Arizona Eye Institute & Cosmetic Laser Center's Privacy Policies
This notice describes how medical information about you may be used and disclosed, and how you can gain access to this information. Please review it carefully.
Protected health information (PHI), about you, is maintained as a written and/or electronic record of your contacts or visits for healthcare services with our practice. Specifically, PHI is information about you, including demographic information (i.e., name, address, phone, etc.), that may identify you and relates to your past, present or future physical or mental health condition and related healthcare services.
Our practice is legally required to maintain the confidentiality of your PHI, and to follow specific rules when using or disclosing this information. This Notice describes your rights to access and control your PHI. It also describes how we follow applicable rules when using or disclosing your PHI to provide your treatment, obtain payment for services you receive, manage our healthcare operations and for other purposes that are permitted or required by law.
Your Rights Under The Privacy Rule
Following is a statement of your rights, under the Privacy Rule, in reference to your PHI. Please feel free to discuss any questions with our staff.
You have the right to receive, and we are required to provide you with, a copy of this Notice of Privacy Practices - We are required by law to follow the terms of this Notice. We reserve the right to change the terms of the Notice, and to make the new Notice provisions effective for all PHI that we maintain. We will provide you with a copy of our current Notice if you call our office and request that a copy be sent to you in the mail, or ask for one at the time of your next appointment. The Notice will also be posted in a conspicuous location in the practice, and if such is maintained, on the practice’s web site.
You have the right to authorize other use and disclosure - This means we will only use or disclose your PHI as described in this notice, unless you authorize other use or disclosure in writing. For example, we would need your written authorization to use or disclose your PHI for marketing purposes, for most uses or disclosures of psychotherapy notes, or if we intended to sell your PHI. You may revoke an authorization, at any time, in writing, except to the extent that your healthcare provider, or our practice has taken an action in reliance on the use or disclosure indicated in the authorization.
You have the right to request an alternative means of confidential communication – This means you have the right to ask us to contact you about medical matters using an alternative method (i.e., email, fax, telephone), and/or to a destination (i.e., cell phone number, alternative address, etc.) designated by you. You must inform us in writing, using a form provided by our practice, how you wish to be contacted if other than the address/phone number that we have on file. We will follow all reasonable requests.
You have the right to inspect and obtain a copy your PHI* - This means you may submit a written request to inspect or obtain a copy of your complete health record, or to direct us to disclose your PHI to a third party. If your health record is maintained electronically, you will also have the right to request a copy in electronic format. We have the right to charge a reasonable, cost-based fee for paper or electronic copies as established by federal guidelines. We are required to provide you with access to your records within 30 days of your written request unless an extension is necessary. In such cases, we will notify you of the reason for the delay, and the expected date when the request will be fulfilled.
You have the right to request a restriction of your PHI* - This means you may ask us, in writing, not to use or disclose any part of your protected health information for the purposes of treatment, payment or healthcare operations. If we agree to the requested restriction, we will abide by it, except in emergency circumstances when the information is needed for your treatment. In certain cases, we may deny your request for a restriction. You will have the right to request, in writing, that we restrict communication to your health plan regarding a specific treatment or service that you, or someone on your behalf, has paid for in full, out-of-pocket. We are not permitted to deny this specific type of requested restriction.
You have the right to request an amendment to your protected health information* - This means you may submit a written request to amend your PHI for as long as we maintain this information. In certain cases, we may deny your request.
You have the right to request a disclosure accountability* - You may submit a written request for a listing of disclosures we have made of your PHI to entities or persons outside of our practice except for those made upon your request, or for purposes of treatment, payment or healthcare operations. We will not charge a fee for the first accounting provided in a 12-month period.
You have the right to receive a privacy breach notice - You have the right to receive written notification if the practice discovers a breach of your unsecured PHI, and determines through a risk assessment that notification is required.
* If you have questions regarding your privacy rights, or would like to submit any type of written request described above, please feel free to contact our Privacy Manager. Contact information is provided at the bottom of the following page. page 2 of 2
How We May Use or Disclose Protected Health Information
Following are examples of uses and disclosures of your protected health information that we are permitted to make. These examples are not meant to be exhaustive, but to describe possible types of uses and disclosures.
