Last modified on August 30th, 2023
Your privacy protected
We take the privacy of the information you provide seriously and we implement security safeguards designed to protect your data as discussed below. We do not share your personally identifiable data with any third-party advertisers or ad networks for third-party advertising purposes.
We welcome your questions and comments.
To make this document easier to read, we’re going to use some shorthand throughout. For example, when we say “PICA,” we’re talking about:
Pharmacy Ideas Computing Applications (PICA), such as:
- RxInspection Web App
- RxTask Web App
- RxVerify App
- RxVerify Web App
- eFormsRx Web App
- RxFormulary Web App
Single Sign-on (SSO):
- AAD or Azure AD
- ADFS or Active Directory Federation Service
- Ping One
Microsoft Identity Membership:
PIC websites, such as
Information We Securely Store
The information we securely store depends on the services you request and functionality you request.
Personal Information You Provide to Us.
We require that the system administrator provide a first name, last name, and a valid email address for each user login created. Additionally, the system administrator may provide an optional mobile phone number for SMS text messaging alerts for each user login. Finally, the system administrator must designate security role assignments for each user in order to access various functionality on the site. We will use this information to associate you with your specific PICA Identity account.
Communications from You to Us.
We collect information about you when you send, receive, or engage with messages from us, including when you submit personal information or requests by emailing email@example.com or firstname.lastname@example.org. We retain those communications to process your inquiries, respond to your requests, and improve our applications and services.
Automatic Data Saving Technologies
Cookies and Other Similar Technologies.
How We Serve You with Your Information
We use data that we collect about you and that you provide to us as well as the inferences we make from that information as follows:
- To provide, support, and personalize PICA and the PICA functionality you request;
- To create, maintain, customize, and secure your PICA account, if any;
- To process your requests and respond to your inquiries;
- To provide information on other PICA products or services;
- To maintain the safety, security, and integrity of PICA and the infrastructure that facilitates use of PICA;
- For internal development of PICA and our other products and services;
- For internal analysis of use of PICA;
- To fulfill any other purpose for which you provide it;
- In any other way we may describe when you provide the information; and
- For any other purpose with your consent.
We use the personal information you provide to create and maintain your Membership account. We also use this information to authorize your access to your account. We store this information and information pertaining to your use of PICA in connection with your Membership account for so long as you are a client. For example, your first and last name and email address will be stored and used by us in connection with your account name or auto-generated account ID to authenticate you as the correct user of your account. We will also store your User Contributions in association with your Member account to allow you to access, re-access, post, and otherwise utilize your User Contributions as you choose.
We collect the manner in which you use PICA and its content, such as your support requests and requests for enhancements. We also collect and store the User Contributions you create, related to the use of PICA. We process this information to allow you to access and to use content you create or wish to access through each PICA session.
You will have the choice of whether to download certain PICA content and User Contributions to your device. You will have the choice of whether to allow PICA access to your device’s storage to add and modify this downloaded content. Access to the storage of your device is only used by PICA for downloading this requested content to your device.
It is your choice whether to create, access, or store PICA information and content. If you do, we will store it in association with your client account.
Communications from Us to You.
We communicate with you through email or by telephone.
Each PIC application may be configured by the system administrator to provide optional email or SMS text messaging or reminder alerts. This is controlled completely by each client’s system administrator.
Security, Legal and Technical Issues
We may use your personal information to provide notice regarding a security incident or data breach, by: (i) sending a message to the email address you provide (as applicable); (ii) posting to a publicly facing page of PICA or through an in-app message; (iii) through major statewide media; and/or (iv) telephonic means, including calls and/or text messages, even if sent via automated means including automated dialers. Standard text and data messaging rates may apply from your carrier. Notices sent by email will be effective when we send the email, notices we provide by posting will be effective upon posting and by in-app messaging when the message is made, and notices we provide through telephonic means will be effective when transmitted or dialed. You consent to receiving electronic communications from PIC relating to PICA(s) and your use and access of the services provided through PICA. It is your responsibility to keep your email address and any other contact information you provide to us current so that we may provide these communications to you.
Analytics and Performance.
We internally analyze the personal data available to us and the use of PICA content, as well as the inferences we make from that data, to observe social, economic, and geographic trends as they pertain to PICA content. In some cases, we may work with trusted third parties to perform this research, under controls that are designed to protect your privacy, as discussed below. We may disclose use of PICA content in an aggregated manner with de-identified and anonymized information that does not disclose any particular user or that user’s personally-identifying information. For example, we may use your data to generate statistics about overall usage of PICA worldwide or in specific geographic regions.
We also use de-identified and aggregate user data to market PICA, including communications that promote PICA Membership and network growth, such as celebrating the total number of PICA installs. When you see stats we share publicly such as global PICA engagement, we make sure to analyze and publish the data in an aggregated form, protecting your privacy and keeping your identity and personal information confidential. We use data, including user provided personal information, aggregations of user data, data collected through the use of PICA, public feedback, and information inferred from this data to conduct internal research and development in order to provide a better overall PICA experience, measure the performance of PICA, and increase the use of PICA and its features. This is done by making changes to PICA that are generally available, as well as sending users messages through PICA suggesting PICA functionality and content.
We do not store, or have any database fields for, confidential patient information (PHI). PHI is not permitted to be stored when using any PICA(s).
