HEALTH INFORMATION

There are two categories of Health Information that we and our service providers

may collect through our apps: Protected Health Information and Additional Health

Information.

“Protected health information” (PHI) is individually identifiable health information which is created or received by a covered entity (for example, a health care provider or health plan) and relates to the past present or future physical or mental health or condition of an individual, the provision of health care to an individual, or the past, present or future payment for the provision of health care to an individual. PHI is further defined by the federal Health Insurance Portability and Accountability Act of 1996 (HIPAA) and is subject to the protections of HIPAA. We and our service providers may collect PHI in connection with this app. Our privacy practices are intended to comply with HIPAA, and we will maintain the privacy of your PHI as required by HIPAA and the regulations promulgated under that Act.

“Additional health information” is information which does not fall within the category of Protected Health Information above (typically because it was not created or received by a provider or health plan), but which is the combination of your personal information, such as your name, address and other contact information, with information related to past, present or future physical or mental health or conditions, the provision of health care to an individual, or the past, present or future payment for the provision of health care to an individual. We and our service providers may collect such additional health information through this app.

In order to use this app, you must review and provide your consent to our Privacy Policy, available on the following pages, which describes how we may use and disclose your PHI, personal information and Additional health information. To proceed, select your choices regarding our use and disclosure of your PHI, personal information and Additional health information.

CHOICES AND ACCESS

We give you choices regarding our use and disclosure of your PHI, personal information and Additional health information for marketing purposes. We will use and share your PHI personal information and Additional health information for marketing purposes only in accordance with such choices. For example, we will not use or share your PHI for marketing purposes unless you opt-in. In addition, you may opt-out from certain uses and disclosures of personal information and Additional health information as set forth below. Further, if you have previously opted-in to the use and sharing of PHI for marketing purposes and wish to change such preferences, you may do so by following the opt-out instructions set forth below.

SECURITY

Are our apps and services safe and secure?

Yes, we are a Business Associate of health care professionals as defined under HIPAA, and our apps and services use bank-level security and encryption. Our apps and services meet HIPAA standards for all interactions subject to HIPAA security regulations. We use a variety of technologies and procedures to help protect the security of your personal information from unauthorized access, use, or disclosure.

Our apps also maintain standard physical and electronic procedural safeguards that limit access to your personal information to our employees (or people working on our behalf and under non-disclosure agreements) who, through the course of standard business activities, need to access your personal information. Your personal information will be stored in a secure manner.

Full access to this app is enabled only by usernames and passwords. You are fully and solely responsible for any and all use of this app using your username and password. We reserve the right to revoke or deactivate your username and password at any time.

Personally Identifiable Information

“Personally Identifiable Information” is personal information, like your full name and email address, that identifies who you are. Provided that you have elected not to participate in the “Community Discussion” feature that is available to you in our CareMGMT™ app (see the special provisions applicable to that feature described, to which you must separately consent to use that feature), we will keep your Personally Identifiable Information private by not displaying it or sharing it without your consent, and your use of our apps and Website is anonymous, and other users of our apps or any of our Websites can never see this information.  In this case, we do not display any of your personal information on the apps or the Website, except inside your Profile, which is visible only to you. We keep this information secure by using state of the art encryption and other security measures.

If you have elected to participate in our Community Discussion feature, then the special provisions that you must consent to on a following screen, which are applicable to the Community Discussion feature, will apply to you, and by agreeing to those provisions you are consenting to the display of certain of your personal information on the app or associated Website in order to enable you to use this feature.

Is Personally Identifiable Information visible on our apps?

No. Except for certain information that you have chosen and consented to be visible by your use of the Community Discussion feature, as described above, all Personally Identifiable Information is stored securely in your Profile, which is not visible to other users or doctors on the apps or on our associated Websites. Revealing Personally Identifiable

Information in content publicly visible on the apps or on our associated Websites (such as in public questions) is not permitted, except for such information as you have chosen and consented to be visible from your use of the Community Discussion feature.

