Web Site Security
General Practices and Policy Statement
Oxford Health Plans recognizes its obligation to its customers, community, and online visitors to adhere to the highest standards of decency, fairness, and integrity in all its operations. Likewise, we are dedicated to the fundamentals of protecting consumer privacy on the Internet. The information below offers a comprehensive overview of how Oxford handles information provided on our web server at https://www.oxfordhealth.com.
E-mail is an important option you can elect to receive relevant information from Oxford. E-mail addresses will not be sold to any third party; they are strictly for Oxford use. E-mail is not a secure method of communication, so in an effort to protect you, we urge you not to send any vital information via e-mail to us.
Oxford has taken steps to make all information received from our online visitors as secure as possible against unauthorized access and use. All information is protected by our security measures, which are periodically reviewed.
We use the latest security technology to protect you during your Internet transactions. This security includes server authentication (thwarting impostors), privacy using encryption (thwarting eavesdroppers), and data integrity (thwarting vandals).
For other than general information viewing, Oxford's web site must be used with a Secure Sockets Layer (SSL) compatible browser or terminal (for example, Netscape or Internet Explorer versions 3.0 or greater). Our SSL web server uses authentication and offers the highest level (128-bit RC4) of encryption technology commercially available.
You can tell when you are secure by looking at the location (URL) field. If the URL begins with https:// (instead of http://), the document comes from a secure server. This means your data cannot be read or deciphered by unauthorized individuals. You can tell whether you are truly connected to Oxford Health Plans by viewing the digital certificate. This certificate verifies the connection between the Oxford server's public key and the server's identification (just as a driver's license verifies the connection between your photograph and your personal identification). Cryptographic checks, using digital signatures, ensure that information within a certificate can be trusted.
User names and passwords provide two layers of authentication. Passwords and user names are stored in an encrypted database that is isolated from the Internet.
You have the ability and right to exit and not continue to remain in an active session on the Oxford site if you do not agree with the above privacy and security policies. If you remain in session with the site, you implicitly consent to our security policy.