top of page

Privacy Policy and HIPPA NOTICE

Last update:  13 April 2024. 

​

Scope of this Privacy Policy

This Privacy Policy is designed to inform users of Kento Health Inc.’s (“Kento Health”) websites, mobile applications, and services (collectively referred to as the “Service”) about how we gather and use Personal Data in connection with your use of the Service.

“Kento Health,” “we,” “us,” and similar terms refer to Kento Health Inc. “You,” “your,” and similar terms denote you as a user of our Services.

This Privacy Policy details how Kento Health handles your personally identifiable Information (“PII”) and protected health information (“PHI”) (PII and PHI, including Sensitive User Data, are collectively referred to as “Personal Data”) that Kento Health collects, receives, maintains, stores, or transmits, including information you provide or submit to our Service. Your Personal Data includes details that either individually identify you or are information linked to you or a device you use to access or use the Service.

Our Service is intended for users located in the United States of America only. Any information you provide, including any Personal Data, may be transferred to and processed by a computer server located within the United States.

Agreement to Terms

By accessing our Service, you agree to this Privacy Policy, our Terms of Service (available at https://www.kentohealth.com/termsofservices), and our practices of gathering, using, and sharing your Personal Data as outlined herein. If you disagree with any part of this Privacy Policy or our Terms of Service, please refrain from using the Service and avoid providing us with any Personal Data.

By registering for or by visiting and/or using our Service, you:

  1. Explicitly consent to our collection, use, disclosure, and processing of your Personal Data in line with this Privacy Policy.

  2. Confirm that you’ve read and understood our HIPAA Notice, accessible at https://www.kentohealth.com/hipaa, detailing how we might use and disclose PHI about you for reasons related to your health, payments, or healthcare operations and other legal purposes, in alignment with the Health Insurance Portability and Accountability Act of 1996, updated as required (“HIPAA”).

​​

If there's any discrepancy between this Privacy Policy and the HIPAA Notice concerning PHI, the latter will prevail.

​

Protected Health Information (PHI)

Kento Health is committed to upholding the privacy and sanctity of PHI received during your application for, use of or participation in the Service. PHI pertains to data about you that we obtain during your application for or use of our Service, which could identify you (like your name, social security number, or address) and relates to:

  1. Your past, current, or potential health status.

  2. Healthcare services provided to you.

  3. Past, present, or potential payments for your healthcare services.

This Privacy Policy elucidates how we safeguard your privacy when you interact with or use our Service. Federal and state laws may offer you additional rights concerning the access, usage, and disclosure of PHI. For a thorough understanding of your rights regarding PHI, kindly refer to our HIPAA Notice, which offers essential information about the usage and disclosure of your PHI.

The Personal Data We Collect

  1. Personal Identifiers

  • Name, sex, gender, age, contact details (including but not limited to address, email address, phone number), social security number

  • Information related to your employer, insurer, or health system

  • Any other identifiers you provide

  1. Health Information

  • Medical history, treatment records, health status, including all PHI 

  • Any other health-related information you provide, including but not limited to height, weight, blood pressure, etc.

The above-mentioned health information, including PHI, is considered “Sensitive User Data”. 

  1. Financial Information

  • Payment details, billing information, insurance information

  1. Other Information

  • Usage data, preferences, geolocation data, demographic information

  • Messages sent through our Service

  • Audio and visual information as we may record calls for quality control, training and documentation preferences.

  • Information from public databases

  • Social media, surveys, device and system information and configuration when using our Service, IP address, internet activity (e.g. browsing history, search history), etc.

You are not required to provide all of the Personal Data mentioned above to interact with us. However, if you choose not to provide certain information to the extent it is necessary for us to provide the Service and fulfill our legal obligations, you may be limited in the use of features or functions of the Service.

