Enquire Privacy Policy

There are many features and capabilities rolled into the Enquire Solutions products and services (“Services”). Think of us as an all-encompassing partner focused on sales & marketing, resident management, and business solutions for senior care communities and post-acute care facilities. Our services can be offered as a turnkey solution or in a variety of standalone modules.

As you use our Services, we want you to be clear how we are using information and the ways in which you can protect your privacy and the privacy of your residents. It is our top priority to ensure the highest level of privacy protection for your Personal Information.

Enquire Solutions, LLC along with, as applicable, any and all subsidiaries, affiliates, successors, and assigns (“Enquire”) provides this Privacy Policy ( “Privacy Policy”) to help you understand how we collect, use and disclose information, including personal information that you may provide to us or that we may obtain as you use and access our Services. We may update this Privacy Policy from time to time, so please check back here periodically.

This Privacy Policy explains Enquire ‘s information practices including:

• How Enquire uses the personal information you share with us and that we learn about you because of our relationship when you use the Services.
• What personal information, if any, Enquire may share about you and the conditions we use to protect your information if it must be shared.
• Enquire’s policies regarding HIPAA.
• Enquire’s compliance with PCI DSS.
• Other things you should know about privacy and Enquire.

“Personal Information” includes information that alone or when in combination with other information may be used to readily identify, contact, or locate you or a specific individual.

Collected Information and Usage

By using our Services, you consent to the collection and use of your Personal Information by Enquire consistent with applicable data protection law and this Privacy Policy which is expressly incorporated into the Terms. Enquire collects and uses the information you provide to us, including information obtained from your use of our Services. We may use or share Personal Information (e.g., name, address, telephone number, email address, and location) where it is necessary for us to complete a transaction or conduct business on your behalf as you have requested. Also, we may use the information that we collect for our business purposes to develop, enhance, and improve our products and Services, and for advertising and marketing consistent with this Privacy Policy. By using our Services, you acknowledge, consent and agree that Enquire may collect, process, and use the information that you provide to us and that such information shall only be used by Enquire or third parties acting under Enquire’s direction in accordance with this Privacy Policy.

Enquire collects and uses information from you in several ways:

The Enquire Services. Enquire (or our vendors and suppliers) may observe your activities, preferences, and transactional data (such as your IP address and browser type) as well as related usage behavior depending on whether you are using our Services. We may use this data for any purpose unless we tell you otherwise in connection with a particular Service. While we may collect or log this information, we do not identify you or match this non-Personal Information with your other Personal Information unless or except if we believe doing so will help us better respond to a request you have made or otherwise personalize your experience in using the Services. Where such non-Personal Information is linked to your Personal Information we will treat such information as Personal Information.

Use of Cookies.  The Enquire Services may use “cookies” and related technologies to help you personalize your online experience and in our electronic communications with you. A cookie is a text file that is placed on your hard disk by a web page server. Cookies are uniquely assigned to you, and can only be read by a web server in the domain that issued the cookie to you.

One of the primary purposes of cookies and related technologies is to provide a convenience feature to save you time. The purpose of a cookie is to tell the web server that you have returned to a specific page. For example, if you personalize Enquire pages, or register with Enquire services, a cookie helps us to recall your specific information on subsequent visits. This simplifies the process of recording your personal information and return user log in. When you return to the Site, the information you previously provided can be retrieved.

You have the ability to accept or decline cookies. Most browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. Please note — if you choose to disable cookies, you may not be able to fully experience the interactive features of our Services.

Enquire never shares cookies from our site with third parties absent your consent.

E-Commerce. You may be asked to share Personal Information such as your name, address, telephone number, and email address when you make purchases, seek customer or technical support or otherwise interact with Enquire, including online. When you buy direct from Enquire, these purchase transactions may be conducted through our vendors and suppliers. Vendors and suppliers engaged by Enquire on our behalf may have their use of your Personal Information limited by this Privacy Policy, contractual restrictions, and applicable law. Enquire (through its vendors or suppliers) may limit the acceptance of orders to particular jurisdictions and as permitted by applicable law.

Service Registration & Technical Support. Enquire may allow its customers to register through its online Services for customer service functions or other technical support. Personal Information or data provided for such purposes may be used to carry out the request, service, or agreement for which the information is submitted. With your consent and as otherwise permitted by law, we may also use the information you provide in online registration forms to notify you periodically about important changes or news regarding the Services (such as a change to this Privacy Policy or notice of a security breach), new Enquire Services, and special offers and promotions that may be of interest to you.