How do we use Personally Identifiable Information?

We will retain and use your Personally Identifiable Information to provide you with

and notify you about our services, and as may be necessary to comply with our legal

obligations, resolve disputes, and enforce our agreements.

Progentec Diagnostics, Inc. operates this app and the website located at www.progentec.com and other related websites and mobile applications (collectively, the “Site”). Through the Site, we provide information related to our products and services that may utilize information obtained from this app. We developed the following Privacy Policy to explain how we collect, use, and disclose information from and/or about you when you use this app, the Site or our other services.

THIS APP AND THE SITE WILL BE COLLECTING AND TRANSMITTING PERSONAL

MEDICAL AND HEALTH-RELATED INFORMATION ABOUT YOU. BY USING THIS APP

AND THE SITE, YOU AGREE THAT WE CAN COLLECT AND USE YOUR PERSONAL AND

OTHER INFORMATION AS DESCRIBED IN THIS PRIVACY POLICY. IF YOU DO NOT

AGREE, PLEASE DO NOT USE THIS APP OR THE SITE. BY USING THIS APP OR THE

SITE, YOU ACKNOWLEDGE THAT YOU AGREE TO THE FOREGOING.

HIPAA Privacy Policy Notice

THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED

AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE

REVIEW IT CAREFULLY.

About This Notice

This Privacy Policy Notice describes how we may use and disclose your Protected health information to assist in the carrying out of diagnosis, treatment, payment or other health care operations and for other purposes that are permitted or required by law. It also describes your rights to access and control your protected health information. “Protected health information” (PHI) is information about you, including demographic information, that may identify you and that relates to your past, present or future physical or mental health or condition and related health care services.

We are required by law to:  maintain the privacy of your PHI; give you this Notice of our legal duties and privacy practices with respect to your PHI; and follow the terms of our Notice that are currently in effect. We may change the terms of our Notice at any time, and the new Notice will be effective for all PHI that we maintain at the time as well as

any PHI we receive in the future. You can obtain any revised Notice by contacting us at privacy@progentec.com

How We May Use and Disclose Your PHI

The following examples describe different ways that we may use and disclose your PHI. These examples are not meant to be exhaustive, but to describe the types of uses and disclosures that may be made by us. We are permitted to use and disclose your PHI for the following purposes. However, we may never have reason to make some of these disclosures.

For Treatment

We will disclose PHI to physicians who may be treating you And use and disclose your PHI to provide, coordinate, or manage your health care treatment through those physicians and any related services. We may also provide your PHI to a physician to whom you have been referred to ensure that the physician has the necessary information to diagnose or treat you.

In addition, we may disclose your PHI from time to time to another physician or health care provider (e.g., a specialist or laboratory) who, at the request of your physician, becomes involved in your care, such as by providing assistance to your physician with your health care diagnosis or treatment.

For Payment

Your PHI will be used, as needed, to obtain payment for our providing products and services in connection with your health care services. This may include certain activities that your health insurance plan may undertake before it approves or pays for the products and services we provide or recommend for you, such as making a determination of eligibility or coverage for insurance benefits, reviewing products or services provided to you for medical necessity, and undertaking utilization review activities.

For Our Internal Uses

We may use and disclose your PHI for our own internal research, development and operations purposes with respect to our products and services. These uses and disclosures are necessary to make sure that our products and services are effective for their intended purposes, and for our operations and management purposes. For example, we may use your PHI to review the treatment and services you receive to check on the performance of our products and services, such as product support. We also may disclose information to doctors, nurses, technicians, medical students, and other personnel for educational and learning purposes. The entities and individuals covered by this notice also may share information with each other for purposes of joint health care operations.

Appointment Reminders/Treatment Alternatives/Health-Related

Benefits, Products and Services

We may use and disclose your PHI to contact you to remind you that you have an appointment for treatment or medical care, or to contact you to tell you about possible treatment options or alternatives or health related benefits, products and services that may be of interest to you.

