Privacy Policy For

Cake IntakeTM, A SRS WEB SOLUTIONS INC COMPANY.
PLEASE READ THESE POLICIES CAREFULLY BEFORE USING THIS SITE OR APPLICATIONS

Scope of This Policy:

Cake Intake(™) SRS Web Solutions Inc COMPANY.

This privacy policy (“Policy”) explains how personal information is collected, used and disclosed by Cake Soft, A SRS Websolutions Inc Company (developers of “Cake IntakeTM”, “we” or “us” or “our”) with respect to your use of our Web site located at https://cakeintake.com and https://mysecurehealthform.com (the “Site”), www.srswebsolutions.com (the ”Site”) and services provided by Cake IntakeTM applications (the “Products and Services”).

Consent to Use of Personal Information:

By using our services or registering for an account with us, you are accepting the terms of this Privacy Policy and our Terms of Use Agreement and consenting to our collection, use, disclosure, retention, and protection of your personal information as described in this Policy, subject to our HIPAA Policy see cakeintake.com.

Information We Collect:

We may collect various types of information about you including personal, demographic and aggregate data. When you register with our Products and Services, you will be asked to provide certain “personal information” such as your name, email address, clinic or organization name, and telephone number. We also allow you to provide additional information through an optional message text box. We may also collect information about your usage of our products and services, which includes but not limited to traffic statistics, date and time of visits, IP address, browser type, page visits etc.

Uses of Your Personal Information:

Cake Soft, LLC ensures that your information remains private and confidential. In general, we use personal information that we collect to process your requests or transactions, to facilitate your use and our administration and operation of the Site and the Products and Services, to provide you with information or services you request, to inform you about other information, events, promotions, products or services we think will be of interest to you, to learn more about and improve the Site and the Products and Services and for the to:

  1. 2. 3.
  2. 5.
  3. 7.

purpose for which information was provided. For example, we may use the information we collect

To authenticate and provide you access to our Products and Services;

Send you a welcoming, account related or customer service email;

To notify you of change of services, maintenance notifications, information and promotional materials, and newsletters or other forms of communications from us;

Respond to your emails, submissions, comments, requests or complaints;

To enable you to share content with users you designate, & to investigate and prevent fraudulent or unauthorized access or transactions regarding use of the Site and the Products and Services; Request feedback and to enable us to develop, customize and improve the Site, Products and Services and new offerings; and

Process payments.

We reserve the right to use the name and/or logo of the company you work for in publicity material, advertising or marketing collateral, unless you specifically tell us otherwise. Your name, email address and all other personal information (Protected Health Information (PHI)) will remain confidential at all times in accordance with regulations set forth by Health Insurance Portability and Accountability Act of 1996 and/or its relevant regulations (“HIPAA”) and the Health Information Technology for Economic and Clinical Health Act of 2009 (HITECH).

Sharing of Personal Information:

Cake Soft, LLC does not sell or rent personal information to third-parties or share personal information with third-parties except as described in this Policy and our HIPAA Policy, as it may be revised from time to time. We may share personal information with third-parties when you request us to do so or otherwise give your consent. We may also share personal information with consultants, vendors and service providers (“Business Associates”) who may perform support or development functions on our behalf, and who are under a Business Associate Agreement with Cake Soft, LLC and therefore have agreed to abide by the same HIPAA/HITECH safeguards of PHI. In addition, we may share your information with third-parties if we have a good faith belief that the disclosure is necessary or appropriate to comply with federal or state laws or legal process; to protect and defend the rights and property or personal safety of Cake Soft, LLC. employees, our customers or the public; to prevent and protect Cake Soft, LLC. and our users from fraudulent, abusive, unlawful or unauthorized use of the Site; or to otherwise enforce our rights and agreements. Your personal information also may be disclosed or transferred as part of, or during negotiations of, any merger, sale of company assets, financing or acquisition or in any other situation where personal information may be transferred as one of the business assets of Cake Soft, LLC This Site, information and Products and Services are not intended to create any doctor-patient relationship, or doctor- patient relationship between you and another person and Cake IntakeTM.

Public Forums, Social Media Sites, Blogs:

Cake Soft, LLC. may create and host a public discussion forum or blogs for customers of its Products and Services and the general public. Any information you disclosed in these areas is deemed public information and each user is responsible for and should exercise caution when disclosing personal information on these forums/blogs. Cake Soft, LLC. is not responsible for any such information disclosed or any action taken as a result of the disclosed information.