Children. The Enquire Services are not directed toward children. We do not intentionally gather Personal Data from visitors who are under the age of 13.

When Enquire May Share Collected Information

As previously mentioned in this Privacy Policy, Enquire may share Personal Information within our organization to fulfill our obligations to you and operate our business in a way that’s consistent with this Privacy Policy and applicable data protection law. In addition to what is expressly stated in this Privacy Policy, we may also share your Personal Information with third parties in the following situations:

Enquire Subsidiaries, Affiliates, Vendors and Suppliers. Enquire works with affiliated third parties, vendors, distributors, and suppliers. To the extent it is necessary for these groups to provide their products and services to us and provide products and services you have requested, these third parties may have access to or process your Personal Information. We may also sometimes permit our authorized service providers to have access to aggregate statistics about our customers, sales, traffic patterns, and related Service information. These transfers of aggregate statistics do not involve Personal Information or data.

Recruitment and Job Applications. Residents of the United States may provide us with Personal Information in conjunction with potential employment with Enquire. Personal information such as that contained on a resume or curriculum vitae may be submitted in connection with a job application or inquiry. We may use this information throughout Enquire for the purpose of employment consideration or your inquiry. We may keep your information on file for future consideration.

Enabling Services. Personal Information that is collected through an Enquire Service may be used and/or disclosed to third parties in order to enable us to provide the Services. For example, the Enquire Services may allow you to interface with a third party Site or application. To facilitate that connection, we may use your Personal Information and/or disclose your Personal Information to third parties.

Public Areas. Any information disclosed in public areas relating to an Enquire Service will become public information. We cannot control the use of information disclosed in public forums, such as forums, bulletin boards, blogs, chat rooms, and networking functions of mobile-device applications. You should exercise caution when disclosing information in these public areas, and be careful how you disclose your Personal Information. Content posted in public areas, including advice and opinions, represent the views and is the responsibility of those who post the content. We do not necessarily endorse, support, verify, or agree with the content posted.

Mergers and Acquisitions. If Enquire should ever merge with another company, or if Enquire should decide to buy, sell, or reorganize some part or all of our business, we may be required to transfer your Personal Information and in such events your Personal Information may be used or transferred in accordance with this Privacy Policy and as permitted by law, in which case we will make commercially reasonable efforts to ensure the privacy of your Personal Information is safeguarded.

As Required by Law and Other Extraordinary Disclosures. We may be required to disclose your Personal Information if we: (i) believe in our sole judgment that such disclosure is reasonably necessary to comply with legal process (such as a court order, subpoena, search warrant, etc.) or other legal requirements of any governmental authority, (ii) would potentially mitigate our liability in an actual or potential lawsuit, (iii) otherwise deem it necessary to protect our rights or property, or (iv) deem it necessary to protect the legal rights or property of others.

HIPAA Compliance

Introduction

HIPAA (Health Insurance Portability and Accountability Act of 1996) is a set of regulations developed by various governmental agencies and members of the healthcare industry.  It is designed to protect patient rights, and simplify the complicated web of communication systems used by the industry for passing information from one entity to another.  Enquire’s relationship to HIPAA covered entities (providers and clients), is that of a Business Associate/Software vendor.

HIPAA contains a set of standards to be used by all covered entities and Business Associates in the healthcare industry with regard to how the information is transferred and protected.  There are three main provisions of the HIPAA Act, which affect Enquire as a Business Associate/Software vendor:  Privacy Regulations, Security Regulations, and Transaction Standards.

The Health Information Technology for Economic and Clinical Health Act (HITECH), a part of the American Recovery and Reinvestment Act of 2009 (ARRA), widened the scope of responsibility for Business Associates in the areas of HIPAA privacy and security protections.

Privacy Regulations

The Privacy regulations mandate standards for keeping individually identifiable patient data that relates to that person’s health, health care or payment for health care, private.  This means that patient data should only be visible on a need-to-know basis.  With regard to Enquire Services, the privacy regulations dictate how information in our system is secured in order to keep personal patient data private.  We have various hierarchical levels of security built into our Services.  This allows a client System Administrator to grant access to a specific part of the system that a particular person or staff position needs to access.  In other words, the person who adds the demographic information into the system may or may not have access to the diagnostic or medical record part of the system.   Throughout the Enquire Services, social security numbers, insurance information, birth dates and other sensitive information will be masked from view by unauthorized individuals.

