Privacy Policy

Last Updated: August 21, 2013

St. Luke’s is committed to respecting your privacy. We adopted this Privacy Policy to make it easy for you to understand how we collect, store, use and disclose information you provide to us through this Website. Please read our Terms and Conditions and this Privacy Policy carefully prior to visiting or using our Website or registering to receive information from or submitting information to St. Luke’s through this Website. If you do not agree with all of our Terms and Conditions and this Privacy Policy, you are not authorized to visit or use this Website or register to receive information from or submit information to St. Luke’s through this Website, and your sole remedy is to stop accessing and using this Website.

Scope

This Privacy Policy only covers information provided to St. Luke’s through this Website. By providing information to St. Luke’s through this Website, you acknowledge and agree that such information is governed by this Privacy Policy and applicable law. This Privacy Policy does not apply to information submitted to St. Luke’s offline. This Privacy Policy also does not apply to information submitted to third parties, regardless if you link to such third party through this Website. Information you provide to or is collected by third parties, which may include location data, contact information and personal information, is governed by the terms and conditions and privacy policies of such third parties, and we encourage you to learn about such terms and conditions and privacy policies prior to accessing third party websites and/or content and disclosing information to such third parties.

Personal Health Information

We respect the confidential nature of your Personal Health Information. St. Luke’s will ensure the security of your Personal Health Information and not share, distribute, or reference any Personal Health Information, except as provided in our Terms and Conditions, this Privacy Policy or as may be required by applicable law. In accordance with our Terms and Conditions, we may access your Personal Health Information to respond to your inquiries or provide you with the information you requested.

Personal Information

You can visit this Website without telling us who you are and without revealing any of your Personal Information. However, there are times when we may need certain Personal Information from you, such as when you register to receive information from or submit information to us through this Website. When you provide Personal Information to us, we use your Personal Information to provide you with access to your requested content and/or information. We may also use your Personal Information to:

  • Respond to your inquiries.
  • Provide technical administration and customer support.
  • Send important notices, such as communications about our newsletter or changes to our terms, conditions, and policies.
  • Make it easier for you to log back into and use this Website.
  • Contact you about our specials and new services or specials from our affiliated companies or other third parties, unless you ask us not to contact you about these offers. For details on how to opt-out of receiving information about specials and new services, please see the Opting-Out of Future Contact section of this Privacy Policy.
  • Manage your account.
  • Verify your eligibility and deliver prizes in connection with contests and sweepstakes.
  • Help us understand who is visiting and using this Website.
  • Enforce our Terms and Conditions.
  • Protect against or identify fraudulent transactions.

Aggregated Information

We collect, store, analyze, use and disclose Aggregated Data to help us provide you with a better user experience. For example, we collect IP addresses to aggregate demographic and other non-personal information, we keep track of the domains from which users visit this Website, we measure visitor activity on this Website, and we share statistical information with our advertising partners. This enables us to adjust this Website to meet the needs of our customers. When we use and disclose Aggregated Information, we do so in a way that keeps both your Personal Health Information and Personal Information anonymous. You hereby acknowledge and agree that St. Luke’s may share Aggregated Information with third parties and make Aggregated Information publicly available.

User Generated Content

We may, but are not obligated, to collect, store, analyze, use and disclose User Generated Content. You hereby acknowledge and agree that St. Luke’s may use your User Generated Content to evaluate and modify our Website, as well as to display your User Generated Content on our Website.

Disclosure Of Your Personal Health Information And Personal Information

St. Luke’s is not in the business of sharing or selling your Personal Health Information or Personal Information. We consider this information to be a vital part of our relationship with you. However, in addition to specific requests by you, set forth below are circumstances in which we may share some or all of your Personal Health Information and/or Personal Information with third parties without further notice to you (and you hereby expressly authorize St. Luke’s to share your Personal Health Information and/or Personal Information under such circumstances):

