Mosio respects your privacy, the privacy of your end users and is committed to protecting the personal information shared with us. This statement describes how Mosio collects and uses personal information to provide services.
Personal information means any information that may be used to identify an individual, including, but not limited to, a first and last name, email address, a home, postal or other physical address, other contact information, title, occupation, industry, personal interests, and other information when needed to provide a service or product or carry out a requested transaction.
When using our website or software, you do so anonymously, unless you have previously registered with us and have logged into an account. Mosio does not automatically collect personal information, including your email address except in a transactional format such as the sending of a text message to the platform. Mosio logs IP addresses (the Internet address of a computer) to give us an idea of which parts of our website are visited and for how long. But we do not link IP addresses to any personal information unless you have registered or provided us with that information. Like many other commercial websites, the Mosio website may use a standard technologies, such as “cookies” and other HTML tools, to collect information about how the site is used, to record an opened email or clicked link.
Mosio collects personal information when users register with Mosio for a Mosio Member login or account, for certain Mosio products or services or when asked by users to be included in an email or other mailing list. From time to time, Mosio receives personal information from business partners and vendors who may have been provided information by end users as part of two-way communications. Mosio only uses such information if it has been collected in accordance with acceptable privacy practices consistent with this Privacy Statement and applicable laws.
Access to certain Mosio web pages and the Mosio software requires a login and a password. Unless users request deactivation of personal information as specified below, personal information may be retained by Mosio to verify compliance with the agreement, log software licenses granted, track software downloaded from those pages, or track usage of other applications available on those pages.
When personal information is collected, we inform users at the point of collection the purpose for the collection. Mosio will not transfer personal information to third parties without consent.
In most cases we provide users with the opportunity to “opt in” prior to receiving direct marketing, email newsletter or market research information. This means we will require affirmative action by users to indicate consent before we use information for purposes other than the purpose for which it was submitted. At the very minimum, we always give the opportunity to “opt out” of receiving such materials. This means we assume consent has been given to collect and use information in accordance with this Privacy Statement unless affirmative action has been taken against consent, for instance by clicking or checking the appropriate option or box at the point of collection.
Cookies and Other Tracking Technologies
Some Mosio websites and HTML-formatted email newsletters may use web beacons in conjunction with cookies to understand user behavior. A web beacon is an electronic image, called a single-pixel (1×1) or clear GIF. Web beacons can recognize certain types of information on a visitor’s computer, such as a visitor’s cookie number, time and date of a page view, and a description of the page where the web beacon is placed. Some Web beacons may be unusable if users elect to reject their associated cookies. Mosio may also use customized links or other similar technologies to track email links clicked. We may associate that information with personal information in order to provide more focused email communications or purchase information. Each email communication includes an unsubscribe link ending the delivery of that type of communication.
If users prefer not to receive cookies while browsing our website or via HTML-formatted emails, they can set their browser to warn them before accepting cookies and refuse the cookie when their browser alerts them to its presence. Users can also refuse all cookies by turning them off in browsers, although users may not be able to take full advantage of Mosio’s website after having done so. In particular, users may be required to accept cookies in order to complete certain actions on our website. Users do not need to have cookies turned on, however, to use/navigate through many parts of our website, except access to certain of Mosio’s web pages may require a login and password.
For additional information about cookies and other tracking technologies, including instructions for blocking their use, see http://privacy.getnetwise.org/browsing/tools/.
How Information Collected Is Used
Mosio uses information for several general purposes: to fulfill user requests for certain products and services, to personalize the experience on our website, to keep users up to date on the latest product announcements, software updates, special offers or other information we think they would like to hear about, and to better understand user needs and provide better service.
Information Sharing and Disclosure
Because Mosio is a global company, personal information may be shared with other Mosio offices, subsidiaries or technology partners around the world for the purposes of completing mobile messaging transactions. All such entities are governed by this Privacy Statement or are bound by appropriate confidentiality and data transfer agreements.
Personal information is never shared outside Mosio without permission, except under conditions explained below. Inside Mosio, data is stored in security-controlled, HIPAA-compliant servers with limited access. Information may be stored and processed in the United States or any other country where Mosio, its subsidiaries, affiliates or agents are located.
