 |
About Your Privacy
|
|
ESI Canada is committed to protecting your personal information. Your privacy is, and has always been, very important to us.
It affects all aspects of our business from how we communicate with you to how we handle your personal information.
The following policy is ESI Canada's commitment to protecting your privacy. The statement is based on The Personal Information Protection and
Electronic Documents Act (PIPEDA) and the Canadian Standards Association (CSA) Model Code for the Protection of Personal Information (CAN/CSA-Q830-96).
It describes how ESI Canada subscribes to the principles of the CSA Model Code.
ESI Canada’s full privacy policy is available upon request. To obtain a copy, send an e-mail message to ESICanada_privacy@express-scripts.com.
This policy describes the principles ESI Canada will use to protect the privacy of individual plan member’s personal information in Canada, no
matter how the information is collected or stored. This policy does not apply to the information of commercial and corporate customers. ESI Canada
does, however, protect the confidentiality of such information in accordance with the law and ESI Canada’s own policies.
If you have any questions about our privacy commitment, you can
contact our privacy office at 1.888.677.0111, or ESICanada_privacy@express-scripts.com.
|
Privacy & Protection of Personal Information
|
|
The benefit management business is based on the collection, organization and evaluation of information about individuals and
organizations. Recognizing the sensitivity of personal information entrusted to us by our customers and their plan members, ESI Canada has
developed this Policy in order to safeguard such information. The following outlines the basic principles for the privacy and protection of personal information.
Principles
- Accountability
These measures must be applied to all activities related to personal information, namely, the collection, use, communication or disclosure, and
correction of files containing personal information.
ESI Canada is accountable for all personal information in its control, including any personal information sent to third parties for processing.
ESI Canada has established policies and procedures to comply with its own Privacy Policy, and has designated one or more persons
accountable for compliance.
- Identifying Purposes
ESI Canada relies on its customers and providers to identify the purposes for which ESI Canada indirectly collects personal information, and
regardless of whether the information is collected in electronic or paper format. To the extent that ESI Canada directly collects personal
information from a plan member, purposes will be identified by ESI Canada before or at the time of the collection.
- Consent
The knowledge and consent of the individual is required for the collection, use or disclosure of personal information, except where
such collection, use or disclosure is required or authorized by law.
ESI Canada relies on its carrier and third-party administrator customers to communicate to their plan members how their personal information
will be disclosed to ESI Canada, and further used and disclosed by ESI Canada. ESI Canada’s carrier and third-party administrator customers
should be obtaining such consent from plan members, on ESI Canada’s behalf, before or when they collect personal information.
A plan member’s consent can be express, implied, or given through an authorized representative. A plan member can withdraw consent at any
time, with certain exceptions.
ESI Canada, however, may collect, use or disclose personal information without the plan member’s consent for legal, security, or certain
processing purposes.
- Limiting Collection
ESI Canada limits the amount and type of personal information it collects. ESI Canada will collect personal information only for the
purposes already identified to the plan member. ESI Canada collects personal information using procedures that are fair and lawful.
- Limits for Using, Disclosing, and Keeping Personal Information
ESI Canada will use or disclose personal information only for the reasons it was collected, unless a plan member gives consent to use or
disclose it for another reason.
Under certain exceptional circumstances, ESI Canada has a common law duty or right to disclose personal information without plan member
consent to protect ESI Canada’s or the public interest.
ESI Canada will keep personal information only as long as necessary for the identified purposes.
- Keeping Personal Information Accurate
To the best of its ability, ESI Canada will keep personal information as accurate, complete and current as necessary for the identified
purposes.
ESI Canada relies on its customers to provide accurate eligibility and enrollment data and to keep such information current.
ESI Canada relies on its providers to feed accurate claims data to ESI Canada.
- Safeguards
ESI Canada protects personal information with safeguard appropriate to the sensitivity of the information. Security safeguards aim to
protect against loss or theft, as well as unauthorized access, disclosure, copying, use or modification.
- Openness
ESI Canada is open about the policies and procedures it uses to manage personal information. Customers and plan members have access to
information about these policies and procedures. The information will be made available in a manner that is easy to understand.
- Individual Access
When plan members request access to their personal information, ESI Canada will advise them to contact their insurance carrier or third
party administrator to find out what personal information ESI Canada has, what it is being used for, and to whom it has been disclosed.
