Privacy Policy
DZEUS CORPORATION
57 Calle Principal Barranquitas, PR 00794
1-888-44-Dzeus
ACCEPTANCE OF PRIVACY POLICY
1. This patient portal and its services (“Service”) is provided to you by the digital health platform Dzeus Corporation, herein referred to as “Platform”. The provider is a health professional providing consultancy services, herein referred to as “Provider”. The term "You" or "Your" refers to the authorized users of this Service, including but not limited to the patient and their care team.
2. The Platform complies with all applicable privacy laws and regulations in the jurisdictions in which it operates, including the requirements of the HIPAA Privacy Rule (45 CFR 164) for the handling and transmission of Protected Health Information (PHI).
3. By using this Service by the Provider, you agree to accept the conditions and practices described in this Privacy Policy and consent to the collection and use of information set forth below.
4. If you do not agree with the terms of this Privacy Policy for any purpose, please do not use the service features of the Service.
DEFINITIONS
5. PHI means Protected Health Information. PHI is individually identifiable health information held or transmitted by the Platform or its business associate, in any form or media, whether electronic, paper, or oral. PHI is information, including demographic data, that relates to the individual’s past, present or future physical or mental health or condition, the provision of health care to the individual, or the past, present, or future payment for the provision of health care to the individual, and that identifies the individual or for which there is a reasonable basis to believe it can be used to identify the individual.
6. Aggregate Data is PHI that has been modified and combined to permit data analyses that relate to the operation of the Platform. Aggregate data cannot be used to identify you as an individual.
7. An Authorized User is only You, the patient.
8. Person with Authorized Access. Is someone You have authorized according to applicable Law to access Your PHI.
9. De-identified data is PHI that has been modified to prevent the identification of an individual.
10. Personal Information is information or material about you that can be used to identify, locate, or contact an individual as defined under U.S. state and federal law. Personal information may include but is not limited to your: name, address, email address, telephone number, social security number, driver’s license, and financial information.
YOUR PERSONAL INFORMATION
11. Protected health information (PHI) collected and stored through the Service will be handled in accordance with the standards established by the HIPAA Privacy Rule, including restrictions on its use, storage, and transmission.
Identifiable Health Information
12. Service may use any identifiable health information or other data that You voluntarily submit, to furnish information, products, or services that you wish to request from Platform.
13. Any identifiable health information that You, as a patient, transmit via the Service will be made accessible to Provider and will become a part of the records maintained by Platform.
14. Service may use Your voluntary participation to market special offers and featured services to You, whether from Platform, affiliates, suppliers, or vendors, or other third parties, to the extent permitted by applicable law. If you are receiving additional communications and/or special offers, You may revoke Your authorization to receive such materials at any time by contacting Platform.
15. Service also uses Your information for communication purposes and to customize Your user/browsing experience, and otherwise to respond to Your questions and feedback regarding the use of the Service as may be permitted by applicable law.
16. Service may convey Your information only with the Provider and the supplier/vendor of the Service to the limited extent permitted by applicable law. We require those suppliers and vendors to comply with all applicable data privacy laws and regulations, including the HIPAA.
17. Service may also use Your geographic location to provide You with specific or tailored content to the extent permitted by applicable law.
Non-Identifiable Health Information
18. The non-identifiable, aggregated health information the Service collects may be shared with suppliers and vendors and used in the aggregate to generate summary statistics that assist in the analysis of website usage trends, and help to assess what information is valuable, to determine technical design specifications, to design a user-friendly service, and to evaluate system performance or problem areas.
19. Service may aggregate and de-identify health information, in accordance with HIPAA, either alone or along with other data to generate anonymous Aggregate Data regarding the user pattern of the Service. Aggregate and de-identified data is information that describes the habits, treatment plans, usage patterns, other medical record data and/or demographics of users as a group, without revealing the identity of particular users.
20. Service may use Aggregate Data to understand its users and determine what kinds of programs and services most serve their needs. Aggregate Data may also be provided to third parties, including for the purpose of tailoring content to You by third party vendors, suppliers, business partners and/or affiliates, of acquiring a blueprint of our community and services.
21. Platform might generate reports on business and customer activities to others. Reports will not include any Personal Information, unless with your express consent, or as permitted or required by law.
Other Uses of the Information
22. Service, Platform, and Provider also reserve the right to share Your information collected from the Service, to the extent permitted by applicable law including but not limited to the requirements under HIPAA, and, in the case of identifiable health information, pursuant to the Business Associate Agreement that the supplier/vendor has with Provider.
23. Platform retains full rights to any information acquired via the Service and may freely collect, use and disclose such information, unless prohibited by this Privacy Policy or applicable law as stated above.
SECURITY
24. The Service uses Secure-Socket Layer (SSL) or equivalent technology to ensure the secure transmission of Protected Health Information (PHI). All online transmissions of PHI are protected by advanced encryption and meet the standards required by HIPAA.
