Introduction

This Privacy Policy describes how Best Home Care Inc. (“we,” “us,” or “our”) collects, uses, and shares information about you through our online interfaces owned and controlled by us, including www.beshomecarenj.com (collectively referred to herein as the “Site”). By using the Site, you agree to the collection, use, and sharing of your information as described in this Privacy Policy. If you do not agree with our policies and practices, do not use our Site. This policy is applicable to everyone including who access our services within New Jersey and is intended to comply with the New Jersey Consumer Privacy Act (NJCPA) New Jersey and other state privacy laws.

Scope of Policy

This Privacy Policy applies to all personal information collected, used, or disclosed by Best Home Care Inc., a company incorporated under the laws of New Jersey, United States (“Company”), from individuals who interact with us, including, but not limited to, our clients, website visitors, and service users (“you”). This policy outlines our practices regarding the collection, use, and disclosure of your personal information.

By accessing or using our services, you acknowledge that you have read, understood, and agree to the terms of this Privacy Policy and to the processing of your personal information in accordance with this Privacy Policy. If you do not agree with any part of this Privacy Policy, you should not access or use our services.

Information Collection

In accordance with applicable laws and regulations, Best Home Care Inc. (“the Data Controller”) may collect, store, and use the following information from individuals who interact with us:

• Personal Information: This includes but is not limited to name, address, phone number, email address, date of birth, and insurance information.
• Health Information (HIPAA Protected): Medical history, treatment details, physician information, and any other health-related information protected under the Health Insurance Portability and Accountability Act (HIPAA).
• Payment Information: Credit/debit card details and any other information necessary for processing payments for services provided.
• Usage Data: Information such as IP address, browser type, pages visited, and interactions with our website to help improve user experience and service delivery.

The collection of this information is essential for providing personalized care, processing payments, complying with legal obligations, and enhancing our services. By interacting with Best Home Care Inc., you consent to the collection and use of your information as outlined above.

Use of Information

We collect and process your data for the following purposes:

• To provide home care services and schedule appointments.
• To process payments and insurance claims.
• To comply with legal and regulatory requirements (including HIPAA).
• To communicate with you regarding your care, appointments, and service updates.
• To improve our website and services.

Information Sharing and Disclosure

Best Home Care Inc. (“the Data Controller”) recognizes the importance of protecting the privacy of personal data. In accordance with relevant privacy laws and regulations, the Data Controller does not sell, rent, or otherwise disclose personal data to third parties without consent, except under the following circumstances:

• Healthcare providers, to facilitate coordination of care and ensure the provision of health services.
• Insurance companies, for the purpose of billing and processing claims.
• Regulatory authorities, when required by law or in response to legal processes.
• Service providers, including but not limited to IT support and payment processors, who assist in the operation of our services and are bound by confidentiality agreements to protect personal data.

This clause outlines the specific scenarios under which personal data may be shared or disclosed, ensuring compliance with applicable legal and regulatory requirements while protecting the privacy and security of personal data.

Data Security

In compliance with laws and regulations, Best Home Care Inc. (“Data Controller”) commits to implementing and maintaining robust data security measures to protect the personal information of its users. These measures are designed to prevent unauthorized access, disclosure, alteration, and destruction of personal information.

The Data Controller shall employ a variety of security technologies and procedures to help protect personal information from unauthorized access, use, or disclosure. This includes, but is not limited to, encryption, firewalls, and secure software development practices.

In the event of a data breach, the Data Controller will promptly notify affected individuals in accordance with laws and any applicable federal regulations. The notification will include information about the nature of the breach, the type of information compromised, and steps the Data Controller is taking to address the breach and prevent future occurrences.

Users have the right to inquire about the specific security measures in place by contacting Best Home Care Inc. directly. The Data Controller will provide information on the security practices upon request, in compliance with applicable laws and regulations.

HIPAA Compliance

As a healthcare service provider, Best Home Care Inc. complies with the Health Insurance Portability and Accountability Act (HIPAA) to ensure the confidentiality, integrity, and availability of all Protected Health Information (PHI) we create, receive, maintain, or transmit. We are committed to implementing safeguards that protect the privacy of PHI, including administrative, physical, and technical barriers in accordance with HIPAA regulations.

Best Home Care Inc. will use and disclose PHI only as permitted or required by HIPAA or as authorized by you or the individual concerned. We have established policies and procedures to address the use and disclosure of PHI, the rights of individuals to their PHI, and our duties with respect to that information. Employees are trained on these policies and procedures to ensure compliance with HIPAA.

In the event of a breach of unsecured PHI, Best Home Care Inc. will follow the breach notification requirements under HIPAA.                                        

Children’s Privacy

In recognition of the importance of protecting the privacy of children, Best Home Care Inc. (“the Data Controller”) adheres to the principles of the Children’s Online Privacy Protection Act (COPPA) and any applicable state laws, including those of New Jersey. This policy outlines our practices regarding the collection, use, and disclosure of personal information from children under the age of 13.

We do not knowingly collect personal information from children under 13 without obtaining prior verifiable parental consent, in compliance with COPPA and New Jersey’s child privacy laws. If we learn that we have collected personal information from a child under 13 without such consent, we will take steps to delete the information as soon as possible.

Parents or guardians of children under the age of 13 have the right to review the personal information collected from their child, request its deletion, and refuse to allow further collection or use of the child’s information. To exercise these rights, parents or guardians can contact us directly through the methods provided in our Privacy Policy.

Additionally, as a healthcare service provider, Best Home Care Inc. complies with the Health Insurance Portability and Accountability Act (HIPAA) to ensure the protection of Protected Health Information (PHI) of all our clients, including children. Your PHI is stored securely, and we take necessary measures to safeguard it.

