PRIVACY POLICY NOTICE

This Privacy Notice (hereinafter as “Notice”) describes how NoyMed Corp. and its affiliated companies (collectively, “NoyMed CRO” or “We”) we collect, store, use, share, transfer, delete, and process information collected from or about its customers, vendors, suppliers, job candidates, website visitors, employees or other parties whose data are related (collectively as “You”). We are strongly committed to protecting your privacy and complying with your choices. Both personal and non-personal information collected is safeguarded according to the highest privacy and data protection standards adopted worldwide. We have always had a robust and effective data protection program in place which complies with existing law and abides by the data protection principles.

Our Commitment

  • Your information will not be shared, rented or sold to any third party.
  • We use state-of-the-art security measures to protect your information from unauthorized users.
  • We give you the possibility to control the information that you shared with us (opt-out)

NoyMed CRO is committed to processing data in accordance with its responsibilities under the GDPR, CCPA and other relevant data protection and privacy laws and regulations.

Scope 

This Notice describes the types of Personal Data that we may collect or process, how we may use and disclose that Personal Data, and how you may exercise any rights you may have regarding our processing of your Personal Data. This Notice applies to Personal Data collected or processed by us:

  • Online (through websites, applications, email, and otherwise) 
  • When we provide products or services to you, your doctor, hospital, medical treatment or scanning facility, or other healthcare provider (which refers both to the Healthcare Provider institution, organization, or company, and individuals employed by or working for or with such organization) or your patients; 
  • when we process information of participants in clinical trials and observational medical research; where we collect information for your potential participation as a research subject in clinical trials; where we collect information for your potential participation in clinical trials as an investigator or a member of the investigator team; where we provide medical information and post-approval pharmacovigilance and adverse event information and reporting services; and in other situations where you interact with us, including but not limited to our sites and offices, our events (e.g., tradeshows and conferences) (such products, services, websites, and other systems collectively, the “Products and Services“);
  • When you fill out a survey, we collect your response, which, (along with above named personal data,) depending on the type of survey, may include satisfaction with an event or course, product usage, product satisfaction or insights on market/ industry trends.
  • When you register for an event, we collect contact information and your interests so that we can send you notifications about the event and similar events and materials that may interest you.
  • When you apply for employment with us, we collect the information that you provide, which may include your name, date of birth, and demographic information, employment and educational history, and information required for background checks where required by law or anywhere this Notice is posted or referenced. This Notice also applies to Personal Data that is collected or processed when you interact with us in-person, by telephone, or by mail.

Principles 

In dealing with your Personal Data, we rest upon the following principles:

  1. Lawfulness, fairness and transparency
  2. Purpose limitation
  3. Accuracy
  4. Storage limitation
  5. Integrity and confidentiality (security)
  6. Accountability

To this end, we seek:

  1. To process Personal Data that is accurate, adequate, relevant, and limited to what is necessary for the processing purpose, complete, and up-to-date 
  2. To specify the purposes for which Personal Data is collected before such collection takes place and to use Personal Data only in accordance with the specified purposes except where the individual has provided their consent or by the authority of law.
  3. To protect Personal Data using reasonable security safeguards.
  4. To be open about privacy practices, policies, developments, and the details of any processing that takes place.
  5. To give effect to individuals’ privacy requests as required by applicable law, 
  6. To be accountable for complying with measures that give effect to Privacy standards.

Consent

When you provide your personal information, you consent that it can be used for the above purposes and that NoyMed CRO is an authorized holder of such information. 

Third-Party Transfers of Personal Data

As a global business, it may be necessary to transfer personal data within NoyMed CRO businesses and with agents, contractors or partners of ours. This may involve transferring personal information outside the European Economic Area (EEA) to/from the USA and elsewhere. These agents, contractors or partners are restricted from using this data in any way other than to provide services for us. 

Regardless of whether the transfer is within the NoyMed CRO group or to a third party, we will apply appropriate safeguards to such transfers as required by applicable law. For example, transfers to non-EEA countries will usually be governed by EU-approved “Standard Contractual Clauses” and will be subject to other appropriate technical and organizational measures having regard to the nature of the personal data.

NoyMed CRO may have to share personal data in response to authorized information requests of governmental authorities or where required by law. We may disclose personal data where necessary for our legitimate business interests to protect the rights, property or safety of NoyMed CRO or for the purposes of fraud protection. Such disclosure may, as appropriate, include exchanging information with other organizations, companies, auditors and governmental departments.

As part of, or during negotiations of, any merger, sale, joint venture, assignment, transfer, or other disposition of all or any portion of our business, assets, or stock (including as part of any bankruptcy or similar proceedings), we may transfer your personal data to other parties involved in these transactions. Under these circumstances, all parties have entered into a confidentiality agreement and are obligated to protect any information provided as part of the transaction and not to use the personal data for any other purpose than the purpose it was collected for in the first instance.