We do not store, or have any database fields for, confidential financial information such as credit card numbers or other financial information.
Disclosure of Your Information
We do not sell or share your personal data with any third-party advertisers or ad networks for their advertising purposes.
Disclosure on Your Behalf.
Disclosure by You.
When you share information through PICA, that information is viewable by you and by anyone else that your system administrator has enabled to view the information.
It is possible that we will need to disclose information about you when required by law, subpoena, or other legal process. We attempt to notify Users about legal demands for their personal data when appropriate in our judgment, unless prohibited by law or court order or when the request is an emergency. We may dispute such demands when we believe, in our discretion, that the requests are overbroad, vague, or lack proper authority, but we do not promise to challenge every demand. We may also disclose your information if we have a good faith belief that disclosure is reasonably necessary to (i) investigate, prevent, or take action regarding suspected or actual illegal activities or to assist government enforcement agencies; (ii) enforce our agreements with you; (iii) investigate and defend ourselves against any third-party claims or allegations; (iv) protect the security or integrity of PICA; or (v) exercise or protect the rights and safety of PIC, Users, our personnel, or others. We also reserve the right to confidentially disclose personal information we have about you in connection with a potential or actual merger or acquisition such as the sale of all or substantially all of our assets.
Deleting, Accessing, and Correcting Your Information
How to Make Your Requests.
For personal data that we have about you, you may request the following:
- Deletion: You may ask us to erase or delete all or some of your personal data. Please note that doing so may limit your ability to use certain functionality of PICA. Please note that an email address is required to have a Member account to ensure we can properly authenticate potential users of that account.
- Correction/Modification: You may edit some of your personal data through your account or ask us to change, update, or fix your data in certain cases, including if it is inaccurate.
- Object to, or Limit or Restrict, Use of Data: You can ask us to stop using all or some of your personal data or to limit our use of it.
- Right to Access and/or Take Your Data: You can ask us for a copy of or disclosure concerning your personal data you provided to us.
Certain laws may provide the right to make these and additional requests concerning your personal information. If you have provided us with personal information and wish to make such a request under a specific region’s law, please send your request to email@example.com and include the phrase “[Your client name] Privacy Request” in the subject line.
To make these or any other requests with respect to your personal information, you may send an email to firstname.lastname@example.org or mail your request to Pharmacy Ideas Computing, attn.: PICA Support, 1848 Lanarkshire Dr., Greenwood, Indiana 46143.
We ask that individuals making requests identify themselves with at least their name, address, and email address and identify the information requested to be accessed, corrected, or removed before we process any requests. We may decline to process requests if we cannot verify the requestor's identity, if we believe the request will jeopardize the privacy of others, if we believe the request would violate any law or legal requirement, if we believe the request would cause the information to be incorrect, or for a similar legitimate purpose.
We will not discriminate against you for exercising any of your rights under applicable law. We do not charge a fee to process or respond to your verifiable request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.
Deleting Your Account.
If you choose to close your account or ask that we modify or delete some or all of your personal information, we will retain your personal data if we have a legal right or obligation to maintain the information or to meet regulatory requirements, resolve disputes, maintain security, prevent fraud and abuse, enforce our rights, or fulfill any other requests from you (for example, to opt-out of further messages or for a copy of your data). Otherwise, if you request that we close your account, we will delete your account and all the information we have that is associated with your account, except for aggregated statistics based on de-identified information and inferences we make from the same.
We have no control of information you have shared with others through PICA after you close your account or asked to delete information or attempted to delete your account yourself. Your information and content you have shared may continue to be displayed in the services of others (for example, search engine results) until they refresh their cache.
Security and Protection
We implement security safeguards designed to protect your data. These include using encryption for your data while it is being transmitted between your device or browser and our servers and while it is at rest. Data provided to us through PICA is also stored in an ISO 27017-certified infrastructure management system, meaning it has been audited and found in compliance with the requirements of the management system standards ISO 27017, an internationally recognized code of practice for information security controls for cloud services.
Processing of Data
We will only collect and process personal data about you where we have lawful bases. Lawful bases include consent (where you have given consent), contract, and other legitimate interests. Such legitimate interests include protection to you, us, other clients, and third parties; to comply with applicable law; to enable and administer our business; to manage corporate transactions; to generally understand and improve our internal processes and user relationships; and to enable us to connect with you to exchange information, provided that the foregoing adequately protects your rights and freedoms.
Where we rely on your consent to process personal data, you may withdraw or decline your consent and where we rely on legitimate interests, you may object. If you have any questions about the lawful bases upon which we collect and use your personal data, please contact us at email@example.com.
Third Party Information Collection
Please keep in mind that PICA may contain links to other websites or apps. You are responsible for reviewing the privacy statements and policies of those other websites you choose to link to or from PICA, so that you can understand how those websites collect, use, and store your information. We are not responsible for the privacy statements, policies, or content of other websites or apps, including websites you link to or from PICA. Websites containing co-branding (referencing our name and a third party’s name) contain content delivered by the third party and not us.
If you choose to link PICA with other websites, applications, and services or profiles you have with third party applications, you will provide the personal data stored on those applications to PIC. For example, you may start a new PICA Membership account by linking your Azure AD account to PICA, providing personal information you have opted to share through AAD to PIC. You may revoke the link with such accounts and third-party applications by modifying your settings with those applications.
Users from Outside the United States