How We Collect Personal Data

The following explains how we collect Personal Data, including Sensitive User Data, about you, either with your consent or otherwise legally allowed: 

  1. Direct Collection from You: We collect Personal Data, including Sensitive User Data, from you

    1. Through our Service, including but not limited to website, apps, emails, and direct interactions

    2. When you create an account with us or purchase our Service

  2. Indirect Collection: We collect Personal Data, including Sensitive User Data, about you

    1. From employers, insurers, and health systems under bilateral agreements

    2. Through third-party analytics and marketing partners

    3. Through wearable devices supplied by our third-party business partners for you to use in combination with our Service

    4. From public databases

  3. Automatic Collection - Cookies and Similar Technologies: We collect Personal Data, including Sensitive User Data, about you, via the following:

 

  • We use cookies, beacons, pixels, and other technologies to collect information automatically, which may contain Personal Data. When you use our Service, our servers or an authorized third party may place a cookie on your browser or device. 

 

  • We use both session-based and persistent cookies. Session cookies exist only during one session and disappear from your computer or device when you close your browser software or turn off your computer or device. Persistent cookies remain on your computer or device after you close your browser or turn off your computer or device. Most web and mobile device browsers automatically accept cookies, but if you prefer, you can change your browser to prevent that or to notify you each time a cookie is set by using the opt-out tool at https://optout.networkadvertising.org/. You can also learn more about cookies by visiting https://allaboutcookies.org/, which includes additional useful information on cookies and how to block cookies using different types of browsers or mobile devices. Please note, however, that by blocking or deleting cookies used by us, you may not be able to take full advantage of the Service. 

 

  • Some Internet browsers may be configured to send "Do Not Track" signals to the online services that you visit. There is no consensus among industry participants as to what "Do Not Track" means in this context. Like many websites and online services, we do not currently alter our practices when we receive a "Do Not Track" signal from a visitor’s browser, except as specifically required by law. For information about "do not track" from The Future of Privacy Forum, click here.

 

How We Use Personal Data 

We use, collect, process and disclose Personal Data, which includes Sensitive User Data, to: 

 

To provide our Service: We use, collect, process and disclose your Personal Data to enable us to operate and administer our Service, to process payment for the Service requested by you where applicable, and to perform any contract with you for the Service you request according to any applicable terms of service; 

 

To communicate with you and respond to your inquiries and requests: If you contact us by any available means, we will use your Personal Data to the extent it is necessary to fulfill your request and communicate with you;

 

To manage your account (when applicable): We will use your Personal Data to manage your user account for the purpose of performing the contract with you according to any applicable terms of service and relevant national laws and regulations.

 

To comply with legal and regulatory requirements and to protect our rights, privacy, safety, or property: We will use your Personal Data when cooperating with public and government authorities, courts, or regulators in accordance with our legal obligations under applicable laws to the extent this requires the processing or disclosure of Personal Data to protect our rights and is necessary for our legitimate interests to protect against misuse or abuse of our Service and data hosted on our Service, to protect personal property or safety, to pursue remedies available to us and limit our damages, to comply with judicial proceedings, court order, or legal process, and/or to respond to lawful requests.

 

For analysis, improvement, and personalization of Service: We will use your Personal Data to analyze trends and track your usage of our Service, and interactions with emails to the extent this is necessary for us to develop and improve our Service, conduct market research, and provide our users with more relevant content and services;  

 

For marketing, advertising, and promotions: We will use your Personal Data to send you the latest updates about us and our Service, including marketing, advertising and promotional information, to the extent you have provided your prior separate consent;

 

Where we need to use, collect and process Personal Data by law, or under a contract we have entered into with you, and you fail to provide that required Personal Data when requested, we may not be able to perform the contract.

How and with Whom We Share Personal Data

We may share your Personal Data with:

  • Our subsidiaries and/or corporate affiliates

  • Third parties to whom you authorize us to disclose your Personal Data in connection with our Services, including employers, healthcare professionals, insurers, and health systems

  • Service providers working on our behalf, or providing services such as information technology support, website hosting, payment processing

  • Authorized law enforcement, regulatory or other government authorities, where required by applicable law, or pursuant to a valid subpoena or court order

  • Third parties to protect and defend our rights and interests, such as when needed for corporate audits, to investigate or respond to a complaint or threat, or to exercise our legal rights

  • Acquirer(s) of our business, in connection with, or during negotiations of, any merger, sale of our assets, financing, or acquisition of all or a portion of our business to another company.

