Juxta — Privacy Policy

Welcome to Juxta. We are dedicated to revolutionizing intra-hospital patient transport by improving patient experiences and enhancing operational efficiency within healthcare facilities. In delivering our cutting-edge technology solutions, we prioritize the privacy and security of our users' information. This Privacy Policy outlines our practices regarding the collection, use, and disclosure of your information when you use the Juxta platform and the choices you have associated with that information.

Our Commitment to Privacy:

- At Juxta, we understand the importance of privacy, especially in the healthcare context. We are committed to protecting the confidentiality and integrity of your personal and health information in compliance with the Health Insurance Portability and Accountability Act (HIPAA) and other relevant data protection laws and regulations.

- We believe in transparency and want to ensure that you understand our practices regarding your information. This policy applies to all information collected through the Juxta platform, including any related services, sales, marketing, or events.

Purpose of This Policy:

- The purpose of this Privacy Policy is to inform you about how we collect, use, protect, and disclose information that we obtain about you through the Juxta platform. This includes information that could identify you (like your name, contact details, and other identifiers) and information related to your health and medical condition, which is considered protected health information (PHI).

- We also aim to explain your rights and choices regarding the information you provide to us, ensuring you have full control over your personal and health information.

By using the Juxta platform, you agree to the collection and use of information in accordance with this Privacy Policy. We encourage you to read this policy carefully to understand our practices and your rights. If you have any questions or concerns about our privacy practices, please do not hesitate to contact us at the details provided at the end of this policy.

Information Collection

Juxta is committed to providing an efficient and secure patient transport service within healthcare facilities. To achieve this, we collect various types of information from our users, ensuring the smooth operation of our services and compliance with applicable healthcare regulations. Below is a detailed list of the types of information we collect:

Personal Information:

-Contact Details:This includes names, email addresses, and phone numbers of healthcare professionals and patient transporters using the platform to facilitate communication and service coordination.

-Professional Information:Details about the professional role, department, and healthcare facility of our users to tailor the Juxta service to the specific needs of each hospital or clinic.

Health Information:

-Patient Data:In the course of facilitating patient transport, we may collect limited health information necessary for the safe and efficient transport of patients, such as the patient's medical condition, destination department (e.g., from ICU to radiology), and any special transportation requirements.

-Compliance with HIPAA:All health-related information is handled in strict compliance with HIPAA regulations, ensuring the protection and confidentiality of patient health information.

Location Data:

-Geolocation Information:To provide real-time tracking and optimize transport routes, Juxta collects geolocation data from the devices of patient transporters when they are logged into the platform and actively using the service.

- Facility Maps: We also utilize maps of healthcare facilities to assist in navigation and identifying the most efficient routes for patient transport within complex hospital campuses.

Usage Data:

-Interactions with the Platform:This includes data on how healthcare professionals and transporters use Juxta, such as the features accessed, transport requests made, and feedback provided. This information helps us to improve and personalize our services.

- Device and Access Information: We collect information about the devices used to access Juxta, including hardware models, operating system versions, and unique device identifiers, to ensure optimal performance and security of our platform.

Feedback and Communications:

-User Feedback:Comments, ratings, and other feedback provided by users about their experiences with the platform and individual transport services.

-Communications with Juxta:Records of communications with our support team, including emails and phone calls, to provide effective customer support and address user inquiries or concerns.

By using Juxta, you consent to the collection of this information. Our use of your information is governed by our Privacy Policy, which provides further details on how we handle and protect your data. If you have any questions about the information we collect or how it is used, please do not hesitate to contact us.

Use of Information

Juxta utilizes the information collected through our platform to enhance the efficiency and effectiveness of intra-hospital patient transport services, ensuring a seamless experience for both healthcare providers and patients. Here's how we use the collected information:

Service Provision and Enhancement:

-Facilitating Transport Requests:We use personal and health information to process and manage transport requests efficiently, ensuring that patients are transported safely and promptly within healthcare facilities.

-Real-Time Tracking and ETAs:Geolocation data and transport details are used to provide real-time updates and estimated times of arrival, helping healthcare providers plan accordingly and reduce patient wait times.

-SOS Functionality:In cases of emergency, the SOS feature allows transporters to quickly alert medical response teams, using location data to ensure a swift response, thereby enhancing patient safety.

