Notice of Privacy and Security Practices
Medico Insurance Company and its affiliates (collectively the “Company”, “we,” “us,” or “our”) understand the importance of keeping your personal information confidential. This policy describes how we may collect information about you through your interactions with us on our website and mobile application. We are committed to maintaining the confidentiality of your personal information and earning your trust. Therefore, we offer our website and mobile application privacy and security practices below to:
- Demonstrate our commitment to your privacy and security
- Help you understand the care with which we treat your information
- Assure you that we take reasonable steps to see that these practices are followed
- The types of information we may collect or that you may provide when you use the website or mobile application
- Our practices for collecting, using, maintaining, protecting, and disclosing that information
This policy does not pertain to, or govern, the Company’s collection, use, storage, or protection of any personal information you submit to us via any other means, including, without limitation, via a third-party agent or by phone, e-mail other than through this website or mobile application, and the U.S. Mail.
We cannot control the privacy and security policies of websites you may access through this website or through the mobile application. This policy does not apply to information that you provide to or is collected by any third party. To determine the privacy and security practices of any other websites or mobile applications, you must refer to the privacy and security policies associated with those websites and mobile applications.
Notice of privacy practices
You may request a copy of the Company’s Notice of Privacy Practices that describes how we may use and disclose your personal health and financial information and explains the legal rights you have under the Health Insurance Portability and Accountability Act (HIPAA).
Children under the age of 13
Unless otherwise detailed, neither this website nor mobile application is directed toward children. We do not knowingly collect information from children under the age of 13. If we learn that personal information on a child under the age of 13 is collected via the child’s use and access of this website or mobile application, we will delete that information from our systems.
Information we collect and how we collect it
Through our website and mobile application, we may collect information you provide directly to us and information that is automatically provided to us or collected through your use of our website or mobile application.
When you use our website or mobile application, we may require you to submit information to perform certain functions. To ensure that users receive products and services which best match their needs, users must provide complete and accurate information about themselves and those persons who will also benefit from these products and services. Examples of information users may be required to provide, include, but are not limited to:
- Full name
- Postal address
- Telephone number(s)
- E-mail address
- Policy number
- Date of birth
- Emergency contact name and phone number
- Agent information
- Claims submission information, including any uploaded images
- Information you provide by filling in forms on the website or mobile application
This information may be needed to fully execute a request for a product and/or service, or used for business purposes, such as underwriting, claims processing, billing, and premium collection. The Company does not sell, rent, or lease any information collected to any person or organization. If the Company is unable to process a website function, the user’s information collected up until that point may be used to contact the user to fulfill the product or service request.
We may also obtain automatically collected information through the website and mobile application. We may use technologies such as cookies, tokens, tags, beacons, scripts, and Web server logs, as well as functionality that can collect data from a website or mobile device. The automatically collected information may include demographic, de-identified, aggregated, or certain information collected automatically through your device such as technical information about your device, web browser information, and server log files collected by us or provided by you. Our mobile application may also collect information specific to use of your mobile device, such as a unique device identifier, precise geolocation information, and other information associated with files stored on your device, such as photographs.
Our computers and servers may automatically collect statistics about your visit. In these instances, this information does not identify you personally, but rather identifies functions performed during a visit to our website or mobile application. The Company may monitor user specific and user non-specific statistics, including but not limited to, how many users visit our website, a user’s internet protocol (IP) address, which pages people visit, from which domains our visitors come, and which browsers people use.
As a standard, the Company’s website servers use log files. Our log file processes will perform tracking on IP addresses, browser type, internet service provider (ISP), referring/exit pages, platform type, date/time stamp, and number of clicks within our website. Our log file processes also administer the website, track users’ movement in the interactive sections, and gather broad demographic information for business purposes as permitted by law. Other logs will be kept for those applications that are submitted to us through the website to retain and process the products and services that were requested.
How we use your information
You may limit the information you provide or make available to us if you want to; however, that may limit your ability to access or use certain functions of the website or mobile application, or to request certain services or information.
Our website and mobile application operate on computer servers in the United States; therefore, any information you provide will be transferred to and processed by a computer server located within the United States.
