Terms of Use & Privacy Policy

Terms of Use

Purpose

• • S. Federal and State laws as well as organizational policies describe measures to safeguard sensitive information to include Protected Health Information (PHI/ePHI). Unauthorized individuals who access, use, and/or disclose sensitive data to include PHI, attempt to access sensitive data, and/or assist others to access sensitive data when it is not authorized will be sanctioned appropriately.  This document establishes the high-level policy and procedures governing how Noble TeleHealth shall enforce technical, administrative, and physical measures to maintain the security of Information Assets of Noble TeleHealth, patients or customers, employees, partners and others that Noble TeleHealth uses, accesses, or controls.
  • Applicability – This policy applies to all Noble TeleHealth workforce members, contractors, interns and anyone working with or utilizing Noble TeleHealth information systems, collectively referred to as workforce members.
  • Questions regarding acceptable use of Noble TeleHealth information systems should be directed to the Computer Information Security Officer or your manager.

Policy

• • • Roles and Responsibilities: The Human Resources Department in conjunction with Executive Management shall be responsible for implementing and enforcing the Noble TeleHealth Acceptable Use policy. The CISO with Human Resources shall ensure all workforce members receive training on this policy annually and a record of the training shall be maintained in the employee’s record for 6 years.
    • Any failure to adhere to information security policy may be subject to disciplinary action subject to the severity of the violation and determination of Noble TeleHealth.
    • Noble TeleHealth Information Systems must be used only for business-related purposes.
    • All files, information and data stored on or transmitted through Noble TeleHealth information systems, whether for business related personal use, and including the websites visited and electronic messages sent or received using Noble TeleHealth technologies or web-based email, can be monitored by, intercepted by, accessed by, or disclosed by Noble TeleHealth or any entity authorized by Noble TeleHealth for any purpose at any time. Employees should have no expectation of privacy with respect to any communications involving Noble TeleHealth owned, operated, or maintained equipment, systems or information systems.
    • Waiver of Privacy Rights- Workforce members expressly waive any right of privacy in anything they create, store, send or receive using Noble TeleHealth’s equipment or Internet access. Workforce members consent to allow Noble TeleHealth management access to all materials created, stored, sent or received by the workforce member through any Noble TeleHealth network or Internet connection.
    • Monitoring of Computer and Internet Usage - Noble TeleHealth has the right to monitor and log any and all aspects of its network and services including, but not limited to, monitoring internet sites visited by workforce members, monitoring IM/Chat and newsgroups, monitoring file downloads, monitoring use of social media, and all communications sent and received or posted on the Internet in blogs and other types of openly accessible forums, diaries, and personal and business discussion forums.
    • Blocking Sites with Inappropriate Content - Noble TeleHealth retains the right to utilize software that makes it possible to identify and block access to Internet sites containing sexually explicit or other material deemed inappropriate in the workplace.
    • Conduct and Behavior - Actions conducted on Noble TeleHealth information systems must adhere to the following guidelines for conduct and behavior:
      • Abide by the guidelines presented in the Noble TeleHealth policies and procedures including this Policy;
      • Follow procedures, such as not sharing an account or password, understanding that each individual is responsible for all activities conducted under his or her user ID; and
      • If an individual identifies a suspected security problem, he or she must notify the Noble TeleHealth CISO, Help Desk or the Information Technology department and not demonstrate the problem to other individuals.
    • Prohibited Uses of Noble TeleHealth information systems include, but are not limited to:
      • Illegal Use - Using information assets in a manner that violates any law;
      • Frivolous Use – Information systems have finite limits, and all workforce members connected to the network have a responsibility to conserve these resources. This includes other than incidental and occasional personal use.
      • Disclosing Confidential Information – Disclosing any confidential information pertaining to Noble TeleHealth except as allowed by law or as approved by Noble TeleHealth;
      • Harm to Persons - Using the services to harm, or attempt to harm, any person in any way.
      • Threats – Using the services to transmit any material (by email, uploading, posting, or otherwise) that threatens or encourages bodily harm or destruction of property.
      • Harassment - Using the services to conduct any kind of harassment.
      • Fraudulent Activity - Using the services to make fraudulent offers to sell or buy products, items, or services.
      • Unauthorized Access - Using the services to access or to attempt to access the accounts of others or to penetrate, or attempt to penetrate, security measures of Noble TeleHealth’s or another entity's computer software or hardware, electronic communications system or telecommunications system, whether or not the intrusion results in the corruption or loss of data.
      • Copyright or Trademark Infringement - Using the services to store or transmit material that infringes any license, copyright, trademark, patent, trade secret, or other proprietary rights of any third party.
      • Collection of Personal Data - Using the services to collect, or attempt to collect, personal information about third parties without their knowledge or consent.
      • Network Disruptions and Unfriendly Activity - Using the services for any activity, which adversely affects the ability of other people or systems to use Noble TeleHealth services or the Internet. This includes "denial of service" (DoS) attacks against another network host or individual user. Interference with or disruption of other network users, network services or network equipment is prohibited