Tracking Technologies We May Use:

We may use one or more of the following technologies to collect personal information and other information: cookies, flash cookies, general log information, and referral information from third-party websites. We may also use tracking technologies to collect information about your visits over time and across third-party websites or other online services. The Site and some Services and advertisements on our Site, may contain “cookies.” A cookie is a piece of data that is stored on your hard drive and records your preferences and other data about your visit to the Site. If we combine cookies with or link them to any personally identifiable information, we will treat this information as personal information; otherwise it is treated as and used in the aggregate. Clear gifs (also known as web bugs or web beacons) may also be used on the Site or in emails relating to the Site. Clear gifs are small, invisible graphic images that allow the collection of certain information and monitor user activity on the Site. We might use cookies, clear gifs, frames, server log analysis and other technology to customize your experience with our Site and the Service. Most internet browsers will allow you to erase cookies from your hard drive, block acceptance of cookies, or receive a warning before a cookie is stored. If you block cookies, some portions of the Site and the Products and Services may not function properly.

Protecting Personal Information:

Cake Soft, LLC strives to protect personal information while it is under our control and all PHI is subject to our HIPAA Policy which is incorporated herein by reference. We have put in place physical, electronic, and managerial procedures designed to help prevent unauthorized access, to maintain data security, and to correctly use the information we collect online. These safeguards vary based on the sensitivity of the information that we collect and store. Although we take appropriate measures to safeguard against unauthorized disclosures of Information, we cannot assure you that your personally information will never be disclosed, altered or destroyed, in a manner that is inconsistent with this Policy. Your account information is accessible online only through the use of a password. To help protect the confidentiality of your personal information, you must keep your password confidential and not disclose it to any other person. You are responsible for all uses of the Site by any person using your password. Please advise us immediately if you believe your password has been compromised or misused.

Accessing and Correcting Your Information:

You can help ensure that your contact information and preferences are accurate, complete, and up-to-date by logging into your account at the Site. Please contact us if you are concerned about the accuracy of any personally information or if you wish to review, access, amend, or correct any of it, or would like any of it removed from our records or otherwise deactivated.

Opting Out:

If you do not wish to receive promotional email from Cake Soft, LLC about our Products and Services, you may opt out at the time of registration or by logging into your account settings online, , and updating your contact preferences. Please note, even if you opt out of receiving promotional email from us, you may still receive transactional and relationship emails, including messages relating to transactions or services – including the trial version of the program – you have specifically requested, responding to any email from you to us, notifying you of updates or changes to our policies and procedures, or which otherwise provide you with information we believe is important to users. Our systems require time to update, so your opt-out requests may not update immediately.

Special Notice Regarding Children

The Site and the Products and Services are not designed for nor do we knowingly collect personal information from children under the age of 18.

Links to Other Web Sites:

Any links from the Site to third-party Web sites are provided for your convenience. Personal information you provide on the linked pages is provided directly to that third-party and is not subject to this Policy. Please review the respective third-party’s privacy policy to better understand their privacy practices.

Changes to This Policy:

Although most changes are likely to be minor, we may revise and update this Policy at any time. We will provide notice that changes have been made by posting the revised Policy and updating the revision date at the end of the Policy. We encourage you to review the Policy whenever you visit the Site to make sure that you understand how your personal information is treated.

If you have any questions or concerns regarding this notice, please contact:

SRS Web Solutions Inc (CAKE SOFT , Attn: Security Officer, 8710 central ave NE, Blaine, MN 55434; or email at sales@srswebsolutions.com

HIPAA Policy

At CAKE SOFT, LLC, including our product namely, Cake Intake, we are committed to maintaining the confidentiality of information entrusted to us by our clients, Business Associates / Subcontractor, especially individually identifiable personal and health information such as names, addresses, and Protected Health Information (PHI).

Cake IntakeTM enables our customers to provide Fully Managed, Turnkey Solution For Online Patient Intake Information while complying with HIPAA.

CAKE SOFT, LLC (“CAKE SOFT”) protects the confidentiality of information it receives by adhering to the requirements of the HIPAA Privacy Rule and the HIPAA Security Rule. The Privacy Rule governs the acquisition, storage, transfer and retention of Protected Health Information, in both electronic and paper formats. The Security Rule covers all information acquired, maintained or transferred electronically.

We comply with all business associate obligations under HIPAA/HITECH, enabling us to provide the highest level of service to our health care provider customers.

CAKE SOFT follows the policies and practices it has documented in its HIPAA Privacy Manual and in its HIPAA Security Compliance Plan. These documents cover areas such as:

  • Physical security of electronic equipment used to acquire and store PHI
  • Technical safeguards to prevent unauthorized access to PHI
  • Training and awareness for staff members who have access to PHI

We respect the privacy of personal health information and take securing all PHI data seriously. CAKE SOFT’s services are HIPAA ready and enable practices using the system to comply with its obligations as a Covered Entity.