Mosio may send personal information to other companies or people under any of the following circumstances:
- When we have consent to share the information;
- If sharing information is necessary to provide a product or requested service (If information is shared with third parties we only provide the information they need to deliver the service. Also, such companies are prohibited from using information for any other purpose);
- To keep users up to date on the latest product announcements, software updates, special offers or other information we think users would like to hear about (unless users have opted out of these types of communications).
Ability to Access, Update or Deactivate Information
Mosio account information is password-protected for privacy and security. Mosio safeguards the security of the data provided to us with physical, electronic, and managerial procedures. In certain areas of our websites, Mosio uses industry-standard SSL-encryption to enhance the security of sensitive data transmissions. While we strive and make excellent efforts to protect personal information, we cannot ensure all elements of security, so we urge users to take every precaution to protect personal data while on the Internet. We encourage users to change passwords often, use a combination of letters and numbers, password protect devices, and use a secure browser.
Children and Privacy
Our websites do not target and are not intended to attract children under the age of 13. Mosio does not knowingly solicit personal information from children under the age of 13 or send them requests for personal information.
Third Party Sites
Mosio’s website contains links to other sites. Mosio does not share personal information with those websites and is not responsible for their privacy practices. We encourage users to learn about the privacy policies of those companies.
Our website may contain links to websites operated by other companies. Some of these third-party sites may be co-branded with a Mosio logo, even though they are not operated or maintained by Mosio. Although we choose our business partners carefully, Mosio is not responsible for the privacy practices of web sites operated by third parties that are linked to our site. Once users have left our website, they should check the applicable privacy statement of the third party website to determine how they will handle any information they collect.
Clinical Research and Healthcare Clients: HIPAA and Participant Privacy
While the mobile text messaging channel is not technically HIPAA compliant, Mosio makes continuous efforts to maintain the privacy and data security of sensitive client and patient information, including:
Unique Users and Identification: Each user identity is assigned a unique name and/or number for identification, logging and tracking.
Authentication: Authentication is used via unique, password protected account login access through SSL encryption technology. Only dedicated support staff have access to client data, provided only to approved client administrators, as needed.
Encryption: The Mosio system has encryption and decryption mechanics to protect ePHI where applicable. SSL encryption technology, certified by Comodo Security’s PostiveSSL, protects all components of the Mosio dashboard accessible by account users.
Automatic Logging Out: The Mosio system will log out users after a short time of inactivity. While the system enables account users to choose “Remember Me” to stay logged in, it allows for remote locking out by our support staff should the need arise.
Transmission Security: Technical measures have been implemented from authentication, SSL encryption and selection of web hosting providers in the US and Canada to guard against unauthorized access to the network. Only Developers employed by Mosio have direct access to the Mosio platform code base and databases.
Multiple Organizations: ePHI is not accessible by Mosio partners or subcontractors unless otherwise authorized for the sole purpose of efficient communication transmissions.
Response and Reporting Procedures: The company maintains a step by step reporting procedure to identify, document, respond and prevent security incidents.
Contingency Plans: ePHI and other sensitive data have accessible backups, including procedures to recover data from Mosio’s hosting company.
Privacy and Security Officers: The company’s co-founders are our privacy and security officers.
Risk Management Evaluations: Privacy sensitivity training, activity logging, risk management procedures for code implementation, data and account management are reviewed once a year by Mosio’s chief officers to ensure maximum risk reduction.
Contact us for our detailed Privacy and Data Security Management statement and if you need assistance in responding to requests from IRBs or patient privacy officers at your organization, we’re happy to be of assistance.
Business Associate Agreements
Mosio is dedicated to ensuring private and secure software solutions with its clients, including Business Associate Agreements. If your organization requires a BAA, please email documents to hipaa((@))mosio.com and allow up to 7-10 business days for review and completion after the project/program agreements have been confirmed.
Changes to this Privacy Statement
Mosio will amend this privacy statement from time to time. If we make any substantial changes in the way we use personal information we will make that information available by posting a notice on this site in this section or another.
Questions or Suggestions
If you have questions or concerns about our collection, use, or disclosure of personal information, please email us at support (( @ )) mosio.com
This document was updated May 14, 2016.