Effective date: January 01, 2022
medDARE (“us”, “we”, or “our”) operates the https://meddare.com website (hereinafter referred to as the “Service”).
This page informs you of our policies regarding the collection, use, and disclosure of personal data when you use our Service and the choices you have associated with that data.
With this policy, we inform you that in cases in which we are required to do so by law, we apply the GDPR rules regarding the collection, storage, use, handling, transfer and deletion of personal information. In all other cases, we apply applicable laws (including CCPA, where applicable) and internal rules and policies.
We consider Data Security, Transparency, Reliability, Standards of data protection and Compliance with legislation as of the highest priority.
Please, find below the following information:
The General Data Protection Regulation (GDPR) (EU) 2016/679 is a regulation in EU law on data protection and privacy, which came into effect on the 25th of May, 2018.
The GDPR applies to all organizations operating within the EU and processing “personal identifiable data” of EU residents.
To learn more about GDPR, please, visit official General Data Protection Regulation website.
There are two ways, in which medDARE can obtain personal data:
Therefore, there are two distinct groups of Data subjects: users of our official web-site and our Clients.
As per the GDPR definition, ‘personal data’ means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
For both parties, unless otherwise specified in a separate agreement between medDARE and its Client (i.e. Data Protection Agreement) in most cases this means:
Being a Controller, we collect your data via online inquiry forms on our website, emailed inquiries and correspondence, or phone conversations.
Using our services means that you have engaged medDARE as a service provider to carry out certain activities on your behalf.
According to Article 28 of the GDPR, the relationship between the controller and the processor are regulated by the Data Processing Agreement, which we put in place with every Client.
With this said, responsibility regarding the accuracy and completeness of provided personal information, including the correctness and validity of the name, e-mail and other information that the data subject provides to medDARE lies with the Controller (being our Client).
Additionally, medDARE acts as the data controller of the personal data we collect about you, our customer, in relations with its contractors.
Being driven by the GDPR regulation, we would like to provide you with clean and clear information on how exactly your data are used, in plain and simple language.
We process your personal data to meet our obligations under the law (GDPR Article 6(1)(c)) — this primarily involves financial data and information that we need to meet our accountability obligations under the GDPR.
We process your personal data for our legitimate interests in line with GDPR Article 6(1)(f). From time to time we may send you marketing information in case we believe that it is beneficial to you as a client.
For Clients, the conditions for the transfer, use and storage of personal data are governed by a separate legal agreement of the parties
Use, retention, and disposal
Use, retention and disposal of personal data are governed by GDPR rules and regulations and/or separate agreements with Clients (Data Controllers)
Access, Data Storage and Security:
Sharing and Disclosing Your Personal Data.
If our business is sold or merged, or if we sell or buy any businesses or assets, we may disclose your personal data to the prospective seller or buyer of such businesses or assets. We will make sure that any such transfer is done in a secure way.
If we offer or supply a service to you that is provided on our behalf by a third party we may have to pass your information to them in order to deliver the service. By using this Site you consent to us providing your information to third parties authorised by us to provide such services. We may also use third parties to provide services on our behalf which may include processing (but not using themselves) your information e.g. to complete partial addresses or to enrich the information we hold about you. In either case, we will not pass your information to anyone who is not also subject to adequate privacy commitments in our contract with them and we will not allow the third party to use your information for marketing purposes without your consent.
We also may reveal your personal data to any local or international public authorities, if they have a legal right to ask and obtain such information.
We will not otherwise disclose, sell or distribute your information to any third party without your permission unless we are required to do so by law or to obtain professional advice.
Storing Your Personal Data.
According to the GDPR, as a Data Subject you have the right to know:
Also, it is important to list your rights as a Data Subject related to your data maintenance/amendments:
If you would like to send us either a general request or a particular request to correct/erase your data, please contact our designated Data Protection Officer:
Cookies are files with small amounts of data which may include an anonymous unique identifier. Cookies are sent to your browser from a website and stored on your device. Tracking technologies also used are beacons, tags, and scripts to collect and track information and to improve and analyze our Service.
You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.
Examples of Cookies we use:
For more information on Cookies, please acquaint yourself with our designated Cookies Policy.
We may employ third party companies and individuals to facilitate our Service (“Service Providers”), to provide the Service on our behalf, to perform Service-related services or to assist us in analyzing how our Service is used.
These third parties have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.
We may use third-party Service Providers to monitor and analyze the use of our Service. Google Analytics is a web analytics service offered by Google that tracks and reports website traffic. Google uses the data collected to track and monitor the use of our Service. This data is shared with other Google services. Google may use the collected data to contextualize and personalize the ads of its own advertising network.
For more information on the privacy practices of Google, please visit the Google Privacy & Terms web page: https://policies.google.com/privacy?hl=en
We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.
Our Service does not address anyone under the age of 18 (“Children”).
We do not knowingly collect personally identifiable information from anyone under the age of 18. If you are a parent or guardian and you are aware that your Children have provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children without verification of parental consent, we take steps to remove that information from our servers.
With this policy, we declare ourselves to be in compliance with the rules and procedures established by the CCPA, in instances when, in accordance with applicable international or national law, we are obliged to be guided by the CCPA. The basic guiding principles of our handling of personal data to the extent of compliance with the CCPA are set forth above in this Policy.
As the controller of your personal data, medDARE is committed to respecting all your rights under the GDPR. If you have any questions or feedback, please reach out to our Data Protection Officer (DPO) by email at email@example.com.
The DPO is obliged to monitor compliance and enforcement with new regulations, act as the contact point for the supervisory authority on issues relating to processing personal data and to train the staff.
Any changes we may make to this Policy in the future will be posted on this page and, where appropriate, notified to you by e-mail or by other means, if such notification will be deemed necessary. Please check back frequently to see any updates or changes to this Policy.