MDDirect, on its own behalf and on behalf of its affiliates owns and operates the websites located at www.gomddirect.com and various mobile applications (collectively, the “Site” or “Sites”). and various mobile applications (collectively, the “Site” or “Sites”). Through these Sites we operate various online services that enable eligible individuals (“Members”) to receive various types of health care information and telehealthcare services (“Services”). The Sites also have public portions that allow anyone to educate themselves on the Services available from MDDirect.
MDDirect understands that privacy of information is of great importance to our Members and the people that visit our public sites (“Visitors”). As MDDirect is a leading provider of health services throughout the world, we would not be able to operate in this global marketplace without proper policies and procedures to meet stringent international regulations.
By accessing or using the Site after such changes are posted you agree to all such changes.
Either MDDirect or a third party vendor on behalf of MDDirect may collect non-identifiable information, which is automatically collected as you browse or otherwise access the Sites. We may collect such information by tracking, or asking a third party vendor to track, your click-stream activity when such information is not tied to a user ID through the use of “cookie” technology or by tracking internet protocol (IP) addresses, as explained below.
Because we want our Sites to better serve Visitors’ needs, we collect some basic information about Visitors’ computers, including, but not limited to:
We use this information to continuously enhance our Sites and to better serve our Visitors’ needs. For example, we use this information to know what browsers people most commonly use, what pages are most often visited, and what functionality is most used. All the information MDDirect collects from Visitors’ computers is deidentified and is not personal information.
The non-identifiable information we collect may be shared with our suppliers and vendors and used in the aggregate to create summary statistics that help us analyze Site usage trends, assess what information is of most and least importance, determine technical design specifications, arrange the Sites in the most user-friendly way, and identify system performance or problem areas.
We may also use your geographic location to provide you with specific content and direct you to your closest service providers to the extent permitted by applicable law.
Like many companies, we use “cookies” to help you better navigate the Sites. A “cookie” is a small piece of information sent by MDDirect’ web-based applications that are stored by your Web browser on your computer’s hard drive. Cookies enhance your online experience by saving your preferences while you are visiting a particular website. The cookies do not contain any identifiable information and cannot profile your system or collect information from your hard drive. Most Internet browsers automatically accept cookies, but you can set your browser to refuse them or to alert you when they are being sent.
For more information about the cookies that are used on the Sites and your ability to opt out of use of those cookies, please
see MDDirect’s Cookies Policy.
Some of MDDirect’s Sites can be used only by MDDirect Members, require Members to register and log-in, and are password protected (“Registered Users”). The password protected portions of the Sites are referred to as the Secure Portals. The Secure Portals contain protected health information (PHI) or personal information about Members. Because of this, on the Secure Portals, MDDirect must be able to link a Member’s activity back to their identity, for example to verify identity in our systems and eligibility for Services. Therefore, in the Secure Portals, MDDirect does collect identifiable information about Members. This includes pages visited and Services initiated.
While no web site can guarantee security, we maintain physical, administrative, and technical safeguards to help protect your PHI collected via the Secure Portals as required by applicable law. While we cannot guarantee that loss, misuse or alteration to data will not occur, we use industry standards, such as Secure Socket Layers (“SSL”) technology, to help safeguard against such occurrences. On the Secure Portals, the information passed between your browser and our system is encrypted with SSL technology to create a protected connection between you and our website to ensure confidentiality.
Our data center is both physically and electronically secured. Our servers are protected behind the Internet by using firewall and encryption technology. All data is stored and transferred in encrypted formats that either meet or exceed standards defined by state and federal laws. No data is transferred to users that do not have rights to access such information.
All information and data you submit through MDDirect’s Sites are stored on secure servers located in the United States.
We allow Members to access the Services through a software application on a mobile device (an “Application”). If you choose to an Application, MDDirect will collect additional information about you including (1) location data, (2) device IDs and (3) other information regarding your use of the Application. MDDirect uses the information collected to analyze and improve the Member’s experience using the Application and otherwise communicate with the Member about the Services.
A complete description of the purposes for which MDDirect uses and discloses any PHI collected from our Members (including PHI collected on the Secure Portal) is described fully in its Notice of Privacy Practices or any other applicable notices provided to Members.
Questions or comments regarding this Policy should be submitted to the MDDirect Privacy Officer by mail or electronic means as follows:
MDDirect Privacy Officer
428 Minnesota St #500, St Paul, MN 55101