This written agreement with the Pennsylvania Department of Health supersedes any online policies for the HALT system
Welcome! Provention Health Foundation’s goal is to offer you a great experience with the HALT online Diabetes Prevention Program. We accomplish that goal by providing a multitude of web-based services geared to deliver personalized instruction.
You may use the Web site, services, content, technologies and applications of www.HALTDPP.com, and any subdomains or related domains, (collectively, the " Website") only on the condition that you abide by the following terms:
BY USING THE WEBSITE, ENGAGING OUR SERVICES, SENDING US SUBMISSIONS, AND/OR REGISTERING TO OPEN AN ACCOUNT WITH US, YOU ARE ACKNOWLEDGING AND AGREEING TO EACH AND EVERY ONE OF THE TERMS AND CONDITIONS IN THIS AGREEMENT (THE "SITE TERMS")
The Website is a service made available by Provention Health Foundation Inc ("Provention Health Foundation") and its affiliates ("Provention Health Foundation" "HALT DPP" "we" or "us"). The Site Terms govern your use of the Website, and have the same force and effect as does a written agreement with original signatures from all parties. If you do not agree to these Site Terms, do not use the Website. We may modify the Site Terms at any time. If you do not agree to the changes, you may discontinue using Provention Health Foundation before the changes take effect. Your continued use of Provention Health Foundation after any such changes take effect constitutes your acceptance to such changes. Each time you visit or log into the Website, you reaffirm your acceptance of the most current version of the Site Terms. You are responsible for regularly reviewing the Site Terms, by clicking on the link at https://haltdpp.org/dpp/privacy_policy/.
The Site Terms may be supplemented by additional terms and conditions applicable to privacy, specific areas of this Website, or to particular content or transactions posted in particular areas of the site. The additional terms, together with these Site Terms, govern your use of those areas, content, or transactions.
The Website gives users the ability to receive program curriculum and dietary information from a Trained Lifestyle Coach through our Website (collectively, the "Submissions"), subject to these Site Terms. You agree that all such transactions will be governed by Provention Health Foundation’s Terms of Sale Agreement located at https://haltdpp.org/dpp/privacy_policy/.We may, in our sole discretion, change or discontinue any or all aspects of the Website at any time, without notice, and without liability to its users.
Registration is not required to visit the Website. However, if you desire to complete a transaction with us or engage our Services, you must create an account. If you register to open an account, you agree to provide accurate, complete registration information. You must be legally capable to enter into contracts. It is your responsibility to make any updates to that information. Each registration is for a single person only, unless specifically designated otherwise on the registration page. We do not permit any other person using the registered sections under your name. You are responsible for preventing such unauthorized use. If you believe there has been unauthorized use, you should notify Provention Health Foundation Inc immediately by emailing support@HALTDPP.com.
The Website contains information, content, advertisements, text, photographs, designs, graphics, images, sound, and video recordings, animation and other materials and effects (collectively, the "Content") that are protected by copyrights, trademarks, service marks, trade dress, patents or other intellectual or proprietary rights owned by Provention Health Foundation Inc. or other third parties. All trademarks and copyrighted information contained on the Website are the property of their respective owners. Further, Provention Health Foundation Inc. retains all rights (including intellectual property rights), title, and interest in the Website, technology, and all underlying technology and data including any enhancements, software, applications, and improvements related to the Website (the "Technology") (the terms Content and Technology will be collectively referred to as the "Materials"). You may not remove any copyright, trademark, or other proprietary notice from any electronic or printed copy.
This Agreement is effective unless and until terminated by either you or Provention Health Foundation Inc. You may terminate this Agreement at any time. Provention Health Foundation Inc. may terminate this Agreement at any time without notice and deny you access to the Website, if, in its sole discretion, you fail to comply with any term or provision of this agreement. A termination or actions taken by Provention Health Foundation Inc. under the previous sentence shall not limit Provention Health Foundation ’s other legal rights and remedies available under law or equity. Upon any termination of this agreement by either you or Provention Health Foundation Inc., you must promptly destroy all materials downloaded or otherwise obtained from this Website, as well as all copies of such materials, whether made under this agreement or otherwise.
Provention Health Foundation Inc provides the Website, curriculum and the Materials for your individual, non-commercial use, solely for the purpose of carrying out individual transactions through the Website. Any other use of the Website or the Materials is strictly prohibited. You may not, either directly or indirectly:
A. Modify, republish, redistribute, delete, resell, sublicense, publicly perform, or cache by proxy the Website or Materials without the express written permission of Provention Health Foundation Inc. or the applicable rights holder;
B. Use the Materials for telemarketing or direct marketing by commercial mass e-mail, agents, representatives, or e-mail spammers;
C. Reverse engineer, decompile, disassemble, merge, copy, use, disclose, rent, lease, loan, sell, sublicense or transfer the underlying source code or structure or sequence of the Technology or delete or alter author attributes or copyright notices;
D. Use any network monitoring or discovery software to determine the site architecture, or extract information about usage or users;
E. Reformat or frame any portion of the Website or Materials;
F. Use any device, software or routine that interferes with the proper working of the Website, or otherwise attempt to interfere with the proper working of the Website;
G. Allow others to use the Website under or through your account login ID/email and password;
H. Take any action that imposes, or may impose in our sole discretion an unreasonable or disproportionately large load on our infrastructure;
I. Violate the Site Terms, applicable law or the rights of others; or Disrupt or interfere with the security of, or otherwise cause harm to, the Website;
J. Use the Site to engage in libel, defamation, unlawful harassment, misappropriation of trade secrets, intentional misrepresentation or fraud, or wrongful publication of private information.
Any permitted use of the Website does not extend to using the Website or Materials for any illegal purpose, or to transmit to or through the Website or to or through any service any illegal, harmful, threatening, defamatory, obscene, hateful, pornographic or other objectionable material of any kind, or to interfere with, abuse or otherwise violate the legal rights of any third party using the Website or Materials. Whether or not a user Submission violates this provision is within Provention Health Foundation ’s sole discretion requiring no explanation on its behalf.
Without limiting other remedies, we may limit, suspend, or terminate our service and user accounts, prohibit access to our website, remove hosted content, and take technical and legal steps to keep users off the Sites if we think that they are creating problems, possible legal liabilities, or acting inconsistently with the letter or spirit of our policies. We also reserve the right to cancel unconfirmed accounts.
