Last updated: September 6, 2025
Purpose
This Consumer Data Privacy Policy informs individuals—patients, prospective clients, healthcare professionals, and website visitors—about how AON collects, uses, stores, shares, and protects personal and sensitive information through our digital channels. It supports transparency, legal compliance (including HIPAA and applicable consumer privacy laws), and responsible data stewardship across all touchpoints.
We aim to ensure that individuals engaging with us online, whether for care, inquiries, or informational purposes, understand their rights and our obligations when handling their data.
Scope
This policy applies to all personal information and health-related data collected by AON through:
- Websites and landing pages
- Mobile apps and digital platforms
- Online forms and lead capture tools
- Email communications and digital advertising
- Chatbots, scheduling systems, and customer service tools
- Any third-party vendors or platforms used in connection with the above
The policy governs data collected from individuals interacting in a non-clinical context (e.g., interest in services or participation in campaigns) as well as from current or prospective patients. For patients receiving medical services, this policy works in conjunction with our official Notice of Privacy Practices.
This policy does not apply to:
- Information collected offline during clinical visits unless entered into digital systems
- Workforce or employee data
- De-identified or anonymized data that cannot be linked back to an individual
Policy
1. Information We Collect
We may collect the following types of information:
Required Fields
- First and last name
- Email address
- Phone number
Optional Fields
- Role/title (e.g., physician, administrator, investor)
- Practice size or number of providers
- Annual patient volume
- Current challenges or goals
- Areas of interest (e.g., services, solutions)
- Interest level in our offerings
- Timeline for decision-making
Some of this information may be considered Protected Health Information (PHI) or Personally Identifiable Information (PII) and is handled accordingly.
2. How We Use Your Information
- Respond to inquiries and provide requested information
- Customize content and marketing materials
- Improve our services and digital experience
- Send newsletters, updates, or promotions (with consent)
- Connect individuals with appropriate resources or representatives
- Comply with legal and regulatory obligations
4. Data Security
We implement industry-standard administrative, technical, and physical safeguards to protect your personal data from unauthorized access, use, or disclosure. Measures include:
- Data encryption
- Role-based access controls
- Secure data transmission
- Regular audits and monitoring
5. CAN-SPAM Act Compliance
- No false or misleading header information
- Accurate subject lines
- Identify messages as advertisements when applicable
- Include a valid physical postal address in every email
- Provide a clear and conspicuous opt-out mechanism
- Honor opt-out requests promptly (within 10 business days)
- Monitor third-party email marketing services for compliance
6. Your Rights and Choices
You have the right to:
- Request access to or correction of your personal data
- Opt out of marketing communications
- Request deletion of your information where applicable
- File a complaint regarding our data practices
To exercise any of these rights, contact us at privacy@aoncology.com.
7. Retention & Deletion
We retain personal data only as long as necessary to fulfill the purposes for which it was collected, comply with our legal obligations, resolve disputes, enforce our agreements, or as otherwise permitted by applicable law.
Where permitted by law, you may request the deletion of your personal data (excluding HIPAA-regulated protected health information) by contacting us at privacy@aoncology.com.
8. Children’s Privacy
Our site is aimed at users 18+. We do not knowingly collect personal information from minors under 18. If applicable, to delete, contact us at privacy@aoncology.com.
10. Compliance with HIPAA and Applicable Laws
If any collected data is subject to the Health Insurance Portability and Accountability Act (HIPAA), it will be treated in accordance with our HIPAA Notice of Privacy Practices. We also comply with relevant state privacy laws and federal consumer protection standards.
11. State Privacy Rights
- Residents of certain U.S. states have specific rights regarding their personal information under applicable state data privacy laws. These rights may include the ability to:
- Access the personal information we hold about you
- Request deletion of your personal information
- Correct inaccuracies
- Receive a portable copy of your data
- Opt out of the sale or sharing of your personal information
- Not be discriminated against for exercising your rights
- AON monitors evolving state privacy laws and updates its compliance practices accordingly. If you reside in a state that has enacted consumer data privacy legislation, we will honor the rights available to you under your state’s law.
- To exercise your rights, please contact us at privacy@aoncology.com. We may need to verify your identity before processing your request.
12. Changes to This Policy
We may update this policy from time to time. Any material changes will be communicated on our website with a revised effective date.
13. Contact Information
If you have questions or concerns about this policy or your data, please contact: privacy@aoncology.com.
References
- Health Insurance Portability and Accountability Act (HIPAA). U.S. Department of Health and Human Services. https://www.hhs.gov/hipaa
- CAN-SPAM Act, Controlling the Assault of Non-Solicited Pornography and Marketing Act, 15 U.S.C. §§ 7701–7713.