Treatment - We may use and disclose your PHI to provide, coordinate, or manage your healthcare and any related services. This includes the coordination or management of your healthcare with a third party that is involved in your care and treatment. For example, we would disclose your PHI, as necessary, to a pharmacy that would fill your prescriptions. We will also disclose PHI to other Healthcare Providers who may be involved in your care and treatment.
Payment - Your PHI will be used, as needed, to obtain payment for your healthcare services. This may include certain activities that your health insurance plan may undertake before it approves or pays for the healthcare services we recommend for you such as, making a determination of eligibility or coverage for insurance benefits.
Healthcare Operations - We may use or disclose, as needed, your PHI in order to support the business activities of our practice. This includes, but is not limited to business planning and development, quality assessment and improvement, medical review, legal services, auditing functions and patient safety activities.
Special Notices - We may use or disclose your PHI, as necessary, to contact you to remind you of your appointment. We may contact you by phone or other means to provide results from exams or tests, to provide information that describes or recommends treatment alternatives regarding your care, or to provide information about health-related benefits and services offered by our office.
We may contact you regarding fundraising activities, but you will have the right to opt out of receiving further fundraising communications. Each fundraising notice will include instructions for opting out.
Health Information Organization - The practice may elect to use a health information organization, or other such organization to facilitate the electronic exchange of information for the purposes of treatment, payment, or healthcare operations.
To Others Involved in Your Healthcare - Unless you object, we may disclose to a member of your family, a relative, a close friend or any other person that you identify, your PHI that directly relates to that person’s involvement in your healthcare. If you are unable to agree or object to such a disclosure, we may disclose such information as necessary if we determine that it is in your best interest based on our professional judgment. We may use or disclose PHI to notify or assist in notifying a family member, personal representative or any other person that is responsible for your care, of your general condition or death. If you are not present or able to agree or object to the use or disclosure of PHI (e.g., in a disaster relief situation), then your healthcare provider may, using professional judgment, determine whether the disclosure is in your best interest. In this case, only the PHI that is necessary will be disclosed.
Other Permitted and Required Uses and Disclosures - We are also permitted to use or disclose your PHI without your written authorization, or providing you an opportunity to object, for the following purposes: if required by state or federal law; for public health activities and safety issues (e.g. a product recall); for health oversight activities; in cases of abuse, neglect, or domestic violence; to avert a serious threat to health or safety; for research purposes; in response to a court or administrative order, and subpoenas that meet certain requirements; to a coroner, medical examiner or funeral director; to respond to organ and tissue donation requests; to address worker’s compensation, law enforcement and certain other government requests, and for specialized government functions (e.g., military, national security, etc); with respect to a group health plan, to disclose information to the health plan sponsor for plan administration; and if requested by the Department of Health and Human Services in order to investigate or determine our compliance with the requirements of the Privacy Rule.
You have the right to complain to us, or directly to the Secretary of the Department of Health and Human Services if you believe your privacy rights have been violated by us. We will not retaliate against you for filing a complaint.
You may ask questions about your privacy rights, file a complaint or submit a written request (for access, restriction, or amendment of your PHI or to obtain a disclosure accountability) by notifying our Privacy Manager at:
Arizona Eye Institute & Cosmetic Laser Center, 19052 N. RH Johnson Blvd., Sun City West AZ 85375, (623) 975-2020
Effective Date 2/12/2018 Publication Date 2/12/2018
This policy describes the personal information we collect about you, why we collect it, and how we use it. Our policy also describes the choices you can make about how we collect and use your information.
At MYEYESSTORE we value our customers and respect your privacy. We do not sell, rent or loan any information about you to any third party. We collect customer information to be able to process your order and verify your prescription (if necessary and only with your authorization), as well as improve your shopping experience and to communicate with you about our products, services, contests, surveys and promotions as well as helpful information regarding contact lenses, optical goods, other products or ocular health. iiCayr, LLC dba MYEYESTORE and its practice partners recognize that it must maintain and use customer information responsibly.
What kind of information does MYEYESTORE and its practice partners collect?