By using the Website, uploading content, or submitting any materials to the Website, you grant (or warrant that the owner of such rights has expressly granted) Provention Health Foundation Inc a perpetual, royalty-free, irrevocable, non-exclusive right and license to use, reproduce, modify, adapt, publish, translate, create derivative works from, and distribute such materials and/or information generated through use of the Website or incorporate such materials and/or information generated through use of the Website into any form, medium, or technology now known or later developed throughout the universe. We need these rights to host and display your content. All comments, feedback, suggestions, ideas, and other submissions disclosed, submitted, or offered to Provention Health Foundation Inc. on or by this Website or otherwise disclosed, submitted, or offered in connection with your use of this Website or otherwise (collectively, "Comments") shall be and remain Provention Health Foundation Inc property. Provention Health Foundation Inc. is and shall be under no obligation (1) to maintain any Comments in confidence; (2) to pay to user any compensation for any Comments; or (3) to respond to any Comments.
The Website may use robot exclusion methods, which include robots.txt files and HTML meta tags, that expressly allow and/or exclude specified automated programs from accessing certain portions of the Website. Much of the information on the Website is updated on a real time basis and is proprietary or is licensed to Provention Health Foundation Inc by our users or third parties. You agree that you will not use any robot, spider, scraper or other automated means to access the Website for any purpose, including but not limited to performing "offline" searches and mirroring, without our express written permission as indicated in the then-current robots.txt file or HTML meta tags on the Website. Additionally, you agree that you will not bypass our robot exclusion methods or other measures we may use to prevent or restrict access to the Website.
You may provide links only to the homepage of this Website, provided (a) you do not remove or obscure, by framing or otherwise, any portion of the homepage, (b) you give Provention Health Foundation Inc notice of such link by sending an e-mail to Support@HALTDPP.com and (c) you discontinue providing links to this Website if requested by Provention Health Foundation Inc. If you wish to provide links to a section within the Website, you should forward your request to Provention Health Foundation Inc. at Support@HALTDPP.com and Provention Health Foundation Inc will notify you if, within its sole and unfettered discretion, permission is granted, and, if so, the terms and conditions of the permission in a separate agreement.
You represent and warrant to us that (a) you are legally capable of entering into contracts, (b) you are providing us at all times with true, accurate and up to date information about yourself, (c) you will comply at all times with the Site Terms and applicable law, and (d) your use of the Website and any transactions that you make with us will not violate the rights of any third party.
Provention Health Foundation Inc. makes every effort to ensure the information presented in, on or through its Website is accurate. However, because Provention Health Foundation Inc. communicates information provided and created by advertisers, software developers, publishers, marketing agents, resellers and other third parties, Provention Health Foundation Inc has no control over the accuracy of such information, makes no guarantee as to such information, and is not responsible for the information as to its accuracy, currency, content, quality, copyright compliance or legality, or any resulting loss or damage.
Provention Health Foundation Inc. makes no representations regarding the availability and performance of its Website. You hereby acknowledge that any use of the Website and reliance upon any Materials shall be at your sole risk and that Provention Health Foundation Inc. shall not be liable for any loss of data, lost profits or any other damages or losses resulting from such use.
THE WEBSITE AND MATERIALS ARE PROVIDED BY PROVENTION HEALTH FOUNDATION, INC ON AN "AS IS" BASIS AND IS AVAILABLE WITHOUT ANY WARRANTY OR REPRESENTATION OF ANY KIND, WHETHER EXPRESS, IMPLIED, STATUTORY, OR OTHERWISE. PROVENTION HEALTH FOUNDATION, INC EXPRESSLY DISCLAIMS ANY AND ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING, WITHOUT LIMITATION, WARRANTIES OF MERCHANTABILITY, ACCURACY, FITNESS FOR A PARTICULAR PURPOSE, NON-INFRINGEMENT, AND THE IMPLIED CONDITIONS OF SATISFACTORY QUALITY AND ACCEPTANCE, AS WELL AS ANY LOCAL JURISDICTIONAL ANALOGUES TO THE ABOVE AND OTHER IMPLIED OR STATUTORY WARRANTIES. WE MAKE NO REPRESENTATIONS THAT THE WEBSITE OR MATERIALS WILL MEET YOUR REQUIREMENTS, OR THE RESULTS THAT YOU MAY WISH TO GAIN FROM YOUR USE OF THE WEBSITE.
IN NO EVENT SHALL PROVENTION HEALTH FOUNDATION INC, ITS DIRECTORS, OFFICERS, EMPLOYEES, AFFILIATES, AGENTS, OR CONTRACTORS BE LIABLE FOR ANY COMPENSATORY, DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, OR LOSS OF DATA, INCOME OR PROFIT, LOSS OF OR DAMAGE TO PROPERTY, OR ANY CLAIMS OF YOU OR OTHER THIRD PARTIES WHATSOEVER WITH RESPECT TO THE WEBSITE OR THE MATERIALS REGARDLESS OF THE LEGAL THEORY ON WHICH THE CLAIM IS BASED, INCLUDING, WITHOUT LIMITATION, ANY DAMAGES THAT RESULT FROM ANY MISTAKE, OMISSION, VIRUS, DELAY, OR INTERRUPTION IN OPERATION OR SERVICE OR FAILURE OF PERFORMANCE, WHETHER OR NOT RESULTING FROM AN ACT OF GOD, COMMUNICATIONS FAILURE, THEFT, OR OTHERWISE. PROVENTION HEALTH FOUNDATION , INC SHALL NOT BE LIABLE FOR ANY LOSSES OR DAMAGES WHATSOEVER RESULTING FROM ANY FAILURE OF THE INTERNET.
Some states do not allow the exclusion or limitation of liability of consequential or incidental damages, so the above exclusions may not apply to all users; in such states, liability is limited to the fullest extent permitted by law.
EXCEPT FOR REPRESENTATIONS SET FORTH IN SECTION 15 OF THE TERMS OF SERVICE (VIRUS MALICIOUS MISCHIEVOUS OR DESTRUCTIVE PROGRAMMING), PROVENTION HEALTH FOUNDATION, INC DOES NOT GUARANTEE THAT ANY CONTENT, INFORMATION, SOFTWARE, OR OTHER MATERIAL ACCESSIBLE THROUGH THE WEBSITE WILL BE FREE OF VIRUSES, "WORMS," "TROJAN HORSES," OR THEIR HARMFUL COMPONENTS.
