Visor del documento
Nombre Último Cambio
VIDA Diagnostics (en) - Política de Privacidad y Puerto Seguro 24-may-2017 | 0,34%
Cambio no importante
# Antigua Versión Nueva Versión
0 VIDA Diagnostics, Inc. VIDA Diagnostics, Inc.
1 Precision Pulmonary Imaging Precision Pulmonary Imaging
2 VIDA Diagnostics, Inc. VIDA Diagnostics, Inc.
3 About About
4 News News
5 Investors Investors
6 HIPAA HIPAA
7 EU Privacy Policy EU Privacy Policy
8 Solutions Solutions
9 VIDA|vision VIDA|vision
10 Applications Applications
11 Clinical Trial Services Clinical Trial Services
12 Contact Contact
13 Careers Careers
14 Support Support
15 LinkedIn LinkedIn
16 Twitter Twitter
17 Facebook Facebook
18 EU Privacy Policy EU Privacy Policy
19 Home Home
20 About About
21 EU Privacy Policy EU Privacy Policy
22 EU Privacy Policy EU Privacy Policy
23 Last Updated: 4/24/2017 Last Updated: 4/24/2017
24 At VIDA Diagnostics Inc. (together with any affiliates henceforth referred to as “VIDA,” “Us,” and “We”), we value and respect individual privacy and are strongly committed to safeguarding personal data, including health data. VIDA provides certain software and services that are routinely used by health care providers and others in clinical practice, along with academic, device, and pharmaceutical clinical trials. In conjunction with our software and services, we may receive, transmit, store and otherwise use personal data from our customers. VIDA may access this personal data to provide the software or services, to correct and address technical or service problems, to follow instructions of the customer who submitted the data, or in response to contractual requirements At VIDA Diagnostics Inc. (together with any affiliates henceforth referred to as “VIDA,” “Us,” and “We”), we value and respect individual privacy and are strongly committed to safeguarding personal data, including health data. VIDA provides certain software and services that are routinely used by health care providers and others in clinical practice, along with academic, device, and pharmaceutical clinical trials. In conjunction with our software and services, we may receive, transmit, store and otherwise use personal data from our customers. VIDA may access this personal data to provide the software or services, to correct and address technical or service problems, to follow instructions of the customer who submitted the data, or in response to contractual requirements
25 In order to ensure compliance by us and our customers based in the European Union (EU) and European Economic Area (EEA) with the applicable privacy laws, VIDA offers its customers Standard Contractual Clauses (henceforth referred to as “The Model Clauses”) to incorporate in our written agreements. The Model Clauses make specific commitments about the ways in which VIDA will process personal data transferred to VIDA for in-scope VIDA services and cannot be modified. The Model Clauses were issued by the EU Commission to provide EU data Controllers a framework for ensuring adequate safeguards consistent with EU data protection laws are established for personal data transfers outside the EU, in compliance with the principles of Article 17 (4) of Directive 95/46/EC of the European Parliament (the “Directive”) or, as of its entry into force, Article 28 (3) of Regulation (EU) 2016/679 of the European Parliament (the “Regulation”). In order to ensure compliance by us and our customers based in the European Union (EU) and European Economic Area (EEA) with the applicable privacy laws, VIDA offers its customers Standard Contractual Clauses (henceforth referred to as “The Model Clauses”) to incorporate in our written agreements. The Model Clauses make specific commitments about the ways in which VIDA will process personal data transferred to VIDA for in-scope VIDA services and cannot be modified. The Model Clauses were issued by the EU Commission to provide EU data Controllers a framework for ensuring adequate safeguards consistent with EU data protection laws are established for personal data transfers outside the EU, in compliance with the principles of Article 17 (4) of Directive 95/46/EC of the European Parliament (the “Directive”) or, as of its entry into force, Article 28 (3) of Regulation (EU) 2016/679 of the European Parliament (the “Regulation”).
26 The Model Clauses are applicable only to Personal Data (defined below) made available to VIDA by customers in the EEA or Switzerland to VIDA for processing in conjunction with VIDA software and services. The Model Clauses are applicable only to Personal Data (defined below) made available to VIDA by customers in the EEA or Switzerland to VIDA for processing in conjunction with VIDA software and services.
27 VIDA has invested in the operational processes necessary to meet the requirements of The Model Clauses. VIDA has invested in the operational processes necessary to meet the requirements of The Model Clauses.
28 The following sets forth VIDAs privacy policy within the framework of The Model Clauses. The following sets forth VIDAs privacy policy within the framework of The Model Clauses.