We collect personal information (such as your name, email address, mailing address, patient name, contact lens prescription, eyeglass prescription, phone number, credit card numbers and the name and phone number of your eye care provider) that you provide when you place an order, register with us or participate in a contest, survey, or promotion. We also maintain a record of your historical purchases that are placed through the phone, mail, fax, email and over the Internet. We are currently using third-party service providers to track and analyze non-personally identifiable information about our visitors and customers; we use this information to improve our site and plan for technical improvements. All data collected by our service providers on behalf of iiCayr, LLC dba MYEYESTORE and its practice partners is owned and used solely for the benefit of iiCayr, LLC dba MYEYESTORE and its practice partners. We reserve the right to publish non-personally identifiable summary information regarding our website visitors for promotional purposes and as a representative audience for advertisers. Please note that this is not personal information, but consists of only general summaries of the activities of our visitors and customers.
How does MYEYESTORE and its practice partners use my information?
We use your personal information to fulfill your orders. We will also send you an email to confirm your order, or we may need to contact you via phone, mail or email if we have any questions regarding your order. In addition, we may contact you by phone, mail or email (either directly or through a service provider bound by strict confidentiality standards working on our behalf) to help us learn more about your shopping preferences so that we may better serve you. And finally, we may use your information to help us better improve our site design and your shopping experience, and to also send you notices about our products, services, contests, surveys and promotions or news about contact lenses, optical goods, other products or ocular health.
Does MYEYESTORE or its practice partners share my information with third parties?
Except as explained in the next paragraph, we do not share your personal information with any third or outside party. If you opt to receive no commercial email from us, we will add your email address to a do-not-mail file, which may be given to trusted outside parties in order to ensure your email address is excluded from any third-party email distribution. We do not sell, rent or loan any information about you to any third parties.
PLEASE NOTE: On all orders placed, we do attempt to verify or obtain a copy of your contact lens prescription from the eye care provider that you designate. We may also share your personal information with our call center partners and vendors only to the extent necessary to fulfill your orders and/or appropriately answer your questions and concerns. This information is held under the same strict confidentiality standards as described above and in accordance with all applicable laws.
How do I access my information? How do I update my information? Registered customers can access their account information online by clicking the “My Account” link and by entering their login and password. This will load the My Account portion of the website and allow you to edit your billing, shipping, email preferences, login information and password settings. You can also make general changes to your account information by calling us at our call center phone number listed under the Contact Us section of our web store and speak with a Customer Service Representative.
How do I remove my information from email, postal mailing and telephone lists?
If you prefer not to receive notice of promotions, reorder information or any other updates by email, please click the “My Account” link at the top of any of the pages on our site, enter your email address and password and click on “email options”. You will be able to specify your email preferences on this page. If you wish to be removed from all email communications not related to your order, you can call one of our Customer Service Representatives at the number listed in our Contact Us section of the web store. If you prefer not to receive postal mail, please let us know by sending us an email at [email protected] or call one of our Customer Service Representatives at the number listed in our Contact Us section of this web store.
PLEASE NOTE: Requests to be removed from the postal mail list may take up to 4 weeks to become effective. In addition, if you ask to remove your name and address from our email or postal mailing lists, we will maintain your name in a “do not mail” file to ensure that we can honor your request. When you make a purchase, we will send you an email to confirm your order, and send an email when your order is shipped. We may also need to contact you via phone, postal mail or email if we have other questions or updates regarding your order.
What about links to other Internet sites and services?
We may maintain links to other websites that are not under our control. These websites have their own policies regarding privacy, which you should review before visiting them. We have no responsibility for linked websites and provide these links solely for the convenience and information of our customers.
How do MYEYESTORE and its practice partners and vendor partners make sure my order information is secure?
Protecting your order information is a priority for us. We use Secure Sockets Layer (SSL) technology to protect the security of your online order information. More than 90% of Fortune 500 companies use SSL security to protect their sensitive personal and financial information. When you use our ordering page you can be assured that your sensitive personal information and financial transactions with us are encrypted, safe, and secure.