  • Affiliated Companies. We share your Personal Health Information with our subsidiaries, affiliates and other related companies for purposes consistent with this Privacy Policy and applicable law.
  • Agents, Consultants and Service Providers. St. Luke’s, like many businesses, hires other companies to perform certain business-related functions, some of which may become Business Associates of St. Luke’s. Examples of such functions include mailing information, maintaining databases, transmitting information, and storing information. When we employ another company to perform a function of this nature, we only provide them with the minimum amount of information that they need to perform their specific function. Any Business Associate of St. Luke’s will be required to maintain Personal Health Information and make disclosures of such information consistent with the terms of this Privacy Policy or applicable law. When appropriate, Business Associates of St. Luke’s will be subject to a Business Associate Agreement with St. Luke’s.
  • Authorized Persons. We may disclose your Personal Health Information and/or Personal Information to individuals we reasonably believe are authorized by you to receive such information, or have legal authority under applicable law.
  • Business Transfers. From time to time, we may buy, sell or reorganize businesses or assets. In the event of an acquisition, sale, merger, reorganization, dissolution or similar event, Personal Health Information and/or Personal Information may be part of the transferred assets.
  • Joint Offerings. From time to time, St. Luke’s may partner with other companies to jointly offer or provide products or services. If you specifically express interest in a jointly-offered product or service and provide consent for us to share your information and for you to be contacted by our joint promotion partners, St. Luke’s may share information collected in connection with your expression of interest with our joint promotion partners. St. Luke’s does not control the use of the information we share with our joint promotion partners, and their use of the information will be in accordance with their privacy policies. If you do not wish for your information to be shared in this manner, you should specifically not express interest in a jointly-offered product or service and not provide consent for us to share your information with our joint promotion partners. If you initially consent to sharing information collected in connection with your expression of interest with our joint promotion partners, you may still “opt-out” of future sharing and contacts from our joint promotion partners by following the Opting-Out of Future Contact procedure set forth below.
  • Legal Requirements. St. Luke’s may disclose your Personal Health Information or Personal Information if required to do so by law or in the good faith belief that such action is necessary to (i) comply with a legal obligation; (ii) enforce, protect or defend the rights or property of St. Luke’s; (iii) act in urgent circumstances to protect the personal safety of users of this Website or the public; or (iv) protect against legal liability.

Sending, Transferring And Storing Data Outside The United States

If you are visiting or using this Website from outside the United States, please be aware that your information may be transferred to, stored, processed, used and/or disclosed in the United States where our servers are located and our central database is operated. The data protection and other laws of the United States may not be as comprehensive as those in your country. To facilitate St. Luke’s global operations, St. Luke’s may also transfer and store your information outside of the United States. This Privacy Policy applies even if St. Luke’s transfers your information outside of the United States.

Security

The security of your Personal Health Information and Personal Information is important to us. When you submit information to St. Luke’s through our Website, that information is encrypted while being transmitted using secure socket layer technology (SSL). Your Personal Health Information and Personal Information is then stored in a secured database, and reasonable precautions are taken to keep this data and information secure. Although we take commercially reasonable administrative, technical and physical measures, as required by the HIPAA Security Rule, to safeguard the information you provide to us, no Internet or e-mail transmission is ever fully secure or error-free, and you should take special care in deciding what information you send to this Website. In the event that an unauthorized third party compromises our security measures or the security measures of a third party (such as your Internet service provider), we will not be responsible for any damages, directly or indirectly, caused by an unauthorized third party’s ability to view, use or disclose your information. Also, administrative agencies or courts of competent jurisdiction may order the disclosure of the information we collect. We cannot guarantee, and you should not expect, the information you provide to us through this Website will always remain private. Please keep this in mind when submitting any Personal Health Information or Personal Information through this Website.

Cookies

A cookie is a small text file that is stored on a computer for record-keeping purposes. We use cookies on this Website. We do not add the information we store in cookies to Personal Information you submit through this Website. We use both session ID cookies and persistent cookies. We use session cookies to make it easier for you to navigate this Website. A session ID cookie expires when you close your browser. A persistent cookie remains on your hard drive for an extended period of time. You can remove persistent cookies by following directions provided in your Internet browser’s “help” file. St. Luke’s uses persistent cookies to store a unique cryptographic hash value so you do not have to enter your username more than once on a given computer. The information stored does not contain any Personal Information. You may disable cookies on your web browser, however, this may cause certain features on this Website to be disabled or not function properly.

Third Party Cookies

This Website may use cookies that permit select third party partners to serve you St. Luke’s-related content on their websites or elsewhere on the Internet. This is based on your prior visits to this Website. We do not have access or control over these cookies, and the use of cookies by third parties is not covered by this Privacy Policy.