Equipment/Software

• • • • All Noble TeleHealth information systems, data, hardware and applications.

General Procedures

• • • • Workforce Members Responsibilities - Noble TeleHealth workforce members are responsible for exercising good judgment regarding the reasonableness of personal use of information systems. General responsibilities include the following:
        • Workforce members have an obligation to use their access in a responsible and informed way, conforming to proper etiquette, customs, courtesies and any or all applicable laws or regulations.
        • Workforce members shall secure all electronic communication containing private or confidential information during transit with approved security services or encryption tools.
        • Workforce members shall be aware that any misuse or abuse of Noble TeleHealth IT resources may reflect negatively upon Noble TeleHealth image to their patients or stakeholders. Therefore, professionalism in all communications both internally and externally is of the utmost importance.
        • Workforce members shall represent themselves and Noble TeleHealth accurately and honestly through electronic information or service content.
        • Workforce members shall report all security problems or suspected violations to the CISO.
      • Acceptable Use of Noble TeleHealth Information Systems - If a workforce member is not certain that an activity violates this Acceptable Use Policy, the workforce member shall discuss the activity with the CISO prior to performing the activity. The following activities are generally considered acceptable for business operations.
        • Searching or researching the internet for business purposes.
        • Email via Noble TeleHealth messaging system.
        • Secure File Transfer Protocol (SSH/Encrypted) for sending/receiving non-sensitive information to vendors or our websites using tools approved by IT.
        • Video streaming for work related tasks and/or projects. (Note: ePHI should not be transmitted via video conference)
        • Instant Messenger (IM) /Group Chat Service(s) for business use. (Note: Instant Messaging should not be used for transmitting ePHI)
        • Social Media for business purposes. See the Social Media Policy for more details.
      • Prohibited Use Guidelines - The following are guidelines for unacceptable or prohibited uses:
    • Unauthorized or excessive personal use.
      • Non-Noble TeleHealth related activities that will cause congestion and disruption of network and systems includes, but is not limited to, non-business-related streaming audio or video content, Internet games, online gaming, mass mailings, chain letters, unnecessary email subscriptions and email attachments.
      • Downloading pictures, movies, or music files for personal entertainment.
    • Use that Interferes with the proper function of Noble TeleHealth’s information technology resources.
    • Use that interferes, or attempts to interfere with, bypass, or circumvent information security measures which are in place at Noble TeleHealth, or any other entity.
    • Downloading or installing software without approval from the Noble TeleHealth IT department.
    • Uses that unreasonably interferes with the ability of others to make use of Noble TeleHealth’s computer resources.
    • Attempting to gain or gaining unauthorized access to the computer system or files of another workforce member.
    • Use of computer resources such as printers or email to infringe the intellectual property rights of others.
    • Use of Noble TeleHealth’s computer resources for personal profit.
    • Knowingly visiting pornographic, racist, discriminatory, anti-Semitic, gambling or illegal sites or any other site deemed inappropriate by Noble TeleHealth.
    • Introduction of malicious programs into Noble TeleHealth’s network or servers (e.g., viruses, worms, Trojan horses, email bombs, etc.).
    • Revealing your account password to anyone, including Noble TeleHealth’s IT administration.
    • Writing a password down unless it is immediately shredded. To keep passwords, use the approved IT password vault.
    • Executing any form of network monitoring which will intercept data not intended for the workforce member’s host, unless this activity is a part of the workforce member’s normal day-to-day job/duty.
    • Port scanning or security scanning of Noble TeleHealth’s systems, or those systems of any other entity (unless this activity is part of your assigned job duty or role and is performed in that capacity).
    • Circumventing user authentication or security of any host, network or account.
    • Disclosing another’s workforce member’s security code or password.
    • Providing information about or lists of Noble TeleHealth workforce members to parties outside the organization.
    • Transmitting confidential or private information (patient, employee or institutional information) outside of the Noble TeleHealth network without Noble TeleHealth IT provided and approved encryption.