29 DEFINITIONS DEFINITIONS
30 ‘Controller’ means the natural or legal person, public authority, agency or any other body which alone or jointly with others determines the purposes and means of the processing of personal data ; where the purposes and means of processing are determined by national or Community laws or regulations, the controller or the specific criteria for his nomination may be designated by national or Community law; ‘Controller’ means the natural or legal person, public authority, agency or any other body which alone or jointly with others determines the purposes and means of the processing of personal data ; where the purposes and means of processing are determined by national or Community laws or regulations, the controller or the specific criteria for his nomination may be designated by national or Community law;
31 ‘Data Exporter’ means the controller who transfers the personal data; ‘Data Exporter’ means the controller who transfers the personal data;
32 ‘Data Importer’ means the processor who agrees to receive from the data exporter personal data intended for processing on his behalf after the transfer in accordance with his instructions and the terms of the Clauses and who is not subject to a third country’s system ensuring adequate protection within the meaning of Article 25(1) of Directive 95/46/EC; ‘Data Importer’ means the processor who agrees to receive from the data exporter personal data intended for processing on his behalf after the transfer in accordance with his instructions and the terms of the Clauses and who is not subject to a third country’s system ensuring adequate protection within the meaning of Article 25(1) of Directive 95/46/EC;
33 ‘Data Subject”’ shall have the meaning as defined in the Data Protection Directive, or, as of its entry into force, in the General Data Protection Regulation ‘Data Subject”’ shall have the meaning as defined in the Data Protection Directive, or, as of its entry into force, in the General Data Protection Regulation
34 ‘subprocessor’ means any processor engaged by the data importer or by any other subprocessor of the data importer who agrees to receive from the data importer or from any other subprocessor of the data importer personal data exclusively intended for processing activities to be carried out on behalf of the data exporter after the transfer in accordance with his instructions, the terms of the Clauses and the terms of the written subcontract. ‘subprocessor’ means any processor engaged by the data importer or by any other subprocessor of the data importer who agrees to receive from the data importer or from any other subprocessor of the data importer personal data exclusively intended for processing activities to be carried out on behalf of the data exporter after the transfer in accordance with his instructions, the terms of the Clauses and the terms of the written subcontract.
35 ‘personal data‘ means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identification number or to one or more factors specific to his physical, physiological, mental, economic, cultural or social identity; ‘personal data‘ means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identification number or to one or more factors specific to his physical, physiological, mental, economic, cultural or social identity;
36 ‘technical and organisational security measures’ means those measures aimed at protecting personal data against accidental or unlawful destruction or accidental loss, alteration, unauthorised disclosure or access, in particular where the processing involves the transmission of data over a network, and against all other unlawful forms of processing. ‘technical and organisational security measures’ means those measures aimed at protecting personal data against accidental or unlawful destruction or accidental loss, alteration, unauthorised disclosure or access, in particular where the processing involves the transmission of data over a network, and against all other unlawful forms of processing.
37 ‘third party’ means any natural or legal person, public authority, agency or any other body other than the data subject, the controller, the processor and the persons who, under the direct authority of the controller or the processor, are authorized to process the data; ‘third party’ means any natural or legal person, public authority, agency or any other body other than the data subject, the controller, the processor and the persons who, under the direct authority of the controller or the processor, are authorized to process the data;
38 Source: EU Data Protection Directive (95/46/EC). Source: EU Data Protection Directive (95/46/EC).
39 POLICY COMMITMENTS POLICY COMMITMENTS
40 It is VIDA’s policy to: It is VIDA’s policy to:
41 Data transfer. Safeguard transfers of personal data to VIDA as mutually agreed to by all relevant parties in The Model Clauses. Data transfer. Safeguard transfers of personal data to VIDA as mutually agreed to by all relevant parties in The Model Clauses.
42 Data processing. Process the personal data only on behalf of the customer and in compliance with its instructions and the Model Clauses. Data processing. Process the personal data only on behalf of the customer and in compliance with its instructions and the Model Clauses.
43 Notification. Promptly inform the customer of: Notification. Promptly inform the customer of:
44 Its inability to comply with its instructions or The Model Clauses and agree to suspend the data transfer activities and/or terminate the agreement at the customer’s request; Its inability to comply with its instructions or The Model Clauses and agree to suspend the data transfer activities and/or terminate the agreement at the customer’s request;
45 Any legally binding request for disclosure of the personal data by a law enforcement authority unless the notification is lawfully prohibited; Any legally binding request for disclosure of the personal data by a law enforcement authority unless the notification is lawfully prohibited;
46 Any instances of accidental or unauthorized access to personal data covered by The Model Clauses; Any instances of accidental or unauthorized access to personal data covered by The Model Clauses;
47 Any request received directly from the data subjects without responding to that request, unless it has been otherwise authorized to do so. Any request received directly from the data subjects without responding to that request, unless it has been otherwise authorized to do so.
48 Responsiveness and Cooperation With Authorities. Promptly address inquiries from the customer relating to its processing of transferred personal data and abide by the advice of relevant EU authorities with regard to the processing of the transferred data. Responsiveness and Cooperation With Authorities. Promptly address inquiries from the customer relating to its processing of transferred personal data and abide by the advice of relevant EU authorities with regard to the processing of the transferred data.
