Whitby Physiotherapy and Home Care understand the importance of protecting personal information. We are committed to the collection, use, and disclosure of this information in a responsible way. Staff members who come into contact with your personal information are trained in the appropriate use and protection of your information.
How We Collect Use and Disclose Your Information
When you do business with us you share personal information so that we may provide you with treatment, services, and products that best meet your needs.
We assume your consent for our office to use this information in an appropriate manner. We may use and disclose this information in order to:
- Communicate with you in a timely manner
- Deliver safe & effective patient care
- Enable us to contact you & process required payments
- Communicate with other healthcare providers
- Complete & submit claims on your behalf to third party payers
- Comply with legal and professional regulatory requirements and obligations
- Complete relevant requisition forms
What We Wil Not Do With Your Information
We do not sell patient information to anyone, nor do we share patient information with groups outside of our relationship with you that would use it to contact you about their own treatment services and products.
We may use the information we collect from you when you register, make a purchase, sign up for our newsletter, respond to a survey or marketing communication, surf the website, or use certain other site features in the following ways:
- To personalize user’s experience and to allow us to deliver the type of content and product offerings in which you are most interested
- To improve our website in order to better serve you
- To allow us to better service you in responding to your customer service requests
- To quickly process your transactions
- To send periodic emails regarding your order or other products and services
How Do We Protect Visitor Information
- Our website is scanned on a regular basis for security holes and known vulnerabilities in order to make your visit to our site as safe as possible
- We use regular Malware Scanning
- Your personal information is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and are required to keep the information confidential. In addition, all sensitive/credit information you supply is encrypted via Secure Socket Layer (SSL) technology
- We implement a variety of security measures when a user places an order enters, submits, or accesses their information to maintain the safety of your personal information
- All transactions are processed through a gateway provider and are not stored or processed on our servers
- Help remember and process the items in the shopping cart
- Understand and save user’s preferences for future visits
- Compile aggregate data about site traffic and site interactions in order to offer better site experiences and tools in the future. We may also use trusted third-party services that track this information on our behalf
- You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You do this through your browser (like Internet Explorer) settings. Each browser is a little different, so look at your browser’s Help menu to learn the correct way to modify your cookies
- If you disable cookies off, some features will be disabled. It won’t affect the user’s experience make your site experience more efficient and some of our services will not function properly. However, you can still place orders
We do not sell, trade, or otherwise transfer to outside parties your personally identifiable information.
We do not include or offer third-party products or services on our website.
- Google’s advertising requirements can be summed up by Google’s Advertising Principles. They are put in place to provide a positive experience for users. https://support.google.com/adwordspolicy/answer/1316548?hl=en
We use Google AdSense Advertising on our website.
We have implemented the following:
Remarketing with Google AdSense
We along with third-party vendors, such as Google use first-party cookies (such as the Google Analytics cookies) and third-party cookies (such as the DoubleClick cookie) or other third-party identifiers together to compile data regarding user interactions with ad impressions and other ad service functions as they relate to our website.
Users can set preferences for how Google advertises to you using the Google Ad Settings page. Alternatively, you can opt-out by visiting the Network Advertising Initiative opt-out page or permanently using the Google Analytics Opt Out Browser add-on.
The Personal Information Protection and Electronic Documents Act
PIPEDA sets out the ground rules for how private-sector organizations collect, use or disclose personal information in the course of commercial activities across Canada. It also applies to the personal information of employees of federally-regulated works, undertakings, or businesses (organizations that are federally regulated, such as banks, airlines, and telecommunications companies).
It should be noted that PIPEDA does not apply to organizations that are not engaged in commercial activity. As such, it does not generally apply to not-for-profit and charity groups, associations, or political parties, for example—unless the organization is conducting a commercial activity (fundraising is not considered a commercial activity).
In addition, PIPEDA will not apply to an organization that operates wholly within a province that has legislation that has been deemed substantially similar to the PIPEDA, unless the personal information crosses provincial or national borders. Alberta, British Columbia, and Quebec have general private-sector legislation that has been deemed substantially similar. (see the following section titled “Provincial privacy laws” for more information)
Therefore, PIPEDA generally applies to:
Private-sector organizations carrying on business in Canada in the provinces or territories of Manitoba, New Brunswick, Newfoundland and Labrador, Northwest Territories, Nova Scotia, Nunavut, Ontario, Prince Edward Island, Saskatchewan, or Yukon but not their handling of employee information.
Private-sector organizations carry on business in Canada when the personal information they collect, use, or disclose crosses provincial or national borders but not their handling of employee information.
Federally-regulated organizations carrying on commercial activity in Canada, such as a bank, airline, telephone or broadcasting company, etc., including their handling of health information and employee information.
The Office of the Privacy Commissioner of Canada oversees compliance with PIPEDA.
Fair Information practices
The Fair Information Practices Principles form the backbone of privacy law in Canada and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.
In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur:
- We will notify the users via email within 7 business days
We also agree to the Individual Redress Principle, which requires that individuals have a right to pursue legally enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute non-compliance by data processors.
CASL Compliance Act
The CASL Compliance Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.
We collect your email address in order to:
- Send information, respond to inquiries, and/or other requests or questions.
Process orders and send information and updates pertaining to orders.
- We may also send you additional information related to your product and/or service.
Market to our mailing list or continue to send emails to our clients after the original transaction has occurred.
To be in accordance with CASL Compliance we agree to the following:
- NOT use false or misleading subjects or email addresses.
- Identify the message as an advertisement in some reasonable way.
- Include the physical address of our business or site headquarters.
- Monitor third-party email marketing services for compliance, if one is used.
- Honor opt-out/unsubscribe requests quickly.
- Allow users to unsubscribe by using the link at the bottom of each email.
If at any time you would like to unsubscribe from receiving future emails
Follow the instructions at the bottom of each email and we will promptly remove you from ALL correspondence.
If there are any questions regarding this privacy you may contact us using the information below.
Whitby Physiotherapy and Home Care
Unit 3 185 Thickson Road North,
Whitby, Ontario L1N 6T9