To check the security of your connection, look at the lower corner of your browser window after accessing the server. If you see an unbroken key or a closed lock (depending on your browser), the SSL is active and the server is secure. You can also double-check by looking at the URL line of your browser. When assessing a secure server, the first characters of the site address will change from “http://” to “https://”. In addition, your password is encrypted and your credit card and/or debit card information is not stored.
- 128-bit Secure Sockets Layer (SSL) technology for secure Internet Protocol (IP) transactions
- Industry leading encryption hardware and software methods and security protocols to protect customer information.
- Compliance with the Payment Card Industry Data Security Standard (PCI DSS).
What is adware? What is spyware? Does MYEYESTORE and its practice partners use adware or spyware?
Adware is software that is installed on your computer that can, for example, create pop-up advertisements or cause your browser to be redirected to other websites. We do not participate in or use third-party services that use adware, such as Zango, Gator/Claria, whenu.com or ezula.com. We have determined that there are instances where this type of advertising could be construed as confusing for customers. Therefore, we work to ensure that these third-party adware services do not function on our websites. Spyware is also software that is installed on your computer that can, for example, record and transmit information regarding the websites you visit, or record or transmit your keystrokes to a third party. Spyware, like adware, is often installed without the knowledge of the person using the computer. We do not use spyware and we work to ensure that spyware does not function on our websites.
HIPAA Privacy Statement:
THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION.
We are required by applicable federal and state law to maintain the privacy of your health information. We also are required to give you this Notice about our privacy practices, our legal duties, and your rights concerning your health information. We must follow the privacy practices that are described in this Notice while it is in effect. This Notice takes effect February 1, 2012, and will remain in effect until we replace it. We reserve the right to change our privacy practices and the terms of this Notice at any time, provided such changes are permitted by applicable law. We reserve the right to make the changes in our privacy practices and the new terms of our Notice effective for all health information that we maintain, including health information we created or received before we made the changes. In the event we make a material change in our privacy practices, we will change this Notice on our website.
You may request a copy of our Notice at any time. For more information about our privacy practices, or for additional copies of this Notice, please contact us using the information listed at the end of this Notice.
We use health information about you to appropriately fulfill your orders, for administrative purposes, and to evaluate the quality of care and service that you receive. Your health information is ultimately contained in a medical or optical dispensary record that is the physical property of your eyecare professional or medical doctor.
We may use or disclose your health information to an optometrist, ophthalmologist, optician or other healthcare providers providing treatment to you and to an appropriate vendor for:
consultation between healthcare providers relating to a patient/customer;
ordering product from the appropriate vendor to properly fulfill your order;
appointment reminders and recall information.
For Healthcare Operations:
We may use and disclose health information about you for operational purposes. For example, your health information may be disclosed to:
evaluate the performance of our associates;
assess the quality of service, product and care in your case and similar cases;
learn how to improve our facilities and services;
conduct training programs or credentialing activities; and
determine how to continually improve the quality and effectiveness of the products, services, and care we provide.
Appointments, Treatment, and Quality Assurance:
We may use your information to provide appointment reminders or recall notices (such as voicemail messages, postcards or letters) or information about treatment alternatives or other health-related benefits, products and services that may be of interest to you. We may also contact you to conduct our own surveys about the quality of the products and services we provide.
We may use certain information (name, address, telephone number, dates of service, and gender) to contact you in the future to raise money for certain foundations. The money raised will be used to expand and improve the healthcare services and programs we provide the community.
To You, Your Family, and Friends:
We must disclose your health information to you, as described in the Your Health Information Rights section of this Notice. We may disclose your health information to a family member, friend or other person to the extent necessary to help with your healthcare or with payment for your healthcare or products, but only if you agree that we may do so or, if you are not able to agree, if it is necessary in our professional judgment.
Persons Involved in Care:
We may use or disclose health information to notify, or assist in the notification of (including identifying or locating) a family member, your personal representative or another person responsible for your care, of your location or your general condition. If you are present, then prior to use or disclosure of your health information, we will provide you with an opportunity to object to such uses or disclosures. In the event of your incapacity or emergency circumstances, we will disclose health information based on a determination using our professional judgment disclosing only health information that is directly relevant to the person's involvement in your healthcare. We will also use our professional judgment and our experience with common practice to make reasonable inferences of your best interest in allowing a person to pick up filled prescriptions, medical supplies, photos, or other similar forms of health information.
