Privacy Policy
Introduction
We value your privacy and are committed to protecting your personal data. This policy explains how we collect, use, and protect your personal information when you interact with our website and services. It also outlines your rights under the General Data Protection Regulation (GDPR).
Data Controller
ITL BioMedical is the data controller for the personal data we collect, meaning we are responsible for determining how your data is used.
Information We Collect
We collect the following types of personal data:
- Contact Information: Such as your name, email address, and phone number.
- Payment Information: Payment details processed securely by PayPal.
- Communication Data: Information you provide via forms (e.g., Jotform) or when subscribing to newsletters (e.g., Mailchimp).
- Usage Data: Information collected via cookies and similar technologies, including data from Google Analytics (e.g., IP address, browser type, and pages visited).
Generally, you control the amount and type of information you provide to us when using our Website. As a Visitor, you can browse our website to find out more about our Website. You are not required to provide us with any Personally Identifiable Information as a Visitor.
How We Use Your Data
We process your data for the following purposes:
- Service Delivery: To fulfill orders and provide services through platforms like Miva.
- Communications: To send newsletters and promotional materials, respond to inquiries, and provide customer support.
- Payments: To securely process transactions via PayPal.
- Analytics and Improvement: To analyze website performance and user behavior via Google Analytics, helping us improve our services and user experience.
Legal Basis for Processing
Under GDPR, we must have a lawful basis to process your personal data, including:
- Contractual Obligation: For processing orders and providing services (e.g., Miva transactions).
- Consent: When you subscribe to our newsletters (via Mailchimp) or agree to be contacted via forms (Jotform).
- Legitimate Interests: For improving our services and marketing (e.g., website analytics with Google Analytics).
- Legal Obligations: For complying with legal requirements (e.g., tax obligations).
Data Sharing and Transfers
We share your data with trusted third-party service providers, including:
- Miva: For order processing.
- Mailchimp: For managing email subscriptions and marketing.
- Jotform: For processing contact form submissions.
- PayPal: For handling payments securely.
- Google Analytics: For tracking and analyzing website usage (data is anonymized).
We ensure all third-party providers comply with GDPR and protect your data. Data transfers outside the European Economic Area (EEA) are conducted with appropriate safeguards in place.
Data Retention
We retain your personal data only as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, and reporting requirements.
Your Rights
Under GDPR, you have the following rights:
- Right to Access: Request a copy of the data we hold about you.
- Right to Rectification: Correct any inaccurate or incomplete data.
- Right to Erasure: Request the deletion of your data.
- Right to Restrict Processing: Limit the processing of your data under certain conditions.
- Right to Data Portability: Obtain your data in a structured, commonly used format.
- Right to Object: Object to processing, particularly for direct marketing and analytics.
Security of Your Data
We implement appropriate technical and organizational measures to safeguard your personal data from unauthorized access, loss, or misuse.
Cookies and Google Analytics
Our Website uses “Cookies” to identify the areas of our Website that you have visited. A Cookie is a small piece of data stored on your computer or mobile device by your web browser. Web browsers can be set to disable the use of Cookies. However, if you disable Cookies, you may not be able to access functionality on our Website correctly or at all. We never place Personally Identifiable Information in Cookies.
We also use third-party tracking tools like Google Analytics to improve the performance and features of our Website. These tools are designed to collect only Non-Personal Information about your use of our Website. However, you understand that such tools are created and managed by parties outside our control. As such, we are not responsible for what information is actually captured by such third parties or how such third parties use and protect that information.
Legally Required Releases of Information
We may be legally required to disclose your Personally Identifiable Information if such disclosure is:
- Required by subpoena, law, or other legal process;
- Necessary to assist law enforcement officials or government enforcement agencies;
- Necessary to investigate violations of or otherwise enforce our Legal Terms;
- Necessary to protect us from legal action or claims from third parties, including you and/or other Members;
- Necessary to protect the legal rights, personal/real property, or personal safety of ITL BioMedical, our Users, employees, and affiliates.
Links to Other Websites
Our Website may contain links to other websites that are not under our direct control. These websites may have their own policies regarding privacy. We have no control of or responsibility for linked websites and provide these links solely for the convenience and information of our visitors. You access such linked Websites at your own risk. These websites are not subject to this Privacy Policy. You should check the privacy policies, if any, of those individual websites to see how the operators of those third-party websites will utilize your personal information. In addition, these websites may contain a link to Websites of our affiliates. The websites of our affiliates are not subject to this Privacy Policy, and you should check their individual privacy policies to see how the operators of such websites will utilize your personal information.
Children’s Privacy
We do not knowingly collect or maintain information from those under the age of 18. If we learn that we have collected Personally Identifiable Information from a child under age 18 without verification of parental consent, we will delete that information as quickly as possible. If you believe we might have any information from or about a child under 18, please contact us.
Data Transfers
Your information, including Personally Identifiable Information, may be transferred to—and maintained on—computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction. If you are located outside the United States and choose to provide information to us, please note that we transfer the data, including Personally Identifiable Information, to the United States and process it there. Your consent to this Privacy Policy followed by your submission of such information represents your agreement to that transfer. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and no transfer of your Personally Identifiable Information will take place to an organization or a country unless there are adequate controls in place, including the security of your data and other personal information.
Our Email Policy
Our affiliates and we fully comply with national laws regarding spam. You can always opt out of receipt of further email correspondence from us and/or our affiliates. We agree that we will not sell, rent, or trade your email address to any unaffiliated third party without your permission.
Privacy Policy Updates
We reserve the right to modify this Privacy Policy at any time. You should review this Privacy Policy frequently. If we make material changes to this policy, we may notify you on our Website, by a blog post, by email, or by any method we determine. The method we choose is at our sole discretion. We will also change the “Last Updated” date at the beginning of this Privacy Policy. Any changes we make to our Privacy Policy are effective as of this Last Updated date and replace any prior Privacy Policies.
Questions About Our Privacy Practices or This Privacy Policy
If you have any questions about our Privacy Practices or this Policy, please contact us.