CAKE SOFT’s Cake IntakeTM product is HIPAA-ready services that include:

  • Increase new patient conversion rates with a pleasurable intake experience.
  • In-office forms can be completed on tablets instead of clipboards.
  • A 70-80% increase in pre-appointment intake completion.
  • Tighten up your schedule and creates time to see more patients.
  • Eliminate labor costs associated with processing & handling paper intake forms and increase office efficiency.
  • Use and Disclosures of Health Information: CAKE SOFT assure the appropriate use and disclosure of PHI is done in the normal course of business and appropriate based on the contracts with clients. CAKE SOFT will assure appropriate and adequate safeguards are established to protect customers’ patient information from unauthorized use and disclosures; where use is defined as the sharing, employment, application, utilization, examination, or analysis of information within an entity that maintains such information; and where disclosure

is defined as release, transfer, provision of, access to, or divulging in any other manner of information outside the entity holding the information.

Breach Notification: Breach notification will be carried out in compliance with the American Recovery and Reinvestment Act (ARRA)/Health Information Technology Economic and Clinical Health Act (HITECH), Modifications to the HIPAA Privacy, Security Enforcement and Breach Notification Rules under the HITCH Act (Omnibus Rule).

HIPAA Privacy Practices Policy & Procedures: CAKE SOFT acknowledges the need for practices with accounting of disclosure, electronic access to PHI, fundraising and PHI, sale of PHI, research and PHI, and marketing and PHI. Through the normal course of business, CAKE SOFT does not take part of any activities that would fall under the classifications of: Fundraising Activities; Sale of PHI; Marketing and Research and PHI.

Risk Analysis and Management: CAKE SOFT is focused on protecting the confidentiality, integrity, and accessibility of the PHI. CAKE SOFT will regularly and timely reviews of threats and vulnerabilities to their organization and systems focused on protecting the confidentiality, integrity, and accessibility of PHI. CAKE SOFT will take the proper steps to mitigate and reduce the risks to the organization and the PHI maintained.

Workforce & Information System Security: CAKE SOFT is committed to proper protection of all uses and disclosures of PHI that it stores and maintains on behalf of a covered entity, and accordingly it is committed to hold all workforce members responsible for the proper protection of privacy and security requirements. CAKE SOFT will assure that the workforce members logging into the electronic systems that contain PHI are only looking at information needed to complete the daily operational work. CAKE SOFT doesn’t have access to the information of each of the individual organizations that are in the system software. CAKE SOFT is focused on protection of the physical components of the business that store and maintain PHI for the organization. CAKE SOFT assures that limitations are put on the ability to provide physical limitations to any PHI. CAKE SOFT only allow the appropriate access to systems based on business need and client responsibility.

Security Incident & Contingency Plan: To protect all electronic media used for patient care, CAKE SOFT Software will properly report and respond to all potential security incidents that occur within the organization. The contingency plan for CAKE SOFT system will focus on data backup, disaster recovery, emergency mode operation plan, testing and revision, and application and data criticality analysis. CAKE SOFT will assure adequate controls are in place through regular review and evaluation to protect the confidentiality, integrity, and availability of electronic PHI.

Business Associate: CAKE SOFT will enter maintain a process to assure the information shared and used by subcontractors is properly protected and safeguarded as required in the HIPAA regulation. CAKE SOFT will enter into a written business associate agreement with all subcontractors that create, receive, maintain, or transmit PHI to support the business operations of CAKE SOFT. Business Associates/Subcontractors will be obligated to effectively maintain the privacy and security of PHI (PHI) as required by HIPAA and CAKE SOFT.

Security Rule: CAKE SOFT is required by the HIPAA Security Rule to assure that the integrity to the data that it stores and maintains has not been altered or destroyed in an authorized manner. CAKE SOFT will protect all ePHI that it stores, maintains, and transmits from improper alternation and destruction by implementing a combination of policy and technical solutions, in the maintenance, retention, and eventual destruction/disposal of PHI.

HIPAA Security Officer: CAKE SOFT will assure that an individual’s is appointed to be the organization’s HIPAA Security officer. The security officer is responsible for the oversight and management of the organization’s compliance with the HIPAA regulations. The security officer is the individual who is responsible for assuring the development, awareness, and enforcement of all the HIPAA policy and procedures established meet requirements

Timely Updates: CAKE SOFT will assure timely and appropriate policies and procedures in order to comply with the HIPAA Privacy and Security Regulations; accordingly, documentation will be updated, maintained, stored in accordance with the regulations.

If you have any questions or concerns regarding this notice please contact:

SRS Web Solutions Inc (CAKE SOFT ) Attn: Security Officer, 8710 central ave NE, Blaine, MN 55434; or email at sales@srswebsolutions.com

Last updated: Feb 23rd , 2017