Privacy Statement

Who we are

Holistic Hospital Optimization (H2O) respects your right to privacy. We provide an artificial intelligence software platform and applications for hospitals and health systems. Your privacy is important to us, and maintaining your trust and confidence is one of our highest priorities. We are committed to securing the confidentiality and integrity of your personal information. We are proud of our privacy practices and want our current and prospective customers and users to understand what information we collect and how we use it.

Why We Collect Your Information

We collect information about you and your account so that we can (i) know who you are and help prevent unauthorized access, (ii) improve and support the operational performance of the hospitals and health systems we serve, (iii) create and share operational insights, reports, and historical usage trends, (iv) design and improve the products and services we offer, and (v) comply with applicable laws and regulations.

When you use our services, we may collect certain non-public personal information related to how you access and use the hospital’s or health system’s services or our platform. We keep this information strictly safeguarded and use or disclose it only as needed to provide our services or as permitted by law. Protecting your privacy is important to us.

Information We Collect About You

The non-public personal information we may have about you includes (i) information provided to us by the hospital or health system with which you are affiliated, as necessary to enable your access to and use of our services (ii) what you provide to us when creating an account or communicating with us (iii) information to allow you to effectively use our products. We may collect the following types of non-public personal information about you:

–      Information about your identity, such as your name and address;

–      Information about your location while using the application;

–      Information you provide when using our website or applications, such as nurse scheduling, operating room scheduling and optimization details, or other data you submit to manage or support health system operations.

Sources From Which We Obtain Your Information

We collect non-public personal information about H2O users, such as you, from the following sources:

–      Information we receive from you when you use the website or mobile applications;

–      Information provided to us by service providers, business partners, or other third parties whom you have authorized to share information with us, or where sharing is required to provide you with our services;

–      Information about your hospital operation needs and accounts with affiliate systems, or others;

–      If you visit the website, information we collect via a web server, often referred to as a “cookie”. Cookies indicate where a site visitor has been online and what has been viewed.

–      If you use our mobile applications, information we collect via your mobile phone or tablet while using the application.

Information We Disclose

We do not disclose any non-public personal information about our users or former users to anyone, except as permitted by law and as described in this policy. We will share such information only if one or more of the following conditions are met:

–      We receive your prior consent;

–      We believe the recipient to be you or your authorized representative;

–      We share information with the hospital or health system that has engaged us to provide services and that you are accessing through our website or applications;

–      We share information with non-affiliated third-party service providers working under contract with that hospital or health system when they need certain information to help us deliver or support those services;

–      We share the information with non-affiliated companies that help us provide services to you, provided that they conform to our privacy standards and agree to be contractually obligated to keep the information provided confidential and used only as authorized;

–      We are required by law to release information to the recipient.

We only use information about you and your account to help us better serve your needs. We may share aggregate non-personally identifiable information with interested third parties to assist them in understanding the usage patterns for certain services and/or functionality on the website and mobile applications.

Retaining Information

We will retain your information for as long as your account is active or as needed to provide you services or we are obligated by law or by our contractual obligations. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

Mobile Communications

H2O may offer the option to receive scheduling or shift-related notifications via SMS. When you opt in to receive these messages, the following practices apply:

Information We Collect

We collect your mobile phone number and the record of your consent to receive SMS communications.

How We Use This Information

Your mobile number and consent details are used exclusively to deliver the text message notifications you have requested, including scheduling updates and shift alerts.

Information Sharing

We do not share, sell, or rent your mobile number or SMS opt-in data to any third parties or affiliates.

Opting Out

You may opt out of SMS communications at any time by replying STOP to any message. After doing so, you will no longer receive text notifications unless you opt in again.

Safeguards – Confidentiality & Security

H2O has procedures in place that we believe are reasonably designed to protect the security and confidentiality of your information. These include confidentiality agreements with companies we contract with to help us provide services to you, password-protected user access to our computer files and strict confidentiality policies that apply to all H2O personnel.

We maintain physical, electronic and procedural safeguards to guard your personal account information. To further protect your privacy, our website and mobile applications use the highest levels of Internet security, including data encryption, usernames and passwords, and other tools. We also restrict access to your personal data to authorized H2O associates who have a need for these records. We require all non-affiliated organizations to conform to our privacy standards and are contractually obligated to keep the information provided confidential and used as requested. Furthermore, we will continue to adhere to the privacy policies and practices described in this notice even after your account is closed or becomes inactive.

No data transmissions over the Internet can be guaranteed to be 100% secure. Consequently, we cannot ensure or warrant the security of any information you transmit to us and you do so at your own risk. Once we receive your transmission of information, we make commercially reasonable efforts to ensure the security of our systems, including use of a firewall, content filtering, intrusion detection, SSL encryption, a DMZ, and access controls. However, please note that this is not a guarantee that such information may not be accessed, disclosed, altered, or destroyed by breach of any of our physical, technical, or managerial safeguards.

If we learn of a security systems breach, then we may attempt to notify you electronically so that you can take appropriate protective steps. By using the website, mobile applications or providing personal information to us, you agree that we can communicate with you electronically regarding security, privacy, and administrative issues relating to your use of the software. We may post a notice on the site if a security breach occurs. We may also send an email to you at the email address you have provided to us in these circumstances. Depending on where you live, you may have a legal right to receive notice of a security breach in writing. To receive a free written notice of a security breach (or to withdraw your consent from receiving electronic notice) you should notify us via email at office@hhopt.com.

Children

We may receive limited personally identifiable information from or about individuals under the age of eighteen (18) when such information is provided by a user, hospital, or health system in connection with our services. This information is protected in accordance with applicable privacy laws, including, as relevant, the Health Insurance Portability and Accountability Act of 1996 (HIPAA), and by the terms of our contractual agreements with the hospital or health system.

Changes to this Policy

We will continue to conduct our business in a manner that conforms with our pledge to you, your expectations and all applicable laws.

**We reserve the right to modify this privacy statement at any time, so please review it frequently. If we make material changes to this policy, we will notify you here, by email, or by means of a notice on our home page prior to the change becoming effective.**