California Consumer Notice of Collection
Categories of Personal Information We May Collect
Through your use of the website and the Services, we may collect your Personal Information. Personal Information generally refers to any information that can be linked to an identified or identifiable person. Please note that certain information may not be personally identifiable when standing alone (e.g., your age), but may become so when combined with other information (e.g., your age and address). The term Personal Information also covers certain categories of “sensitive” or “special” Personal Information that often receive additional protections and/or are subject to additional restrictions under applicable laws.
The Personal Information that we may collect about you, or have collected about you in the past 12 months, varies depending on the context of our interactions with you. Personal Information collected from or about you falls into the following categories:
Direct and Personal Identifiers: We may collect various Personal Information that identifies you. This information includes your name, email, any user name and password that you may provide, your address, your tax identification number or social security number, unique identifiers (such as a mobile device ID) and your email and other personal contact information.
Demographic Information: Under certain circumstances, we may collect Personal Information regarding your gender, race, or other protected classification data.
Commercial Information: We may collect data regarding products that you use or purchase of products or Services. This data may include information about products or Services you considered utilizing through mobile applications, application data, and pricing information. We collect information from you when you provide us with feedback and we may collect information regarding your receipt and interaction with emails and other messages that you receive from us.
Payment or Banking Information: Credit card number, name on credit card, expiration date, security code, and billing address.
Electronic Network Activity: We collect information regarding your use of our websites and mobile applications. This data includeThans but is not limited to Internet Protocol address information, information obtained through weblogs concerning your activity on our websites and application, mobile device identifiers and other related metadata regarding use of our mobile applications. We may collect information, including your browser type, operating system, Internet Protocol (IP) address (a number that is automatically assigned to a computer when the Internet is used), domain name, device ID, language preferences, referring website, the length of time you are visiting our website, and/or a date/time stamp for visitors. We may also collect such information in relation to monitoring potential malicious code on our systems, such as through the collection of metadata and traffic data, or portions or hashes (a file that has been converted into a numerical string by a mathematical algorithm) of any of the information listed here. For more information relating to the use of such tools, review our “Cookies” section.
Geolocation Information: We may collect information about the location from which you are accessing our mobile applications. For more information relating to the use of such tools, review our “Cookies” section.
Audio, Visual or Other Information: We may collect your photograph or other images identifying you through certain functions of our mobile applications. If you visit one of our locations, or call our call center, we may record your image or voice.
Inferences: We may develop inferences about you using the data set forth above.
Sensitive Personal Information: Of the information listed above, geolocation, your Social Security or Driver’s License number, your login and password information for certain Services, may also qualify as sensitive Personal Information.
The provision of the sensitive Personal Information listed above is voluntary. In certain instances, we will not be able to process your request for our Services without the requested sensitive Personal Information.
SOURCES OF PERSONAL INFORMATION
We collect your Personal Information in the following ways, pursuant to applicable law:
Directly From You, when you use our Services, register for an account, contact us, respond to a survey, sign up to receive emails, text messages, and/or postal mailings.
From Our Third‑Party Partners, including from third parties that we have partnered with to provide you the Services that you have requested from us.
Other Sources, including data analytics providers or publicly available sources.
Use of Your Personal Information
We use your Personal Information and sensitive Personal Information for the following business purposes (“Processing Purposes”) associated with our general business operations. We may collect your Personal Information:
Providing our Services
- To provide you the Services, including health insurance products, wellness products or providers, or health care.
- To provide you non-insurance or health care products or services that may be of interest or at your request.
- To process your payments and send notifications to you related to your account.
- To enable you to access and use our websites and mobile applications.
Communicating With You
- To communicate with you and to respond to your requests, questions, comments, and other inquiries.
- To understand what partner resources you use, if any, and to connect you to additional resources at your request.
- To offer you personalized advertisements, which you may be able to opt out of as explained in the “Your Choices” section.
- To send marketing and promotional materials, including information relating to our products, Services, sales, or promotions or those of a third party.
Analytics and Administration of Website
- To administer, maintain, evaluate, and improve our websites, mobile applications, and Services, and to develop new products and services.
- To conduct research and analytics related to our websites and Services, including combining any or all of the information that we collect or obtain.
Core Business Functions
- To manage our business operations, perform our obligations and exercise our rights under any agreement that you or your organization has with us.
- For other purposes with your consent, or as otherwise permitted or required by applicable law.
- We use Personal Information to comply with our legal or regulatory obligations, to establish or exercise our rights, and to defend against a legal claim.
