Last Updated: May 2, 2017
To the extent that information collected through the Services is patient information provided to obtain pharmacy services, such information is governed by the CVS Caremark Notice of Privacy Practices. If you have questions about which policy applies to information you have provided, please do not hesitate to Contact Us, or call us toll-free at (800) 841 5550.
Who May Use the Services
The Services are not directed to users under the age of 13. We do not knowingly collect personal information online from any person we know to be under the age of 13, and we instruct users under 13 not to send any information to or through the Services.
The Services are designed for users from, and are controlled and operated by us from, the United States. By using the Services, you consent to the transfer of your information to the United States, which may have different data protection rules than those of your country.
The Personal Information We Collect
We want you to understand how personal information you provide to us is collected and used. We collect and store your personal information when you provide it to us or to our service providers, such as in the following situations:
Registration: We collect your personal information when you register on the Services.
Transactions: We collect personal information from you when you enter into a transaction with us.
Payment (Billing) Information: For all orders, we may ask for credit card, bank account, or other information necessary to process a payment from you. We may also ask for your shipping information.
Storage: If you choose to create an online account, we will store billing and shipping information as a convenience to you for future purchases, and we will store information about your orders for order tracking and status retrieval purposes.
Contact Information: We collect personal information from users of the Services who are interested in receiving information about our products or services, such as prescription benefit, disease management, and specialty pharmacy services, e-mail alerts, newsletters, and other notifications.
Surveys: From time to time, we request information from you via surveys. Participation in these surveys is voluntary. We request that you not provide personal health information in your survey responses. You may contact us regarding any survey as set forth under “Contact Information,” below.
Information from Your Health Plan or Employer: We receive certain personal information about you from your health plan or employer. If you have questions about the information your health plan or employer may have shared with us, please contact your health plan or your employer’s human resources department.
Use and Disclosure of Personal Information
We use your personal information to respond to your requests, such as to fulfill your order, contact you with information about your order, send you email alerts, send you newsletters, and provide you with related customer service. We may also use your information to send communications and administrative information to you, as permitted by law and our client agreements, including through the use of push notifications in our apps.
We may use personal information to personalize your experience on the Services, including by presenting products and content tailored to you, and for our business purposes, such as data analysis, audits, fraud monitoring and prevention, developing our Services and new products and services, determining the effectiveness of our promotional campaigns, and operating and expanding our business activities.
In the event that CVS Caremark or some or all of our business, assets, or stock are sold or transferred (including in connection with any bankruptcy or similar proceedings) or used as security, or to the extent we engage in business negotiations with third parties, personal information may be transferred to or shared with third parties as part of any such transaction or negotiation.
To the extent permitted by applicable law, we may provide personal information to our affiliated businesses or to our business partners.
We may disclose personal information to our service providers, who provide services such as website hosting, data analysis, payment processing, order fulfilment, information technology and related infrastructure provision, customer service, email delivery, auditing, and other services.
If we are requested by law enforcement officials or judicial authorities to provide personal information, we may do so. In matters involving claims of personal or public safety or in litigation where the information is pertinent (including to allow us to pursue available remedies or limit the damages that we may sustain), we may use or disclose personal information, including without court process. We may also use or disclose personal information to enforce our terms and conditions, to protect our operations or those of any of our affiliates, or to protect our rights, privacy, safety, or property and/or that of our affiliates, you, or others.
We may use and disclose personal information to investigate security breaches or to cooperate with authorities.
We may use and disclose information that does not personally identify you (including the information described under “Cookies and Other Technologies,” below) for any purpose, except to the extent limited by applicable law. If we are required to treat such information as personal information under applicable law, then we may use it for all the purposes for which we use and disclose personal information.
We may combine information that does not personally identify you with personal information. If we do, we will treat the combined information as personal information as long as it is combined.
In addition, we are not responsible for the information collection, use, disclosure, or security policies and practices of other organizations, such as Apple, Google, Microsoft, RIM, or any other app developer, app provider, operating system provider, wireless service provider, or device manufacturer.
We seek to use reasonable physical, technical, and administrative safeguards to protect personal information within our organization. Unfortunately, no data transmission or storage system can be guaranteed to be 100% secure. If you have reason to believe that your interaction with us is no longer secure (for example, if you feel that the security of your account with us has been compromised), please immediately contact us in accordance with the “Contact Information” section below.
