EMSI Privacy Notice
In selecting EMSI as a vendor, its clients express confidence in the reputation EMSI has built as the national leader in medical information services including in-home biospecimen collection and phlebotomy, patient monitoring, medical records retrieval and data abstraction, drug and breath alcohol testing, and health related tele-interviews. EMSI serves the world’s leading clinical research organizations, insurance carriers, pharmaceutical firms, airlines, rail systems and wellness companies. In appreciation of that commitment, and to demonstrate EMSI’s clients’ confidence is justified, EMSI has established the following privacy notice. EMSI understands the privacy of information entrusted to it by clients is vital, and EMSI is committed to protecting that privacy.
EMSI maintains security policies and practices in its facilities and systems to protect appropriate information from unauthorized access and inappropriate disclosure, alteration or destruction. A written Security Program has been developed, documented and implemented that includes administrative, technical and physical safeguards. Security may include, but is not limited to, encryption, physical access security and other appropriate technologies. EMSI continually reviews and enhances security systems as necessary. Personnel who fail to hold in confidence private information is subject to disciplinary process. Personnel are required to execute an acknowledgement of their receipt and understanding of EMSI’s policies and procedures containing confidentiality obligations, to which they are subject. EMSI does not provide private information to the general public. EMSI does not compile or distribute mailing lists or consumer marketing data from information received from clients. EMSI does not modify or correct information obtained from other persons or organizations, since such information is not prepared by EMSI.
EMSI makes use of session cookies on websites it owns and operates directly. Websites that EMSI may operate indirectly through a third-party partner may use both session and persistent cookies. Cookies are small pieces of data that are stored by the user’s web browser on the user’s hard drive. Cookies are utilized by websites to enhance a user’s experience and remember information such as user name, language, viewing preferences, shortcut navigation and other user preferences. EMSI operated websites do not save user name, language, viewing preferences, shortcut navigation and other user preferences within a cookie. On some websites under EMSI’s indirect control, user’s browsing and/or viewing habits are also tracked and stored in a cookie, however, at no point in time will any user medical or health information be stored in cookie data.
Server and Application Logging
EMSI Web Servers automatically collect Internet Protocol (IP) addresses which are used solely for reporting demographic information, number of visits, and in communications troubleshooting. User ID’s are also recorded to comply with auditing requirements and assist in investigation of customer-initiated service requests. As EMSI upgrades, enhances, modifies or maintains its systems, services and procedures, modifications may be made to this Notice.
Obtaining and Sharing Information
EMSI respects the privacy of individuals while obtaining information for legitimate businesses that can demonstrate an appropriate need for the information. EMSI obtains information ordered by its clients using sources identified by clients – either the subject individual or a reputable source. EMSI obtains and discloses such information pursuant to appropriate written authorizations to gather information for, and disclose it to, its clients for the purposes of their underwriting and servicing of insurance policies, or for their other legitimate business purposes authorized by law. EMSI handles such information in accordance with its clients’ directions, the written authorizations where applicable, EMSI’s contracts with clients, and applicable law. EMSI does not share information it obtained for a client with its other clients, unless the subject’s authorization permits such. In some cases, where not restricted by customer contracts, EMSI may utilize third parties to assist in the processing of information. Personal information is only disclosed to third parties who have written agreements with EMSI to protect personal information in a manner consistent with the relevant aspects of EMSI’s Privacy Notice.
You are not able to limit our ability to share your personal information with other companies for servicing and administration purposes. If you do not wish for your information to be shared with third-parties, please reference the section below entitled, “Opting Out”.
Kinds of Information
EMSI is authorized by clients to act as their representatives in obtaining information on individuals regarding the following, which may not be an all-inclusive list:
- Health history
- Medical information
- Family history
- Lifestyle character
- General reputation
- Habits, use of alcohol and other drugs
- Driving records
- Marital status
- Death records
- Civil and criminal court records
- Past and present employment and job duties
- Other insurance coverage
- Participation in hazardous hobbies or activities
- Tax Records
Sources of such information may include various governmental agencies, medical facilities, independent consumer reporting agencies that collect information fairly and lawfully or other information exchange organizations or individuals provided for personal and business references.
Retention and Disposal
EMSI will retain information as necessary to fulfill the stated purposes or for a period specifically required by law, regulation or customer contract. Upon the end of the retention period, the information will be disposed of in a manner that prevents loss theft, misuse, or unauthorized access.
EMSI does not use the information it obtains on behalf of its clients. Therefore, if a subject of information desires to opt out of having the information used for any purpose, the subject should address this option with EMSI’s client when the subject provides the authorization to release information to EMSI’s client. However, when EMSI makes a direct inquiry of the subject of the information, there is an opportunity presented for the subject to opt out of providing the information. In these instances, the subject need only decline to provide the requested material. In all other instances, EMSI only gathers and discloses the information pursuant to the subject’s written authorization obtained by EMSI’s clients or pursuant to the subject’s direct response to questions asked during an interview process. Should the data subject of the information decide to Opt Out after an authorization has been submitted, the data subject must contact the entity with which the subject has the direct relationship to discuss the consequences of refusing to allow collection of the requested information.
Access To Information
Should the subject wish to obtain copies of the information obtain by EMSI, the subject should contact the entity with which the subject has the direct relationship.
However, in the case where EMSI conducted a Personal History Interview through the EMSI Inspection Division, the subject may request the information obtained by the EMSI Inspection Department at the address below:
Examination Management Services, Inc.
Attention: Inspections Department
3050 Regent Boulevard, Suite 200
Irving, TX 75063
The written request needs to include the following information:
- Full Name
- Date of Birth
- Last 4 digits of the Social Security Number
Where EMSI obtain information directly from the data subject, it is the responsibility of the data subject to provide accurate and complete information.
Notice to all Users
EMSI’s computer systems are restricted solely to users authorized by EMSI and may be monitored for administrative, technical and security reasons. All users expressly consent to such monitoring. Any use of the system must be in compliance with all EMSI policies and applicable laws. Unauthorized users or any unauthorized use will subject the user to criminal and civil penalties under applicable law.
Please address questions regarding EMSI’s privacy notice to EMSI’s privacy officer at 1-800-530-0560 extension 4578.