We view protection of users’ privacy as a very important community principle. When you open an account and use the Website, we collect information about you. You agree that we may collect and use your information in accordance with the Provention Health Foundation Inc Privacy Policy, which you can review by visiting the link at https://haltdpp.org/dpp/privacy_policy/. If you object to your information being transferred or used in this way, do not use our services.
You agree to transact business with us electronically. You authorize us to send you important notices by electronic means, including notices about the Website and any transactions. Such electronic means can include sending messages to the email address you provide, or posting a notice on the Website. It is your duty to keep your email address up to date, to maintain a valid email address, and to ensure that emails we send you are not filtered or stopped by spam filters or other types of email-blocking functionalities. If you no longer desire to transact electronically with us, you may no longer use the Website.
You are responsible for obtaining, at your own expense, all equipment and services needed to access and use the Website, including all devices, Internet browsers and Internet access. If you access the Website or a Website application through a mobile or wireless device, you are responsible for all fees that your carrier may charge you for data, text messaging and other wireless access or communications services.
Our Technology, including any software or applications we provide to you, is a "commercial item," as that term is defined in 48 C.F.R. § 2.101, consisting of "commercial computer software" and "commercial computer software documentation," as such terms are used in 48 C.F.R. § 12.212. Consistent with 48 C.F.R. §§ 12.212 and 48 C.F.R. §§ 227.7202-1 through 227.7202-4.
Your use of the Website must comply with all applicable laws in the territory in which you access and use the Website, including without limitation, all import and export control laws and regulations of the United States and other countries. You must not transfer, by electronic transmission or otherwise, any content, data, or software subject to restrictions under such laws to a national destination, person, or entity or for an end-use prohibited under those laws without first obtaining and complying with government authorization. You must not upload any data or software to the Website that cannot be exported without prior written government authorization and notification, including, but not limited to, certain types of encryption software.
Provention Health Foundation Inc reserves the right to investigate complaints or reported violations of the Site Terms and to take any action Provention Health Foundation Inc deems appropriate including, but not limited to, reporting any suspected unlawful activity to law enforcement officials, regulators, or other third parties, and disclosing any information necessary or appropriate to such persons or entities relating to user profiles, e- mail addresses, usage history, posted materials, IP addresses, and traffic information. Provention Health Foundation Inc reserves the right to seek all remedies available at law and in equity for violations of these Site Terms, including, but not limited to, the right to block access from a particular Internet address to any Second Rotation website. These incorporate by reference any notices contained on the Website and constitutes the entire agreement with respect to access to and use of the Website. If any provision of the Agreement is unlawful, void or unenforceable, then that provision shall be deemed severable from the remaining provisions and shall not affect their validity and enforceability.
The obligations in, inter alia, Sections 5 through 8, 10 through 15, 17 and 18 shall survive termination of these Site Terms.
The agreements located at https://haltdpp.org/dpp/privacy_policy/. constitute one single, fully integrated agreement. All of the terms, conditions, obligations, definitions and provisions of those agreements are therefore applicable to the instant agreement. Moreover, Provention Health Foundation Inc by this reference, hereby incorporates herein the most current version of all agreements posted at https://haltdpp.org/dpp/privacy_policy/. The currently posted agreements include Provention Health Foundation Inc Website User Agreement, Electronic Communications Delivery Policy, Privacy Policy and Terms of Sale Agreement. However Provention Health Foundation Inc may, in its sole discretion, add, remove, amend, or otherwise change the agreements posted at https://haltdpp.org/dpp/privacy_policy/ .
The Pennsylvania Right-to-Know Law , Act of February 14, 2008, P.L. 6, No. 3, 65 P.S. §§ 67.101—3104 ("RTKL"), applies to this Agreement.
Provention Health Foundation Inc ("Provention Health Foundation ") gives users the ability to obtain dietary information from a Trained Lifestyle Coach ("RD") upon submission of the users’ dietary information to the Website (collectively, the "Submissions"). Upon use of the Website, you agree that all such transactions will be governed by Provention Health Foundation Inc’s Terms of Sale and other Agreements, as stated below. In addition, you must agree to abide by the following terms in order to use the Services, or be subject to termination of Services by Provention Health Foundation.
BY SETTING UP AN ACCOUNT, OR BY USING PROVENTION HEALTH FOUNDATION’S WEBSITE, YOU UNCONDITIONALLY INDICATE THAT YOU AGREE TO THE FOLLOWING TERMS AND CONDITIONS.
By electronically signing up in any form to Provention Health Foundation , you agree to adhere to Provention Health Foundation’s Terms of Service. You may need to set up an account in order to use some of the features of our Services. You may not use someone else's account without permission. When you are setting up your account, you must give us accurate and complete information. This means that you cannot set up an account using someone else's name or contact information, or a phony name, or phony contact information.
You have complete responsibility for your account and everything that happens on your account. This means you need to be careful with your password. If you find out that someone is using your account without your permission, you must let us know immediately. You may not transfer your account to someone else. We are not liable for any damages or losses caused by someone using your account without your permission. However, if we (or anyone else) suffer any damage due to the unauthorized use of your account, you may be liable.
The information provided by a Provention Health Foundation RD in response to your Submission is strictly for educational purposes only. The information is not intended to be a substitute or supplement to professional medical advice. Please consult a physician before using Provention Health Foundation ’s Services. You should always consult your healthcare provider to determine the appropriateness of the information for your own dietary needs or if you have any questions regarding a medical condition or treatment plan. This site is not designed to, and does not provide, medical advice, professional diagnosis, opinion, treatment, or services. Do not use Provention Health Foundation’s Services if you have any medical issue that is affected by your diet.
If Provention Health Foundation receives your Submission, we nevertheless reserve the right to, in our sole discretion, for any reason or for no reason: (a) decline to respond to your Submission, (b) respond to some of your Submissions but not others, or (c) decline to respond to any of your Submissions.