Improvement of Platform Features and User Experience:

-Feedback and Ratings:User-generated content, such as feedback and ratings, is crucial for us to understand how well our services are being received and where improvements are necessary. This information helps us to continually refine and enhance the Juxta platform.

-Usage Analytics:We analyze how our platform is used to identify trends, user behavior, and potential areas for optimization. This includes assessing the efficiency of transport routes, transporter performance, and overall platform engagement.

Compliance and Legal Obligations:

-Regulatory Compliance:Information is used to ensure compliance with healthcare regulations, including HIPAA in the United States. This involves safeguarding patient health information and adhering to privacy and security standards.

-Legal Requirements:We may use the information collected to meet legal and regulatory requirements, respond to lawful requests by public authorities, and protect the rights, property, or safety of Juxta, our users, or others.

Communication and Support:

-User Support:Contact information is used to communicate with users regarding their transport requests, platform updates, and to provide support whenever issues arise.

-Platform Updates:We keep our users informed about new features, updates, and relevant information related to the Juxta platform through periodic communications.

Research and Development:

-Innovation:Data collected from the platform is used for research and development purposes, enabling us to innovate and introduce new features that address the evolving needs of healthcare facilities and improve patient transport processes.

Juxta is committed to using the information collected responsibly and ethically, with the utmost respect for user privacy and data protection. Our goal is to leverage this information to deliver a platform that not only meets but exceeds the expectations of our users, improving healthcare operations and patient outcomes.

Data Sharing and Disclosure

Juxta is committed to maintaining the privacy and security of the information collected through our platform. Our practices for sharing and disclosing information are guided by strict adherence to legal and ethical standards, especially concerning patient health information. Here is an overview of the conditions under which data may be shared with third parties:

With Service Providers:

- We may share information with third-party service providers who perform services on our behalf, such as data analysis, payment processing, information technology and related infrastructure provision, customer service, email delivery, and auditing services. These service providers are authorized to use your personal information only as necessary to provide these services to us and are obligated to maintain the confidentiality and security of the information.

For Legal Reasons:

- Juxta may disclose information if required to do so by law or in the good faith belief that such action is necessary to comply with a legal obligation, protect and defend the rights or property of Juxta, act in urgent circumstances to protect the personal safety of users of the platform or the public, or protect against legal liability.

In the Event of Business Transfers:

- If Juxta is involved in a merger, acquisition, or asset sale, your personal information may be transferred as part of that transaction. We will provide notice before your personal information is transferred and becomes subject to a different privacy policy.

For Healthcare Operations:

- Information may be shared with healthcare providers, hospitals, and other entities involved in the healthcare process for purposes of facilitating patient transport, coordinating care, and improving healthcare operations. All such sharing will be done in compliance with HIPAA and other relevant regulations, ensuring the protection of patient health information.

De-identified or Aggregated Information:

- We may share de-identified or aggregated information with partners or the public in a manner that does not identify any individual, for purposes such as showcasing general trends in the use of our services or for other research and analytical purposes.

With Consent:

- Juxta may share your information with third parties when we have your explicit consent to do so.

It's important to note that Juxta implements robust safeguards to protect your information and limit the use and disclosure of patient health information to the minimum necessary to accomplish the intended purpose. Our commitment to data protection and privacy extends to all aspects of our operations, ensuring that user information is handled with the highest standards of care and responsibility.

Data Security

Juxta is committed to the highest standards of data security to protect the sensitive information of our users, including healthcare professionals, patient transporters, and patients. We understand the critical nature of the healthcare information managed through our platform and have implemented a comprehensive set of security measures to ensure the integrity, confidentiality, and availability of all data. Here are the key components of our data security strategy:

Encryption:

- All data transmitted to and from the Juxta platform is encrypted using industry-standard encryption protocols. This includes data in transit between users' devices and our servers, as well as data at rest stored within our systems.

Access Controls:

- We employ strict access controls to ensure that only authorized personnel have access to sensitive information. This includes role-based access controls that limit users' access to information necessary for their specific roles within the healthcare process.

- Two-factor authentication (2FA) is implemented for an additional layer of security, particularly for accessing areas of the platform that handle sensitive patient information.

Secure Storage:

- Data is stored in secure, HIPAA-compliant cloud infrastructure designed to protect against unauthorized access, breaches, and data loss. Our infrastructure includes physical, administrative, and technical safeguards in line with best practices and regulatory requirements.

- Regular backups are conducted to ensure data resilience and recovery capabilities in the event of an incident.

