This policy outlines the following:

• The types of personal data we collect and the methods employed for data collection.
• The purposes and reasons for utilizing your personal data.
• Circumstances under which we may share your data.
• Protocols for international data transfers.
• Security measures in place for safeguarding your data.
• Duration for which data is retained.
• Your rights in relation to your personal data.
• Procedures for contacting us.

How and What Data we Collect

1. Information Provided Directly by You:

When using our websites or services, personal data is collected directly from you, including details from the registration form (e.g., Name, Surname, Gender, Date of Birth, Country, Town of Residence, Email Address, Personal ID, Medical Specialization, Professional Role, Healthcare Organization). Contacting us or participating in surveys may also involve sharing personal data. Opting out is possible, but it may limit access to certain website features.

2. Information Collected Automatically:

Interactions with our websites or services result in the automatic collection of information, such as IP Address, Device Type, and Browsing Activity (e.g., viewed pages, clicked links). This data enhances our understanding of user engagement, allowing us to improve the overall experience. Technologies like cookies are employed for this purpose. Explore our dedicated cookie notice for information on cookie types, purposes, and management options.

How We Utilize Your Personal Data and the Reasons Behind It:

Primarily, we employ your personal data to operate our websites, fulfill requested services, and effectively manage our relationship with you. Additionally, we use your personal data for the following purposes:

1. Customer Services Communications:

Sending non-marketing communications regarding updates, technical changes, or other relevant information about the services you have requested. These communications are essential for service-related updates and cannot be opted out of.

2. Analysis, Aggregation, and Reporting: Utilizing the collected personal data, we generate aggregated and anonymized analytics and reports. These insights may be shared with third parties, contributing to a broader understanding of user behavior. It’s important to note that we do not engage in data profiling based on the collected data for statistical and analysis purposes.
3. Feedback and Surveys: Requesting your feedback or participation in surveys to enhance your user experience.
4. Administrative and Legal Purposes: Addressing disputes or claims and fulfilling administrative and legal requirements.
5. Tracking of Use: Monitoring and tracking the use of our websites and services.

It is crucial to acknowledge that failure to provide your personal data may limit our ability to deliver certain services, and some functionalities on our websites may be inaccessible to you.

Sharing your Data

There are instances where we may need to share your personal data, and such sharing will be limited to the following:

1. Third-Party Service Providers and Partners: Sharing with external service providers and partners who assist us in utilizing personal data, supporting service delivery, or providing functionality on the website or services.
2. Regulators, Law Enforcement, and Government Agencies: Disclosure to regulators, law enforcement bodies, government agencies, courts, or other third parties when necessary to comply with applicable laws or regulations, or to exercise, establish, or defend legal rights. Whenever feasible and appropriate, we will notify you of such disclosures.
3. Consensual Sharing: Sharing with other individuals or entities based on your explicit consent.

Data Transfer Internationally

When we share data, it may be transferred to and processed in countries different from your country of residence. These countries may have laws that differ from those you are accustomed to. Be assured that when we disclose personal data to a third party in another country, we implement safeguards to uphold the protection of your personal data.

For individuals in the European Economic Area (EEA), this entails the potential transfer of your data outside of the EEA. In such cases, your personal data will only be transferred to countries deemed to offer adequate protection for EEA data (such as New Zealand) or to a third party with approved transfer mechanisms in place to safeguard your personal data. This may involve the adoption of the European Commission’s Standard Contractual Clauses or ensuring that the entity is certified under Privacy Shield (for transfers to US-based third parties).

Security

Security is a priority for us when it comes to your personal data. We’re committed to protecting your personal data and have appropriate technical and organizational measures in place to make sure that happens.

Retention

The duration for which we retain your personal data is contingent upon its nature and the existence of an ongoing business necessity (e.g., providing requested services or adhering to legal, tax, or accounting obligations). We retain your personal data throughout our relationship with you and for a subsequent period in which a business need for retention persists, in alignment with our data retention policies and practices. After this designated period, we ensure the secure deletion or anonymization of your personal data.

Your Rights

As the owner of your personal data, you possess certain rights in relation to it. These rights include the ability to:

1. Know and Verify Your Data: Understand the personal data we hold about you and ensure its accuracy and currency.
2. Request Access, Restriction, or Deletion: Obtain a copy of your personal data, request limitations on its processing, or ask for its deletion.
3. Object to Processing: Object to the ongoing processing of your personal data.
4. Express Dissatisfaction: Inform us if you are dissatisfied with how we handle your personal data.

You can exercise these rights by emailing us at info@outcomepatient.com. We will promptly review and investigate your request, aiming to provide a response within a reasonable timeframe. If you remain dissatisfied, you also have the option to lodge a complaint with your local data protection authority, who can guide you on the complaint submission process.