Effective Date: January 13, 2023
Privacy Policy
Adaptive Testing Technologies, Inc. (“ATT,” “we,” or “us”) provides computerized adaptive tests, the CAT-MH®, K-CAT®, and CASSY (the “Application”). This can include but is not limited to the CAT-DI, CAT-ANX, CAT-MANIA, CAT-SUD, CAT-SS, CAT-PTSD, CAT-SDOH and CAD-MDD (the “Services”). This privacy policy (“Privacy Policy”) describes the types of information that we collect through the Services, how we use that information, with whom we share it, and the measures we take to protect that information. In accordance with the Terms of Service, individuals are permitted to take a computerized adaptive test (“use the Services”) only on the recommendation of a licensed health care professional, hospital, insurance company, managed care organization, or other authorized administrator who purchases the Services (collectively, the “Administrator”). Unless we indicate otherwise, this Policy applies only to information that we collect through the Application or Services that are distributed by an authorized Administrator.
Information We Collect from Users Directly Through the Services
We collect certain information from individuals who use or attempt to use the Services (“Users”). Each User is assigned a unique subject ID number by the Administrator who provides the Services to the User. The User will be provided with a link containing a unique set of credentials for their assessment session that will be used to access the Application.
We collect Users’ responses to a series of questions related to a particular behavioral health condition. The Services present Users with adaptively selected questions, each of which is based on the User’s answers to previously asked questions. The questions are pulled from a large item bank and responses range from two to five categories available. The User is asked to respond based on the frequency or severity of certain thoughts, feelings, moods, or behaviors. Some questions may pertain to suicide.
Information We Collect from Administrators and Reviewers
We collect certain information from Administrators and reviewers affiliated with administrators (“Reviewers”) who create accounts and/or review test results through the Application. This information may include: basic identifying information, including the Administrator’s or Reviewer’s name, affiliated institution, mailing address, email address, and telephone number; account registration information, such as a username and password.
Information We Collect from Other Application Visitors
We may collect certain information from individuals who are not Administrators or Reviewers and who access the Application for informational or other purposes without using or attempting to use the Services (“Other Application Visitor”). The information we collect from Other Application Visitors may include basic identifying information, such as full name or email address so that we can send them updated information about the products and services offered through the Application.
The provisions of this Policy related to Other Application Visitors also describe the information we collect, use, and share about Users when they access parts of the Application other than the Services.
Information We Collect by Automated Means
We may also collect certain information by automated means during a visit to the Application or use of our Services.
We may collect information from Users such as an Internet Protocol (“IP”) address, information about the web browser software and version, information about the computer or mobile device, and the date and time at which the individual used the Services or visited the Application.
We may collect information from (1) Administrators who use the Application to create an account or purchase the Services, (2) Reviewers, and (3) Other Application Visitors. This information may include Internet protocol (“IP”) address, information about the web browser software and version, and information about the computer or mobile device. In addition, we may use common web technologies, such as cookies, to track how Administrators, Reviewers, and Other Application Visitors are using the Application, recognize an Administrator or Reviewer when they return to the Application, or save preferences. Administrators, Reviewers, and Other Application Visitors may be able to disable cookies through a web browser setting, but this may prevent the Administrator, Reviewer, or Other Application Visitor from being able to take full advantage of the Application’s features.
Use of Information
We use the information that we collect from Users to store information on our servers and to provide the Administrator or Reviewer with the results of the computerized adaptive tests. This includes information related to the probability that a User’s symptoms are consistent with a particular condition and the estimated severity of those symptoms. ATT also provides the Administrator or Reviewer with the User’s response to each question asked. The Administrator and/or Reviewer may use this information for treatment, research, or as otherwise described to the User. If the User’s response to suicide-related items meets a certain threshold, we will provide the Reviewer and/or the Administrator with an alert regarding this answer. We may use information that Users provide to improve the quality of the Services. For example, if a User takes a test on more than one occasion, we may use information about questions asked during previous administrations in order to ensure that they are not reused. We may also measure the frequency with which certain questions are asked.
We use information that we collect from Administrators through the Application to verify that the prospective purchaser is an authorized purchasing entity consistent with the Terms of Service. We may also use this information to process purchases, provide an Administrator with the purchased products and services, identify the Administrator or Reviewer upon return to the Application and maintain an Administrator’s or Reviewer’s online account through the Application.
ATT may also use information that it collects through the Application or the Services (1) to provide Users, Administrators, Reviewers, and/or Other Application Visitors with the products, services, and information that they request; (2) to administer or provide support for the Application or other mobile applications; (3) to conduct data analytics; (4) to perform business analyses; (5) to investigate possible violations of and enforce our contracts, including the Terms of Service, associated with our products and services; (6) for other purposes to improve the quality of our business, the Application, and/or the Services; or (7) as otherwise described at the point of collection or with the consent of the User, Administrator, Reviewer, or Other Application Visitor.
Information We Share
We may disclose the information collected from Users, through the Services or the Application, to the Administrator or Reviewer, and as described in the Use of Information section, subject to relevant laws and any written agreement between the parties.
Subject to the terms of the Business Associate Agreement and applicable laws, we may also disclose information that a User, Administrator, Reviewer, or Other Application Visitor provides through the Services or the Application: (1) to our authorized service providers that perform certain functions or services on our behalf, such as hosting the Application or managing databases; (2) to respond to subpoenas, court orders, or other legal process, in response to a request for cooperation from law enforcement or another government agency; (3) to establish or exercise our legal rights or defend against legal claims; (4) when we believe it is necessary to investigate, prevent, or respond to suspected illegal activities, fraud, or to protect the safety, rights, or property of us, a User, Administrator, Reviewer, Other Application Visitor, or any third party; (5) in connection with a corporate transaction, such as a divestiture, merger, consolidation, or asset sale; (6) to protect our rights or property, or that of our Administrators, Reviewers, Users, or Other Application Visitors; or (7) as otherwise described in this Privacy Policy or at the point of collection or with consent of the User, Administrator, Reviewer, or Other Application Visitor. Any disclosure made by ATT must comply with the Illinois Mental Health and Developmental Disability Confidentiality Act and all other applicable state and federal laws and regulations.
We will not share personally identifiable information with third parties for direct marketing purposes.
Security
ATT maintains reasonable security procedures to help protect against loss, misuse or unauthorized access, disclosure, alteration, or destruction of the information provided through the Application and the Services. Unfortunately, no data transmission over the internet or stored on a server can be 100% secure. As a result, we cannot guarantee the security of any information disclosed or transmitted to us online and cannot be responsible for the theft, destruction or inadvertent disclosure of information collected through the Services or the Application to the extent we are in compliance with the terms of the Agreements between the parties to which this Privacy Policy is attached.
We may update this Privacy Policy from time to time to the extent such updates do not impact the legal rights or obligations of the parties under the Agreement to which this Privacy Policy is attached.
Consent and Changes to this Policy
ATT may update this Privacy Policy from time to time. ATT will post these changes in the Application. By using the Application and the Services, a User, Administrator, Reviewer, or Other Application Visitor agrees to the terms of our Privacy Policy.
Servers
ATT and its servers are U.S.-based and therefore, information we collect may be stored, processed, and accessed in the United States. By using the Application or the Services, a User, Administrator, Reviewer, or Other Application Visitor consents to the transfer, storage, and processing of personal information in the United States.
Questions
Please contact us with any questions regarding this Privacy Policy, or ATT’s privacy practices in general, by:
Phone: 312-878-6490
Mail: Adaptive Testing Technologies Inc., 217 N. Jefferson #601, Chicago, IL 60661