Privacy policy and data security measures

Last update : March 17th, 2017.

These privacy policies and data security measures govern your relationship with www.rounds-md.com website and Roundr mobile application (the "Service") operated by Method MD ("us", "we", or "our").

Please read this privacy policy & data security measures carefully before using our website and Roundr mobile application (the "Service").

We will use your information for statistics: We collect information about your identity and application use only. This information will be used in research analyses to improve the application, its usability and its market share.

We will not share your information: We will never sell, rent, or lease your information, and we will never voluntarily share identifying information about you without your permission.

You will be able to see some of your account information: When you registered for Roundr, you provided us with a username and a password. You can use this to sign into the application and see your subscription time and personal information you've provided to us (e.g., Your Speciality). You should be very careful not to provide your login information to anyone else, or they could sign in as you and be able to see that same information. If you are worried that someone else may be using your login information, please let us know immediately, or change your password yourself through the Application Profile Page.

Electronic Security and Adherence to the Privacy Rule:
The Roundr application follows the general security guidelines of the U.S. Health Insurance Portability and Accountability Act of 1996 (HIPAA) and the Ontario’s Personal Health Information Protection Act (PHIPA). All patient data is stored LOCALLY on your phone, uses 256-bit encryption, and will not be sent to a cloud network or to the internet without you exporting the data and sharing it with someone else. You should never share the patient list (.ptlist) or the patient data (.patient) over insecure networks or insecure e-mail services.
While we cannot provide an absolute data security guarantee, your personal information will be transmitted and stored using state-of-the-art security systems similar to those that protect websites used by banks and electronic health systems.

The following is a technical explanation of the measures we take to protect your data. If you have any question please contact us by using one of the other options described in the "Contact Us" section of the website.

All personal information will be stored in data tables:
Identifying information (name and email address) will be stored in data tables and so will your speciality information and any other information you provide us with when you subscribe.

The Method MD team will take the following data security measures:

Data Transmission:
The Roundr application currently utilizes 256-bit encryption protocol which protects all data transmission sent over the internet between the web server and every client application. Moreover, no patient data will ever be transmitted through the Internet unless you specifically export a patient list or patient file yourself.

Secure Servers:
All data is housed on a secure server.

Antivirus Software:
All servers are protected from viruses using anti-virus software. This software automatically checks for virus signature file updates once an hour, and if necessary, directly updates itself. All antivirus software is monitored and network personnel notified in the event that the software stops functioning on a server.

Firewall:
The network, including all the servers that will store our research data, is behind a secure firewall that does not allow unauthorized access to any research data server.

Disaster Recovery:
The database is backed up regularly to ensure that no data is lost. Our disaster recovery system also follows Standard Operating Procedures to maintain full security of backup data.

Cloud Services:
In addition to use of our secure servers, we may use your data in conjunction with cloud storage and computing services in order to assist with storage, data collection and processing.