Effective Date: January 2, 2021
- What if I access this site from outside the U.S.?
This website is designed for use within the United States. If you access this site from outside the U.S., you are accepting that your information will be captured and stored by a U.S.-based server and will be subject to U.S. laws and regulations. You further accept responsibility for compliance with any applicable foreign laws and regulations.
- What is an internet "cookie"?
- Does this site use internet cookies?
Yes. Private internet cookies are required in order to enable the full functionality of the Centennial Rewards program website. These cookies are not shared with third-party sites. We collect anonymous traffic data about visitors to this website using Google Analytics, including IP address, device type and capabilities, OS version, browser type and capabilities, number of visitors, length of visits, and time spent on pages.
We may use this information to evaluate your use of the site, compile activity reports for website operators, provide other services relating to website activity and internet usage, and for any other lawful purpose. This data may also be shared with other third-party companies that provide products or services to you (e.g., your health plan, health care provider, health coaching provider, or another third-party health services entity) or to comply with a court order or other legal requirement.
If you affirmatively provide us with personally identifiable information, read the following section.
- What if I voluntarily submit personal information to the Centennial Rewards program?
We may collect personal information about you in association with your participation in the Centennial Rewards program. If you contact the Centennial Rewards program or otherwise voluntarily submit personally identifiable information (e.g., your name, email address, phone number, credit card number, account numbers, etc.), the Centennial Rewards program may use your information to
- provide you with a more personalized user experience
- process your application or registration
- send you Reward Alerts and other notifications related to your participation in the Centennial Rewards program
- process your rewards orders
- reply to phone calls, emails, text messages, or other communications received from you
- recommend learning modules or other wellness activities and programs
- monitor, track, compile, and report your health status and participation in the rewards program
- compile and report data to HSD and your health plan
- compile and report aggregate or anonymous data to your health plan or other third parties
- protect the legal rights of HSD, your health plan, Finity, and the Centennial Rewards program
- comply with applicable subpoenas, laws, and regulations
- fulfill any other lawful purpose
- Does the Centennial Rewards program collect information protected by HIPAA?
Yes, the Centennial Rewards program may collect information that is protected by the Health Insurance Portability and Accountability Act of 1996 and related laws and regulations (the "HIPAA rules").
The HIPAA rules protect the privacy and security of protected health information (PHI). This includes information that personally identifies an individual or that may be used to identify an individual. Examples of PHI include
- your name, address, date of birth, health plan member ID, and Social Security number
- your past, present, or future physical or mental health or condition
- the provision of health care to you
- the past, present, or future payment for the provision of health care to you
The HIPAA rules protect all PHI from improper use or disclosure by Covered Entities (such as health plans) and certain Business Associates. Finity is not a Covered Entity under HIPAA; however, we may be a Business Associate of a Covered Entity from whom we receive your information. For example, we may perform certain services for health insurance companies sponsoring your access to this site. In instances where Finity is a Business Associate or handling your PHI, we will comply with all HIPAA requirements and all terms of the pertinent Business Associate agreement.
This site and all other aspects of the Centennial Rewards program are designed to comply with the applicable HIPAA rules. We collect PHI that you voluntarily submit when you register for the Centennial Rewards program or take part in any wellness activities and programs made available through the program. For example, as part of the registration process for a wellness challenge or health activity, you may be asked to submit your name, age, height, weight, health conditions, health risk factors, etc.
Although this site and the products and services offered through Finity are not intended for use by children, we are committed to compliance with the Children's Online Privacy Protection Act, 15 U.S.C. §6501-6506. Parents, managing conservators, and legal guardians may have the opportunity to voluntarily submit personally identifiable information or PHI on behalf of their children. Any such information is only obtained upon parent/guardian consent. Any personally identifiable information or PHI submitted on behalf of children will be used in the same manner and for the same purposes as information collected for adults accessing this site.
- Does this site collect genetic information?
No. The Centennial Rewards program does not collect genetic information for any purposes that are prohibited by the Genetic Information Nondiscrimination Act of 2008 (GINA). GINA generally prohibits health plans from collecting genetic information, including family medical history, prior to or in connection with enrollment, for underwriting purposes, or as part of a health risk assessment.
- Does this site collect Social Security numbers?
Yes. The Centennial Rewards program uses your Social Security number when you register for the program. We may also use it to help confirm your identity when you contact Centennial Rewards Customer Service. We use advanced encryption, security technology, and strict procedures to protect your Social Security number from unauthorized use or disclosure.
- How do you use my personal information?
The Centennial Rewards program does not sell any of the personally identifiable information we collect. In the course of providing service to you, we may share your personal information with your health plan for the purpose of administering the Reward Program, including forwarding your current and previous contact information. We may also share some of your personal information with other third-party health service entities, or to comply with a court order or other legal requirement.
We may also remove all personal identifiers from your PHI through a process known as de-identification, in accordance with HIPAA regulations. Once de-identified, the information can no longer be tied to you or used to identify you in any way. The de-identified information we collect and create is compiled in large volumes for the purpose of performing statistical analysis.
- How does this site protect personal information?
The Centennial Rewards program uses advanced encryption, security technology, and other safeguards to prevent unauthorized access to this website and to maintain the privacy and security of collected data and information. We are not responsible for any harm that may occur if you voluntarily or accidentally disclose your PHI or personal information, including your username or password, to any third parties.
- Can I opt out of receiving communications?
Yes. You can change your communication preference for the rewards program or opt out of certain reward communication media in the My Account section of centennialrewards.com. You may also call us at 1-877-806-8964 (TTY: 1-844-488-9722) to opt out.
Please be advised that you may not be able to opt out of certain required system messages used to verify your identity or service your account. Finity also has no control over the opt-out policies of other companies, including your health plan.
- Will you publicize my name if I earn a reward?
The Centennial Rewards program will not use your name, image, or likeness for publicity purposes unless you give us written permission.
- Is information I provide by email secure?
Email can be an insecure mode of communication. Emails may be misdirected, redirected, forwarded, or shared with or without your permission. We recommend that you carefully consider the information you transmit by email, especially personally identifiable information and PHI.
- How do I correct errors in my personal information?
Call us at 1-877-806-8964 (TTY: 1-844-488-9722) if you believe there is an error in your personal information on the Centennial Rewards website.
- Governing jurisdiction and conflict of laws
You further expressly consent to the exercise of personal jurisdiction in the federal court of New Mexico or the state courts of Santa Fe County, New Mexico in connection with any dispute involving the Centennial Rewards program, its affiliates, subsidiaries, employees, contractors, officers, directors, administrators, and telecommunication providers.
- Contact us for more information
Call us at 1-877-806-8964 (TTY: 1-844-488-9722) if you have questions or would like more information about the Centennial Rewards program.