Security and Fraud Prevention
- We use Personal Information to detect, investigate, prevent, or take action regarding possible malicious, deceptive, fraudulent, or illegal activity, including fraudulent transactions, attempts to manipulate or violate our policies, procedures, and terms and conditions, security incidents, and harm to the rights, property, or safety of Humana and our users, customers, employees, or others.
Use of Your Sensitive Personal Information
With regard to sensitive Personal Information, we only use your sensitive Personal Information to provide you with the requested products or services and to administer your account. We do not disclose Sensitive Personal Information for purposes other than those which cannot be limited under California law.
In addition to the purposes noted above, we generally collect and use your Personal Information to fulfill our business operations and provide the requested Services to you, such as processing or fulfilling claims, coordinating benefits, and processing payments; managing administrative matters such as invoicing, renewal, or to audit customer transactions; developing, maintaining, provisioning, or upgrading networks, Services, or devices; and conducting analytics to determine how to improve our Services and develop new ones. We may de-identify and aggregate your Personal Information to conduct analytics and improve our Services.
Disclosures of Personal Information
We respect the importance of privacy. Generally, we may disclose the Personal Information we collect to facilitate our communications with clients, to operate our business, to advertise or promote our Services, or with your consent.
We may disclose each category of your Personal Information to the following categories of third parties in the following ways:
- Affiliated Companies. We may disclose such Personal Information to subsidiaries, affiliates, or joint ventures as needed to provide our products and Services and generally as necessary in the administration of a global organization.
- Corporate Transactions/Purchasers. We may disclose your Personal Information in connection with a proposed or actual corporate merger, acquisition, consolidation, sale of assets, bankruptcy, insolvency, or other corporate change.
- Other Third Parties. We may disclose your Personal Information to legal, governmental, or judicial authorities, as instructed or required by those authorities or applicable laws, or in relation to a legal activity, such as in response to a subpoena or an investigation. We may also disclose such Personal Information if we believe disclosure is necessary to prevent physical, financial, or other harm, injury, or loss.
- Conferences and Events. We disclose your Personal Information to our partners and affiliates when you register or attend a webinar or in-person event hosted or co-hosted by Humana. If required, we provide you with notice during event registration where your information may be disclosed with our partners, for instance, to confirm your attendance at a webinar or event, to confirm sessions attended, or to confirm products purchased.
- De‑identified Personal Information. We may disclose or use aggregated or de-identified data for any lawful purpose. De‑identified information is generally not considered to be Personal Information under applicable laws.
- Other Disclosures Required by Law. We may disclose you Personal Information for legal reasons as we believe to be necessary or appropriate to: (a) satisfy any applicable law, legal process, or proper governmental request; (b) enforce any agreement we may have entered into with you or your organization, including investigating any violations or asserting remedies; (c) detect, prevent, or otherwise address fraud, security or technical issues; (d) protect against harm (whether tangible or intangible) to the rights, property, or safety of Humana, our users, or the public as required or permitted by law; and (e) establish or exercise our rights, defend against a legal claim, and investigate, prevent, or take action regarding possible illegal activities or a violation of our policies.
The time periods for which we retain your Personal Information depend on the purposes for which we use it and applicable law for the type of data and use. Humana will keep your Personal Information for as long as you are a registered customer or user of our Services or for as long as we have a valid business purpose to do so and, thereafter, for no longer than is required or permitted by law, as reflected in Humana’s internal Records Retention Policy.
Your Rights and Choices
Depending on where you are located, you may have additional rights, as detailed below.
- The right to access:You may have the right to obtain from us confirmation as to whether or not Personal Information concerning you is being processed, and, where that is the case, to request access to the Personal Information. This access to information includes the purposes of the processing, the categories of Personal Information concerned, and the recipients or categories of recipient to whom the Personal Information has been or will be disclosed, among other categories of information. However, this is not an absolute right and the interests of other individuals may restrict your right of access. You may have the right to obtain a copy of the Personal Information, subject to certain restrictions.
- The right to correction: You may have the right to request that we correct any Personal Information about you that is inaccurate. Depending on the purpose of the processing, you also have the right to request that we complete the Personal Information we hold about you where you believe it is incomplete, including by means of providing a supplementary statement.
- After completing the sign in process, website users have the option to change their password, email address, and security question and response. If the website user forgets or misplaces their password, Humana will use the security question and response to identify the website user and grant access to the website. To change personally identifiable information, registered members and patients must contact the appropriate Humana Customer Care representative listed on the Humana Customer Support.
- The right to deletion: You may have the right to request that we erase your Personal Information, under certain conditions. However, because we keep track of past transactions, you cannot delete information associated with past transactions on the website. In addition, it may be impossible or disproportionately burdensome to completely delete your information.
