When starting a new job or facing the open enrollment period head on, choosing a health insurance plan can be a daunting task. Our services may be right for you if you need assistance understanding terms, plan specifics, and how insurance relates to your overall health.

Although the in person class is beneficial in learning the health insurance literacy basics, the class is not required for an individual consultation. During the hour long consultation, we cover the same information on a smaller scale and discuss your own health insurance plan specifics, tailored to you.

1. Purpose

This policy outlines how WellthWise collects, uses, stores, and protects private information obtained from individuals in person and through digital platforms. The company is committed to upholding the highest standards of privacy and data security in compliance with applicable laws and regulations. 

2. Scope

This policy applies to all employees, contractors, volunteers, and third-party service providers who collect, access, or manage personal information on behalf of WellthWise. 

3. Definitions

• Personal Information: Any information that identifies or could reasonably identify an individual, including but not limited to name, address, contact details, health information, financial information, and identification numbers. 

• Sensitive Information: A subset of personal information, such as medical records, financial status, or government-issued identifiers. 

• Data Subject: The individual to whom the personal data belongs. 

4. Collection of Information

4.1 In-Person Collection

Personal data collected during physical interactions (e.g., consultations, paper forms) will be: 

• Collected only when necessary. 

• Obtained with clear, informed consent. 

• Recorded and transferred securely to authorized systems. 

4.2 Online Collection

Personal data collected via websites, forms, mobile applications, and digital communication platforms will be: 

• Acquired through secure, encrypted channels. 

• Supported by clear privacy notices and consent requests. 

• Logged and monitored to detect unauthorized access or breaches. 

5. Use of Information

Collected personal information will be used solely for: 

• Delivering requested services or information. 

• Fulfilling legal or regulatory obligations. 

• Internal analysis or improvement of services (in de-identified or aggregated form where possible). 

No personal data will be sold or shared with third parties without explicit consent, unless required by law. 

6. Storage and Retention

• Data will be stored securely using physical and electronic safeguards. 

• Access will be restricted to authorized personnel. 

• Data retention will comply with applicable regulations and will be limited to the minimum period necessary. 

• Disposal of personal data will be conducted securely (e.g., shredding documents, permanent deletion from digital systems). 

7. Data Protection Measures

• All digital systems will use up-to-date encryption, secure authentication, and access control protocols. 

• Physical files will be stored in locked, access-controlled environments. 

• Regular training on data privacy and protection will be provided to all personnel. 

• Third-party vendors must comply with this policy and sign data protection agreements where applicable. 

8. Rights of Individuals

Individuals have the right to: 

• Access their personal information. 

• Request corrections or deletions. 

• Withdraw consent for data use. 

• File complaints regarding misuse or unauthorized disclosure. 

Requests should be directed to [Privacy Officer/Designated Contact] at [email address or phone number]. 

9. Incident Response

Any suspected or confirmed data breach must be reported immediately to the Privacy Officer. The organization will: 

• Investigate the breach. 

• Notify affected individuals and regulatory bodies as required. 

• Take corrective action to prevent recurrence. 

10. Policy Review

This policy will be reviewed annually or upon significant changes to laws, technology, or organizational practices.