Thank you for trusting ASP Cares Houston Pharmacy. Your privacy is important to us, and we are committed to protecting and respecting it.

Last Updated: March 17, 2025

At ASP Cares Houston, we are committed to protecting the privacy and security of our customers’ personal information, including Protected Health Information (PHI) as defined by the Health Insurance Portability and Accountability Act (HIPAA). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you interact with us through our website www.aspcareshouston.com, in person at our pharmacy located at 3009 Fannin St, Houston, TX 77004, or via email at fannin@aspcareshouston.com. By using our services, you agree to the terms of this Privacy Policy.

1. Information We Collect

We collect the following types of information to provide pharmacy services and comply with legal obligations:

Protected Health Information (PHI): This includes medical and prescription information (e.g., medication history, health conditions), insurance details, and billing information provided when filling prescriptions or accessing our services.

Personal Information: This includes your name, address, phone number, email address, date of birth, and payment information (e.g., credit card details) collected during transactions or communications.

Website Usage Data: When you visit aspcareshouston.com, we may collect non-personal information such as your IP address, browser type, device information, and browsing activity through cookies and similar technologies (see Section 5 for details).

2. How We Use Your Information

We use your information for the following purposes:

Pharmacy Services: To fill prescriptions, process insurance claims, provide medication counseling, and deliver healthcare services.

Billing and Payments: To process payments for prescriptions and services, including coordination with insurance providers.

Communication: To contact you regarding prescription refills, appointment reminders, or updates about our services (e.g., via phone, email, or text, with your consent where required).

Legal Compliance: To comply with federal and state laws, including HIPAA, the Texas Medical Privacy Act, and other applicable regulations.

Website Improvement: To analyze website usage and improve user experience (e.g., through aggregated, anonymized data).

3. How We Share Your Information

We prioritize the confidentiality of your information and limit sharing to the following circumstances:

Healthcare Providers: We may share your PHI with doctors, hospitals, or other healthcare providers involved in your care (e.g., to coordinate treatment or verify prescriptions), as permitted by HIPAA.

Insurance Companies: We share necessary information with your insurance provider to process claims and payments.

Business Associates: We may share information with trusted third-party vendors (e.g., billing services, IT providers) who assist in our operations, but only under strict Business Associate Agreements (BAAs) that ensure HIPAA compliance.

Legal Requirements: We may disclose information if required by law, such as in response to a court order, subpoena, or public health mandate.

No Sharing for Marketing: We do not share, sell, or disclose your personal information, including PHI, to third parties for marketing purposes under any circumstances.

No mobile information will be shared with third parties/affiliates for marketing/promotional purposes. All the above categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties

4. Your Rights Regarding Your Information

Under HIPAA and applicable state laws, you have the following rights regarding your PHI:

Access: You may request access to your PHI to review or obtain a copy.

Amendment: You may request corrections to your PHI if you believe it is inaccurate.

Accounting of Disclosures: You may request a list of disclosures we’ve made of your PHI (excluding certain disclosures, e.g., for treatment or payment).

Restriction: You may request restrictions on how we use or disclose your PHI, though we are not always required to agree.

Confidential Communications: You may request alternative communication methods (e.g., a different phone number).

Deletion (Limited): While HIPAA does not provide a general right to deletion, you may request removal of certain data under state laws like the CCPA (if applicable).

To exercise these rights, contact us at fannin@aspcareshouston.com. We will respond within the timeframes required by law.

5. Cookies and Website Tracking

Our website uses cookies and similar technologies to enhance user experience and analyze site performance:

Cookies: We use cookies to remember your preferences, track site usage, and improve functionality. These may include session cookies (temporary) and persistent cookies (stored longer).

Analytics: We may use tools like Google Analytics to collect anonymized data about site visits (e.g., pages viewed, time spent).

Opt-Out: You can disable cookies in your browser settings, but this may affect website functionality. We do not use cookies to collect PHI or share data with third parties for marketing.

6. Data Security

We implement robust security measures to protect your information:

HIPAA Compliance: We use physical, technical, and administrative safeguards to secure PHI, including encryption, secure servers, and access controls.

Website Security: Our website uses SSL (Secure Sockets Layer) encryption to protect data transmitted online (look for “https://” in the URL).

Limitations: While we take reasonable steps to protect your information, no system is 100% secure. We cannot guarantee absolute security against unauthorized access or breaches.

7. Third-Party Links

Our website may contain links to third-party sites (e.g., insurance providers, payment processors). We are not responsible for their privacy practices. We encourage you to review their privacy policies before providing information.

8. Children’s Privacy

Our services are not directed to individuals under 18. We do not knowingly collect personal information from children. If you believe we have collected such information, please contact us to have it removed.

9. Compliance with Additional Laws

In addition to HIPAA, we comply with:

Texas Medical Privacy Act: Strengthens HIPAA protections for Texas residents.

California Consumer Privacy Act (CCPA): If you’re a California resident, you have rights to access, delete, and opt out of the sale of your personal information (note: we do not sell your data).

General Data Protection Regulation (GDPR): For EU residents, we provide equivalent protections, including the right to erasure and data portability.

10. Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements. The “Last Updated” date at the top will indicate the latest revision. Significant changes will be communicated via email or a notice on our website.

11. Contact Us

If you have questions about this Privacy Policy, your rights, or how we handle your information, please contact us:

Email: fannin@aspcareshouston.com

Phone: 832-500-3565

Address: ASP Cares Houston, 3009 Fannin St, Houston, TX 77024