Privacy Policy

Preamble

Pursuant to the fundamental philosophy of the American constitutional form of government, it is declared to be the public policy of the state of Illinois that all persons are entitled to full and complete information regarding the affairs of government and the official acts and policies of those who represent them as public officials and public employees. Access to this information is not intended to be used to violate individual privacy, nor to further a commercial enterprise, nor to disrupt the duly-undertaken work of any public body independent of the fulfillment of any rights of the people to access information.

Purpose

The purpose of the Illinois Department of Public Health Information information services privacy policy is to clearly communicate the Department's privacy expectations to users of the Department's Web site. Users should have the expectation of complete privacy, except in the case of suspected wrongdoing.

Illinois Department of Public Health Privacy Statement

Information collected and received through the Department's Web site may become public record and therefore subject to disclosure under the Illinois Freedom of Information Act. It is, therefore, the policy of the Department that no personal information provided to the agency, including, but not limited to, name, address, telephone number, drivers license number, Social Security number and e-mail address, will be sold or rented to any entity or individual or disclosed to an unauthorized entity or individual. The release of personal information by the departments under the control of the governor are limited, according to Illinois law, to state government agencies and/or to authorized department contractors or grantees.

Ownership

Electronic files created, sent, received, or stored on computers owned, leased, administered, or otherwise under the custody and control of the Department are the property of the Department.

Personal Information and Choice

"Personal information" about an individual is that which readily identifies a specific individual. Personal information includes identifiers such as an individual's name, address, phone number, drivers license number and Social Security number. A domain name or Internet protocol address is not considered personal information.

The Department collects no personal information unless the user voluntarily participates in an activity that asks for such (e.g., sending an e-mail or participating in a survey). If the user chooses not to participate in these activities, the choice will in no way affect the ability to use any other feature of state of Illinois Web sites. If personal information is requested on the Web site or is volunteered by the user, state law and the federal Privacy Act of 1974 may protect it. However, this information is a public record once it is provided to the Department, and may be subject to public inspection and copying if not protected by federal or state law.

Policies for Individuals Younger than 13 Years of Age

The state of Illinois is committed to complying fully with the Children's Online Privacy Protection Act. Accordingly, if the user is younger than 13 years of age, he/she is not authorized to provide the Department with personal identifying information, and the Department will not use any such information in any database or other data collection activities. Cooperation with this federally mandated requirement is appreciated by the Department. Users are cautioned that the collection of personal information volunteered by children online or by e-mail will be treated the same as information given by an adult and may be subject to public access.

Public Access Privacy Policy

The following statement applies only to members of the general public and is intended to address concerns about the types of information gathered from the public, if any, and how that information is used.

I. Cookies

A "cookie" is a small file containing information that is placed on a user's computer by a web server. Typically, these files are used to enhance the user's experience of the site, to help users move between pages in a database, or to customize information for a user.

Several Department Web pages are set up to use "cookies" to enhance a user's experience with the agency's site. Cookies are text files placed on a user's computer to store preferences and session information only. By themselves, they do not reveal e-mail addresses or other personally identifiable information unless the user chooses to provide this information.

II. Logs and Network Monitoring

The Department maintains log files of all access to its site and also monitors network traffic for the purposes of site management. This information is used to help diagnose problems with the server and to carry out other administrative tasks. Log analysis tools are also used to create summary statistics to determine which information is of most interest to users, to identify system problem areas, or to help determine technical requirements.

Information such as the following is collected in these files:

  • Date and time: date and time user accesses the site
  • Client IP address: IP address client is coming from
  • User name: name of the user who accesses the Web site
  • Service name: Internet service that was running on the client computer
  • Server IP: IP of the server where the log file was generated
  • Server name: name of the server where the log file was generated
  • Hostname: hostname and/or IP address of the computer requesting access to the site
  • User-Agent: type of browser, its version, and the operating system of the computer requesting access (e.g., Netscape 4 for Windows, IE 4 for Macintosh, etc.)
  • Referrer: Web page the user came from
  • System date: date and time on the server at the time of access
  • Full request: exact request the user made
  • Status: status code the server returned, e.g., fulfilled request, file not found
  • Content length: size, in bytes, of the file sent to the user
  • Method: request method used by the browser (e.g., post, get)
  • Universal Resource Identifier (URI): the location of the particular resource requested, e.g., Web page, CGI program or script
  • Query string of the URI: anything after a question mark in a URI. For example, if a keyword search has been requested, the search word will appear in the query string.
  • HTTP status: status of the action, in HTTP terms
  • WIN32 status: status of the action in NT terms
  • Bytes sent: number of bytes sent by the server
  • Bytes received: number of bytes received by the server
  • Time taken: length of time the action took
  • Protocol: technical protocol and version used, e.g., http 1.0, ftp, etc.
  • Cookie: content of the cookie sent and received, if any

The above information is not used in any way that would reveal personally identifiable information to outside parties unless the Department is legally required to do so in connection with law enforcement investigations or other legal proceedings.

III. e-mail and Form Information

If a member of the general public sends the Department an e-mail message or fills out a web-based form with a question or comment that contains personal identifying information, that information will only be used to respond to the request and to analyze trends. The message may be redirected to another government agency or person who is better able to answer the question. Such information is not used in any way that would reveal personal identifying information to outside parties unless the Department is legally required to do so in connection with law enforcement investigations or other legal proceedings.

IV. Links

This site may contain links to other sites. The Department is not responsible for the privacy practices or the content of such Web sites.

V. Security

This site has security measures in place to protect from loss, misuse and alteration of the information.

Contacting the Illinois Department of Public Health about this Privacy Statement

If there are any questions about this privacy statement, contact - DPH.MAILUS@illinois.gov