Your Rights and Choices

In recognition of your privacy rights, especially as they pertain to the collection, use, and sharing of your Protected Health Information (PHI) and other personal data, we at Best Home Care Inc. are committed to ensuring your ability to exercise these rights fully and effectively.

If you are a resident of California, under the California Consumer Privacy Act (CCPA), or a resident of the European Union, under the General Data Protection Regulation (GDPR), you have specific rights regarding your personal data. These rights include:

1. The right to access your personal data held by us, including any PHI.
2. The right to request an update to, or correction of, your personal data.
3. The right to request the deletion of your personal data from our records, subject to certain exceptions.
4. The right to opt-out of the sale of your personal data to third parties (where applicable).
5. The right to request a copy of the personal data we hold about you, in a portable and, to the extent technically feasible, easily accessible format.

For residents of other jurisdictions, we also respect your rights to privacy and the control of your personal data. We encourage you to contact us directly to learn more about what rights you may have and how to exercise them.

To exercise any of these rights, or if you have any questions about our use of your personal data, please contact our Privacy Officer at the contact information provided in our Privacy Policy. For minors under the age of 13, we adhere to the Children’s Online Privacy Protection Act (COPPA), requiring parental consent before collecting any personal information from children under the age of 13.                                

Data Retention

In compliance with the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other relevant data protection laws, Best Home Care Inc. (“the Data Controller”) commits to retaining personal information, including Protected Health Information (PHI), only for as long as necessary to fulfill the purposes for which it was collected, including for the purpose of satisfying any legal, accounting, or reporting requirements. 

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements. In certain circumstances, you may have the right to request deletion of your personal data. Further, we will ensure that your personal information is securely disposed of at the end of its retention period.

For minors under the age of 13, in compliance with the Children’s Online Privacy Protection Act (COPPA), we do not knowingly collect any personal information. In the event that we learn that we have collected personal information from a child under age 13 without verification of parental consent, we will take steps to remove that information from our servers as quickly as possible.

Third-Party Service Providers

In the course of providing services, Best Home Care Inc. (“Data Controller”) may engage various third-party service providers to perform tasks on behalf of the Data Controller or to assist in the effective operation of our services. These third-party service providers may have access to or process Personal Information or Protected Health Information (PHI) for the purpose of providing these services. The Data Controller ensures that all third-party service providers are compliant with relevant privacy laws and regulations, including but not limited to the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), the Children’s Online Privacy Protection Act (COPPA), and any applicable local laws.

Third-party service providers are required to:

• Implement and maintain reasonable security procedures and practices appropriate to the nature of the information to protect Personal Information and PHI from unauthorized access, destruction, use, modification, or disclosure.
• Use the Personal Information and PHI solely for the purpose of providing the contracted services and not for any other purpose.
• Comply with all applicable privacy laws and regulations in the processing of Personal Information and PHI.
• Ensure that any subcontractors or agents employed in the provision of services also adhere to these privacy and security standards.

The Data Controller reserves the right to audit and review the privacy and security practices of third-party service providers to ensure compliance with this policy and applicable laws. Any breach of privacy or security obligations by third-party service providers will be addressed promptly and may result in the termination of the contractual relationship.

International Data Transfers

In compliance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant data protection laws, Best Home Care Inc. (the “Data Controller”) hereby outlines its practices regarding the transfer of Personal Information outside of its country of establishment, specifically outside of United States.         

Personal Information collected by the Data Controller may be stored, processed, or transferred between countries in order to provide services and operate our business efficiently. Such international transfers of Personal Information will be conducted in a secure manner and in accordance with the legal requirements established by GDPR, CCPA, and any other applicable data protection legislation. The Data Controller ensures that all international data transfers comply with:

• The level of protection required by the GDPR for transfers outside the European Economic Area (EEA);
• The requirements of the CCPA for transfers of Personal Information of California residents;
• Any other specific restrictions or requirements applicable to the transfer of Protected Health Information (PHI) under relevant U.S. health privacy laws, including but not limited to, the Health Insurance Portability and Accountability Act (HIPAA);
• Appropriate safeguards such as standard contractual clauses approved by the European Commission, binding corporate rules, or other mechanisms recognized by the GDPR and CCPA as providing an adequate level of protection for Personal Information transferred outside of the EEA and California, respectively.

In cases where Personal Information is transferred to countries that do not provide an adequate level of data protection as determined by the European Commission, the Data Controller will take additional steps to ensure that such Personal Information is adequately protected in accordance with GDPR, CCPA, and other applicable laws. This may include the use of specific contracts approved by the European Commission that give Personal Information the same protection it has in Europe and California.

By engaging with our services, individuals acknowledge and agree to the transfer of their Personal Information outside of their country of residence, in accordance with the practices described in this clause.

Changes to This Policy

Best Home Care Inc. (“we,” “us,” or “our”) reserves the right to update or modify this Privacy Policy at any time and from time to time without prior notice. Please review this policy periodically, and especially before you provide any Personal Information. This Privacy Policy was last updated on the date indicated at the top of this Privacy Policy. Your continued use of the Services after any changes or revisions to this Privacy Policy shall indicate your agreement with the terms of such revised Privacy Policy.

Contact Information

If you have any questions or concerns regarding our Privacy Policy or the processing of your Personal Information, please contact us at:

• Email: [email protected]
• Phone: (201) – 798 – 7600
• Mail: 520 Main Street Suite 201 Fort Lee, NJ 07024 

Our Privacy Compliance Officer is available to address any concerns you may have regarding the privacy and security of your Personal Information. Please include your contact information and a detailed description of your request or privacy concern when reaching out to us.

Effective: February 5, 2025