Regular Security Audits and Monitoring:

- Juxta conducts regular security audits and continuous monitoring of our systems to detect and address potential vulnerabilities promptly. This includes third-party security assessments and penetration testing to ensure our defenses are robust against emerging threats.

- We have implemented an incident response plan to quickly address any potential security breaches, minimizing impact and ensuring timely notification to affected parties as required by law.

Employee Training and Awareness:

- Our staff receives regular training on data security practices, including the handling of sensitive information and recognizing and responding to security threats. This ensures that our team remains vigilant and informed about the latest security best practices.

Compliance with Regulations:

- Juxta's security practices are designed to comply with relevant healthcare regulations, including HIPAA, to ensure the protection of patient health information. We stay abreast of regulatory changes to continuously align our security measures with the latest compliance standards.

By implementing these comprehensive data security measures, Juxta aims to maintain the trust of our users and ensure the secure and reliable operation of our platform, safeguarding the sensitive information that is essential to improving healthcare operations and patient care.

User Rights

Juxta recognizes and respects the rights of our users concerning their data, in compliance with relevant laws such as the Health Insurance Portability and Accountability Act (HIPAA) in the United States and other applicable data protection regulations. Our commitment to your privacy and data security extends to ensuring you have full control over your personal and health information. Here are the key user rights we uphold:

Right to Access:

- Users have the right to access their personal and health information stored on the Juxta platform. You can request a copy of your data to review the information we have about you, ensuring its accuracy and completeness.

Right to Correction:

- If you identify any inaccuracies or incomplete information in your data, you have the right to request corrections. Juxta is committed to maintaining accurate and up-to-date information and will make the necessary adjustments upon your request.

Right to Deletion:

- Users have the right to request the deletion of their personal information from our platform, subject to certain conditions. While we aim to accommodate deletion requests, we may need to retain certain information for legal, regulatory, or operational purposes, such as compliance with HIPAA and other healthcare regulations.

Right to Restrict Processing:

- You have the right to request that we restrict the processing of your personal information under specific circumstances, such as if you contest the accuracy of the data or if the processing is unlawful.

Right to Data Portability:

- Where applicable, users have the right to receive their personal data in a structured, commonly used, and machine-readable format. You may also request that we transmit this data directly to another entity, where technically feasible.

Right to Object:

- Users have the right to object to the processing of their personal data based on particular situations, including direct marketing purposes or processing based on legitimate interests.

Right to Withdraw Consent:

- For data processing activities based on your consent, you have the right to withdraw your consent at any time. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.

Right to Lodge a Complaint:

- If you believe that the processing of your personal data violates applicable data protection laws, you have the right to lodge a complaint with a supervisory authority responsible for data protection in your jurisdiction.

Juxta is dedicated to facilitating the exercise of these rights in a straightforward and transparent manner. If you wish to exercise any of your rights or have questions about your data, please contact us using the contact information provided in this policy. Our team is ready to assist you and address any concerns you may have regarding your data rights and privacy.

Compliance with Healthcare Regulations

Juxta is firmly committed to adhering to the highest standards of compliance with healthcare regulations, including the Health Insurance Portability and Accountability Act (HIPAA) and other applicable healthcare laws. Our platform is designed to ensure the secure and compliant handling of sensitive health information, safeguarding the privacy and rights of patients and healthcare professionals. Here's how we ensure compliance:

HIPAA Compliance:

-Privacy Rule:We strictly follow the HIPAA Privacy Rule by implementing policies and procedures to protect the confidentiality and integrity of Protected Health Information (PHI), both in electronic and non-electronic forms. This includes limiting the use and disclosure of PHI to the minimum necessary to accomplish the intended purpose.

-Security Rule:Juxta adheres to the HIPAA Security Rule by ensuring the implementation of technical, physical, and administrative safeguards to secure electronic PHI (ePHI). This includes encryption, secure data transmission, and access control measures to prevent unauthorized access to ePHI.

-Breach Notification Rule:In compliance with HIPAA's Breach Notification Rule, Juxta has established a comprehensive breach notification protocol. In the event of a breach involving unsecured PHI, we are committed to notifying affected individuals, the Department of Health and Human Services (HHS), and, in certain circumstances, the media, in a timely and transparent manner.

