Disclosure of Non-Public Personal Information:
We restrict access to nonpublic personal information unless it is needed to complete a transaction that our member has authorized (i.e. claims administration, adjustment and management; detection, investigation or reporting of actual or potential fraud; misrepresentation or criminal activity; underwriting; policy placement or issuance; loss control; ratemaking and guaranty fund functions; reinsurance and excess loss insurance; risk management; case management; disease management; quality assurance and improvements; utilization review, actuarial, scientific, medical or public policy research; grievance procedures, audits, etc). Information is shared with entities (i.e. providers and vendors) that assist BCBST in supplying products and services to our members or that promote products and services on behalf of BCBST. Information is provided to nonaffiliated third parties as required or allowed by federal and state law. BCBST maintains physical, electronic, and procedural safeguards that comply with federal regulations to guard your nonpublic personal information.
We reserve the right to disclose personal information to entities that perform marketing services (i.e. brokers) on our behalf or to other institutions with which we have joint marketing agreements. BCBST requires each entity to execute a Confidentiality Agreement prior to disclosure. The following information may be shared:
- name, address and telephone number;
- social security number and date of birth;
- policy coverage, benefits, premiums and payment history; and
- limited medical information (i.e. provider name, date of service, referral and authorization information, primary care physician).
Retention of Information Collected:
Any non-public personal information collected and maintained from this Web site will be retained for a minimum of six years from the date the information is received unless you perform a function on our Web site that requires the use of this information at a later date. In that case, the information will be retained for a minimum of six years from the date the information was last used in a function on the Web site. When required by federal or state law, there may be some instances in which your information will be retained longer than six years.
A “cookie” is a mechanism that permits a Web server to send small pieces of information or text through your browser to be stored on your hard drive. This information or text allows the server to identify frequent visitors and enhance the user’s experience on the Web site.
Your browser software can be set to disallow all cookies. Instructions on setting your browser to reject cookies are usually located in the "Help" section of the toolbar, depending on your browser type. If you choose not to accept our cookies, you should still be able to access most of the public areas of our site, although some of the features of interactive sections may be limited, and we will not be able to authenticate you for the non-public secure sections where a logon is required.
Spyware refers to types of software programs, downloaded to a consumer's personal computer either as a stand-alone application or as part of a software bundle, that collect (i) information about a consumer's internet activities or (ii) other personal information, without providing meaningful notice to the consumer or obtaining the consumer's consent. Spyware may gather personally identifiable information, such as e-mail addresses and credit card information, and may even alter personal computer settings. Spyware is often extremely difficult to remove once installed. BlueCross BlueShield of Tennessee believes that Spyware is a threat to consumer privacy and forbids any employee, agent, partner, affiliate or contractor to deploy or use Spyware.
BCBST provides its members and users the opportunity to ‘‘opt-out’’ of having their information used for purposes not related to the BCBST Web site when BCBST requests such information. Users who wish to opt-out can do so by contacting us via our Member Contact Page. This opt-out only applies to information collected during the web site registration process and does not affect infomation obtained by BCBST by any other means. BCBST will not use your information collected by the BCBST Web site for marketing purposes unless allowed by State and Federal Law.
Correction/Updating Personal Information
If the personally identifiable information of a user of our services changes or a group’s information changes, or if the user or group no longer desires to use the services on this web site, BCBST will endeavor to provide a way to correct, update or remove that user’s personal data. Personal data that is removed from our systems cannot be removed from backup files stored prior to your request. To correct or update personal information, contact BCBST via our Member Contact Page.
BCBST takes precautions to protect its users’ personal non-public information. When users submit sensitive information to BCBST, the information is protected both online and off-line.
When the registration/login form asks users to enter sensitive information, that information is encrypted and is protected with the encryption software, specifically SSL 3.0, RC4 with 128 bit encryption (High) which may be updated from time to time. While on a secure page, such as the login page, the lock icon on the bottom of web browsers such as Netscape Navigator and Microsoft Internet Explorer becomes locked, as opposed to unlocked, or open, when you are just ‘‘surfing’’.
While BCBST uses SSL encryption to protect sensitive information online, BCBST protects user-information off-line. Only employees who need the information to perform their jobs are granted access to personally identifiable information. BCBST employees must use password-protected screen-savers when they leave their desk. When they return, they must re-enter their password to re-gain access to your information. Furthermore, all employees are kept up-to-date on BCBST security and privacy practices. Finally, the servers that store personally identifiable information are kept in a secure environment.