You are responsible for maintaining the confidentiality of your Services access information and password and for restricting access to your device, and you agree to accept responsibility for all activities that occur under your password.
Cookies and Other Technologies
Cookies are small computer files we transfer to your computer's hard drive. These small text files help us personalize content on our pages and provide programs like e-coupons. Your browser software can be set to reject or accept cookies. Instructions for resetting the browser are available in the Help section of most browsers.
Your IP address is a number that is automatically assigned to the computer that you are using by your Internet Service Provider. An IP address may be identified and logged automatically in our server log files whenever a user accesses the Services, along with the time of the visit and the page(s) visited. Collecting IP addresses is standard practice and is done automatically by many websites, applications, and other services. We use IP addresses for purposes such as calculating usage levels of the Services, helping diagnose server problems, and administering the Services.
We may use Adobe Flash Local Stored Objects (“LSOs”) and other technologies to, among other things, collect and store information about your use of the Services. If you do not want Flash LSOs stored on your computer, you can adjust the settings of your Flash player to block Flash LSO storage using the tools contained in the Website Storage Settings Panel. You can also control Flash LSOs by going to the Global Storage Settings Panel and following the instructions (which may include instructions that explain, for example, how to delete existing Flash LSOs (referred to as “information” on the Macromedia site), how to prevent Flash LSOs from being placed on your computer without your being asked, and (for Flash Player 8 and later) how to block Flash LSOs that are not being delivered by the operator of the page you are on at the time). Please note that setting the Flash Player to restrict or limit acceptance of Flash LSOs may reduce or impede the functionality of some Flash applications.
We may also use third parties to display goods and services that may be of interest to you when you access and use the Services or other online services, based on information relating to your access to and use of the Services and other online services. To do so, these companies may place or recognize a unique cookie on your browser (including through the use of pixel tags). If you would like more information about this practice and to learn about your choices in connection with it, please visit http://www.networkadvertising.org/managing/opt_out.asp and http://www.aboutads.info/.
We do not respond to browser do-not-track signals.
We and our service providers may collect the physical location of your device by, for example, using satellite, cell phone tower, WiFi signals, beacons, Bluetooth, and near field communication protocols, when you are in or near a CVS store. We may use your device’s physical location to provide you with personalized location-based services and content. We may also use such information to understand traffic patterns in, near, and across our store locations. We may share aggregated statistics derived from the location and other information we collect with advertisers and other third parties. You may be permitted to allow or deny collection of your device’s location, such as through the settings on your mobile device and/or, to avoid the collection of location by beacons, by disabling Bluetooth. If you choose to deny such collection, we and our service providers may not be able to provide you with certain personalized services and content.
Fraudulent Sites, Spam & Phishing
Please be aware that there may be fraudulent websites that illegally use CVS Caremark logos and other aspects of the CVS Caremark brand. CVS Caremark is in no way associated with any fraudulent websites. These sites may circulate their presence on the internet via spam email or through fraudulent phishing practices.
These sites have not been authorized by CVS Caremark to use our name, and we work aggressively to identify their source and have them shut down. If you are in receipt of this type of spam email, to help protect your privacy you should avoid replying to it or forwarding it to other people.
In addition to our official websites, CVS Caremark works with a number of third parties that host websites and micro-sites that provide information and services to our customers. If you are concerned that a website or an email may be fraudulent, please contact us by phone at (800) 841 5550 with your concerns.
Your Choices and Access
You can manage your communications preferences in your Account Profile in the My Account section. You may control the receipt of push notifications from a CVS Caremark app through your mobile device settings.
You can request the removal or modification of the personal information you have provided to us by sending an email to the appropriate area under “Contact Information”. For your protection, we may only implement requests with respect to the personal information associated with the particular email address that you use to send us your request, and we may need to verify your identity and obtain information on the context in which you provided your personal information before implementing your request. We will try to accommodate your request as soon as reasonably practicable.
Please note that we may need to retain certain information for recordkeeping purposes and/or to complete any transactions that you began prior to requesting such change or deletion. There may also be residual information that will remain within our databases and other records, which will not be removed.
By establishing an account with us, you agree that it is your responsibility to:
- Authorize, monitor, and control access to and use of your account, User ID, and password.
- Promptly inform us of any need to deactivate a password or an account by calling Customer Care at (800) 841-5550.
You may also contact the CVS Caremark Customer Advocate Team at the following address:
Attn: Customer Advocate Team
7034 Alamo Downs Parkway
San Antonio, Texas 782238