If a plan member feels they need to obtain the information they are requesting directly from ESI Canada, ESI Canada will consult with
its customer and give the plan member access to their personal information. However, incertain situations, ESI Canada may not be able
to give customers and plan members access to all of their personal information. ESI Canada will explain the reasons for this lack of
access when plan members ask.
Plan members may challenge the accuracy and completeness of their personal information and ask that it be amended as appropriate.
- Handling Plan Member Complaints and Questions
Plan members may challenge ESI Canada’s compliance with its own Privacy Policy. ESI Canada has policies and procedures to receive,
investigate, and respond to plan member complaints and questions.
|
Express Scripts Privacy Promise
|
|
Express Scripts is firmly committed to protecting the confidentiality of your personal and medical information. When you enroll in an Express Scripts service, we ask for only the information required to meet your needs. Please understand that, when enrolling in a service, you are providing information on a voluntary basis.
We have developed the following practices and policies to safeguard your information.
Your Nonpersonal Information (Top of Page)
When you visit an Express Scripts website, we may collect nonpersonal information from you, such as the Internet browser or computer operating system you are using. We use this information only to provide you with better service connections and improved websites. We will not sell or disclose nonpersonal information to other companies or organizations.
Your Personal Information (Top of Page)
When you register for an Express Scripts service or make service elections (such as choosing a prescription benefit package under your plan), you may voluntarily provide us with personal information, such as your name and e-mail address. When personal information is combined with health or medical status information, we refer to it as "health-related personal information."
Unless otherwise stated at the time of collection, Express Scripts will not sell or disclose your personal or health-related personal information to other companies or organizations.
Express Scripts will use your personal and health-related personal information only for the following purposes:
We will manage your prescription benefits and process your prescription drug claims. This process may involve sharing certain information with you or your dentist, physician, pharmacist, health plan or plan administrator. These disclosures are made in full accordance with the terms of your health plan or prescription benefit plan. We will process and send you orders placed through Express Scripts Mail Service Pharmacy. At your request, we may send you information regarding health conditions, medicines, or promotional offers. At the request of you or your health plan, we may send you information or contact you regarding programs designed to improve your health.
Express Scripts also reserves the right to use your personal or health-related personal information to generate aggregate data (summarized data that does not identify you) for the following purposes:
Express Scripts is always seeking better ways to serve you. We may perform statistical analyses of the traffic patterns, site usage, and behaviors associated with our websites. We may use these analyses to generate aggregate data that we may sell or disclose to other companies or organizations. Express Scripts analyzes utilization information in the aggregate to study outcomes, costs, and provider profiles and to suggest benefit designs for your employer or health plan. These studies generate aggregate data, which we may sell or disclose to other companies or organizations.
In certain circumstances, Express Scripts may be legally compelled to release your personal or health-related personal information in response to a court order, subpoena, search warrant, law, or regulation. Under these circumstances, we will notify you unless doing so would violate the law or court order.
Family Member Information (Top of Page)
By using the Express Scripts Prescription Drug Benefits Planner, subscribers can view the prescription history for all covered household members under the age of 18. When registering for this service, subscribers can also elect to view the prescription history for any adult dependents in the household.
To view prescription history information for adult dependents, the subscriber must certify (at the time of registration) that permission has been obtained from the affected dependents. The subscriber also must agree to use the dependents' prescription history solely for the purposes of prescription benefit management. Prescription history cannot be used for any other purposes without the written consent of the adult dependents.
Correct/Update Your Information (Top of Page)
Please contact your plan administrator or insurance carrier to update your information.
Sale or Transfer of Information in the Event of Merger, Sale, or Bankruptcy (Top of Page)
Express Scripts considers the information obtained through its websites to be significant assets of Express Scripts. As a result, in the event Express Scripts is acquired, merges with another entity, becomes insolvent, and/or declares bankruptcy, the websites, and any information obtained through them, may be transferred or sold to another entity, in accordance with applicable law.
E-Mail Privacy (Top of Page)
You can choose to receive e-mail from Express Scripts on selected health topics and promotions. These e-mail messages include instructions for discontinuing their receipt.
You can also use our websites to send an e-mail inquiry to Express Scripts, which may result in a reply being sent to the e-mail address that you provide.
Inquiries sent through our websites are secure and use Secure Socket Layer (SSL) technology. SSL secretly encodes information sent over the Internet, helping to ensure that the information remains confidential. Express Scripts will do all that is reasonably possible to protect your information.
Responses sent from the Express Scripts customer service team to your e-mail provider may not be secure or may be intercepted by third parties. By using the e-mail service, you accept the risk of transmitting information from Express Scripts to your personal e-mail address in an unsecure environment.
