SPINNphr Account Beta Version Security and Privacy Statement

White Pine Systems, LLC is committed to protecting your privacy. This security and privacy statement applies to the data collected by White Pine through the SPINNphr account beta version at SPINNphr: It does not apply to data collected through Microsoft HealthVault, other programs that work with the HealthVault, or other online or offline sites, products or services. This is a preliminary disclosure and is not intended to be exhaustive. Using this website indicates that you are in agreement with the terms indicated in this security and privacy statement.

Introduction

SPINNphr is a personal health application that lets you gather, edit, augment, store and share health information online. With SPINNphr, you can control your own health records. You can also share your health information with family, friends and healthcare professionals, and have access to online health information management tools.

Collection of your information

SPINNphr asks you to enter an identifier and password to sign in. SPINNphr follows the HealthVault convention and currently accepts either Windows Live ID or OpenID from certain providers. SPINNphr does not issue either OpenIDs or Windows Live IDs. Windows Live IDs are issued by Microsoft. 

The first time you sign in to SPINNphr, SPINNphr asks you to create an account in HealthVault. This single process creates your account in both SPINNphr and HealthVault. To create an account, you must provide personal information such as name, date of birth, e-mail address, postal code and country/region.

An account allows you to manage one or more health records, such as the ones you create for yourself and your family members. You choose what information to put in your records. You decide who should be allowed to enter information for yourself or your family members. Examples of the types of information you can store in a record include:

  • Measurements such as blood glucose and blood pressure
  • Lab results 
  • Medications
  • Allergies 
  • Medical conditions 
  • Health history
  • Discharge summaries 
  • Life style activities such as exercise and diet

By default, you are the custodian of any records you create. You may invite additional people to be custodians. Each custodian can add and remove other custodians and users who can view and modify the record. Some of the 

Sharing your Personal Health Information

A key value of SPINNphr is the ability to share your health information with people and services who can help you meet your health-related goals. For example, you can share health information from records you control:

  • To co-manage the health of a family member 
  • To communicate with health care providers
  • To provide important information in an emergency 
  • To notify family and friends when your information is being viewed 
  • To provide fitness and diet information to coaches and trainers

You can share information in a health record you are custodian of with another person by sending a sharing invitation e-mail through SPINNphr. If the person accepts your sharing invitation and has or creates a SPINNphr account, you have given him or her access to that information. You can specify how long they have access (custodian access does not expire but, like all sharing access, it can be revoked at any time) and whether they can modify the information in the record.

How we use your personal information

We use personal information collected through SPINNphr, including health information, to provide this service, and as described in this security and privacy statement. We do not use or disclose your information except as described in this security and privacy statement.

In support of these uses, White Pine may use personal information:

  • To provide you with important information about the SPINNphr service, including critical updates and notifications
  • To determine your age and location to help determine whether you qualify for an account
How we use aggregate information and statistics

White Pine may use aggregated information from the SPINNphr service to improve the quality of the service and for marketing of the service (for example, to tell potential advertisers how many SPINNphr users live in the United States). White Pine will not use your individual account and record information for marketing or research purposes without first asking for and receiving your opt-in consent.

Links to other sites

Our website may contain links to other sites not owned or controlled by SPINNphr. Please review carefully the privacy policies of those sites before volunteering any personal information. We are not responsible for nor can we control the privacy practices of any other websites. Links to non-SPINNphr websites do not constitute or imply endorsement by SPINNphr of those websites, any products or services described on those sites or of any other material contained in them.

HealthVault and Windows Live ID

SPINNphr allows you to save your personal health information in the Microsoft HealthVault system. SPINNphr follows the HealthVault convention and currently accepts either Windows Live ID or OpenID from certain providers.

Account access and controls

You choose whether to create an account with SPINNphr. The required account information consists of a small amount of information such as your name, e-mail address, region, and SPINNphr credentials, other  information is optional. You can modify, add, or delete any optional account information by signing into your SPINNphr account and editing your account profile.