Detailed information about the third parties we may share your Personal Data with is outlined hereinbelow. Detailed information about the third parties we may share your PHI with can be found in our HIPAA Notice. 

We may also share your Personal Data internally within Kento Health. We may combine the Personal Data you have provided us with Personal Data we have collected about you through our various platforms, whether offline or online, or from other sources such as public databases, our third-party partners and vendors. 

  1. With Employers, Healthcare Professionals, Insurers, and Health Systems

  • In accordance with bilateral agreements with your employers, healthcare professionals, insurers and health systems, to the extent permitted by applicable laws

  • As necessary for the provision of our Service

  • With your consent or at your direction

This Privacy Policy does not address how your employers, insurers, healthcare professionals or health systems will use and disclose Personal Data obtained using our Service. Kento Health specifically disclaims any and all liability in connection with any such third parties’ use of your Personal Data. It is each employer, insurer and health system’s responsibility to use and disclose all Personal Data, in accordance with applicable laws and regulations, including but not limited to HIPAA. 

  1. With Service Providers

  • With vendors, consultants, professional advisors and other service providers who need access to such information to carry out work on our behalf, pursuant to agreements that prohibit the service providers from using or disclosing Personal Data other than for the purpose of processing and which impose security safeguards appropriate to the sensitivity of the Personal Data. 

  1. For Legal and Safety Reasons

  • If required by law, regulation, legal process, or governmental request

  • To enforce our rights, prevent fraud, or protect our network's security

  1. Other

  • With your consent, or at your discretion

  • In the event of a sale of all or substantially all of our business or another similar transaction, to the extent permitted and in accordance with applicable laws and regulations, we may transfer or disclose Personal Data to a purchaser or prospective purchaser, who may collect, use and disclose such Personal Data for the purposes of evaluating the proposed transaction or operating and managing the affairs of the acquired business, or for other purposes identified in this Privacy Policy.

Kento Health DOES NOT sell Personal Data. We may disclose aggregate and anonymized statistics about our users in order to describe our business to prospective partners, advertisers, sponsors and other reputable third parties and for other lawful purposes, but these statistics will include no Personal Data, and will not directly or indirectly identify any specific person. 

​

Confidentiality and Security

Kento Health Inc. is dedicated to ensuring the security of your Personal Data. We've implemented appropriate administrative, physical, and electronic procedures aimed at safeguarding your Personal Data from unauthorized access and ensuring its correct use.

Utilizing industry-standard protective measures, we strive to secure the information under our care from unsanctioned access, usage, and disclosure. When we interact with your Personal Data, we adhere to the privacy and security guidelines set by relevant federal and state laws, inclusive of HIPAA.

Your user account is password-protected to uphold your privacy. For optimal security, avoid sharing your password and always log out after accessing your account.

While we prioritize your Personal Data's safety, we cannot guarantee complete security due to unforeseen circumstances like unauthorized breaches or software malfunctions. Especially with email or text communications, it's imperative to note that these mediums might not be as secure as our application. Also, by downloading our mobile application from platforms like Apple App Store or Google Play, they might identify you as a user of our Service. If security concerns arise, please immediately reach out to the contact provided in this policy.

Data Retention

We will keep Personal Data provided by you only for as long a time as is reasonably necessary consistent with the original purpose of collection or such longer period as may be required by applicable law. We determine the appropriate retention period on the basis of the amount, nature, and sensitivity of the information, the potential risk of harm from unauthorized use or disclosure, and whether we can achieve the purposes of the processing through other means. Personal Data provided by you that is no longer required to fulfil the identified purposes will be promptly and securely destroyed, erased, or made anonymous in accordance with the applicable laws and regulations. Typically, we retain Personal Data for six years after your last interaction with us, though the period might vary based on contractual agreements or legal obligations.

Privacy Rights

To access, modify, or erase your Personal Data, or to understand our practices, connect with us at the provided email. Sometimes, we might not be able to fulfill certain requests due to operational or legal reasons. Please note that we may ask you to verify your identity before taking further action on your request. The verification methods we use may include requests to disclose your first name, last name, email address, location information, security question answer and other information.

