MRAS accepts for storage personally identifiable information about you in order to identify and register you as a member of MRAS. We store your personal health information as the service we provide to you. Details concerning your personal health information are disclosed only to those health care professionals you choose to grant access to your account. You are therefore in control over who is allowed access to your health data. This iterates the information contained in our Notice of Privacy Practices which you have received.

MRAS will delete the records of dormant accounts from our database as a matter of course. However, because of the need to have appropriate back up systems in place we cannot guarantee that each and every copy of your data will be deleted at any specific time. We do guarantee that MRAS will continue to treat all information submitted to our servers with the same respect for confidentiality and privacy regardless of whether the data pertains to current or previous members.

MRAS uses dedicated servers, stored in locked, secure areas. We utilize Secured Socket Layer (256 SSL) encryption when transmitting all health related data. All data submitted to our server is stored in an encryption. This is the same level of security used by many banks and online retailers. Access to these servers is limited to employees of MRAS or parties working for MRAS in the maintenance and upgrading of our system. MRAS restricts the number of individuals with access to our servers. All employees of MRAS or any agents in its employment with access to our servers, must sign confidentiality agreements related to the disclosure and use of personal health information. Nonetheless the potential for misuse, abuse or theft of information remains and customers must weigh the advantages against the potential risk and act accordingly. As security technology improves we will endeavor to establish upgrades to our systems in as timely a fashion as practicable.

MRAS will always treat the privacy and security of your personal details, particularly health related details, with the respect and concern that this type of information deserves and that you would expect. If we should need to make changes to our Privacy Statement, then we will post those changes on the Privacy Statement, the home page and on other pages so that we may keep all members up to date with regard to the current Privacy Statement. Members will have a choice as to whether or not we may use their information in this different manner. We will also mail all current members with a list of these changes. In any event, we will update you with the current status every three years regardless of whether there have been any changes.

The personal and health details of non-current or deactivated accounts will not be used should we change our Privacy Statement. In so far as it is possible, all details relating to these accounts will be removed from our servers. These accounts will therefore not be notified should we change our Privacy Statement.
If you should have any questions or comments regarding this Privacy Statement, we encourage you to submit them to MediRecs Alert System, Inc. directly.

Copyright © 2007 MediRecs Alert System, Inc.