- The right to restrict processing: You may have the right to request that we restrict the processing of your Personal Information, under certain conditions. In such case, the data will be marked and may only be processed by us for certain purposes.
- The right to data portability: You may have the right to request that we transfer the Personal Information we have collected about you to another organization, or directly to you, in a structured, commonly used, and machine-readable format, under certain conditions.
- Humana does not have actual knowledge that it sells or shares the Personal Information of any individual under the age of 16.
- Right to limit the use and disclosure of sensitive Personal Information: We will only use sensitive or special Personal Information as needed for the purposes for which it was collected. If this changes, we will notify you, and you may have the right to restrict such additional uses.
We may, from time to time, send you email regarding Humana’s products and services. In addition, we may occasionally send you direct mail about products and services that we think may be of interest to you. Only Humana (or agents working on behalf of Humana) will send you emails and direct mailings. If you do not wish to receive such emails, you may opt out of future emails by following the directions at the bottom of each email. If you do not wish to receive such mailings, we provide contact information on our mailings at which you can request removal from our mailing list. Or, if you have a registered account, you can easily edit your account information to specify that you no longer wish to receive such emails and mailings.
When you opt in for our Text Message Service, we may also collect the information you provide, including your telephone number(s), when you read a text message, and information relevant to any request you make to opt out or unsubscribe from receiving Text Messages. Website users who do not wish to receive such notifications via email or SMS (text) can choose to opt out of receiving such information. It is our policy that email and SMS (text) messages will contain an “unsubscribe” and “STOP” function, along with instructions on how to execute the opt-out function. Some website users may have the ability to opt out of receiving email and SMS (text) messages by updating their communications preferences within the secured area of the website.
Exercising Your Rights
- Emailing us at Privacyoffice@humana.com; or
- Calling us at 1-866-861-2762
If you are a current or former California Humana employee, please reference our Humana Employee Policy.
If you are a California applicant, please reference our Humana Applicant Policy on Humana’s careers website at careers.humana.com.
If you choose to assert any of these rights under applicable law, we will respond within the time period prescribed by applicable law. Please note that many of the rights listed in the “Your Rights” section are subject to exceptions and limitations. Further, we may request additional information to respond to or fulfill any requests regarding your rights under applicable laws or regulations. Your rights and our responses will vary based on your country or territory of residency.
In certain jurisdictions, a person authorized to act on your behalf may make a verifiable consumer request related to your Personal Information. If you designate an authorized person to submit requests to exercise certain privacy rights on your behalf, we will require verification that you provided the authorized agent with such permission.
Your verifiable request must: (i) provide sufficient information (e.g., name, address, phone number, and/or email address) that allows us to reasonably verify that you are the person about whom we collected Personal Information or an authorized representative; and (ii) describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it. We will only use Personal Information provided in a verifiable consumer request to verify the requestor’s identity or authority to make the request.
Prior to complying with your request, we will need to verify your identity. Our verification procedure may differ depending on whether you have a registered account, the sensitivity of the Personal Information, and the risk of harm to you by unauthorized disclosure or deletion as applicable. You may also be asked to submit a signed declaration under penalty of perjury stating that you are the individual whose Personal Information is the subject of the request.
Internal Security Procedures
Information that you share on the website is kept strictly confidential and fully secure. Your encrypted (encoded) sensitive information is protected using “Secure Socket Layers (SSL)” as it passes between your browser and this website. We follow generally accepted industry standards to protect the Personal Information submitted to us, both during transmission and once we receive it.
No method of transmission over the internet, or method of electronic storage, is 100% secure. Therefore, while we strive to use commercially acceptable means to protect your Personal Information, we cannot guarantee its absolute security. Only authorized persons are permitted to access your Personal Information. All authorized persons must abide by security, privacy, and confidentiality agreements.
We do not knowingly collect, use, or disclose Personal Information about persons under 13 years of age. Users under the age of 13 should not submit any Personal Information to us. If you believe we have collected Personal Information from your child in error or have questions or concerns about our practices relating to children, please notify us using the details in the “Contact Us” section below. We will take prompt steps to remove the Personal Information from our systems.
We are committed to ensuring that our communications are accessible to people with disabilities. To make accessibility-related requests or report barriers, please see Humana Accessibility Resources.
This website is maintained by Humana, 500 W. Main St., Louisville, KY 40202. Questions concerning this website can be directed to the appropriate Humana Customer Care representative listed on the Customer Support section of this website.
You may also contact us by:
- Emailing us at Privacyoffice@humana.com; or
- Calling us at 1-866-861-2762
500 W. Main St.
Louisville, KY 40202