49 Technical and Organizational Security Measures. Apply the technical and organizational security measures specific in the Model Clauses to the personal data before processing the personal data. The technical and organizational security measures that are agreed to will provide at least the same level of protection for the personal data and the rights of EU data subjects as the customer. Strong Encryption, integrity controls, and firewall technology are examples of data transfer safeguards that are typically agreed to in The Model Clauses. Technical and Organizational Security Measures. Apply the technical and organizational security measures specific in the Model Clauses to the personal data before processing the personal data. The technical and organizational security measures that are agreed to will provide at least the same level of protection for the personal data and the rights of EU data subjects as the customer. Strong Encryption, integrity controls, and firewall technology are examples of data transfer safeguards that are typically agreed to in The Model Clauses.
50
51 VIDA also encourages all customers who send patient studies or clinical data to VIDA for analysis to anonymize the patient information prior to transmission, whenever appropriate. If patient data arrives in identifiable form—and when the information is not expressly required to remain in identifiable form—we will destroy the data in-house per established processes. VIDA also encourages all customers who send patient studies or clinical data to VIDA for analysis to anonymize the patient information prior to transmission, whenever appropriate. If patient data arrives in identifiable form—and when the information is not expressly required to remain in identifiable form—we will destroy the data in-house per established processes.
52
53 Audit Submit its processing activities (and those of its subprocessors) covered by the Model Clauses to audit by the customer, its agent, or an inspection body operating on behalf of a relevant EU authority. Audit Submit its processing activities (and those of its subprocessors) covered by the Model Clauses to audit by the customer, its agent, or an inspection body operating on behalf of a relevant EU authority.
54 Data Subject Requests and Disputes. Make available to data subjects upon their request a copy of the Model Clauses, or any existing contract that governs subprocessing activities. With the exception of information about technical and organizationl security measures specified in The Model Clauses, elements of the Model Clauses that contain sensitive commercial information may be redacted. Data Subject Requests and Disputes. Make available to data subjects upon their request a copy of the Model Clauses, or any existing contract that governs subprocessing activities. With the exception of information about technical and organizationl security measures specified in The Model Clauses, elements of the Model Clauses that contain sensitive commercial information may be redacted.
55
56 In the event of a dispute about, VIDA shall oblige and requests by the EU Data Subject to refer the dispute to mediation by an independent body or the Supervisory Authority or to the courts in the Member State in which the Data Exporter resides. In the event of a dispute about, VIDA shall oblige and requests by the EU Data Subject to refer the dispute to mediation by an independent body or the Supervisory Authority or to the courts in the Member State in which the Data Exporter resides.
57
58 Third Parties. Obtain written permission from or provide written notice to customers before engaging subcontractors to process personal data covered by the Model Clauses. VIDA enters into written agreements with its subcontractors and the agreements impose the same obligations under the Model Clauses that apply to VIDA. VIDA will provide a copy of third party agreements to the customer upon request. Third Parties. Obtain written permission from or provide written notice to customers before engaging subcontractors to process personal data covered by the Model Clauses. VIDA enters into written agreements with its subcontractors and the agreements impose the same obligations under the Model Clauses that apply to VIDA. VIDA will provide a copy of third party agreements to the customer upon request.
59 Termination of Services. Upon termination of services for a customer, return or destroy, as allowed by law and the other terms of the service agreement with the customer, all the transferred personal data and the copies thereof that had not been destroyed previously in the normal course of the service – and certify to the customer that it has done so. Patient data inappropriately transmitted to VIDA is destroyed upon receipt. Termination of Services. Upon termination of services for a customer, return or destroy, as allowed by law and the other terms of the service agreement with the customer, all the transferred personal data and the copies thereof that had not been destroyed previously in the normal course of the service – and certify to the customer that it has done so. Patient data inappropriately transmitted to VIDA is destroyed upon receipt.
60 Additional Obligations. Observe the requirements of any other Model Clauses entered into with customers not explicitly mentioned in this statement Additional Obligations. Observe the requirements of any other Model Clauses entered into with customers not explicitly mentioned in this statement
61 Compelled disclosure: VIDA may be required to disclose personal information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements Compelled disclosure: VIDA may be required to disclose personal information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements
62 CHANGES TO THIS PRIVACY POLICY CHANGES TO THIS PRIVACY POLICY
63 We may periodically update this EU Privacy Policy. We encourage you to check back in from time-to-time for updates. We may periodically update this EU Privacy Policy. We encourage you to check back in from time-to-time for updates.
64 CONTACT CONTACT
65 If you have questions about our privacy practices or our treatment of the personal information you provide us, contact us at: If you have questions about our privacy practices or our treatment of the personal information you provide us, contact us at:
66 VIDA Diagnostics Inc. VIDA Diagnostics Inc.
67 2500 Crosspark Road 2500 Crosspark Road
68 W250 BioVentures Center W250 BioVentures Center
69 Coralville, IA 52241 Coralville, IA 52241
70 Email: info@vidadiagnostics.com Email: info@vidadiagnostics.com
71 Toll free: 1.855.900.VIDA (8432) Toll free: 1.855.900.VIDA (8432)
72 Fax: 610.602.5941 Fax: 610.602.5941
73
74
75 © 2015 - VIDA Diagnostics, Inc. © 2015 - VIDA Diagnostics, Inc. Website Design by Running Robots
76 LinkedIn LinkedIn
77 Twitter Twitter
78 Facebook Facebook