If you receive e-mail correspondence at an employer's e-mail address, please note that, under law, the employer may be permitted to view the contents of any e-mail messages received at this address. If you are concerned about the confidentiality of your e-mail messages, you may wish to use a home e-mail address or open a free Yahoo! e-mail account.
Usage by Children (Top of Page)
Express Scripts' websites are neither intended nor designed to attract users who are minor children.
Furthermore, Express Scripts has no intention of collecting personal information from minor children. Where appropriate, we specifically instruct minor children not to submit such information without the consent of a parent or guardian.
To request the removal of personal information submitted by a minor child, please send an e-mail to esicanada@express-scripts.com. We will make all reasonable efforts to remove the information.
Cookies (Top of Page)
When you view one of our websites, we may store information on your computer. This information will be in the form of a "cookie" or similar file and will be used to determine ways to improve our websites, advertisements, products or services. With most Internet browsers, you can erase cookies from your hard drive, block all cookies, or receive a warning before a cookie is stored. Please refer to your browser's instructions or online help files to learn more about these functions.
Links to Other Sites (Top of Page)
Express Scripts' websites may include links to other sites that are not related to, or are not the property of, Express Scripts. We are not responsible for the dependability or information security of these other sites, and the policies in our privacy promise pertain only to Express Scripts' websites.
Security Measures (Top of Page)
To ensure the security of your personal and health-related personal information, Express Scripts' websites support Web browsers that use 128-bit encryption. Although such browsers are not required to use Express Scripts' websites, we strongly recommend their usage when viewing or entering information.
In addition, Express Scripts' websites use a Secure Socket Layer (SSL) protocol. As an added security precaution, all personal and health-related personal information is kept on a physically separate server with firewalls that meet or exceed industry standards to prevent intruders from gaining access.
Safe Shopping (Top of Page)
Express Scripts' websites use Secure Socket Layers (SSL) to ensure the confidentiality of your credit card information. As your order is transmitted to us, SSL technology prevents other parties from viewing or obtaining your credit card information.
After receiving your order, we separate your credit card information from the rest of your order data. We then store your credit card information on a separate server that is not accessible from the Internet. This prevents external parties and unauthorized internal personnel from viewing your information.
Changes in Our Privacy Promise (Top of Page)
Express Scripts uses your personal and health-related personal information only as described in the privacy promise when the information is collected from you. However, subject to the terms below, we reserve the right to change the terms of this privacy promise at any time. Changes to the privacy promise will be posted on this site.
Announcements of policy changes will include any applicable instructions for rejecting the additional use, disclosure, or sale of your information.
How to Send Us Your Comments (Top of Page)
We welcome your comments. If you have general feedback regarding our privacy promise, please send an e-mail to esicanada@express-scripts.com.
Frequently Asked Questions
What is Express Scripts? (Back)
The title "Express Scripts" encompasses all departments, divisions, affiliates, and subsidiaries of Express Scripts, Inc.
What is nonpersonal information? (Back)
Nonpersonal information is information that cannot personally identify you or be used to contact you. Examples include type of Internet browser, type of computer operating system, and the domain name of the website and/or Internet service provider from which you linked to our site or advertisement.
What is personal information? (Back)
Personal information is information that could be used to identify or contact you. Examples include your name, address, telephone number, or e-mail address.
What is aggregate data? (Back)
Aggregate data is summary level data, such as the number of members of a specific gender, in a specific postal code, that have chosen a specific benefit plan. Aggregate data does not contain information that can be used to identify or contact you, such as your name, address, telephone number, or e-mail address.
What is an adult dependent? (Back)
An adult dependent is a dependent 18 or more years of age. Adult dependents have privacy rights through which they may choose not to share their prescription history information with other household members, including spouses, parents, or guardians.
What is a subscriber? (Back)
A subscriber is the holder of the prescription benefit. Dependents are covered by the subscriber's benefit.
What is a cookie? (Back)
A "cookie" is a unique identifier that a website transfers to your hard drive for record-keeping purposes. Express Scripts' cookies are used to personalize your user experience and include only information that you or your health plan have already provided to Express Scripts. Our cookies are deleted from your hard drive when you close your browser session.
What is a server? (Back)
A server is the computer or computer program that houses or distributes data.
What is a firewall? (Back)
A firewall is a set of related programs that protects the resources of a private network from users from other networks.
|
Français