Other Applicable Healthcare Laws:

- In addition to HIPAA, Juxta ensures compliance with other relevant federal and state healthcare regulations that govern the use and disclosure of health information. This includes adhering to laws related to patient consent, minors' health information, and state-specific privacy laws that offer greater protection to PHI.

Data Protection Measures:

- Juxta employs robust data protection measures, including encryption of data at rest and in transit, regular security assessments, and the implementation of a secure infrastructure. These measures are designed to protect against unauthorized access, use, alteration, or destruction of personal and health information.

Training and Awareness:

- We conduct regular training and awareness programs for our employees and contractors to ensure they understand their responsibilities under HIPAA and other healthcare regulations. This includes training on privacy and security practices, as well as ongoing education on changes in healthcare laws and regulations.

Vendor and Business Associate Agreements:

- Juxta enters into Business Associate Agreements (BAAs) with all vendors and partners who may have access to PHI through our platform, ensuring they adhere to the same high standards of privacy and security as Juxta.

Audit and Compliance Monitoring:

- Our compliance team regularly audits and monitors our practices to ensure ongoing adherence to healthcare regulations. This includes conducting risk assessments, reviewing policies and procedures, and taking corrective actions when necessary.

Juxta's commitment to compliance is integral to our mission of revolutionizing intra-hospital patient transport. We continuously review and update our practices to align with evolving regulations and best practices in healthcare data protection, ensuring that we remain a trusted partner to healthcare providers and their patients.

Children's Privacy

Juxta recognizes the importance of protecting the privacy of children, especially in the digital environment. Consistent with the Children's Online Privacy Protection Act (COPPA) and other relevant laws, Juxta has established the following policy regarding children under the age of 13:

Age Limitation:

- The Juxta platform is not designed for, intended to attract, or directed towards children under the age of 13. To use the services provided by Juxta, users must be at least 16 years of age. We do not knowingly collect, use, or disclose personal information from children under the age of 13.

Verification of Age:

- When creating an account or accessing the Juxta platform, users may be required to provide their age or date of birth to verify that they meet the minimum age requirement. This measure is in place to prevent underage individuals from inadvertently using the platform.

Parental Consent:

- In the event that we learn we have collected personal information from a child under the age of 13 without verification of parental consent, we will take steps to remove that information from our servers as quickly as possible.

Protection of Minors:

- We strongly advise parents and guardians to monitor their children's internet usage and to help enforce our Children's Privacy Policy by instructing their children never to provide personal information through any website without parental permission.

Reporting and Removal:

- If a parent or guardian becomes aware that their child has provided us with personal information without their consent, they should contact us immediately. Upon receiving such a report, we will take reasonable steps to ensure that such information is deleted from our records.

Juxta's commitment to protecting the privacy of children is unwavering. We encourage parents and guardians to play an active role in their children's online activities and to use caution and discretion when disclosing personal information on the internet.

Changes to the Privacy Policy

Juxta reserves the right, at its sole discretion, to amend or update this Privacy Policy at any time to reflect changes in our practices, service offerings, or legal or regulatory requirements. We understand the dynamic nature of the digital healthcare landscape and the importance of staying current with privacy standards and practices.

Notification of Changes:

- Should there be any significant changes to our Privacy Policy, we will notify our users through prominent means such as email notifications or notices on our platform before the changes become effective. This ensures that our users are always aware of what information we collect, how we use it, and under what circumstances, if any, we disclose it.

Review Period:

- We encourage our users to regularly review this Privacy Policy for any changes. Your continued use of the Juxta platform after any modification to our Privacy Policy will constitute your acceptance of such modifications and your consent to abide by and be bound by the modified policy.

Feedback and Inquiries:

- We welcome your feedback regarding our Privacy Policy. If you have any questions, concerns, or suggestions about our privacy practices, please feel free to contact us using the contact information provided in the policy. Your privacy is of utmost importance to us, and we are committed to protecting your information in accordance with the highest standards of privacy and data protection.

Contact Information

For any questions or concerns regarding this Privacy Policy, or for any other inquiries related to the Juxta platform, please reach out to us through the following contact details:

Email:  

info@usejuxta.org

Phone:  

(858) 753-8444

Our team is dedicated to providing support and addressing your needs promptly. We value your feedback and are here to assist with any issues or questions you may have about using the Juxta platform, understanding our policies, or any other aspect of our service.

Please do not hesitate to contact us. We are committed to ensuring a positive experience for all our users and stakeholders within the healthcare community.