Plan Sponsors

If your insurance coverage is through an employer sponsored group health plan, we may share your PHI with your plan sponsor.

As Required by Law

We may use or disclose your PHI to the extent that the use or disclosure is required by law. The use or disclosure will be made in compliance with the law and will be limited to the relevant requirements of the law. You will be notified, as required by law, of any such uses or disclosures.

Public Health

We may disclose your PHI for public health activities and purposes to a public health authority that is permitted by law to collect or receive the information. The disclosure will be made for the purpose of controlling disease, injury or disability. We may also disclose your PHI, if directed by the public health authority, to a foreign government agency that is collaborating with the public health authority.

Business Associates

We may disclose your PHI to our business associates that perform functions on our behalf or provide us with services if the information is necessary for such functions or services. For example, we may use another company to perform billing services on our behalf. All of our business associates are obligated, under contract with us, to protect the privacy of your information and are not allowed to use or disclose any information other than as specified in our contract.

Communicable Diseases

We may disclose your PHI, if authorized by law, to a person who may have been exposed to a communicable disease or may otherwise be at risk of contracting or spreading the disease or condition.

Health Oversight

We may disclose your PHI to a health oversight agency for activities authorized by law, such as audits, investigations, and inspections. Oversight agencies seeking this information include government agencies that oversee the health care system, government benefit programs, other government regulatory programs and civil rights laws. U.S. Food and Drug Administration

We may disclose your protected health information to a person or company required by the U.S. Food and Drug Administration to report adverse events, product defects or problems or biologic product deviations, to track products to enable product recalls, to make repairs or replacements, or to conduct post marketing surveillance, as required by law.

Legal Proceedings

We may disclose your PHI in the course of any judicial or administrative proceeding, in response to an order of a court or administrative tribunal (to the extent such disclosure is expressly authorized), or in certain conditions in response to a subpoena, discovery request or other lawful process.

Research

We may disclose your PHI to researchers when their research has been approved by an institutional review board that has reviewed the research proposal and established protocols to ensure the privacy of your PHI.

Military Activity and National Security

When the appropriate conditions apply, we may use or disclose PHI of individuals who are U.S. Armed Forces personnel (1) for activities deemed necessary by appropriate military command authorities; (2) for the purpose of a determination by the Department of Veterans Affairs of your eligibility for benefits, or (3) to foreign military authorities if you are a member of that foreign military services.

We may also disclose your PHI to authorized U.S. governmental officials for conducting national security and intelligence activities, including for the provision of protective services to the President or others legally authorized.

Workers' Compensation

Your PHI may be disclosed by us as authorized to comply with workers’ compensation laws and other similar legally established programs.

For Data Breach Notification Purposes

We may use or disclose your PHI to provide legally required notices of unauthorized acquisition, access, or disclosure of your health information. We may send notice directly to you or provide notice to the sponsor of your health care plan, if applicable, through which you receive insurance coverage.

Required Uses and Disclosures

Under the law, we must make disclosures to you and when required by the Secretary of the U.S. Department of Health and Human Services to investigate or determine our compliance with the requirements of Section 164.500 et. seq. The personal information I am providing may be used by Progentec Diagnostics, Inc. in connection with the purposes described above including, but not limited to, providing health care diagnostics or treatment to me, receiving payment for services rendered to me, and for general administrative operations. I give my consent to the use by Progentec Diagnostics, Inc. of the use of my Protected Health Information (PHI), Additional health information, and personal information as described above. I understand that if I do not give this consent, I will not be able to use this app or any of its features.

I acknowledge that I have read all of the foregoing notices including the Privacy Policy Notice and understand that unless I agree to all of the foregoing, it will mean that I will not be able to use this app or any of its features. I also understand that I may revoke this consent at any time by notifying Progentec Diagnostics, Inc. in writing, at privacy@progentec.com.