  • Managing Your Information: You are responsible for keeping your Personal Data up-to-date. You can also ask us to correct inaccurate or incomplete Personal Data concerning you that you cannot update yourself.

 

  • Access to Your Information: You have the right to request information about the Personal Data we hold on you at any time. You can contact us and we will provide you with your Personal Data via email. If you require additional copies, we may need to charge a reasonable fee.

 

If you are a Californian resident, once per calendar year, you may request that we provide a list of companies to which we disclose your Personal Data for business purposes, and a list of the categories of such Personal Data that we share. You may request further information about our compliance with this law by contacting us. Please include “California Privacy Rights Request” in the first line of the description and your California mailing or street address. Please note that we are only required to respond to one request per client each year, and we are not required to respond to requests made by any other means, nor to requests made by non-California US residents. 

 

  • Right to Erasure: If you no longer want us to use your Personal Data to provide you with the latest news about our Service and/or other helpful information, you can request that we erase your Personal Data by contacting us. 

 

Please note, however, that we may retain some of your Personal Data as necessary for our legitimate interests, such as fraud detection and enhancing security. We may also retain and use your Personal Data to the extent necessary to comply with our legal obligations, such as keeping information for tax, legal reporting and auditing obligations, as well as professional obligations. Information you have shared with others (e.g. comments, community postings) may continue to be publicly visible. Additionally, some copies of your information (e.g. log records) may remain in our database, but are disassociated from personal identifiers. Residual copies may also be kept in our backup systems. If we have shared your Personal Data with service providers, we will let them know about the erasure where possible.

 

  • Right to Object to Direct Marketing: Under certain scenarios, you may get marketing messages from us. If you have already given your consent, but you prefer not to receive promotional information from us, you may unsubscribe by using the unsubscribe link situated at the bottom of any promotional message you receive from us or by contacting us by email. However, you cannot unsubscribe from essential communications about your account.

 

  • Restriction of Processing: You can ask us to block or suppress the processing of your Personal Data in certain circumstances, such as where you contest the accuracy of that Personal Data or you object to us processing it, and we have no legitimate grounds that override yours. Such request alone does not stop us from storing your Personal Data.

 

  • Right to Portability: Whenever we process your Personal Data, by automated means based on your consent or based on an agreement, you have the right to get a copy of your Personal Data transferred to you or to another party. This only includes the Personal Data you have provided to us.

 

  • Automated Decision-Making: You have the right to elect not to be subject to a decision based solely on automated processing, including profiling (“Automated Decision-Making”). Our Service does not currently use Automated Decision-Making.

 

  • Consent Withdrawal: To the extent we base the collection, processing, and sharing of your Personal Data on your consent, you have the right to withdraw your consent at any time, without affecting the lawfulness of the processing based on such consent before its withdrawal.

 

  • Right to Non-Discrimination: We will not discriminate against you for exercising any of your privacy rights. 

 

  • Right to Limit the Use of Sensitive Personal Data: If you are a resident of a state with laws that provide for a right to limit the use of sensitive Personal Data, as defined in the applicable law(s), you have the right to limit the use of your sensitive Personal Data to only those purposes that are necessary for us to provide the Service to you, by contacting us. 

For comprehensive details about your PHI rights, refer to our HIPAA Notice.

Third-Party Links

Occasionally, we might include third-party links or showcase their content to enhance user experience. We do not govern these third-party sites, which have their own privacy protocols. We're not liable for their actions or content, so ensure you review their policies before engaging. If you decide to access any third-party site linked within our Service, you do so entirely at your own risk.

Privacy Concerning Minors

Kento Health doesn’t knowingly gather data from those below the age of majority in the jurisdication where such individual resides. If we learn that we have done so inadvertently, the data will be deleted promptly.

Policy Updates

This Privacy Policy might undergo periodic updates. Should significant changes affecting users be made, we will post the updated policy on our platforms, and notify you via other means consistent with applicable law(s).

Termination

Kento Health holds the right to discontinue any user’s Service access. Upon account termination, your Personal Data will either be returned or destroyed or anonymized as per applicable laws.

Queries and Feedback

For any concerns or feedback related to this Privacy Policy or our Service, please contact Kento Health’s Privacy Officer at: support@kentoheath.com or at the following address:

Kento Health Inc.