    • Soliciting money for religious or political causes, or advocating religious or political opinions.
    • Attempting to read, delete, copy or modify another workforce member’s email with malicious intent.
    • Allowing others to access ePHI by leaving a workstation logged in and unattended.
    • Misrepresentation of oneself or the Noble TeleHealth This includes the use of false or misleading subject headers in the distribution of email or presentation of information.
    • Distributing or forwarding email that contains ePHI, PII, PCI, or other sensitive data to any person that does not have an organizational need to review such sensitive information.
    • Sending, receiving, soliciting or storing material that is vulgar, offensive, sexually oriented messages or images, anti-Semitic, or racist.
      • If you receive unsolicited materials containing inappropriate content, immediately inform the sender that this type of email is inappropriate and is a violation of Noble TeleHealth’s policy.
      • If you receive unsolicited materials containing inappropriate content, do not forward to anyone else, unless requested by your supervisor as a part of an official investigation.
    • Any form of harassment via email, telephone or paging, etc.
    • Posting personal comments or opinions on Internet groups, web pages, blogs, chat rooms, social media, etc., or sending personal comments and opinions via email that would give readers the idea that you are speaking on behalf of Noble TeleHealth.
    • Using cloud services such as Google Docs, Instant Messenger, or other non-Noble TeleHealth owned services for sending ePHI, PII, PCI and/ or other sensitive information.
    • Using unencrypted mobile devices such as USB memory keys, smartphones and laptops to access or store ePHI, PII, PCI and/or other sensitive data.
    • Posting any patient specific information (ePHI) on any form of social media, blog, or application which is not an approved Noble TeleHealth IT system.
    • Videotaping or voice recording any patient interaction with medical staff except as allowed by the Video & Voice Recording Policy.
    • Any other use which is prohibited by the Information Security Policy.
      • Newsgroups, Chat Rooms, Blogs, Instant Messaging - Workforce members may have access through Noble TeleHealth’s network and services to search engines, subscription web services, chat rooms, web pages, instant messaging/chat groups, social media sites or other services that promulgate rules, guidelines or agreements to govern their use. Workforce members shall adhere to any such rules, guidelines and agreements.
        • Workforce members who post messages to social media sites, blogs or other public forums are responsible for becoming familiar with any written charter or Terms of Service governing use of such forums and complying therewith.
        • Instant messaging (IM) and Chat Groups are a quick and effective way to communicate.
          • Workforce members may not:
        • Bypass established processes and/or procedures.
        • Include ePHI, PII, PCI cardholder data or any other sensitive information in the message.
          • Noble TeleHealth prohibits sending or posting Personally Identifiable Information, Protected Health Information, or Credit Cardholder Data unless a specific authorization has been obtained for the purpose, via newsgroups, chat rooms, instant messaging, txt message, chat, or any other form of social media (i.e., Facebook, LinkedIn, Twitter, Instagram, etc.).
        • Social Media Use – Noble TeleHealth takes no position on its employees’ decisions to start or maintain a blog or participate in the use of other social media activities. However, it is the right and duty of Noble TeleHealth to protect itself from unauthorized disclosure of information. This policy includes rules and guidelines for appropriate company sponsored social media and personal use of social media and applies to all workforce members.

Blogging or other forms of social media or technology include but are not limited to video or wiki postings, sites such as Facebook, LinkedIn, Instagram, YouTube and Twitter, chat rooms, personal blogs or other similar forms of online journals, diaries or personal newsletters not affiliated with or sponsored by Noble TeleHealth.

• General Rules and Guidelines for Social Media Use - The following rules and guidelines apply to the use of social media for personal use during nonwork time, outside the workplace or during working time while using Noble TeleHealth owned equipment. Using company equipment to access social media sites for personal use is also governed by the Information Security Policies. Workforce members should also refer to these policies before accessing such sites via equipment provided by Noble TeleHealth. Noble TeleHealth has the right to access and monitor employee created communications without notice and without permission, for legitimate business purposes and in accordance with law and the employee’s right to privacy.

Workforce Members are expected to follow the guidelines and policies that apply to workforce member use of social media at any time.

• Workforce Members use of employer-owned equipment to conduct personal blogging or social networking activities shall be governed by Social Media Policy and this policy.
• If you choose to identify yourself as an Noble TeleHealth employee, please understand that some readers may view you as a spokesperson for Noble TeleHealth. Because of this possibility, we require that you state explicitly, clearly, and in a prominent place on the site that the views expressed are your own and not those of the company or of any person or organization affiliated or doing business with Noble TeleHealth.
• Workforce Members may not post company-confidential information.
• Workforce Members are expected to be fair and courteous to fellow employees, customers, suppliers and everyone that does business with the company. Complaints and problems are best resolved using the company’s open-door policy or talking directly with an employee or manager, rather than posting comments and criticism. If a workforce member posts a comment or a criticism about a co-worker or the company, please avoid statements that may be viewed as malicious, obscene, threatening or intimidation, that disparage customers or co-workers or that may violate the anti-harassment policy of Noble TeleHealth.
• Workforce Members may not post on personal blogs or social networking sites photographs of Noble TeleHealth trade secrets or personal information about the company’s clients due to their right of privacy.
• Workforce Members are not authorized to link from a personal blog or social networking site to the company’s internal or external web site.
• Company-Sponsored Social Media - Company-sponsored social media is used to convey information about Noble TeleHealth’s products and services, to advise clients about product updates, to promote and raise awareness of Noble TeleHealth, to obtain customer feedback, to reach out to potential new markets, and to exchange ideas or trade insights about industry trends. Only authorized workforce members may make posts representing Noble TeleHealth on any form of social media.
  • All Company-sponsored social media is subject to rules and guidelines outlined in the Information Security Policies. These rules and guidelines apply to all Noble TeleHealth related social networking entries and workforce members.
  • Workforce Members who use social media as part of their job function should consult the Social Media Policy for more detailed guidance.
• Reporting Violations - Noble TeleHealth requests and strongly urges employees to report any violations or possible or perceived violations to the Information Security Officer or their manager. The organization will investigate and respond to all reports of violations of the company policies and guidelines. The policy of no retribution applies to all reports made in good faith.
• Discipline for Violations - Noble TeleHealth investigates and responds to all reports of violations of this Acceptable Use policy and other related policies. Violation of this policy will result in disciplinary action up to and including termination of employment as determined according to the Sanction Policy. The company reserves the right to take legal action and/or report to law enforcement authorities where necessary against employees who engage in prohibited or unlawful conduct.

Noble TeleHealth expects all guest users to abide by all rules and guidelines of this policy. The company reserves the right to remove, without notice or permission, all content considered inaccurate or offensive. The company also reserves the right to take legal action and/or report to law enforcement authorities where necessary against guests who engage in prohibited or unlawful conduct.

Privacy Policy

Noble TeleHealth LLC (“Noble Telehealth”, “we” or “our” or “us”) values your privacy. Noble TeleHealth offers a telemedicine platform and telemedicine (the “Telemedicine”). This TeleHealth Privacy Policy applies to our website www.nobletelehealth.com (the “Site”), as well as the Telemedicine, which is accessible through the Site. Through our Telemedicine participating medical professionals and healthcare staff (“Healthcare Providers” or “Providers”) can provide health care Telemedicine online or via phone to their clients and patients (“Patients”). Medical affiliate marketing subcontractors (“Affiliates”) register and subscribe to Telemedicine services administered by Providers. In this Privacy Policy (“Policy”), we describe how we collect, use, and disclose information that we obtain about visitors to our Site and users of our Telemedicine.

The privacy and security of Patients’ individual identifiable health information provided to Noble TeleHealth in connection with Telemedcine may be protected by federal law (HIPAA, the HITECH ACT, the Omnibus Bill, etc.) and state privacy laws, because Noble TeleHealth provides Telemedicine to patients nationwide. This health information is “protected health information” (“PHI”). PHI may be used and disclosed by Noble TeleHealth as necessary to provide Telemedicine, for our own management/ operations, to meet our legal obligations, and for any other purpose for which the patient has given consent. We may share PHI with third parties for these purposes in compliance with applicable law. We may de-identify PHI and aggregate it for the purposes of monitoring and improving our products and Telemedicine.

