← Back

Privacy Policy

Privacy Policies & Practices for the Datuit Care Plan Manager

The following conforms to the federally-mandated Model Privacy Notice recommended by the Office of the National Coordinator for Health Information Technology (ONC) for vendors of Personal Health Record (PHR) software applications. The Datuit Care Plan Manager is not a PHR, but a new breed of software designed for use by both clinicians and their patients and representatives. Nevertheless, we fully support the intent of the Model Privacy Notice and are pleased to use it to document our privacy practices. We at Datuit are strong advocates of data privacy and security. In fact, the CPM and the SafeIX® Application Platform on which it is built meet the more stringent standards of the Health Insurance Portability and Accountability Act ("HIPAA") so that clinicians and healthcare professionals can also feel safe in documenting their actions, decisions and recommendations in the Datuit CPM.

Federal Privacy Notice

For more information, click here.
To download this Privacy Notice in PDF format, click here.

Use this page to understand how Datuit, LLC and our service providers release and secure your PHR Data.


Release of Information

Do we release your PHR Data for these purposes? Yes
We release…
Personal Data Statistical Data
For marketing and advertising No Yes
For medical and pharmaceutical research No Yes
For reporting about our company and our customer activity No Yes
For your insurer and employer No No
For developing software applications No Yes
Do we require Limiting Agreements that restrict what third parties can do with your Personal Data? Yes
Do we stop releasing your Personal Data if you close or transfer your PHR? Yes


We have security measures that are reasonable and appropriate to protect personal information, such as PHR Data, in any form, from unauthorized access, disclosure, or use.

Do we store PHR Data in the U.S. only? Yes
Do we keep PHR Data activity logs for your review? Yes

List of Terms



“PHR” stands for a web-based Personal Health Record. A web-based PHR is an electronic health data application that can help you collect, manage, and share your health information. Web-based PHRs may be offered by a hospital, insurance company, employer, or a commercial vendor.

Back to Top

PHR Data

When you sign up for a PHR, you provide, or the PHR company or its service providers, import information about you that becomes the PHR Data. Any information in your PHR is considered PHR Data. PHR Data might include, but is not limited to:

  • Your name and contact information, such as your address, phone number, or email address
  • Your medical history, conditions, treatments, and medications
  • Your healthcare claims, health plan account numbers, bills, and insurance information
  • Demographic information, such as your age, gender, ethnicity, and occupation
  • Computer information, such as your IP address and “cookie” preferences

A PHR company (and its service providers) may use your PHR Data to:

  • Operate and manage its PHR platform, software, and website
  • Maintain and protect its computer systems
  • Comply with the law, such as responding to subpoenas and search warrants

Personal Data and Statistical Data are the two types of PHR Data.

Back to Top

Personal Data

Personal Data is any PHR Data that connects to you as an individual such as names, health conditions, and other identifiers.

Back to Top

Statistical Data

Statistical Data is PHR Data that is 1) grouped so it does not connect to you as an individual and 2) has names and other identifiers removed or altered.

Back to Top

Personal Information

Personal Information includes your PHR Data, as well as any other information about you that can be reasonably linked to you. Personal Information can also include but is not limited to your financial information or social security number.

Back to Top


Companies and their services providers might report about their business activities and their customers (you) to others, such as investors, auditors, potential business partners, or public communities.

Back to Top

Limiting Agreements

Limiting Agreements are legally binding agreements that prohibit certain third parties, which are not the PHR company’s service providers, from releasing your Personal Data or re-identifying individuals. Third parties can include advertisers, researchers, and others who receive PHR Data.

Back to Top

Service Providers

A service provider is an entity that is hired to perform certain functions for and operate under the direction and control of the PHR company. Service providers may include software or website designers and data storage providers.

Back to Top

Security Measures

Security measures can include computer safeguards, secured files, and employee security training. PHR companies may be required by law to notify you about particular data breaches.

Back to Top

U.S. Only

When PHR Data is stored in the United States, U.S. law enforcement agencies may be able to prosecute if the data is stolen or breached.

Back to Top

Activity Logs

Activity logs are the PHR company and its service providers’ records of when PHR Data is created, accessed, modified, deleted, released, or exported in the PHR program.

Back to Top

Contact Datuit, LLC:       support@datuit.com

The practices described in this notice only apply to Datuit, LLC and its service providers. These practices do not apply to any other organizations, links, websites, programs, or applications that may be available through Datuit, LLC or its service providers. Always read the policies of any company, website, application, or service where you provide your Personal Information.

This notice is not intended to be a substitute for communicating the full privacy and security policies of Datuit, LLC. We encourage you to learn more about our privacy and security policies (including options that may allow you to opt out), by visiting our full privacy policy.

Rev. August 4, 2013