ATTN.: Privacy Officer

12280 av. Wilfrid-Lazure Montréal (Québec) H4K2W9 Canada

If, however, you believe that we have not been able to assist with your complaint or concern, you have the right to lodge a complaint with the competent supervisory authority.

By using our Service, you acknowledge that you have read and understand this Privacy Policy.


 

 

Last update:  13 April 2024. 

HIPAA NOTICE OF PRIVACY PRACTICES

THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE REVIEW IT CAREFULLY.

EFFECTIVE DATE: APRIL 23, 2024

​

Who Abides by this Notice

Kento Health Inc. (“Kento Health”, “Company”) offers you wellness coaching services by collaborating with health mentors and other healthcare professionals (referenced as “we”, “our”, or “us”) when you engage with or join our Kento Health programs (the “Services”). This is a unified declaration of our data privacy practices (“Notice”). 

The parties adhering to this Notice include:

  • Health practitioners who cater to your needs via Kento Health.

  • Health professionals using our Services to render remote coaching to you.

  • Our workforce, associates, and partners, inclusive of auxiliary support entities.

We will share protected health information (“PHI”) of patients as necessary to provide the Services and carry out payment as permitted by law. Should you have queries about this Notice, our contact details are available at the end of this document.

Our Pledge to Privacy

Preserving the privacy, integrity and authenticity of the PHI you entrust us with during your engagement with our Services is paramount. PHI encompasses health information about you which could be used to identify you and which we keep or transmit in electronic, oral, or written form. PHI includes identifiable details about you such as your name or address, your past, present, or future health conditions (whether physical, mental, or medical), health care provided, medications prescribed, or payment histories. This data is vital for furnishing high-quality care and meeting regulatory mandates.

By law, we’re obligated to uphold the privacy of PHI and acquaint you with our statutory duties and privacy protocols pursuant to the Federal Health Insurance Portability and Accountability Act (“HIPAA”). We are required to and will promptly notify you in the event of a breach of your PHI. 

We are also required to inform you that there may be a provision of applicable state law that relates to the privacy of your health information that may be more stringent than a standard or requirement under HIPAA. We follow state privacy laws when they are applicable and stricter or more protective of your PHI than HIPAA.

We are required to abide by the terms of this Notice for as long as it remains in effect. We reserve the right to change the terms of this Notice as necessary and to make a new notice of privacy practices for all PHI held by us. The revised notice will be available on request, in our office, and on our website. In the event of a material revision of the terms of this Notice, the revised notice will be sent to you via email, or you will receive notification that the revised notice has been posted to our website. A copy of any revised notice or information pertaining to a specific state law may be obtained by mailing a request to the Privacy Officer at the address below. 

The details within this Notice pertain to the records of the services availed through Kento Health. Independent practices or notices might be adopted by your healthcare providers. We are happy to elucidate any aspect of this Notice to you or your kin.

 

Permissible Uses and Disclosures of Protected Health Information

Your PHI’s confidentiality is non-negotiable. With a robust framework of policies, procedures, and safeguards, we work tirelessly to protect your PHI. Below are categories showcasing varied ways we use and share your PHI internally and externally. Not every disclosure is listed, but all actions fall within these categories. Specific actions might also necessitate your express consent.

  1. With Your Authorization and consent: Except as outlined below, we will not use or disclose your PHI for any purpose other than treatment, payment or health care operation unless you have signed a form authorizing such use or disclosure. Upon your request, we might share relevant details. Such disclosures might need your written consent. If you wish for us to share your PHI with anyone or any organization, you may give us authorization in writing to do so.

  2. For Treatment: The most pivotal use of your PHI will be for treatment. PHI (like your medical history and symptoms) could be used or shared with healthcare providers like doctors or nurses so that they can deliver the right care to you. Moreover, we might use the PHI in order to send you reminders, alternative treatment options, or other health insights. Other care providers, such as technicians, medical students, or hospital personnel involved in your care, might also access this information.