Web Beacons

St. Luke’s and our third party advertising partners use web beacons and usage analytics software to help us identify effective content and to otherwise better manage content on this Website. Web beacons are tiny graphics with a unique identifier, similar in function to cookies, and are used to track the online movements of web users. In contrast to cookies, which are stored on a computer hard drive, web beacons are embedded invisibly on web pages and are about the size of the period at the end of this sentence. We do not tie the information gathered by web beacons to your Personal Information.

Network Advertising

From time to time, we may participate in or use advertising networks, such as third party advertising servers, advertising agencies, technology vendors and research firms. We may use these third-party advertising networks for marketing, advertising and promotional purposes, as well as to serve advertisements to you. Advertising networks often gather non-personal data about consumers who view advertisements to make inferences about a consumer’s interests and preferences, which enables them to deliver advertisements directly targeted to the consumer’s specific interests. This practice is often referred to as “online behavioral advertising.” For example, a third-party advertising network might collect the type of Internet browser you use, the type of computer operating system you use, the domain name of a website you visit, whether or not you visit specific pages of this Website and other websites, the location of your Internet service provider’s presence, the date and time of a visit to a website, and other interactions between you and this Website.

Newsletter

If you wish to subscribe to our newsletter, we will use your name and e-mail address to send the newsletter to you. Out of respect for your privacy, we provide you with a means to unsubscribe from our newsletter. For details on how to opt-out of receiving our newsletter, please see the Opting-Out of Future Contact section of this Privacy Policy.

Opting-Out Of Future Contact

You may opt-out of any future contact from St. Luke’s at any time. You may do so by contacting St. Luke’s via the following e-mail address: customerservice@stlukeseye.com. If you do not wish to receive e-mail offers or newsletters from us, you can opt-out of receiving e-mail information from us (other than emails related to the completion of your registration, correction of user data, change of password and other similar communications essential to your use of this Website) by using the unsubscribe link at the bottom of the email.

Customer Testimonials

St. Luke’s may post customer testimonials on this Website, which may contain Personal Health Information or Personal Information. However, we will obtain your consent prior to posting such a testimonial from you.

CAN-SPAM Act Compliance

We are committed to being compliant with the “Controlling the Assault of Non-Solicited Pornography and Marketing Act of 2003” (“CAN-SPAM Act”). All e-mails you receive from St. Luke’s are intended to fully comply with the CAN-SPAM Act.

Policy Regarding Children

This Website is not intended for use by children and we do not knowingly solicit or collect information from children. We also do not verify the age of any of our visitors or users. By using this Website, you represent to St. Luke’s that you are at least 18.

Changes To Our Privacy Policy

We may amend this Privacy Policy at any time and in our sole discretion. You should review this Privacy Policy for amendments each time you visit or use this Website. For your convenience, we post on this Website the last date this Privacy Policy was updated. If our Privacy Policy is amended, the amended Privacy Policy will take effect immediately for all visitors and users of this Website. Your continued use of this Website following an amendment will evidence your acceptance of the amended Privacy Policy.

Special Notification For California Residents – Your Privacy Rights

Individuals who are residents of California and have provided their personally identifiable information to us may request information regarding our disclosures, if any, of their personally identifiable information to third parties for direct marketing purposes. Such requests must be submitted to our Privacy Officer in writing at customerservice@stlukeseye.com or:

St. Luke’s Cataract and Laser Institute, P.A.
Attn: Privacy Officer
43309 U.S. Highway 19 N
Tarpon Springs, Florida 34689

Such requests must include the reference “Request for California Privacy Information” in the subject line and in the body of the message and must include the e-mail address or mailing address, as applicable, for us to send our response. This request may be made no more than once per calendar year. We reserve the right not to respond to requests submitted to us if not submitted pursuant to the terms set forth above.

General Information

Capitalized terms not defined in our Privacy Policy will have the meaning ascribed to such terms in our Terms and Conditions. The Terms and Conditions are hereby incorporated into and made a part of this Privacy Policy.

Customer Support

If you have questions, comments or concerns about our Privacy Policy, please contact St. Luke’s at:

St. Luke’s Cataract and Laser Institute, P.A.
Attn: Privacy Officer
43309 U.S. Highway 19 N
Tarpon Springs, Florida 34689