We may use the information collected for several purposes such as, but not limited to:
- To respond to a message or request from you
- To communicate with you
- To provide you with content through our website or mobile application or other services that we may offer
- To process a claim submitted by you
- To authenticate you on any portion of our mobile application and with vendors acting on our behalf
- To administer surveys and promotions
- To personalize your experience on our website or mobile application
- To provide you with informational or promotional offers, as permitted by law, that we believe may be useful to you, such as information about products or services provided by us or other businesses
- To perform analytics and to improve our products, website, mobile application, and advertising
- To comply with applicable laws, regulations, and legal process
- To protect someone's health, safety, or welfare
- To protect our rights, the rights of affiliates or related third parties, or take appropriate legal action, such as to enforce our Terms and Conditions
- To keep a record of our transactions and communications
- To share with our affiliated companies
- To share with contractors, service providers, and other third parties we use to support our business and who are bound by contractual obligations to keep personal information confidential and use it only for the purposes for which we disclosure it to them
- As otherwise necessary or useful for us to conduct our business, so long as such use is permitted by law or for any other purpose with your consent
We may use information to contact you through any contact information you provide through our website or mobile application or any other services we offer, including any e-mail address, telephone number, cell phone number, or fax number.
We may, when permitted, combine your information with other information, whether online or offline, maintained, or available to us from you or from other sources, such as from our vendors, and we may use and disclose combined data for the purpose described in this policy or for internal business purposes. We may, when permitted, use and disclose de-identified and aggregated data for any purpose, which may include, without limitation, disclosures to third parties for analytics purposes such as evaluating the website or mobile application and providing additional benefits, programs, and services.
Personal information may be shared among the affiliated companies of American Enterprise Group, Inc., and with select third parties as permitted or required by law. The Company also reserves the right to share your information with third parties if we believe such action is necessary in order to: a) conform with the requirements of any court order, government request, or legal process; b) protect or defend the Company’s legal rights or property, or those of its policyholders, its website(s), website users, its mobile application, or mobile application users; or c) investigate, prevent, or respond to illegal activity, suspected fraud, or threats.
How personal information is protected
Our information technology systems use industry-recognized security controls to protect user information, and we have data security personnel whose sole responsibilities are to ensure the security of the information we collect, process, and store. Additionally, the Company has internal policies and procedures in place to limit access to user information to only those who have a business need to view it.
The Company is able to securely collect and transfer user information using encryption technology. We employ Transport Layer Security (TLS) encryption for all user information entered on the website and mobile application. TLS technology encrypts information as it travels from the user’s browser to our servers, and again from our server back to the user’s browser. Therefore, a user’s browser must support TLS 1.2 or above encryption to fully utilize our website.
The Company may use third party service providers to help us operate our business and this site or administer activities on our behalf, such as authorization of credit card transactions or other administration purposes. We may share your information with these third parties for those limited purposes only. The Company utilizes certificate providers to apply the TLS technology for online transactions. The certificates allow our website users to perform website functions such as credit card transactions and application entry and submission in a manner that cannot be intercepted or decrypted over the Internet. Certificate providers also verify that website users are conducting business with the Company. To confirm that a user’s browser supports the TLS encryption functionality, the user should look for icons on the browser’s window, such as a key or a closed lock. The Company encourages website users to verify that these icons are present before entering billing and credit card information.
All personal information and account activity are also protected through the use of usernames and passwords. To help maintain the security of your information, you should protect the confidentiality of your username and password.
A “cookie,” by definition, is a piece of information that a website sends to a user’s browser, which then stores information on the user’s computer system. Users should be aware that cookies contain no more information than is volunteered, and are not able to “invade” the hard drive and return to the sender personal or other information from the user’s computer.
The Company’s website employs a cookie with your insurance agent’s name and contact information. Your personal information is not stored with a cookie.
Consent and changes to this website or mobile application
When you submit any information to us in connection with any products or services we offer, you consent to our processing of this information as necessary to provide the products and services in which you are participating. We do our best to maintain the accuracy of personal information you supply to us, and we will make corrections when you notify us. If you find information you would like to correct or update in any statements or other communication you receive from us, please contact our Customer Service Center:
P. O. Box 10386
Des Moines, IA 50306-0386
Attn: Privacy Officer
P. O. Box 10386
Des Moines, IA 50306-0386
Last revised Aug. 4, 2022