(a) Except as otherwise provided in this Agreement, the Licensor’s liability to the Commonwealth under this Agreement shall be limited to the total dollar amount of purchase orders issued for Licensed Products and services covered by this Agreement during the twelve (12)-month period prior to the event giving rise to the damage claim. For damages arising from (i)-(iii) below, Licensor’s liability shall be limited to $150,000 ("Liability Supercap"). No limitation of liability shally apply for damages arising from (v) below:
(i) for gross negligence and willful or unlawful misconduct;
(ii) resulting from a breach of the security of a system maintained or managed by the Licensor, including the costs for notification, mitigation and credit monitoring services required due to such breach, as more specifically set out in the Business Associate Agreement between the Parties, a copy of which is attached hereto and incorporated by reference.;
(iii) under Section 15 of this Terms of Service Agreement (Virus, Malicious, Mischievous or Destructive Programming)
(iv) under Section 6, Patent, Copyright, Trade Secret and Trademark Protection;
(b) The parties agree that Licensor shall not be liable for consequential, indirect, or incidental damages unless otherwise specified in the Agreement.
You hereby acknowledge and agree that:
A. You have provided us your accurate email address, physical address, and telephone number, and that it is your responsibility to provide us with current or updated contact information.
B. You are irrebuttably presumed to have received, and to have actual knowledge of (a) any electronic communication directed to you (such as notices posted on the Website), and (ii) any email message sent to an email address that you have provided to us.
C. You are irrebuttably presumed to have received, and to have actual knowledge of, any message left at a phone number you have provided to us. Such messages include, inter alia, voicemails, messages left with anyone answering that phone number, or otherwise.
You acknowledge and agree that this Agreement, and all the Agreements, are in electronic form and has the same force and effect as a written agreement with original signatures from all parties. In this Agreement, the term "you" or "your" means an individual or entity exercising rights under this Agreement, and the term "Provention Health Foundation," "we" or "us" means Provention Health Foundation and its affiliates and subsidiaries.
In order to complete the transaction with Provention Health Foundation, you must:
A. Create an account with us, which you do by submitting contact and payment information to us via the Website;
B. Provide true, up to date and accurate account information about yourself and any Item;
C. Comply with all terms and conditions of this Agreement;
D. Comply with all applicable laws and regulations;
E. Transact on behalf of yourself and not on behalf of others; and
F. Have the legal capacity to enter into agreements
Provention Health Foundation makes every effort to ensure the accuracy of all information you receive in relation to your Submissions. From time to time, however, there may be typographical errors, technical inaccuracies, pricing or other errors or omissions, incomplete, or outdated information. As such, Provention Health Foundation reserves the right, at any time, to correct any errors, inaccuracies or omissions and to change or update the Content at any time without prior notice. Provention Health Foundation does not, however, guarantee that any errors, inaccuracies, or omissions will be corrected.
We view protection of users’ privacy as a very important community principle. When you open an account and use the Website, we collect information about you. You agree that we may collect and use your information in accordance with the Provention Health Foundation ’s Privacy Policy, which you can review by going to on the link at https://haltdpp.org/dpp/privacy_policy/. If you object to your information being transferred or used in this way please do not use our services.
You agree to transact with us electronically. This means you agree to accept and terms and conditions and to conduct any transaction of your Submissions with us by electronic means. You authorize us to send you important notices by electronic means, including notices about the Website and any transactions. Such electronic means can include sending messages to the email address you provide, or posting a notice on the Website. It is your duty to keep your email address up to date and to maintain a valid email address and to ensure that emails we send you are not filtered or stopped by spam filters or other types of email blocking functionalities. If you no longer desire to transact electronically with us, you may no longer use the Website.
This Agreement constitutes the entire agreement of the parties with respect to the subject matter hereof. No waiver by Provention Health Foundation of any breach or default hereunder shall be deemed to be a waiver of any preceding or subsequent breach or default.
Provention Health Foundation reserves the right to modify this Agreement, or any related Agreements, at any time. If you do not agree to the changes, you must discontinue using the Provention Health Foundation Websites and/or the Services before the changes take effect. Your continued use of Provention Health Foundation after any such changes take effect constitutes your acceptance to such changes. Each time you deliver a Submission to Provention Health Foundation, you reaffirm your acceptance of this Agreement. You are responsible for regularly reviewing periodically this Agreement, located at https://haltdpp.org/dpp/privacy_policy/. The last date this Agreement was revised is set forth below. Terms and conditions modifying the Agreement are effective immediately upon posting.
The agreements located at https://haltdpp.org/dpp/privacy_policy/, constitute one single, fully integrated agreement. All of the terms, conditions, obligations, definitions and provisions of those agreements are therefore applicable to the instant agreement. Moreover, Provention Health Foundation , by this reference, hereby incorporates herein the most current version of all agreements posted at https://haltdpp.org/dpp/privacy_policy/. The currently posted agreements include Provention Health Foundation ’s Website User Agreement, Privacy Policy, and Terms of Service Agreement. However, Provention Health Foundation may, in its sole discretion, add, remove, amend, or otherwise change the agreements posted at https://haltdpp.org/dpp/privacy_policy/ .
(a) Compliance with Laws. The Licensor shall comply with all applicable data protection, data security, data privacy and data breach notification laws, including, but not limited to, the Breach of Personal Information Notification Act, Act of December 22, 2005, P.L. 474, No. 94, as amended, 73 P.S. §§ 2301—2329.
(b) Diligent Performance and Cooperation. The Licensor shall diligently perform all of the duties required in this Section in cooperation with the Commonwealth.
(c) The requirements of this section are in addition to and not in lieu of other requirements of this Agreement and its Attachments and Exhibits having to do with data privacy and security, including but not limited to the requirement that the Licensor comply with Attachment 1, Requirements for Non-Commonwealth Hosting Applications/Services , and all applicable Commonwealth Information Technology Policies (ITPs), which can be found at: http://www.oa.pa.gov/Policies/Pages/itp.aspx .
A. The Licensor warrants that commercially reasonable measures are taken to ensure the Licensed Products as delivered by the Licensor do not contain any viruses, worms, Trojan Horses, or other malicious or destructive code to allow unauthorized intrusion upon, disabling of, or erasure of the Licensed Products (each a "Virus").
