Privacy Policy
This ACEs Aware Privacy Policy, (or “Privacy Policy”) is effective as of September 30, 2022 and is subject to change without notice.
ACEs Aware is committed to keeping users’ personal information private and secure, as required by law and policy. These laws and policies include the federal Health Insurance Portability and Accountability Act of 1996 (HIPAA); California Online Privacy Protection Act of 2003 (CalOPPA—Business & Professions Code §§ 22575-22579); California Information Practices Act of 1977 (IPA); California Public Records Act (PRA—Government Code §§ 6250-6276.48); California Government Codes § 11015.5 and §11019.9; State Administrative Manual (SAM) § 5310.1; and, Statewide Information Management Manual (SIMM) 5310-A.
The ACEs Aware website electronically gathers information about users’ visits to our website. Additional demographic data (e.g., race, ethnicity, occupation, location, and zip code) is collected and used in various ACEs Aware reports. We use this information to respond to user inquiries and to improve the website. The ACEs Aware site uses web analytics to gather user Internet Protocol (IP) addresses, to record the web browser being used (e.g., Google Chrome), and the name of your internet domain (e.g., Gmail, AOL). Web analytics records the date and time that users access our site and collects information on which files, pages, and links are visited. It also records the website address from which the ACEs Aware site was accessed.
Web analytics uses cookies and web beacons to gather information in order to serve users better. Cookies provide an ID that allows ACEs Aware to determine the number of unique visitors to our site. Web beacons track the pages viewed. ACEs Aware does not use this or any other information to identify users personally. ACEs Aware uses web analytics information to help us monitor and improve our website performance. If users do not want their browser to accept cookies, they can adjust the browser settings. However, some site features or services may not function properly without cookies. Web beacons do not upload to users’ computer and only work while browsing our site.
The goal of the ACEs Aware site is to help people live healthier lives and reach their full potential. The user information we request may include some or all of the following: name, email address, address, and/or employment information. We may also request health care plan and provider data.
ACEs Aware uses the information users provide in order to respond to their inquiries. When users provide said information, this constitutes consent for ACEs Aware to collect and share the information with their healthcare providers. If users choose not to provide the information requested, they will be unable to use some site features and services. However, users will still be able to use most of the website.
ACEs Aware will not distribute or sell electronically collected personal information about users to any third party without users’ written consent. We only use personal information for reasons stated in this privacy policy, or as stated at the time of collection, except with user consent or as authorized by law. ACEs Aware has legal authorization to share user personal information without consent 1) to perform duties authorized by state or federal law or regulation; 2) in response to a court order; or 3) to contribute to health care statistics—in which case ACEs Aware will provide anonymous information. In limited circumstances, ACEs Aware may also share information with federal or state law enforcement authorities to investigate or respond to attempts to access ACEs Aware data or information technology without authorization. This information may also be subject to PRA (or “Public Records Act”) requests by requestors, which could include media organizations.[1]
Electronically collected personal information is exempt from requests made under the California Public Records Act.
ACEs Aware uses many approaches to protect user personal information from loss, theft, or unauthorized use. These approaches include the use of physical, administrative, and technical access controls. Some of the controls ACEs Aware uses include data encryption, network intrusion prevention, data loss prevention and malware defense. ACEs Aware facilities are monitored 24 hours a day, seven days a week with surveillance, alarms, and access controls. ACEs Aware also takes other steps to protect personal information.
ACEs Aware respects users’ rights to access the information about them that we collect or maintain, and to make corrections. We also respect a user’s right to delete all of their electronically collected personal information without reuse or distribution. Parents and guardians may exercise these rights over the information of their child or charge. To pursue options related to privacy or personal access, or if users have questions, comments, or complaints, or want more information about this privacy policy statement, please contact:
UCAAN privacy contact information:
UCAAN BOX 951752, 12-362 MDCC
Los Angeles, CA 90095-1752
Phone: 310-825-8883
E-mail: ucaan@ucla.edu
and
DHCS Privacy Office
P.O. Box 997413, MS 4722
Sacramento, CA 95899-7413
Phone: 916-445-4646
E-mail: incidents@dhcs.ca.gov
This ACEs Aware privacy policy statement does not apply to external websites that users may access from this site. When you exit the ACEs Aware website to access a different website, users will be subject to that website’s privacy policy and practices. This site will notify users when they are leaving it to access an external site.
[1] Government Code Section 6250.