SASid collects and uses personal information to develop insurance products that meet our customers’ needs. To provide these services, we collect certain personal information about the site user, the site user’s family and other legal dependents. We are committed to protecting your privacy.
Information we collect
The personal information we collect depends on the type of product or service you are reviewing or may have with us. The personal information may include:
- Personal data – name, address, email address, telephone number, geolocation, logged data – IP address
- Financial information – information required to establish payment for insurance products including credit or debit card information and other banking information
- Protected Health Information – certain basic biometric information (e.g., your age, date of birth, height, weight and gender) is required before we can enroll you in certain health and life insurance products
- Site use – browser cookies and pixel tags (web beacons) that allow our systems to recognize your computer and identify your activity on the SASid website. Examples include noting the pages you visit on our site and whether you have opened an email or other message we sent to you.
Why we need it
If you request information about our products and services or if you enroll in a product or register for a service, we collect the data we need to complete the enrollment or registration process for you. When you request information about or enroll or register in a product or service, by necessity you are agreeing that we can use your personal data to complete the process.
Who uses it
SASid may use your personal data to enroll you in a product or service that you have purchased and to establish the payment for that product or service. To complete this process, we share your information with the applicable insurer or provider and with the payment method (bank or credit card company) you have identified.
With your permission, we also provide site user data to our business partners and to third party service providers that support SASid so we can customize your user experience with us.
How it is collected
We collect personal data from the information you provide in response to our product and service forms. We also collect data from your use of the SASid websites. And we interface with social networking sites like Facebook, LinkedIn, Twitter and Google. When you post to a social networking site through one of our webpages, we collect information about you from that site consistent with your privacy permissions for that site.
How it is used
In addition to developing insurance products, facilitating enrollment and establishing payment systems, SASid analyzes site user data internally to improve and optimize our websites, software and applications for our system and platform users.
When you request information about our products, we will ask your permission to provide your personal information to our service providers and partners to customize the information we send back to you. With your permission, your personal information may be sold to third parties to establish your product profile.
How the information is stored
SASid has invested in leading-edge technology to secure all site user information received on our websites. We encrypt site user information with Secured Sockets Layer (SSL) technology supported with digital certificates. Our SSL technology and other security protocols provide mutual authentication, data encryption and data integrity for secure transactions for your services and products. Personal information is destroyed or disabled when the site user asks us to remove it, unless we are required by law to retain it.
In addition, we use high quality firewall and network security technology to protect our internal systems from unauthorized access. We continuously evaluate our systems to ensure that we are using the best available security protocol for our sites; however, we do not guarantee that your information is 100% secure because no security system for information transmitted or stored on the Internet can ensure absolute security.
Privacy of Protected Health Information (PHI)
SASid works with health care insurers, providers and other Covered Entities to provide Telehealth services and other health insurance-related products to site users. At your request, to facilitate enrollment, we may collect and share certain basic biometric information, such as the site user’s gender, age, birth date, height and weight. We operate under a Business Associate Agreement with the Covered Entity to protect a site user’s biometric information. We do not request, receive, store, obtain, transmit or sell clinical information regarding a site user’s health or medical history.
Business Associate Agreement – a written agreement between SASid and a Covered Entity that describes SASid’s privacy practices relating to PHI.
Covered Entity – a health plan, health care provider or healthcare clearinghouse that is subject to the HIPAA Privacy or Security Rule.
Protected Health Information (PHI) – all individually identifiable health information that is transmitted or maintained by a Covered Entity. Individually identifiable health information is information that is created or used for an individual in the course of providing a health care service or in relation to payment for health care services. For SASid, PHI is basic biometric information related to Telehealth or insurance enrollment.
PHI Use and Disclosure
SASid may use PHI, like the site user’s age, gender, height and weight, for management, administration, data aggregation and legal obligations as allowed by law and by the Business Associate Agreement. We will generally use PHI to fulfill service obligations to the Covered Entity including user enrollment and payment. If PHI must be disclosed to a subcontractor or agent, the subcontractor or agent must agree to comply with the Business Associate Agreement, including implementing the same cybersecurity safeguards for the PHI. SASid will also comply with a court order or other legal obligation to disclose PHI.
Safeguards for PHI
SASid uses high quality security safeguards to prevent the unauthorized use or disclosure of PHI. Our safeguards include industry-specific authentication and encryption tools, comprehensive firewall and network security systems and training for staff who access or manage PHI as part of their work.
We do not expect to experience an incident of unauthorized access to PHI. If unauthorized access were to occur, all affected individuals would be immediately notified and appropriate mitigation measures would be implemented.
User Access to and Control over PHI
A SASid site user can access a copy of his/her PHI on request by contacting email@example.com or 1-800-279-2290. SASid will remove a site user’s PHI on request. A request to remove PHI may limit SASid’s ability to continue supporting the site user’s enrollment in his/her Telehealth or insurance product.
When a site user terminates enrollment in a Telehealth or insurance product, SASid disables his/her PHI along with the rest of the site user’s enrollment and payment information on file with SASid. SASid does not administer and is not responsible for PHI maintained by any third party.
SASid websites are not intended for users who are younger than 18 years old. We do not intentionally request or require information from any user who is not 18 years old or older.
SASid offers products and provides services to individuals who reside in the United States. As a business, we do not operate outside of the United States and do not intentionally request or require information from any individual who resides outside of the United States.
You have the right, at any time, to ask us to revise, modify or delete your personal information and to receive a verification from us that the information has been revised, modified or deleted. Please contact us at firstname.lastname@example.org to make a request to revise, modify or delete your information and receive a verification. In your email, you can designate an authorized agent to make the request and/or receive the verification on your behalf.
We do not track your online activities or knowingly allow other parties to track your online activities or collect your personal data.
You are protected by law from discrimination if you choose to exercise your privacy rights.
California residents are covered by the California Consumer Privacy Act of 2018 (“CCPA”). If you are a California resident, please review our California Consumer Privacy Act Disclosure here: www.sasid.com/CA-privacypolicy