Please read the following to learn more about our privacy policy, the types of personal information we gather, and the measures we take to safeguard your privacy when you use the Website, applications, and services we provide (the "Services").
www.HALTDPP.com, and any subdomains or related domains, (collectively, the "Website") is provided by Provention Health Foundation, Inc and its affiliates ("Provention Health Foundation ," "we," or "us"). This policy covers how we protect personal information collected and used on or through the Services and other related websites where this policy is posted. The Website may contain links to other sites. Once you enter another website, be aware that Provention Health Foundation, Inc is not responsible for the privacy practices of other sites.
You agree that this Privacy Policy is part of our Terms of Use Agreement, Terms of Service Agreement, and any other agreements posted at https://haltdpp.org/dpp/privacy_policy/. (collectively, the "Agreement" or "Agreements"). By accessing or using the Website or our Services, you agree to be bound by all of our terms and conditions.
When you use the Services, you provide information to us. Provention Health Foundation collects two types of information: (1) information that you provide that lets us know who you are ("Personally Identifiable Information") and (2) information that does not by itself identify a specific individual ("Non-personally Identifiable Information").
You can browse the Services’ Websites without informing Provention Health Foundation who you are or revealing any personal information about yourself. However, when you transact with us or register to open an account with Provention Health Foundation , we ask for personal information such as your name, email address, and zip code, which we collect and use as disclosed below in this Privacy Policy. Once you submit information about yourself to the Website, you are no longer an anonymous, passive user of the Website. We may also collect additional information about you when you engage in certain activities facilitated by our Services, such as: (a) when you enter promotions or sweepstakes; (b) when you sign up for special offers; (c) when you visit the Services’ Web pages or the pages of certain Provention Health Foundation partners; (d) when you interact with offers and advertisements; (e) when you contact us for help or customer support; (f) when you access the Services with your account; (g) when you complete a survey; or (h) when you post content or provide us with feedback. Provention Health Foundation may also receive information about you from other sources and add it to your account information. Providing information is purely optional on your part; however, not all features and services (such as responding to your inquiries) would be available to you if you elect not to provide information. If you choose to provide us with personal information, you consent to the transfer and storage of that information.
We automatically receive and collect Non-personally Identifiable Information on our server logs from your browser, including your IP address, the Uniform Resource Locator ("URL") that you just came from, which URL you next go to, browser type, browser language, date and time of your query, Provention Health Foundation cookie information, and the pages you request. This information is compiled and analyzed on both a personal and an aggregated basis. We may use third-party analytics services to collect, monitor and analyze the information collected as described above.
We will use Personally Identifiable Information primarily for the following purposes: (a) to provide you with the Services; (b) to customize the advertising and content you see; (c) fulfill any transactions, including your requests for products and services; (d) improve our Services and offerings to you; (e) conduct research; (f) provide you with support, technical or otherwise; (g) provide you with updates and notices about the Services, our Privacy Policy, and terms and conditions; (h) provide you with promotional offers, our affiliates and from third parties that may be of interest to you; and (i) provide anonymous reporting for internal and external clients. In addition, Provention Health Foundation may use your email address to contact you under the following circumstances: to respond to your support questions, to notify you of material changes to our policies or website, to request your participation in user surveys, and to deliver products, services and marketing communications upon you request.
We will use Non-personally Identifiable Information to diagnose problems with our servers and software, to administer the Services, and to gather demographic information. Our third- party advertising networks and servers will also supply reports that will inform us how many ads were presented and clicked upon on www.HALTDPP.com in a manner that does not identify personally any individual.
Provention Health Foundation may set and access Provention Health Foundation cookies on your computer. Upon your first visit to the Website, a cookie is sent to your computer that uniquely identifies your browser. A "cookie" is a small file containing a string of characters that is sent to your computer and stored on your hard drive when you visit a website; many major Web services use them to provide useful features for their users. Each web site can send its own cookie to your browser. Most browsers are initially set up to accept cookies. You can reset your browser to refuse all cookies or to indicate when a cookie is being sent; however if you reject cookies, you will not be able to sign in to the Services or take full advantage of our Services. Provention Health Foundation uses cookies for the following general purposes: (a) to track your preferences, such as the address or local zip code you enter; (b) to access your information when you sign in so we can provide you with your personalized content; (c) to display the most appropriate advertisements, based on your interests and activity on our web site; and (d) and to help us analyze and estimate our traffic and use of features on the Services.
We may also use "pixel tags," which are small graphic files that allow us to monitor the use of the Services. A pixel tag can collect information such as the IP address of the computer that downloaded the page on which the tag appears; the URL of the page on which the pixel tag appears; the time (and length of time) the page containing the pixel tag was viewed; the type of browser that retrieved the pixel tag; and the identification number
of any cookie previously placed by that server on your computer. We may use pixel tags, either provided by us or by our third party advertisers and ad networks, to collect information about your visit, including the pages you view, the links you click and other actions taken in connection with our sites and Services and use them in combination with our cookies to provide offers and information of interest to you.
We also may allow certain analytic services and providers of applications used on the Services (e.g. sharing buttons) to collect Non-Personally Identifiable information by placing cookies on the Services that will track certain performance of our Services, such as, web traffic, click-throughs, etc., in order to assist us and our service providers in better understanding the interests of our users and to better serve those interests.
We may use other companies under separate agreements to supply advertisements when you visit and use our Services. These companies may collect and use Non-Personally Identifiable Information (e.g., click stream information, browser type, time and date, subject of advertisements clicked or scrolled over) during your access to our Services and other Web sites in order to provide advertisements about goods and services likely to be of greater interest to you. These companies typically use a cookie, a third party web beacon and/or pixel tags to collect this information. To learn more about this behavioral advertising practice in general and the options that you have, including your option or to opt out of this type of advertising, you can visit www.networkadvertising.org. These cookies, web beacons and pixel tags do not collect any personal information from your computer, such as your e-mail address. Other companies’ use of their cookies is subject to their own privacy policies, not this one. Advertisers or other companies do not have access to Provention Health Foundation ’s cookies.
In order to serve offers and advertisements that may be interest to our users, we may display targeted advertisements on the Services based on Personally Identifiable Information provided by our users, including zip code and profile. We do not provide this Personally Identifiable Information to our advertisers when you interact with such an advertisement. However, please note that the advertisers (including ad serving companies) may determine based on their own analysis that a user who interacts with an advertisement targeted by Provention Health Foundation may fit into a certain demographical category; for example, an advertiser may determine that men ages 25-34 are interacting with a certain advertisement on Provention Health Foundation from a particular geographic area. You acknowledge that any information collected by such advertisers or advertising networks – and any options that you have with the use of such information – would be handled in accordance with the disclosures provided above in the "Advertising" section.