  3. For Payment: We will make uses and disclosures of your PHI as necessary for payment purposes. During the normal course of business operations, we may forward information regarding your medical procedures and treatment to your insurance company to arrange payment for the services provided to you. We may also use your PHI to prepare a bill to send to you or to the person responsible for your payment.

  4. For Healthcare Operational Needs and Activities: Your PHI will be used and disclosed as necessary, and as permitted by law for our healthcare operations. It helps in our organizational planning, streamlining administration, and enhancing the quality and cost-efficiency of care. Examples include quality checks, disease management initiatives, surveys, data compilation, and training – all with the purpose of improving treatment and patient care.

  5. Business Collaborations: At times, third-party business associates will assist us in delivering our services. Such entities, including quality assurance agencies or billing services, may access your PHI to complete their tasks. To secure your PHI, such associates will be required to commit to stringent data protection standards.

  6. Research: In limited circumstances, we may use and disclose your protected PHI for research purposes. In cases where your specific authorization is not required by law, your privacy will be protected by strict confidentiality requirements applied by an Institutional Review Board which oversees the research or by representatives of the research that limit their use and disclosure of your information.

​​

Special Situations Where Disclosure Does Not Require Your Authorization at Kento Health

The below categories outline particular circumstances in which Kento Health may disclose or utilize your PHI without obtaining your explicit consent:

  1. Public Health Initiatives: Kento Health can share your PHI to:

    1. Prevent or monitor diseases, injuries, or disabilities.

    2. Report events like births and deaths.

    3. Address reports of child, elder, or dependent adult abuse or neglect.

    4. Address reactions to medications or issues with medical products.

    5. Inform individuals about product recalls that might impact them.

    6. Alert individuals who might be at risk of disease exposure or transmission.

    7. Notify emergency responders about potential HIV/AIDS exposure, as aligned with federal and state laws.à

  2. Abuse or Domestic Violence Victims: Should we reasonably ascertain that you are facing abuse or neglect, your PHI can be shared with legal authorities or protective service agencies.

  3. Health Supervision Activities: For activities such as audits, inspections, investigations, and licensure, we might share your PHI with health oversight agencies.

  4. Legal Proceedings: During lawsuits or legal disputes, your PHI may be used or disclosed in alignment with court or administrative orders, subpoenas, or discovery requests.

  5. Engaging with Law Enforcement: We may provide your PHI to law enforcement:

    1. In response to legal processes like warrants or subpoenas.

    2. To aid in identifying or locating suspects or witnesses.

    3. When discussing victims of crime under specific conditions.

    4. When discussing potential criminal activities at Kento Health.

    5. In emergencies to report details about a crime.

  6. Upon Passing: Your PHI can be provided to coroners, medical examiners, or funeral directors.

  7. Government-Related Functions: For specific governmental tasks, like military functions or intelligence activities, your PHI may be disclosed.

  8. Incarceration: If you are incarcerated or in police custody, your PHI might be shared if it is necessary for your healthcare or the safety of others within the correctional facility.

  9. Workers’ Compensation: If needed, and only where required by state law, we may share your PHI in line with workers’ compensation laws.

  10. As Mandated by Law: Outside of the scenarios mentioned above, we might need to share your PHI if other laws require it.

​​

Your Choices

For certain health information, you can tell us your choices about what we share. If you have a clear preference for how we share your information in the situations described below, please contact us using the contact information below, and we will make reasonable efforts to follow your instructions.

In these cases, you have both the right and choice to tell us whether to:

  • Share information, such as your PHI, with your family, close friends, or others involved in your care;

 

  • Share information in a disaster relief situation;

If you are not able to tell us your preference, for example, if you are unconscious, we may share your information if we believe it is in your best interest, according to our best judgment. We may also share your information when needed to lessen a serious and imminent threat to health or safety.

​

Situations Requiring Your Explicit Authorization at Kento Health

For any other use of your PHI not covered above, we will obtain your written consent. If you previously authorized a specific use of your PHI and wish to revoke it, you can do so. We, however, cannot reverse any previous disclosures. 

In the following cases, we will NOT share your PHI unless you give us your written permission:

  • Most sharing of a mental health care professional’s notes (psychotherapy notes);

  • Marketing purposes;

  • Selling or otherwise receiving compensation for disclosing your PHI.

