the purposes of eligibility verification and for billing, generation of EoB (Explanation of Benefits) and other insurance related activities pertaining to your transaction. Yosi employs the service of HIPAA compliant fax services to transmit your information to these recipients. Upon your request, the Yosi Service may also email you the information for your personal records. Yosi will employ the use of a secure email service for this purpose.

Additionally Yosi may disclose Protected Health Information (PHI) under the following circumstances:

Required by law. Disclosures of PHI are permitted when required by other laws, whether federal, tribal, state, or local.

Public health. PHI can be disclosed to public health authorities and their authorized agents for public health purposes including but not limited to public health surveillance, investigations, and interventions.

Abuse, neglect, or domestic violence. PHI may be disclosed to report abuse, neglect, or domestic violence under specified circumstances.

Law enforcement. Under specified conditions, disclosure of PHI to law enforcement officials is permitted pursuant to a court order, subpoena, or other legal order such as a search warrant or arrest warrant, to help identify and locate a suspect, fugitive, or missing person; to provide information related to a victim of a crime or a death that may have resulted from a crime, or to report a crime.

Judicial and administrative proceedings. A covered entity may disclose PHI in the course of a judicial or administrative proceeding under specified circumstances.

Oversight. Covered entities may usually disclose PHI to a health oversight agency for oversight activities authorized by law.

Worker’s compensation. The Privacy Rule permits disclosure of work-related health information as authorized by, and to the extent necessary to comply with, workers’ compensation programs.

When you register for the Yosi Service, you agree to authorize disclosures by Yosi to provide you with the primary purpose services of Yosi, and under the legal, regulatory and public health situations enumerated above. Yosi reserves the right to share aggregated information with third parties in which case personal information about you will never be disclosed.

Individuals have a right to an accounting of the disclosures of their protected health information by Yosi. The maximum disclosure accounting period is the six years immediately preceding the accounting request. 

How we protect your information​

Yosi is committed to the safety and security of your personal information. At Yosi, we maintain physical, electronic and procedural safeguards that comply with federal standards to guard your personal information. When you enter personally identifiable information on our registration page, we encrypt that information using at least 128-bit secure socket layer technology (SSL). The Yosi database is physically protected at a secure, third party site and is monitored by security personnel on a 24X7 basis. Only authorized personnel can access the data center, and they must submit to multiple forms of identification including biometric authentication.

Any information that is transmitted from and in between the Yosi Service and the central database or to the customer’s devices, is encrypted both in-motion and at-rest. Additionally all PII and PHI stored in the Yosi database is masked in order to ensure that at no time, Yosi personnel will have a view of customers’ personal information unless specifically requested by the customer for the purposes of troubleshooting or to provide specific forms of customer service. Any access to the data is strictly controlled by a role-based permission mechanism. Each role is thoroughly analyzed to ensure only the most essential data access permissions are granted to it.

Yosi personnel also undergo periodic training on the procedural safeguards required to ensure the safety of customer information. These training include password protection practices, office equipment safeguards and training on the types of data that are deemed sensitive. Periodic disaster recovery tests and penetration tests are conducted to ensure that the Yosi Service is able to recover from equipment failures, network events etc. (not including natural calamities and ‘acts of god’) and to ensure that the latest intrusion techniques are safeguarded against. Policies and procedures are also in-place to ensure that the Yosi equipment and software are periodically patched for latest hardware and software updates and also to keep up with latest antivirus updates.

While every effort has been made to ensure the safety of your personal information, no procedure or technology is a 100% dependable. Consequently, Yosi cannot and does not guarantee the security of your personal information. In the highly unlikely event of a data breach or unauthorized disclosure of your personal information, Yosi commits to inform you as to the timing, nature and the extent of said disclosure (to the extent known to us) as soon as reasonably possible and to the extent required and permitted by law. We will also notify you of the steps we have taken to contain the breach and to prevent similar breaches in the future, and the steps you can take to protect yourself.

Retention of personal information​

In connection with your use of the Yosi service, Yosi will collect and retain your personal information that you provided directly to Yosi, for as long as you are an active User of Yosi. Should you decide to cancel the Yosi service, we will discontinue the collection of information. We reserve the right to retain the information collected up to the date of your cancellation of the Yosi service for as long as is legally required. This requirement is governed by state laws. New York State law requires medical records be retained for a period of 6 years for adults and in case of minors, for a period of 6 years plus 1 year after the minor User turns 18. This data will continue be maintained under the same security and privacy controls that are in place for active Yosi users until such time that it can be safely deleted.

How to change the personal information previously disclosed

​The Yosi Service includes a user profile update form for reviewing or updating personal information provided. If your personally identifiable information provided to Yosi changes, or if you no longer desire our service, you may correct or delete it by logging into Yosi and selecting the appropriate choice on the Yosi menu.​

Third party websites​

Users may find advertising (“ads”) or other content on our Site that link to the sites and services of our partners, suppliers, advertisers, sponsors, licensors and other third parties. We do not control tracking mechanisms or the content or links that appear on these sites and are not responsible for the practices employed by websites linked to or from our Site. In addition, these sites or services, including their content and links, may be constantly changing. These sites and services may have their own privacy policies and customer service policies which may also change from time to time. Browsing and interaction on any other website, including websites which have a link to our Site, is subject to that website’s own terms and policies.

Changes to this privacy policy​

Yosi reserves the right to update this privacy policy at any time. When we do, we will update the Privacy Policy on the Yosi App as well as revise the updated date at the bottom of this page. We encourage Users to frequently check this page for any changes to stay informed about how we are helping to protect the personal information we collect. You acknowledge and agree that it is your responsibility to review this privacy policy periodically and become aware of modifications.​

Your acceptance of these terms

By using this Site and/or the Yosi Apps, you agree to the policy and Terms of Use. If you do not agree to this policy, please discontinue using our Site and/or the Yosi Apps. Your continued use of Yosi following the posting of changes to this policy will be deemed your acceptance of those changes.​

Contacting us

If you have any questions about this Privacy Policy, disputes or complaints regarding the use and handling of your personal information, questions regarding the practices of this Site and the Yosi App, Yosi MD, or your dealings with Yosi in general, please contact us at:

Yosi, Inc
www.yosicare.com
205 E 42nd St Floor 14 New York NY 10017
Phone: (917) 669-9765
Email: support@yosicare.com

This document was last updated on February 2019