Provention Health Foundation does not rent, sell, or share personal information about you with other people or nonaffiliated companies except to provide products or services you’ve requested, when we have your permission, or under the following circumstances:
We provide the information to trusted partners who work on behalf of or with Provention Health Foundation under confidentiality agreements. These trusted partners include companies with which Provention Health Foundation may operate co-branded websites or web-pages to expand their services using Provention Health Foundation ’s Services. These trusted partners may use your personal information to provide services to you on our behalf, evaluate the effectiveness of the services, and to help Provention Health Foundation communicate with you about offers from Provention Health Foundation and our marketing partners. However, these companies do not have any independent right to share this information. We respond to subpoenas, court orders, or legal process, or to establish or exercise our legal rights or defend against legal claims.
We believe it is necessary to share information in order to investigate, prevent, or take action regarding illegal activities, suspected fraud, situations involving potential threats to the physical safety of any person, violations of Provention Health Foundation ’s terms of use, or as otherwise required by law. We may transfer information about you if Provention Health Foundation is acquired by or merged with another company. In this event, Provention Health Foundation will post a notice on its website before information about you is transferred and becomes subject to a different privacy policy.
The sites displayed as search results or linked to by the Services are developed by people over whom Provention Health Foundation exercises no control. These other sites may place their own cookies on your computer, collect data or solicit personal information. Provention Health Foundation may present links in a format that enables us to understand whether they have been followed. We use this information to understand and improve the quality of Provention Health Foundation ’s search technology. For instance, this data helps us determine how often users are satisfied with the first result of a query and how often they proceed to later results.
Registered users can edit their Provention Health Foundation account information, including contact preferences, at any time from their "My Account" account management page which you can find at www.HALTDPP.com /account/login. We may, from time to time, send you e-mail regarding our products and services and third party products and services that may be of interest to you. You will have the opportunity to opt out of any further mailings at any time; provided, however, that we reserve the right to send you certain communications relating to the Services, such as (a) communications related to fulfilling a transaction, (b) service announcements, (c) notices regarding Provention Health Foundation ’s legal terms and this Privacy Policy; and (d) administrative messages, which are considered part of your Provention Health Foundation account. You will not have the opportunity to opt-out of receiving such notices.
You can delete your Provention Health Foundation registered account by requesting an account deletion via email to support@HALTDPP.com. You must provide us with the email address of the registered account. After we have confirmed your request via email, we will remove access to your personal information from our user database.
We limit access to personal information about you to our employees and agents who we believe reasonably need to come into contact with that information to provide products or services to you or in order to do their jobs. Your information is stored on our servers located in the United States. We treat data as an asset that must be protected and use many tools (encryption, passwords, physical security, etc.) to protect your personal information against unauthorized access and disclosure. However, third parties may unlawfully intercept or access transmissions or private communications, and other users may abuse or misuse your personal information that they collect from the site. Therefore, although we work very hard to protect your privacy, we do not promise, and you should not expect, that your personal information or private communications will always remain private. Because email and instant messaging are not recognized as secure communications, we request that you not send private information to us by email or instant messaging services.
This Privacy Policy only addresses the use and disclosure of information we collect from you. This policy does not apply to the practices of companies that Provention Health Foundation does not own or control or to people that Provention Health Foundation does not employ or manage. The Services may include applications, content and/or ads from third parties that may perform user activity tracking in addition to that described herein; Provention Health Foundation accepts no responsibility for said activities. Provention Health Foundation does not control the privacy policies of third parties, and you are subject to the privacy policies of those third parties where applicable. We encourage you to ask questions before you disclose your personal information to others. For more information about each such third party, please refer to the third party’s privacy policy.
We may amend this Privacy Policy at any time by posting the amended terms on the Website. All amended terms automatically take effect immediately upon being posted. In addition, we will notify you about significant changes in the way we treat personal information by sending a notice to the primary email address specified in your Provention Health Foundation account or by placing a prominent notice on our site. If you do not agree to the changes, you may terminate your account by requesting an account deletion via email to support@HALTDPP.com. You must provide us with the email address of the registered account.
Provention Health Foundation is intended for general audiences. Provention Health Foundation does not collect or maintain information from those that Provention Health Foundation knows are under 13, and no part of the Provention Health Foundation Services are targeted to attract anyone under 13.
If you are a California resident, in addition to the rights set forth above, you have the right to request information from us regarding the manner in which we share certain categories of your personal information with third parties, for the third parties’ direct marketing purposes. California law provides that you have the right to submit a request to us at the designated address and receive the following information: the categories of information we disclosed to third parties for the third parties direct marketing purposes during the preceding calendar year, the names and addresses of third parties that received such information, and if the nature of a third party’s business cannot be reasonably determined from the third party’s name, examples of the products or services marketed.
You are entitled to receive a copy of this information in a standardized format and the information will not be specific to you individually. Our designated email address for such requests is support@HALTDPP.com.
The solution shall be hosted in compliance with Attachment 1 Requirements for Non-Commonwealth Hosted Applications/Services.
The fully executed Agreement may not contain ink signatures by the14. Commonwealth. In that event, the Licensor understands and agrees that the receipt of an electronically-printed Agreement with the printed name of the Commonwealth purchasing agent constitutes a valid, binding contract with the Commonwealth. The printed name of the purchasing agent represents the signature of that individual who is authorized to bind the Commonwealth to the obligations contained in the Agreement. The printed name also indicates that all approvals required by Commonwealth contracting procedures have been obtained.
ATTACHMENT 1
Requirements for Non-Commonwealth Hosted Applications/Services
The purpose of this Attachment is to define requirements for technology solutions procured by the Commonwealth that are not hosted within Commonwealth infrastructure.
A. Hosting Requirements
1. The Licensor or its subcontractor shall supply all hosting equipment (hardware and software) required for the cloud services and performance of the software and services set forth in the Quote and Statement of Work.
