Online Privacy Policy
Effective: March 1, 2024
Rendevor Dialysis (“Rendevor”) is committed to protecting your privacy and developing technology that gives you an enjoyable online experience. This Privacy Policy (“Policy”) describes what information we collect and use when you visit our websites and the choices you may have. This Policy applies to the processing of your personal information on the following Rendevor websites:[insert all websites owned or operated by CDI Health, Chardonnay Dialysis and Rendevor Dialysis] (collectively, “sites”). “Personal Information” is any information that identifies, relates to, describes, is reasonably capable of being associated with a particular individual. Personal information does not include de-identified data.
This Policy does not cover any information we may collect as a covered entity or business associate as those terms are defined under the Health Insurance Portability and Accountability Act (“HIPAA”). To learn more about how we may use and disclose medical information, please review our Notice of Privacy Practices.
Please refer to Section 10 for notices applicable to residents of California.
The Rendevor sites may include links to third party websites. Rendevor encourages you to review the privacy policies of all sites you visit so that you can understand how those sites collect, use and share your information. Rendevor is not responsible for the privacy practices or other content on sites outside of the Rendevor and Rendevor family of sites.
1. Collection of your Personal Information
Personal Information You Provide
When you interact with us on our sites, we may collect the personal information you provide to us through the sites to communicate with you, such as your name, e-mail address, phone number, job title, and facility name. Rendevor also uses your personal information to inform you of other products or services available from Rendevor and its affiliates. We may also contact you via surveys to conduct research about your opinion of current services or of potential new services that may be offered.
Personal Information Collected Automatically
When you visit our sites or otherwise engage with us, Rendevor collects information automatically from your device or browser, such as your IP address, browser type, domain names, access times and referring sites addresses. This information is used by Rendevor for the operation of the sites, to maintain quality of the sites, to improve the sites, and to provide analytics regarding use of the Rendevor sites. In addition, Rendevor may use cookies and other tracking technologies to analyze and improve our services to our customers. For more information about our use of tracking technologies, please review the Use of Cookies section below.
Personal Information We May Collect from Third Parties
We may also collect certain personal information about you through the use of our service providers, such as IP address, browser type, domain names, access times and referring sites. This information is collected by trusted service providers who assist us in operating, maintaining, and securing our sites, and providing analytics about the use of our content and features.
Other Uses of Your Personal Information
We may use any personal information that we collect for the following purposes:
- Protecting our business: to protect and secure our business, systems, the services and our websites; to investigate, prevent, detect and respond to fraud, unauthorized access or other potential threats to the rights and safety of any individual or third party; or other unauthorized activities or misconduct.
- Defending Legal Rights: to manage and respond to actual and potential legal disputes and claims, and to otherwise establish, defend, or protect rights or interests, including in the context of anticipated or actual litigation.
- Auditing, Reporting, Governance and Internal Operations: to conduct our business, including fulfilling our financial, tax and accounting obligations, such as audits, assessments, privacy, security, and financial controls, accounting, record keeping and legal functions, any actual or contemplated merger, acquisition, asset sale or transfer, financing, bankruptcy, or restructuring of all or part of our business.
- Complying with Legal Obligations: to comply with the law, our legal obligations and legal processes (such as warrants, subpoenas, court orders, and regulatory or law enforcement requests).
In addition, Rendevor may, from time to time, contact you on behalf of external business partners about a particular offering that may be of interest to you. In those cases, your personal information is not transferred to the third party.
2. Sharing of Personal Information
Rendevor may share your personal information with its service providers to help us perform statistical analysis, send you email or postal mail, provide customer support, or arrange for deliveries. All such third parties are prohibited from using your personal information except to provide these services to Rendevor, and they are required to maintain the confidentiality of your information. Rendevor does not sell, rent or lease the personal information of its customers to third parties.
Rendevor may disclose your personal information, without notice, if required to do so by law or in the good faith belief that such action is necessary to: (a) conform to the edicts of the law or comply with legal process served on Rendevor or the site; (b) protect and defend the rights or property of Rendevor; and, (c) act under exigent circumstances to protect the personal safety of users of Rendevor, or the public.
3. Use of Cookies
When you visit our sites, we or our authorized service providers may use cookies, web beacons, and other similar technologies (collectively, “cookies”) for storing information to help provide you with a better, faster, and safer experience. The Rendevor sites use cookies to help you personalize your online experience. First, let’s discuss what types of tracking technologies our sites use:
- A cookie is a text file that is placed on your device by a website. They do not damage your device and are never used to store your sensitive data.