You can close your account in SPINNphr and in HealthVault at any time by signing into your HealthVault account and editing your account profile. With HealthVault, we wait 90 days before permanently deleting your account information in order to help avoid accidental or malicious removal of your health information.

Record access and controls

SPINNphr allows an account to contain multiple health records. This feature enables, for example, family health managers to create and manage records for family members.

When you create a record, you become a custodian of that record. As a custodian, you decide what level of access to grant other users of the information. SPINNphr, working in conjunction with HealthVault, creates a fixed list of each access or change by users, which HealthVault keeps as a full history of the record. You can view and update records you are custodian of and can examine the history of access and changes to those records.

Sharing records with other SPINNphr users

You decide who should see what information in SPINNphr. 

  • Emergency information. This is information made available to anyone who is not authorized to see restricted information. This could include anyone off the street as well as a Emergency Medical Technicians, physicians, or other healthcare providers who are not known by SPINNphr to be an authorized healthcare provider. 

  • Registered healthcare provider members only. This information is viewable by healthcare providers who are registered as healthcare providers in SPINNphr and who are authenticated by the log-in process. Registered healthcare providers include those registered through White Pine or other White Pine affiliates.

  • Your personal health network. You can create a network of healthcare providers who all have the same level of access to selected information. This information is viewable only by people in your personal health network.

  • Named SPINNphr members only. You may choose to limit access to certain information to specifically named people.

Archiving health information

When a user with "View and modify" or custodian access deletes a piece of health information, HealthVault archives the information so that it is visible only to record custodians from within HealthVault.

Security of your information

SPINNphr, White Pine and Microsoft are committed to protecting the security of your personal information. We use a variety of security technologies and procedures to help protect your personal information from unauthorized access, use, or disclosure. For example, we store the personal information you provide on computer servers with limited access that are located in controlled facilities. Additionally, when we transmit sensitive personal information (such as a credit card number) over the Internet, we protect it through the use of encryption, such as the Secure Socket Layer (SSL) protocol.

Use of cookies

We, SPINNphr, White Pine and Microsoft, use cookies on this site to ensure the integrity of the registration process and to personalize the site. A cookie is a small text file that is placed on your hard disk by a web page server. Cookies cannot be used to run programs or deliver viruses to your computer. Cookies are uniquely assigned to you, and can only be read by a web server in the domain that issued the cookie to you.

You have the ability to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. If you choose to decline cookies, you may not be able to use interactive features of this or other web sites that depend on cookies.

Use of Web beacons

Web pages may contain electronic images known as Web beacons, sometimes called single-pixel gifs, that may be used:

  • to assist in delivering cookies on our sites
  • to enable us to count users who have visited those pages
  • to deliver co-branded services.

We may also employ Web beacons from third parties in order to help us compile aggregated statistics and determine the effectiveness of our promotional campaigns. We prohibit third parties from using Web beacons on our sites to collect or access your personal information.

We may collect information about your visit to SPINNphr, including pages you view, the links you click, and other actions taken in connection with the SPINNphr service. We also collect certain standard, non-personally identifiable information that your browser sends to every Web site you visit, such as your IP address, browser type and language, access times, and referring Web site addresses.

Advertising in SPINNphr

As of July, 2009, SPINNphr does not accept any advertising revenue; however, SPINNphr expressly reserves the right to accept banner or other online advertisements in the future. If we accept advertisements, we expect the online banner or other advertisements you will see on SPINNphr Web pages will be displayed by SPINNphr or by sponsors with whom SPINNphr has a direct relationship. We do not expect to engage third-party ad servers or ad networks to display advertisements on SPINNphr Web pages.

Enforcement of this Security and Privacy statement

If you have questions regarding this statement, you should first contact us by using our Web form. 

This site does not provide medical or any other health care advice, diagnosis, or treatment.