We may use and disclose information about you as required by law. For example, we may disclose information for the following purposes:
for judicial and administrative proceedings pursuant to legal authority;
to report information related to victims of abuse, neglect or domestic violence;
to assist law enforcement officials in their law enforcement duties; or
to assist public health officials avert a serious threat to the health or safety of you or any other person.
Health Information may be disclosed to funeral directors or coroners to enable them to carry out their lawful duties.
Your health information may be used or disclosed for cadaveric organ, eye or tissue donation purposes.
We may use your health information for research purposes when an institutional review board or privacy board that has reviewed the research proposal and established protocols to ensure the privacy of your health information has approved the research.
Specialized government functions such as protection of public officials or reporting to various branches of the armed services that may require use or disclosure of your health information.
Your health information may be used or disclosed in order to comply with laws and regulations related to Worker Compensation.
Marketing Health Products or Services:
We will not use your health information for marketing communications without your prior written authorization. We may, however, provide you with information regarding products or services that we offer related to your healthcare needs. We will never sell your health information without your prior authorization.
In addition to our use of your health information for treatment, payment or healthcare operations, you may give us written authorization to use your health information or to disclose it to anyone for any purpose. If you give us an authorization, you may revoke it in writing at any time. Your revocation will not affect any use or disclosures permitted by your authorization while it was in effect. Unless you give us a written authorization, we cannot use or disclose your health information for any reason except those described in this Notice.
You have the right to review or get copies of your health information, with limited exceptions. You may request that we provide copies in a format other than photocopies. We will use the format you request unless we cannot practicably do so. You may be asked to make a request in writing to obtain access to your health information. You may obtain a form to request access by using the contact information listed at the end of this Notice. We will charge you a reasonable cost-based fee for expenses such as copies and staff time. You may also request access by sending us a letter to the address at the end of this Notice setting forth the specific information to which you desire access. If you request an alternative format, provided that it is practicable for us to produce the information in such format, we will charge a cost-based fee for providing your health information in that format. If you prefer, we will prepare a summary or an explanation of your health information for a fee. Contact us using the information listed at the end of this Notice for a full explanation of our fee structure.
You have the right to receive a list of instances in which we or our business associates disclosed your health information for purposes other than treatment, payment, healthcare operations, fulfillment of orders, where you have provided an authorization and certain other activities, for the last 6 years, but not for disclosures made prior to April 14, 2003. If you request this accounting more than once in a 12-month period, we may charge you a reasonable, cost-based fee for responding to these additional requests.
You have the right to request that we place additional restrictions on our use or disclosure of your health information. We are not required to agree to these additional restrictions, but if we do, we will abide by our agreement (except in an emergency).
You have the right to request in writing that we communicate with you about your health information by alternative means or to alternative locations. Your request must specify the alternative means or location, and provide satisfactory explanation how payments will be handled under the alternative means or location you request.
You have the right to request that we amend your health information. Your request must be in writing, and it must explain why the information should be amended. We may deny your request under certain circumstances. You may obtain a form to request an amendment to your health information by using the contact information listed at the end of this Notice.
If you receive this Notice on our website or by electronic mail (email), you are entitled to receive this Notice in written form.
If you want more information about our privacy practices or have privacy questions or concerns, please contact us. If you are concerned that we may have violated your privacy rights, or you disagree with a decision we made about access to your health information or in response to a request you made to amend or restrict the use or disclosure of your health information or to have us communicate with you by alternative means or at alternative locations, you may complain to us using the contact information listed at the end of this Notice. You also may submit a written complaint to the U.S. Department of Health and Human Services. We will provide you with the address to file your complaint with the U.S. Department of Health and Human Services upon request.
We support your right to the privacy of your health information. We will not retaliate in any way if you choose to file a complaint with us or with the U.S. Department of Health and Human Services.
If you have any questions or complaints relating to privacy, please contact:
Stephannie Keller at MYEYESTORE, 4801 W. 81st Street, Suite 111, Bloomington, MN 55437. Telephone: (952) 463-1200. Email: [email protected].