Legal Basis for Use of Your Personal Data

With Your Consent: In cases where we need your consent to process your personal data, we will ask you to make a positive indication (e.g., to tick a box, sign a document, provide confirmation) that you agree to the processing. By providing consent, you are stating that you have been informed as to the nature, purpose, scope and duration of our processing. Where we may rely on consent to process your information, you have the right to withdraw that consent for that activity at any time.

To Fulfil a Contract: In other cases, we process your personal data because it is necessary to deliver a service you have requested, you are employed by us, you provide a service to us or you will partake in a paid clinical trial or other medical research project

For a Legitimate Interest: NoyMed CRO may process your personal data on the basis of its legitimate interests in using your data for the purposes described in this Notice. Examples of our legitimate interests include the following:

  1. Processing in relation to employment opportunities with us;
  2. Processing in relation to investigator opportunities with us;
  3. To improve our services;
  4. To protect the security of NoyMed CRO websites and apps;
  5. To protect our property or rights or obligations and/or the property, rights or obligations of third parties;
  6. To take precautions against potential liability on the part of NoyMed CRO ;
  7. To analyse therapeutic trends and gather anonymized geographic statistics; and
  8. To correct technical errors and to technically process your personal data.

To Comply with Legal Obligations: We may need to use your personal data to comply with legal obligations, applicable regulations and judicial process. For example, we are required by law to keep certain records for specific periods of time.

Under data protection laws around the globe, certain types of personal data, sensitive or special category data will require enhanced protection including: a more thorough consent process, or a requirement that the national law of the country specifically allows the processing of that data, or more enhanced security applied to the data, or that the personal data processed may improve the health of people in that country. The laws vary around the countries we work in and we respect the national law and adhere to the rules around the processing of sensitive data.

Your Personal Data Rights

You have rights in respect of your personal data. Our Global Policy is to extend the rights listed below to all our data subjects worldwide, unless the local law states otherwise.

  1. The right to be informed – if we are processing your personal data, we must inform you the who, why, what of the processing including who else may view it or use it, how long we will retain it for, and if we are transferring the data to another country.
  2. Right to withdraw consent – if we are processing your personal data on the basis of your consent, you are entitled to withdraw your consent to that processing at any time (see contact details section). However, the withdrawal of your consent will not invalidate any processing we carried out prior to the withdrawal of your consent.
  3. The right of access to your personal data – you can request a copy of the personal data we hold about you.
  4. The right to rectification – you have the right to request that we correct any inaccuracies in the personal data we hold about you and complete any personal data where this is incomplete.
  5. Right to erase your personal data (right to be forgotten) – You have the right to be forgotten in certain circumstances including, for example, where the personal data are no longer needed for the purpose for which they were collected. However, this right does not apply where, for example, processing is necessary to comply with a legal obligation, or for the establishment, exercise or defence of legal claims.
  6. The right to restrict the processing of your personal data – You have the right to ask us to restrict certain processing activities in some circumstances, including, for example, where the accuracy of the data in question is contested. Where processing has been restricted, we can only process it for limited purposes such as, for example, the establishment, exercise or defence of legal claims.
  7. The right of data portability – You have the right to have your data returned to you or to a third party in certain cases.
  8. The right to object – You have a right to object to the processing of your personal data in certain cases. In such a case we will stop processing your personal data unless we can demonstrate compelling legitimate grounds which override your interest.

Data Quality and Record Retention

NoyMed CRO retains personal data for as long as is necessary in accordance with its business, contractual, legal and regulatory requirements. Records of payments made and received will, likewise, have a statutory period in the country where we must store it for any inspection from the authorities or regulators. Where appropriate and consistent with regulatory requirements, NoyMed CRO engages its professional quality assurance department to safeguard the accuracy of data. In general, our privacy policy, notices and procedures provide individuals easy means of validating, correcting errors and updating information.

When we collect information that is not personal information or convert personal information into information which can no longer be used to identify you (such as through aggregation or anonymization), we may use and disclose that information for any purpose, as unidentifiable data is not covered under data protection laws.

Information Security

NoyMed CRO ensures appropriate technical and organizational measures are taken to protect personal data from unauthorized or unlawful processing and to protect against accidental loss, destruction or damage. our websites, apps and electronic databases have security measures in place to protect the loss, misuse, unauthorized access or disclosure, alteration or destruction of the information under our control. However, as effective as modern security practices are, no physical or electronic security system is entirely secure. We cannot guarantee the complete security of our databases, nor can we guarantee that information you supply will not be intercepted while being transmitted to us over the internet. 

Legal Status of Notice Changes

This Notice is not a contract, and it does not create any legal rights or obligations. NoyMed CRO reserves the right to modify or amend this Notice. For instance, the Notice may need to change as new legislation is introduced or as legislation is amended. Where we have your contact details, we will notify you of any material changes.

Enforcement

If for some reason you believe NoyMed CRO has not adhered to these principles, please notify us and we will do our best to promptly make corrections.

Questions & Comments 

If you have questions or comments about this privacy policy, please email us or write us at:

[email protected]

For information about how to contact us please visit our contact page.