Your Rights Concerning Your PHI at Kento Health

You have specific rights concerning your PHI. To learn more or exercise these rights, contact Kento Health using the contact information provided below. 

  • Right to Request Limitations: You can ask for limits on how we use and share your PHI:

  1. For treatment, payment, and healthcare processes.

  2. With people involved in your care or payment for your care.

  3. To identify your location and condition to people involved in your care or payment for your care.

Although we'll consider all restriction requests, we're not obliged to agree, unless it concerns a health plan payment, and the PHI is about a service that has been fully paid for out-of-pocket. Please submit your requests in writing. If approved, we'll abide by it unless there's an emergency or prior disclosure.

 

  • Confidential Communications: You can request that we communicate with you about your PHI in a specific way or at a particular location (e.g., only at work). Submit this request in writing. We won’t ask why and will try to fulfill all reasonable requests.

 

  • Access to Records: You have a right to access the medical, health and billing files we maintain about you. While you can inspect and get copies of these, there might be rare times we might decline. If denied, you can ask for a review by another healthcare professional we pick. To access, write to us. If records are digital, you can request an electronic version or ask us to send it to a designated person/entity.

 

  • Costs: For paper copies, we will charge based on copying, mailing, and supply expenses. For electronic versions, any charges will be based on our labor costs.

 

  • Amending Records: You can request changes to your PHI in our records by writing to us and stating your reasons for making the request. You will need to sign your request or have a legal representative sign it. Rest assured that we will always give your request careful consideration. However, we may decline to accept the amendment if we believe the current information is accurate or due to another specific reason. You can then add a disagreement note to your records. We may include our reasons for refusal in your record as well. If we make the amendment, we may communicate the changes to others who work for us if we feel the notification is necessary.

 

  • Right to Addendum: You can append an addendum to your medical records.

 

  • Right to a Paper Copy: You have a right, even when you have consented to receive electronic notices, to obtain a paper copy of this Notice. To do so, please submit a request to the Support Office using the email below

 

  • Accounting of Disclosures: By writing to us, you can get a report of certain times we’ve shared your PHI with outside entities over the past six years. Specify the format you prefer to receive the accounting in (e.g., paper or electronic). The first request in any 12-month period will be free, but subsequent requests within a year might come with charges. You will not be charged the fee until after being notified of what it will be, and after being given an opportunity to rescind or modify your request.

 

  • Choose Someone to Act for You: If you have given someone medical power of attorney or if someone is your legal guardian, that person can exercise your rights and make choices about your PHI.

 

  • Make a Complaint: You have the right to complain if you feel we have violated your rights by using the information provided below. 

 

  • Not to be Subject to Retaliation: You have the right not to be subjected to retaliation for exercising your rights. We will not retaliate against you for filing a complaint or for exercising any of your rights.

 

  • Right to be Informed of Breaches: You have a right to be informed if there's ever a breach of your PHI security. We are required by law to protect the privacy and security of your PHI through the use of appropriate safeguards. We will promptly notify you in the event a breach occurs involving or potentially involving your PHI and inform you of what steps you may need to take to protect yourself.

Minimum Necessary Protocol at Kento Health

In line with legal mandates, Kento Health ensures that any request or sharing of your PHI is limited to the minimum necessary information. This commitment helps safeguard your privacy.

Notice Amendments

Kento Health may update this Notice periodically. Updated terms will be applicable to all PHI.

​

Getting in Touch with Kento Health, Addressing Concerns or Filing Complaints

For more details on your privacy rights or any concerns about your privacy rights, to submit a request pursuant to this Notice, or if you believe your privacy rights have been violated, reach out to our Privacy Officer using the contact information hereinbelow. 

Kento Health Inc.

Attn: Privacy Officer

Email: support@kentohealth.com

Mailing Address: 

12280 av. Wilfrid-Lazure Montréal (Québec) 

H4K2W9 Canada

For formal complaints, contact the U.S. Department of Health and Human Services, Office of Civil Rights. Rest assured, we will never retaliate against any complaints.

This Notice is also available on our web page at https://www.kentohealth.com/hipaa.

bottom of page