- A web beacon (also known as pixel or tag) is a clear GIF used on our site to track user behavior, such as the content you view or the actions you take on our site. These help us to better understand how our customers interact with us.
- Website logs record all activity on our sites to provide us with insight on how and when our server is used, monitor for security, and address bugs with our sites.
We use cookies that are strictly necessary, performance, and functional to provide you with the features and content on our sites, and provide analytics about the use of our sites. Your web browser or device may have the ability reject all or certain types of cookies. If you choose to decline cookies, you may not be able to fully experience the interactive features of the Rendevor services or sites you visit.
Your browser settings may allow you to automatically transmit an opt-out preference signal or “Do Not Track” signal to online services you visit. Like many online services, we do not currently respond to Do Not Track signals.
4. De-Identified and Aggregate Data
Rendevor may de-identify and aggregate data for its business purposes, including but not limited to, to improve the products and features of its Services, to maintain the security and integrity of its systems, for analytics, and other legitimate business purposes. “De-identified Data” means information that cannot reasonably be used to infer information about, or otherwise be linked to a particular data subject. Where we process De-identified Data, we commit to maintain and use the information in de-identified form and not attempt to reidentify the information, except where permitted by law. We may disclose De-identified Data to third parties who commit themselves to maintaining the De-identified Data in de-identified form and not attempt to re-identify the data for any business purpose.
5. Security of your Personal Information
Rendevor secures your personal information from unauthorized access, use or disclosure. Rendevor secures the personal information you provide on computer servers in a controlled, secure environment, protected from unauthorized access, use or disclosure. When personal information (such as a credit card number) is transmitted to other sites, it is protected through the use of encryption, such as the Secure Socket Layer (SSL) protocol.
6. Data Retention
We will only retain your personal information for as long as necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period for personal information, we consider the amount, nature, and sensitivity of the personal information, the potential risk of harm from unauthorized use or disclosure of your personal information, the purposes for which we process your personal information and whether we can achieve those purposes through other means, and the applicable legal requirements.
We cannot (fully) comply with a request to erase or delete if we have to retain your personal information for certain purposes and for a longer period due to a statutory retention period. After the retention period has expired, we will delete your personal information.
7. Children’s Privacy
Our Services are not intended for use by anyone under the age of thirteen (13). In accordance with the Children’s Online Privacy Protection Act (“COPPA”), we do not knowingly request or solicit personal information from anyone under the age of thirteen (13). In the event that we receive actual knowledge that we have collected such personal information without the requisite and verifiable parental consent, we will delete that information from our database as quickly as is practical. We reserve the right to request proof of age at any stage.
8. Changes to this Policy
Rendevor will occasionally update this Policy to reflect company and customer feedback. Rendevor encourages you to periodically review this Statement to be informed of how Rendevor is protecting your information.
9. Contact Information
Rendevor welcomes your questions or comments regarding this Privacy Policy. To contact us, please use the following options:
Email: partners@rendevordialysis.com
10. Required Notices for California Residents
The California Consumer Privacy Act of 2018, as amended by the California Privacy Rights Act (“CCPA”) provides California Residents certain information and control over how businesses may use their personal information. The following Notices are for residents of California.
Rights under the CCPA
If you are a California resident, you may have the following rights regarding your personal information:
- Right to know: You can request that a business disclose to you: (1) the categories and/or specific pieces of personal information they have collected about you, (2) the categories of sources for that personal information, (3) the purposes for which the business uses that information, (4) the categories of third parties with whom the business discloses the information, and (5) the categories of information that the business sells or discloses to third parties. You can make a request to know up to twice a year, free of charge.
- Right to delete: You can request that businesses delete personal information they collected from you and tell their service providers to do the same, subject to certain exceptions (such as if the business is legally required to keep the information).
- Right to opt-out of sale or sharing: You may request that businesses stop selling or sharing your personal information (“opt-out”), including via a user-enabled global privacy control. Businesses cannot sell or share your personal information after they receive your opt-out request unless you later authorize them to do so again.
- Right to correct: You may ask businesses to correct inaccurate information that they have about you.
- Right to limit use and disclosure of sensitive personal information: You can direct businesses to only use your sensitive personal information (for example, your social security number, financial account information, your precise geolocation data, or your genetic data) for limited purposes, such as providing you with the services you requested.
Generally, businesses cannot discriminate against you for exercising your rights under the CCPA.
How to make a Request and What to Expect
How to Make a Request – To make a request to exercise any of these rights, please email us at partners@rendevordialysis.com with your name, email address, phone number and the privacy right you would like to exercise.
Verification – Upon receiving your request, we may be required to verify your identity to determine you are the same person about whom we have the information in our system. We may ask you to provide certain information so that we can match it with the information we already have on file, or we may contact you through a communication method (e.g., phone or email) that you have previously provided to us. We may also use other verification methods as the circumstances dictate.
Responding to Requests – Upon receiving your request, we will respond without undue delay, but in all cases, within forty-five (45) days of receipt. The response period may be extended once by forty-five (45) additional days when reasonably necessary. We will inform you of any such extension within the initial 45-day response period, together with the reason for the extension.
Requests by Authorized Agents – If you designate an authorized agent to make a request on your behalf, we may require you to verify your identity and provide the authorized agent’s identity and contact information to us.
If we decline to take action regarding your request, we will inform you of our decision and reasoning behind it. If you wish to appeal our decision, please email us at partners@rendevordialysis.com.
Additional California Rights (Shine the Light Notice)
California residents have the following additional rights regarding disclosure of your personal information to third parties for their own direct marketing purposes:
We provide California residents with the option to opt-in to sharing of “personal information” as defined by California’s “Shine the Light” law with third parties, other than with our affiliates, for such third parties’ own direct marketing purposes. We do not share personal information with non-Affiliate third parties for their direct marketing purposes absent your consent. If you are a California resident, you may request information about our compliance with the Shine the Light law and/or withdraw previously given consent to sharing with non-Affiliate third parties for their direct marketing purposes by contacting us using the methods in the “Contact Us” section below. Requests must include “California Marketing Privacy Rights Request” in the first line of the description and include your name, street address, city, state, and ZIP code. Please note that we are only required to respond to one request per customer each year, and we are not required to respond to requests made by means other than through the provided e-mail address or mailing address.
Legal Categories of Personal Information Collected
California law requires that we disclose the legal categories personal information that we have collected in the preceding twelve (12) months in a certain way. To make this easier to understand, we have bundled up the information we have provided to you in this Notice and matched the legal categories of personal information we collect about you in a chart. This chart provides details about the legal categories of personal information, examples of the types of personal information included in each legal category, the source(s) from which we collect your personal information, the purposes for which we collect your personal information, and the business purposes we share your personal information and with whom.
|
Category |
Sources |
Purposes for Collection and Use |
Sharing with Third Parties for a Business Purpose |
A real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, Social Security number, driver’s license number, passport number, or other similar identifiers. |
|
|
|
A name, signature, Social Security number, physical characteristics or description, address, telephone number, passport number, driver’s license or state identification card number, insurance policy number, education, employment, employment history, marital status, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information. Some personal information included in this category may overlap with other categories. |
|
|
|
Age (40 years or older), race, color, ancestry, national origin, citizenship, religion or creed, marital status, medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, pregnancy or childbirth and related medical conditions), sexual orientation, veteran or military status, genetic information (including familial genetic information). |
|
|
|
Records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies. |
|
|
|
Genetic, physiological, behavioral, and biological characteristics, or activity patterns used to extract a template or other identifier or identifying information, such as, DNA data, fingerprints, faceprints, and voiceprints, iris or retina scans, keystroke, gait, or other physical patterns, and sleep, health, or exercise data. |
|
|
|
Browsing history, search history, information on an employee’s interaction with a website, application, or advertisement. |
|
|
|
Data that can identify a consumer’s physical location or movements. |
|
|
|
Audio, electronic, visual, olfactory, or similar information. |
|
|
|
Current or past job history or performance evaluations. |
|
|
|
Information that is not publicly available maintained by an education agency or institution related directly to a student. |
|
|
|
Profile reflecting a person’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes. |
|
|
|
Personal information that reveals a consumer’s: Social Security number, driver’s license number, state identification card number, or passport number; a consumer’s account log-in, financial account, debit card, or credit card number in combination with any security or access code, password, or credentials allowing access to an account; precise geolocation; racial or ethnic origin, religious or philosophical beliefs, or union membership; the contents of a consumer’s mail, email, and text messages (not business related); genetic data; biometric data used to uniquely identify a consumer; health data; or data related to sex life or sexual orientation. |
|
|
|
Disclosures of Personal Information for a Business Purpose
In the preceding twelve (12) months, we have disclosed the following categories of Personal Information for a business purpose:
Category A: Identifiers.
Category B: California Consumer Records Personal Information Categories.
Category C: Protected Classification Characteristics Under California or Federal Law.
Category D: Commercial Information.
No Sales of Personal Information
In the preceding twelve (12) months, we have not sold any Personal Information.