By visiting the Site or using our Telemedicine, you agree that your personal information will be handled as described in this Policy. Your use of our Site and Telemedicine, and any dispute over privacy is subject to this Policy and our Terms of Service, including its applicable limitations on damages and resolution of disputes. The Noble TeleHealth Terms of Service are incorporated by reference into this Policy.

We may collect information about you directly from you and from third parties, as well as automatically through your use of our Site or Telemedicine.

Users may browse the informational areas of the Site without registration. However, affiliate registration is required to use the Telemedicine. Once an affiliate is registered with us and subscribed to our Telemedicine, then they can begin submitting patients for Provider consultation.

Affiliate registration. To register, an Affiliate must provide certain information about themselves and their practices including the company name, company points of contact, address, email, cell phone number, states of operation, pharmacy network, W-9 information, and payment details.

Patient registration. Patients must provide certain information to be consulted by a licensed Telemedicine Provider in their state. This includes name, date of birth, gender, address, email, phone number, insurance information, and triage information pertaining to their chronic conditions, diseases, accidents, and/ or symptoms. In addition, the Patient can communicate other health-related information to the Healthcare Provider during their telephonic consultation with Noble TeleHealth.

As a Patient, you information will be shared with Healthcare Providers as consented to by you. Our Telemedicine makes disclose your Assessments and related health information directly to your assigned Healthcare Provider. We will not make information available to Healthcare providers other than those with whom you have requested that we share your Assessments with.

In response to Legal Process. We may disclose the information we collect from you in order to comply with the law, a judicial proceeding, court order, or other legal process, such as in response to a subpoena in compliance with applicable privacy laws.

Aggregate and De-Identifiable Information. We may share aggregate or de-identified information about users with third parties for marketing, advertisement, research or similar purposes. We use cookies to track information about your use of our Site and Telemedicine. A cookie is a text file placed on your hard disk by a web page server. Cookies cannot be used to run programs or deliver viruses to your computer. Cookies are uniquely assigned to you, and can only be read by a web server in the domain that issued the cookie to you.

We have implemented technical, physical, administrative, and organizational safeguards to protect the information we collect from loss, misuse, and unauthorized access, disclosure, alteration, and destruction. Please be aware that despite our efforts, no data security measures can guarantee 100% security. You should also take steps to protect against unauthorized access pass words and PHI.

We encourage you to contact us if you have any questions or concerns regarding the privacy aspects of our Telemedicine. You may email use at support@nobletelehealth.com

How We Use Your Personal Data

We use the collected data for various purposes:

• To provide and maintain our Service
• To notify you about changes to our Service
• To allow you to participate in interactive features of our Service when you choose to do so
• To provide customer support
• To gather analysis or valuable information so that we can improve our Service
• To monitor the usage of our Service
• To detect, prevent and address technical issues

Compliance with A2P 10DLC Campaigns

As part of our adherence to A2P 10DLC (Application-to-Person) campaign regulations, we ensure that any communication sent via this method is strictly done with your express consent. No mobile information will be shared with third parties/affiliates for marketing/promotional purposes. All of the above categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties. We strictly abide by all best practices and guidelines set forth by governing bodies for A2P 10DLC campaigns.

Message Example(s):
Opt-In
"Noble TeleHealth complies with HIPAA and wants to exchange text messages with you. Text messaging may not be entirely secure: Text "START" to receive your patient informed consent link. Text "HELP" for help. Text "STOP" to cancel. Message and data rates may apply. View our Privacy Policy: https://nth1.wpengine.com/terms-policy/"

Opt-Out
"Noble TeleHealth: Welcome to our telehealth service. Msg freq varies. Msg & data rates may apply Reply "STOP" to unsubscribe, and "Help" for help. Please visit https://platform.caresync.tech/login to access your account."

"Noble TeleHealth: You have successfully been removed from our distribution listing and will no longer receive any additional messages."

Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page. You are advised to review this Privacy Policy periodically for any changes.