Enterprise Health is a division of Medical Informatics Engineering, Inc. Enterprise Health provides a software solution to its customers, which enables those customers to manage the health and wellness of their employees and to maintain compliance with occupational health regulations. Enterprise Health is not a data controller for the purposes of the Privacy Shield Frameworks. Instead, Enterprise Health is a data processor. As such many of the provisions of the Privacy Shield may be inapplicable to Enterprise Health.
Enterprise Health is a fully-owned subsidiary of Medical Informatics Engineering, which also adheres to the Privacy Shield Principles.
On behalf of our clients, Enterprise Health stores, processes, and transmits protected health information as defined by the Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule. Depending upon the data collected by our clients, the protected health information may include an individual’s past, present or future physical or mental health conditions and medical test results. Personally identifiable information, such as name, social security number or date of birth, may also be collected by our clients.
Enterprise Health does not control or collect any data directly from individuals.
Enterprise Health does not disclose personal information to third parties. If this policy should change in the future Enterprise Health will update this policy to provide individuals with choice regarding the sharing of their personal data. Since Enterprise Health does not currently transfer any EU personal data to third parties, the liability provision of the Privacy Shield Framework does not apply. If this should change in the future we will update this policy accordingly.
Enterprise Health acknowledges the individual’s right to access their personal data. Individuals who wish to access, correct or delete their personal data should consult with the data controller of their personal information. Individuals who wish to limit the use or sharing of their data should also contact the data controller of their information. In both of the above cases, this would most likely be the individual’s employer or former employer who contracts with Enterprise Health to provide data processing services.
Enterprise Health reserves the right to share personal information and to disclose it to others to the extent permitted or required by law, to investigate potential wrongdoing, or to protect the rights, property or safety of Enterprise Health or others.
The Federal Trade Commission has jurisdiction with enforcement authority over Privacy Shield compliance for Enterprise Health.
Enterprise Health may be required to disclose personal information in response to a lawful request by public authorities, including to meet national security or law enforcement requirements.
Enterprise Health has further committed to refer unresolved privacy complaints under the EU-US Privacy Shield Principles to BBB EU PRIVACY SHIELD, a non-profit alternative dispute resolution provider located in the United States and operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit www.bbb.org/EU-privacy-shield/for-eu-consumers/ for more information and to file a complaint.
Under certain limited conditions, individuals may invoke binding arbitration before the Privacy Shield Panel to be created by the U.S. Department of Commerce and the European Commission.
In the event Enterprise Health is unable to accommodate the individual’s request regarding HR data received by us within the context of the work relationship, we further commit to working with the EU Data Protection Authorities (DPA’s) or the Swiss Federal Data Protection and Information Commissioner (FDPIC) whichever covers the jurisdiction the data originated from.
For information on how to contact your jurisdiction’s EU DPA visit: //ec.europa.eu/justice/data-protection/article-29/structure/data-protection-authorities/index_en.htm
To contact the Swiss FDPIC visit: