Privacy & Security Statement

Our Commitment
This Web site is designed to respect the privacy concerns and rights of those who use it.  

Our intent is to assure our customers and users of the following:

1. This Web site is designed and operated to be a "Trustworthy System." This designation means computer hardware, software, and procedures (a) are reasonably secure from intrusion and misuse, (b) provide a reasonable level of availability, reliability, and correct operation,  (c) are reasonably suited to performing their intended functions, and (d) adhere to generally accepted security procedures. However, we cannot guarantee the Web site and software-generating reports will perform reliably and without error.

2. The information gathered and stored on this Web site is contractually protected.

3. This Web site does not provide treatment, evaluation or diagnostic services. Only a qualified or licensed health care professional can legally diagnose and treat medical and mental health problems. Our software helps systematically gather and organize clinical and behavioral information. Our reports identify issues and raise statistically relevant concerns that you can discuss with a qualified health care professional and/or educational consultant. Options are presented and recommended but should not be acted upon without consultation with a qualified health care professional or educational consultant.

4. Information gathered at this site will not be viewed or released by us to 3rd parties.  With the exception of approved internal research, your consent, your explicit written permission or a valid court order would be necessary for such release.

5. We do not collect any personal information from a visitor to our site unless that visitor explicitly and intentionally provides this information.

Mentor Research keeps all survey responses and results private.
This information is considered private rather than privileged, as would be the case of communications in established doctor-patient relationships. An agreement such as contained here can be more private than a doctor-patient treatment relationship - especially in  cases in which people use health insurance to pay for an appointment. Health insurance in many cases will release information to numerous organizations, businesses and people affiliated with their organization without your knowledge or consent. We will not release behavioral and health survey information without your consent or a lawfully executed court order.

The user accepts responsibility for the security of their personal password and user name. No one will know that you used this Web site unless you tell them, make that information available to them, they have access to records on your computer or you given them your username and password. Speak with a qualified computer technician if you have concerns about records that could be on your computer. Using a computer at your work place may not be secure. Employers can and may have the ability to monitor computer activities. Anyone with an authorized username and password can access the associated report. We believe our reports are stored and transmitted in a manner that is more secure than US Postal Service mail or any information retained in a physician's medical files.

Reproduction of Materials
All test items, normative data, and related materials are copyrighted. No questionnaire materials may be reproduced without permission. Authorized users may copy and use reports for their personal use at their own discretion.

Sharing Information
The user is cautioned: DO NOT release or share this information with anyone who might use it inappropriately. The material is sensitive and should be kept private. The information contained in each report is designed for use by parents, care-givers and qualified professionals. The results should not be given to the child in question to read without consultation and the approval of a qualified mental health care professional. Giving a report to a child may cause undue distress.

Security
Our screening program, StepOne For Parents, is using state-of-the-art secure server connection to protect your information and transaction. We send all data and transactions to a secure internet computer server at https//:www.HealthSecure.Net. This Web site uses 128-bit encryption. This level of security means no one will be able to intercept and read your information as it is transmitted over the Internet. This level of security is referred to as an RCA-128 standard. It is the highest standard available to the public and is virtually unbreakable. The actual server is in a secure room with key-card access to authorized personnel only. There is 24 hour video monitoring and recording of people entering and using the facility. All data is subject to daily backup and all data is instantly duplicated on the server as an immediate backup.

You can confirm that any page and information you are sending is secure in one of a few different ways. If you are able to see the page's address, look for the "s" in the "https" of the address line (example: https://www.HealthSecure.Net). )The "s" is not red on your browser but is colored here so that you can see where it is located. The "s" means that page is using something called a secure socket layer (SSL) to protect information on that page. The other way to know if the page and information is secure is to look for a small symbol of a padlock at the lower right side of your Web browser.

System Logout and Record Lock Features
The InCrisis server protects sensitive information using automated system logout and record lock procedures.  Encryption keys are rotated dynamically. The InCrisis server initiates a lockout as an active parameter in the system when the user exits a page. The system also logs out when the user leaves the site.  A brief interval of time is required. All information on the screen is saved and open record locks are released when the user session is logged out.  When the user has completed their questionnaire the data is locked upon printing their report. The data can only be accessed by making arrangements with the developers.

Internal Security
Access to client data is granted to contracted programmers, system developers, customer support, consulting health care professionals, education professionals and administrators who are in developing this resources. Information provided is not part of a confidential health or treatment record. Our relationship with customers is not that of a treatment provider. However the data is treated as private. .

Credit Card Fraud
We will cooperate fully with any legally authorized law enforcement investigations pertaining to credit card fraud or the use of stolen cards. This means we will cooperate with a legitimate law enforcement investigation where the risk of credit card fraud has been established. We will release identifying information regarding the purchaser, parent or caregiver but not information related to their child's health and behavior. We will also cooperate with any legal or ethical activity necessary to protect the life and physical safety of a child.

E-mail
We are very sensitive and aware of the problems associated with spam and viruses. Clients must provide an e-mail address in order to set up an account and process data. All e-mail addresses will be kept private in a secure server with three levels of security including RAD-128 standards. E-mail addresses will not be distributed, sold or made available to third parties. 

Web Site Traffic Information
Because of the way the World Wide Web communication standards work, when you arrive at or leave our Web site, we automatically receive the Web address of the site that you came from or are going to. We also collect information on which pages of our Web site you visit while you are on the Web site, the type of browser you use and the times you access our Web site. We use this information only to understand our customers' preferences better and to manage the demands on our computer server to improve our service. We do not track the Web sites that you visit before or after you leave our Web site.

Use of "Cookies"
We do NOT use cookies. "Cookies" are small files of data that reside on your computer and allow us to recognize you as a customer if you return to our site using the same computer and browser. We may send a "session cookie" to your computer if and when you log in to your account by entering your username and password. These cookies allow us to recognize you if you visit multiple pages on our site during the same session so that you don't need to re-enter your password multiple times. Once you log out or close your browser, these session cookies expire and no longer have any effect.

Customer Service Correspondence
If you send us correspondence, including e-mails and faxes, we retain such information in the records of your account. We will also retain customer service correspondence and other correspondence from our Web site to you. We retain these records in order to measure and improve our customer service and to investigate potential fraud and violations of our User Agreement. We may, over time, delete these records as permitted by law.

Questionnaires, Surveys and Profile Data
From time to time, we offer optional questionnaires and surveys to our customers for such purposes as collecting demographic information or assessing customer interests and needs. The use of the information collected will be explained in detail in the survey itself. If we collect personally identifiable information from our users in these questionnaires and surveys, the users will have the option not to allow their survey data to be used for research.  All identifying information will be removed when we conduct research.

What Information Might Be Collected from Visitors?
Whenever someone visits this web site, we may collect and store the following information: the name of the domain from which that person accesses the Internet, the date and time, the Internet address that the person left in order to visit our site, and the various pages the person visits while looking at our site.

Release of Information
Our communications will never sell or give personal identifying information about its customers or prospective customers to any outside organization for solicitation purposes. We will not share or disclose information regarding its customers or prospective customers except (i) when we receive legal process such as a court order; (ii) when reasonably necessary to protect employees or assets; (iii) for internal research, (iv) with your written permission, or (v) in emergencies where someone's safety is at risk.

Contacting the Web Site
Should you have questions or concerns about privacy issues, the practices of the site or your dealings with this Web site, you can contact our support team.