2. The Licensor shall provide secure access to applicable levels of users via the internet.
3. The Licensor shall use commercially reasonable resources and efforts to maintain adequate internet connection bandwidth and server capacity.
4. The Licensor or its subcontractors shall maintain all hosting equipment (hardware and software) and replace as necessary to maintain compliance with the Service Level Agreements.
5. The Licensor shall monitor, prevent and deter unauthorized system access. Any and all known attempts must be reported to the Commonwealth within two (2) business days. In the event of any impermissible disclosure unauthorized loss or destruction of Confidential Information, the receiving Party must immediately notify the disclosing Party and take all reasonable steps to mitigate any potential harm or further disclosure of such Confidential Information. In addition, pertaining to the unauthorized access, use, release, or disclosure of data, the Licensor shall comply with state and federal data breach notification statutes and regulations, and shall report security incidents to the Commonwealth within one (1) hour of when the Licensor has reasonable confirmation of such unauthorized access, use, release, or disclosure of data.
6. The Licensor or the Licensor’s subcontractor shall allow the Commonwealth or its delegate, at times chosen by the Commonwealth, and within at least three (3) business days’ notice, to review the hosted system’s data center locations and security architecture.
7. The Licensor’s employees or subcontractors, who are directly responsible for day- to-day monitoring and maintenance of the hosted system, shall have industry standard certifications applicable to the environment and system architecture used.
8. The Licensor or the Licensor’s subcontractor shall locate servers in a climate- controlled environment. The Licensor or the Licensor’s contractor shall house all servers and equipment in an operational environment that meets industry standards including climate control, fire and security hazard detection, electrical needs, and physical security.
9. The Licensor shall examine applicable system and error logs daily to minimize and predict system problems and initiate appropriate action.
10. The Licensor shall completely test and apply patches for all third-party software products in the server environment before release.
11. The Licensor shall provide all Commonwealth data to the Commonwealth, upon request, in a form acceptable to the Commonwealth, at no cost to the Commonwealth.
B. SOC Reporting Requirements:
1. Subject to this section and unless otherwise agreed to in writing by the Commonwealth, the Licensor shall, and shall require its subcontractors to, engage, on an annual basis, a CPA certified third-party auditing firm to conduct the following, as applicable:
(i) a SOC 1 Type II report with respect to controls used by the Licensor relevant to internal and external procedures and systems that process Commonwealth financial transactions;
(ii) a SOC 2 Type II report with respect to controls used by the Licensor relevant to internal and external procedures and systems that access, process, host or contain Commonwealth Data designated as sensitive security or protected information as defined in ITP-SEC019 Policy and Procedure for Protecting Commonwealth Electronic Data; and
(iii) a SOC for Cybersecurity report with respect to controls used by the Licensor setting forth the description and effectiveness of Licensor’s cybersecurity risk management program and the policies, processes and controls enacted to achieve each cybersecurity objective.
Unless otherwise agreed to in writing by the Commonwealth, SOC Reports shall be provided upon contract execution and annually thereafter. While it is preferable that SOC Reports coincide with Pennsylvania’s fiscal year (July 1 through June 30), SOC Reports, at the very least, must cover at least 6 consecutive months of Pennsylvania’s fiscal year.
2. SOC 2 Type II reports shall address the following:
(i) Security of Information and Systems;
(ii) Availability of Information and Systems;
(iii) Processing Integrity;
(iv) Confidentiality;
(v) Privacy; and
(vi) if applicable, compliance with the laws, regulations standards or policies designed to protect the information identified in ITP-SEC019 or other information identified as protected or Confidential by this Contract or under law.
3. At the request of the Commonwealth, the Licensor complete an additional SOC for Cybersecurity audits in the event:
(i) repeated non-conformities are identified in any SOC report required by subsection 1; or
(ii) if the Licensor’s business model changes (such as a merger, acquisition, or change sub-contractors, etc.);
The Licensor shall provide to the Commonwealth a report of the SOC for Cybersecurity audit findings within 60 days of its completion.
4. The Commonwealth may specify other or additional standards, certifications or audits it requires under any Purchase Orders or within an ITP.
5. The Licensor shall adhere to SSAE 18 audit standards. The Licensor acknowledges that the SSAE guidance may be updated during the Term of this Contract, and the Licensor shall comply with such updates which shall be reflected in the next annual report.
6. In the event an audit reveals any non-conformity to SSAE standards, the Licensor shall provide the Commonwealth, within 45 calendar days of the issuance of the SOC report, a documented corrective action plan that addresses each non- conformity. The corrective action plan shall provide, in detail:
(i) clear responsibilities of the personnel designated to resolve the non- conformity;
(ii) the remedial action to be taken by the Licensor or its subcontractor(s);
(iii) the dates when each remedial action is to be implemented; and
(iv) a summary of potential risks or impacts to the Commonwealth that are associated with the non-conformity(ies).
7. The Commonwealth may in its sole discretion agree, in writing, to accept alternative and equivalent reports or certifications in lieu of a SOC report.
C. Security Requirements
1. The Licensor a third-party independent security/vulnerability assessment at its own expense on an annual basis.
2. The Licensor shall comply with the Commonwealth’s directions/resolutions to remediate the results of the security/vulnerability assessment to align with the standards of the Commonwealth.
3. The Licensor shall use industry best practices to protect access to the system with a firewall and firewall rules to prevent access by non-authorized users and block all improper and unauthorized access attempts.
4. The Licensor shall use industry best practices to provide applicable system intrusion detection and prevention in order to detect intrusions in a timely manner.
5. The Licensor shall use industry best practices to provide applicable malware and virus protection on all servers and network components.
6. The Licensor shall limit access to Commonwealth-specific systems and services and provide access only to those staff, located in the United States, that must have access to provide services proposed.
7. The Licensor shall provide the Services, using security technologies and techniques in accordance with industry best practices and the Commonwealth’s ITPs set forth in Attachment 2-A, including those relating to the prevention and detection of intrusions, and any other inappropriate use or access of systems and networks.
D. Data Storage
1. The Licensor shall store all Commonwealth data in the United States.
2. The Licensor shall use industry best practices to update and patch all applicable systems and third-party software security configurations to reduce security risk. The Licensor shall protect their operational systems with applicable anti-virus, host intrusion protection, incident response monitoring and reporting, network firewalls, application firewalls, and employ system and application patch management to protect its network and customer data from unauthorized disclosure.