Transaction Standards

A critical focus for Enquire’s future and current systems development is the Transaction Standards. These standards dictate how various forms of EDI (Electronic Data Interchange) will be designed and implemented.  Specifically, from a technical data format, these regulations require the use of a standard format for all EDI transactions.  EDI from a business view is a system for exchanging business documents and information with external entities, and integrating them into the company’s internal systems.  Enquire will take into account the effect externally generated information will have on client internal systems, and validate the business/clinical information received with the appropriate checks and balances as required under HIPAA and HITECH.

Security Regulations

The Security regulations require the adoption of administrative, physical and technical safeguards to protect electronic PHI (Personal Health Information) and mandate specific details as to how the electronic information used by the healthcare industry should be stored, transferred and used to ensure the privacy of individually identifiable data related to a patient’s healthcare.  ARRA (The American Recovery and Reinvestment Act of 2009) and the HITECH (The Health Information Technology for Economic & Clinical Health, effective 2/2009) strengthened the responsibility of the Business Associate’s responsibilities under HIPAA and require Business Associates to provide comprehensive and sustainable improvements in the day-to-day handling of PHI (Protected Health Information) and PII (Personal, Identifiable, Information). In accordance with the HIPAA Security regulations, Enquire will continue to work diligently to build applicable patient data safeguards into its Services.

PCI DSS Compliance

Introduction

Devised by Payment Card Information Security Standards Council, the PCI Data Security Standard (PCI DSS) represents a common set of industry tools and measurements to help ensure the safe handling of sensitive information associated with financial transactions with payment card entities such as Visa, Mastercard, and American Express. Initially created by aligning Visa’s Account Information Security (AIS)/Cardholder Information Security (CISP) Programs with MasterCard’s Site Data Protection (SDP) program, the standard provides an actionable framework for developing a robust account data security process – including preventing, detecting and reacting to security incidents.

Compliance

Enquire works with applicable participating payment brands (i.e. credit card companies that require adherence to PCI DSS) to ensure compliance with the specific PCI DSS standards required by that specific participating payment brand. In all instances, employing best practices to ensure the security of our customers’ data is Enquire’s chief focus.

Other Privacy Matters

Security

Unfortunately, no data transmission over the Internet can be guaranteed to be secure, therefore, we cannot guarantee the security of any information you send to us and you do so at your own risk.  If Enquire learns of a security system’s breach, we may attempt to notify you electronically so that you can take appropriate protective steps. By using our Services or providing Personal Information to us, you agree that we can communicate with you electronically regarding security, privacy, and administrative issues.  We may post a notice on our website if a security breach occurs. We may also send an email to you at the email address you have provided to us in these circumstances or communicate with you by other means if we can. Depending on where you live, you may have a legal right to receive notice of a security breach in writing. Every effort is made by Enquire to prevent any breeches of your data.

Links to Third-Party Sites and Co-Branded Sites

Our website may contain links to third-party websites. However, please be aware that Enquire is not responsible for and cannot control the privacy practices of any other websites. We encourage you to read the privacy policies for any other websites you may visit, as they may differ from ours. Our website and our Services may also contain links to co-branded websites that may display Enquire’s logo and trademarks but which are maintained by third parties. Such websites may be identified by the fact that they do not display a “EnquireSolutions.com” URL. Please read the privacy policies on any co-branded websites for the applicable privacy practices relating to personal information collected via that particular website, as it may differ from this Privacy Policy. Enquire is not responsible for any damages resulting from activities of third party websites or services.

Special Notice to International Visitors and Customers

If you are visiting from the European Union or other regions with laws governing data collection and use that may differ from United States law, including those whose privacy laws may be more strict than United States law, please note that you are transferring your personal data to the United States to Enquire. By providing your personal data, you consent to that transfer and processing.

Marketing Communications

When you provide Enquire with Personal Information, we may communicate with you using the information you have given us to provide you with information we think may be of interest to you as permitted by law. You will have the opportunity to opt out of marketing communications from us.

Enforcement and More Information

When Enquire receives formal written complaints, it is our policy to contact the complaining user regarding their concerns. We will cooperate with the appropriate regulatory authorities, including local data protection authorities, to resolve any complaints regarding the transfer of personal data that cannot be resolved between Enquire and an individual.

Changes to This Privacy Policy

We reserve the right to change this Privacy Policy in the future. If we do, we will post the new Privacy Policy on this website. Your continued use of Enquire website following a change in the Privacy Policy represents consent to the new Privacy Policy to the fullest extent permitted by law. We encourage you to periodically review this Privacy Policy.

Contacting Us

If you have any questions, comments, or concerns about this Privacy Policy, please email us at info@enquiresolutions.com.

 

Enquire Solutions, LLC

Last modified February 16, 2018