iSchemaView applies the Principles of the GDPR framework to all Personal Data received worldwide. iSchemaView implements ISO 27001 for IT Security (Certified), with data privacy extensions as defined in ISO 27701(Certified) as the governing framework.
These practices are adhered to worldwide in the protection of data locally and globally. As a company involved in the Medical Device industry, iSchemaView shall ensure all data used for research is anonymized when appropriate and protected as required by international and local laws
"Data Subject" means any individual whose Personal Data is covered by this Policy.
"Personal Data" means any information relating to an individual that can be used to identify that individual either on its own or in combination with other readily available data (e.g., the individual’s name, title, work location, home address, date of birth, compensation, benefits, or family members).
"Sensitive Personal Data" means Personal Data regarding any of the following:
iSchemaView employees, contractors or third-party entities who may have access to such Personal Data in the U.S. during the course of allowed business purposes are responsible for adhering to this policy. Adherence by iSchemaView to this Policy may be limited to the extent required to meet legal, regulatory, governmental, or national security obligations, but Personal Data shall not be collected, used, or disclosed in a manner contrary to this policy without the prior written permission of iSchemaView’s executive management.
Failure of iSchemaView employees, contractors, and third-party entities to comply with this Policy may result in disciplinary action up to and including termination.
iSchemaView takes steps so that Data Subjects covered by this Policy are notified about the types of Personal Data it collects about them, the purposes for which it uses such Personal Data, the types of third parties to which it discloses such Personal Data, the choices, and means that it offers for limiting its use and disclosure of such Personal Data, and how Data Subjects can contact ISchemaView with any inquiries or complaints. Notice is provided in clear and conspicuous language at the time of collection or as soon as practicable thereafter; before iSchemaView uses or discloses Personal Data for a purpose other than that for which it was originally collected, and through this Policy.
Principally, in the use of Software as a Medical Device applications, iSchemaView is the recipient of anonymized data from first-party entities.
First-party obtained data may be used by iSchemaView for:
iSchemaView may disclose Personal Data to the following types of third-parties:
In addition, iSchemaView collects, uses, and discloses Personal Data collected directly from Data Subjects via iSchemaView’s public website, at tradeshow or other industry event, or during or in support of iSchemaView’s sales activities.
We are the sole owners of the information collected on this site. We only have access to collect information that you voluntarily give us via email or other direct contact from you. We will not sell or rent this information to anyone.
We will use your information to respond to you, regarding the reason you contacted us. We will not share your information with any third party outside of our organization, other than as necessary to fulfill your request, e.g. to ship an order.
You may opt-out of any future contacts from us at any time. You can do the following at any time by contacting us via telephone at +1 (650) 388-9767 ext. 5 or by email firstname.lastname@example.org
We take precautions to protect your information. When you submit sensitive information via the website, your information is protected both online and offline.
Wherever we collect sensitive information, (such as credit card data), that information is encrypted and transmitted to us in a secure way. You can verify this by looking for a closed lock icon at the bottom of your web browser, or looking for “https” at the beginning of the address of the web page.
While we use encryption to protect sensitive information transmitted online, we also protect your information offline. Only employees who need the information to perform a specific job (for example, billing or customer service) are granted access to personally identifiable information. The computers/servers in which we store personally identifiable information are kept in a secure environment.
We use “cookies” on this site. A cookie is a piece of data stored on a site visitor’s hard drive to help us improve your access to our site and identify repeat visitors to our site. For instance, when we use a cookie to identify you, you would not have to log in a password more than once, thereby saving time while on our site. Cookies can also enable us to track and target the interests of our users to enhance the experience on our site. Usage of a cookie is in no way linked to any personally identifiable information on our site.
We may share aggregated demographic information with our partners. This is not linked to any personal information that can identify any individual person.
This website contains links to other sites. Please be aware that we are not responsible for the content or privacy practices of such other sites. We encourage our users to be aware when they leave our site and to read the privacy statements of any other site that collects personally identifiable information.
In the event personal data is to be used for a new purpose that is materially different from the purpose(s) for which the Personal Data was originally collected or subsequently authorized, or is to be transferred to the control of a third party, iSchemaView provides Data Subjects an opportunity to choose (opt-out) whether to have their Personal Data so used or transferred. In the event that Sensitive Personal Data is used for a new purpose or transferred to the control of a third party, the Data Subject’s explicit consent (opt-in) will be obtained prior to such use or transfer of the Sensitive Personal Data.
Accountability for Onward Transfer (transfers to affiliates and/or other third parties)—In the event iSchemaView transfers Personal Data covered by this Policy to an affiliate or other third-party, it will do so consistent with any notice provided to Data Subjects and any consent they have given. iSchemaView will transfer Personal Data to such third parties only if the transfer is for limited and specified purposes and the third party will provide at least the same level of privacy protection as is required by this Policy. When iSchemaView has knowledge that a third party is using or sharing Personal Data in a way that is contrary to this Policy, iSchemaView will take reasonable steps to prevent or stop such use or sharing.
With respect to transfers to its agents, iSchemaView remains responsible if an agent processes Personal Data in a manner inconsistent with the Principles, except where iSchemaView is not responsible for the event giving rise to the damage.
Access—Data Subjects whose Personal Data is covered by this Policy have the right to access such Personal Data and to correct, amend, or delete such Personal Data if they can demonstrate that it is inaccurate or incomplete or has been processed in violation of the Principles (except when the burden or expense of providing access, correction, amendment, or deletion would be disproportionate to the risks to the Data Subject’s privacy, or where the rights of persons other than the Data Subject would be violated).
Security—iSchemaView takes reasonable precautions to protect Personal Data covered by this Policy from loss, misuse, and unauthorized access, disclosure, alteration, and destruction.
Data Integrity and Purpose Limitation—Personal Data covered by this Policy that is collected, processed, and maintained by iSchemaView shall be kept and used for its intended purpose. iSchemaView takes reasonable steps to ensure that the Personal Data is used for its intended purpose(s), and is accurate, complete, and current.
ATTN: Data Privacy Officer
1120 Washington Avenue
Golden, CO 80401
If your Privacy complaint cannot be resolved through the above channel, under certain conditions, you may also have the right to make a GDPR complaint to the relevant Supervisory Authority or other controlling agency worldwide. If you need further assistance regarding your rights, please contact us using the contact information provided below and we will consider your request in accordance with applicable law. In some cases our ability to uphold these rights for you may depend upon our obligations to process personal information for security, safety, fraud prevention reasons, compliance with regulatory or legal requirements, or because processing is necessary to deliver the services you have requested. Where this is the case, we will inform you of specific details in response to your request.