3. The Licensor shall be solely responsible for applicable data storage required.
4. The Licensor shall encrypt all Commonwealth data in transit and at rest.
5. The Licensor shall take all commercially viable and applicable measures to protect the data including, but not limited to, the backup of the servers on a daily basis in accordance with industry best practices and encryption techniques.
6. The Licensor agrees to have appropriate controls in place to protect critical or sensitive data and shall employ stringent policies, procedures, to protect that data particularly in instances where such critical or sensitive data may be stored on a Licensor-controlled or Licensor-owned electronic device.
7. The Licensor shall utilize a secured backup solution to prevent loss of data, back up all data every day and store backup media. Stored backup media must be kept in an all-hazards protective storage safe at the worksite and when taken offsite. All back up data and media shall be encrypted.
E. Adherence to Policy
1. Licensor support and problem resolution solution shall provide a means to classify problems as to criticality and impact and with appropriate resolution procedures and escalation process for classification of each problem.
2. Licensor shall abide by the applicable Commonwealth’s Information Technology Policies (ITPs), a list of the most relevant being attached hereto as Attachment 2- A.
3. Licensor shall comply with all pertinent federal and state privacy regulations.
F. Closeout
When the purchase order’s or other procurement document’s term expires or terminates, and a new purchase order or other procurement document has not been issued by a Commonwealth Agency to the Commonwealth Software Reseller within sixty (60) days of expiration or termination, or at any other time at the written request of the Commonwealth, the Licensor must promptly return to the Commonwealth all Commonwealth’s data (and all copies of this information) that is in the Licensor’s possession or control. The Commonwealth’s data shall be returned in a format agreed to by the Commonwealth.
ATTACHMENT 1
Information Technology Policies (ITPs) for
Outsourced/Licensor(s)-hosted Solutions
ITP Number - Name |
Policy Link |
ITP_ACC001- Accessibility Policy |
|
ITP_APP030- Active Directory Architecture |
|
ITP_BUS007- Enterprise Service Catalog |
|
ITP_BUS010-Business Process Management Policy |
|
ITP_BUS011-Commonwealth Cloud Computing Services Requirements |
|
ITP_BUS012-Artifical Intelligence General Policy |
|
ITP_INF000- Enterprise Data and Information Management Policy |
|
ITP_INF001- Database Management Systems |
|
ITP_INF006- Commonwealth County Code Standard |
|
ITP_INF009- e-Discovery Technology Standard |
|
ITP_INF010- Business Intelligence Policy |
|
ITP_INF011- Reporting Policy |
|
ITP_INF012- Dashboard Policy |
|
ITP_INFRM001- The Life Cycle of Records: General Policy Statement |
|
ITP_INFRM004- Management of Web Records |
|
ITP_INFRM005- System Design Review of Electronic Systems |
|
ITP_INFRM006- Electronic Document Management Systems |
|
ITP_INT_B_1- Electronic Commerce Formats and Standards |
|
ITP_INT_B_2- Electronic Commerce Interface Guidelines |
|
ITP_INT006- Business Engine Rules |
|
ITP_NET004- Internet Protocol Address Standards |
|
ITP_NET005- Commonwealth External and Internal Domain Name Services (DNS) |
|
ITP_PRV001- Commonwealth of Pennsylvania Electronic Information Privacy Policy |
|
ITP_SEC000 - Information Security Policy |
|
ITP_SEC002- Internet Accessible Proxy Servers and Services |
|
ITP_SEC003- Enterprise Security Auditing and Monitoring |
|
ITP_SEC004- Enterprise Web Application Firewall |
|
ITP_SEC006- Commonwealth of Pennsylvania Electronic Signature Policy |
|
ITP_SEC007- Minimum Standards for IDs, Passwords and Multi-Factor Authentication |
|
ITP_SEC008- Enterprise E-mail Encryption |
|
ITP_SEC009- Minimum Contractor Background Checks Policy |
ITP Number - Name |
Policy Link |
ITP_SEC010- Virtual Private Network Standards |
|
ITP_SEC011- Enterprise Policy and Software Standards for Agency Firewalls |
|
ITP_SEC013- Identity Protection and Access Management (IPAM) Architectural Standard and Identity Management Services |
|
ITP_SEC015- Data Cleansing |
|
ITP_SEC017- Copa Policy for Credit Card Use for e-Government |
|
ITP_SEC019- Policy and Procedures for Protecting Commonwealth Electronic Data |
|
ITP_SEC020- Encryption Standards for Data at Rest |
|
ITP_SEC021- Security Information and Event Management Policy |
|
ITP_SEC023- Information Technology Security Assessment and Testing Policy |
|
ITP_SEC024- IT Security Incident Reporting Policy |
|
ITP_SEC025- Proper Use and Disclosure of Personally Identifiable Information (PII) |
|
ITP_SEC029- Physical Security Policy for IT Resources |
|
ITP_SEC031- Encryption Standards for Data in Transit |
|
ITP_SEC032- Enterprise Data Loss Prevention (DLP) Compliance Standards |
|
ITP_SEC034- Enterprise Firewall Rule Set |
|
ITP_SEC037- Identity Proofing of Online Users |
|
ITP_SEC038- Commonwealth Data Center Privileged User IAM Policy |
|
ITP SFT000- Software Development Life Cycle (SDLC) Policy |
|
ITP_SFT001 Software Licensing |
|
ITP_SFT002 Commonwealth of PA Website Standards |
|
ITP_SFT003- Geospatial Enterprise Service Architecture |
|
ITP_SFT004 Geospatial Information Systems (GIS) |
|
ITP_SFT005- Managed File Transfer (MFT) |
|
ITP_SFT007- Office Productivity Policy |
|
ITP SFT008- Enterprise Resource Planning (ERP) Management |
|
ITP SFT009- Application Development |
|
ITP_SYM003- Off-Site Storage for Commonwealth Agencies |
|
ITP_SYM004- Policy for Establishing Alternate Processing Sites for Commonwealth Agencies |
|
ITP_SYM006- Commonwealth IT Resources Patching Policy |
|
ITP_SYM008- Server Virtualization Policy |
|
ITP_SYM010- Enterprise Services Maintenance Scheduling |