Industry Standard
25. Service uses industry standards, such as Secure Socket Layers ("SSL") or Transport Layer Security (“TSL”) technology, geo-blocking, two-factor authentication and login security protocols to safeguard against the aforementioned incidences and/or other security breaches. To ensure confidentiality, the information passed between your browser and our system is encrypted with SSL or TSL technology (which covers any messages exchanged using our secure messaging services, as well as your personal information and PHI) to create a protected connection between you and the Service.
26. Service permits limited access to personally identifiable information about you to supplier and vendor employees and third party agents who we reasonably believe need to have access to your information to cater to your needs requested via the Service. If a breach in our security systems occurs by way of unauthorized access or improper disclosure, Provider will notify you of such a breach as may be required by applicable law.
27. Service does not support the Do Not Track (“DNT”) browser configuration.
Access to Your Information
28. Service will maintain your information and you can upload, store, and access your personal healthcare records and information, including copies of documents, records, images, and information provided by you, by logging into your Service account. Your account information and profile are password protected.
29. You should first consult Platform if you wish to make any amendments to the information stored in your account.
MINOR POLICY
30. We do not have the capacity to monitor or distinguish the age of individuals who access our Service, and so Platform carries out the same Privacy Policy for individuals of all ages. If a minor has supplied Platform or Provider with personally identifying information without the express consent of his or her legal representative, the representative should contact Platform and Provider to restrict access and remove the information.
31. By using our Service, you certify that you are an Authorized User of sufficient legal age with binding legal and financial obligations for any liability you may incur while using the Service.
THIRD PARTY SERVICES
32. While you use the Service, you may be exposed to services or products offered by other companies that are not part of Service ("Third Party Services"). When taking part in Third Party Services, you are responsible for reviewing any terms and conditions governing such Third Party Services. You understand and agree that the company providing the Third Party Services is solely responsible for the Third Party Services.
33. While the Service may contain links to websites operated by other companies ("Third-Party Sites"), it does not control Third-Party Sites and will not be held accountable for the content of, or any links in, any Third-Party Site. Service does not monitor, review, approve, or make any representations with respect to Third-Party Sites.
34. You acknowledge and understand that Third-Party Sites may contain terms and privacy policies that are different from Platform and all access to Third-Party Sites is at your own risk. Platform and Service are not responsible for or bound by such provisions, and expressly disclaim any liability for them.
MODIFICATIONS TO THE PRIVACY POLICY
35. The Platform reviews and updates this Privacy Policy on a regular basis to ensure compliance with applicable regulations, including the HIPAA Privacy Rule. Any changes will be communicated prior to implementation, and information collected prior to the changes will be handled according to the previous provisions.
36. If any part of these conditions shall be deemed invalid, void, or for any reason unenforceable, the provision in question will be deemed severable to the extent of such prohibition or unenforceability without invalidating the remaining conditions hereof. All other provisions set forth in this Privacy Policy shall continue to remain in effect.
AUDITS AND COMPLIANCE
37. The Platform conducts periodic internal audits to ensure that Protected Health Information (PHI) management practices comply with the HIPAA Privacy Rule and applicable local regulations. In addition, we implement ongoing reviews to maintain data security and detect potential risks.
PRIVACY COMPLIANCE CONTACT
38. For any questions or concerns regarding the privacy of your information or compliance with the HIPAA Privacy Rule, you may contact our HIPAA Compliance Officer at privacy@dzeus.com or (787) 333-0770 Ext. 2001.
PATIENT'S RIGHTS
39. You have the right to access a copy of your Protected Health Information (PHI) stored by us. To request access to your PHI, you may contact our HIPAA Compliance Officer using the contact information provided below.
40. You have the right to request corrections or updates to your PHI if you believe it is incomplete or inaccurate. Requests for corrections must be made in writing and submitted to the HIPAA Compliance Officer.
41. You have the right to request restrictions on our use and disclosure of your PHI. While we will make every reasonable effort to comply with your request, please note that we are not required to agree to all restriction requests.
42. You have the right to receive an accounting of disclosures made of your PHI, except for certain exceptions allowed by law. This record will include details of when, why and to whom your information was disclosed.
43. You have the right to withdraw your consent for use of your PHI, except when the information has already been used for purposes permitted by law. To withdraw your consent, you must notify us in writing.
PRIVACY OFFICER AND CONTACT
44. If you have questions or concerns about this Privacy Policy, the handling of your Protected Health Information (PHI) or wish to exercise any of your rights listed above, you may contact our Privacy Officer:
Person of Contact: Josue Soto
E-mail: privacy@dzeus.com
Telephone: (787) 333-0770 Ext. 2001
Address: 7508 Ave. Agustín Ramos Calero Isabela, PR 00662
Last Updated: January 21, 2025