CIMAR (UK Ltd Privacy Policy)
Last modified: February 25, 2020
The CIMAR® Privacy Policy describes how CIMAR treats personal information when you use CIMAR’s products, including information provided when you use CIMAR. In addition, the following describes our privacy practices that are specific to CIMAR, a service that helps you store and organise your personal health information.
You are in control of your information
- You control who can access your personal health information. By default, you are the only user who can view and edit your information. If you choose to, you can share your information with others.
- CIMAR will not sell, rent, or share your information (identified or de-identified) without your explicit consent, except in the limited situations described in the CIMAR Privacy Policy, such as if CIMAR is required to disclose an individual’s personal information in response to a lawful request by public authorities, including to meet national security or law enforcement requirements.
- You can completely delete your information at any time. Deletion will be initiated immediately, and your information will be purged from your account shortly thereafter. Additional backup copies of deleted information may persist for a short time. CIMAR will not retain your information once deleted. Therefore, you may want to print your information before deleting it.
- CIMAR acknowledges that EU and Swiss individuals have the right to access the personal information/data that we maintain about them. An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data, should direct a query to support@cimar.co.uk. If requested to remove data, we will respond within a reasonable timeframe.
- Per the California Consumer Privacy Act, California Citizens have the right to request, modify, or delete the data CIMAR has collected. In general, the non-protected health information is discussed within this privacy policy in the “How CIMAR uses your information” section. CIMAR allows users equal service and price even if you exercise your privacy rights. For more information on your data or to exercise your rights, please contact us at support@cimar.co.uk.
How CIMAR® uses your information
- To store your information in CIMAR, you will need a CIMAR Account. When you create a CIMAR Account, CIMAR asks for your email address and a password, which is used to protect your account from unauthorized access. You can use an existing CIMAR Account or create a new CIMAR Account specifically for this purpose.
- CIMAR’s servers automatically record log information about your use of CIMAR (such as the number of sign-ins and number of times a link was clicked). This information is temporarily stored in association with your CIMAR Account for two weeks, at which point it is aggregated with other data and is no longer associated with your account. The log information will be used to operate and improve the service and will not be correlated with your use of other CIMAR services.
- CIMAR periodically publishes trend statistics and associations (e.g. as published in CIMAR Trends). CIMAR may use data from your CIMAR Account as part of an aggregated data set when publishing these trends, statistics and associations (e.g., CIMAR has found that one gender uses some modalities more than the other gender). These aggregated data sets do not contain any personally identifiable information and cannot be linked to you.
- Certain features of CIMAR can be used in conjunction with other CIMAR products, and those features may share information to provide a better user experience and to improve the quality of our services.
- The CIMAR website does not deliver third party online advertisements on our websites but we advertise our products and services on third party websites. We use remarketing services to advertise on third party websites to previous visitors to our website. It could mean that we advertise to previous visitors who haven’t completed a task on our website, for example using the contact form to make an enquiry. This could be in the form of an advertisement on a search results page or on third party website. Third-party vendors use cookies to serve ads based on someone’s past visits to the website. Any data collected will be used in accordance with our own privacy policy and that of our service provider’s privacy policy. To opt out of these cookies and retargeting ads please visit http://www.networkadvertising.org/choices/.
- Types of Data Collected through the CIMAR website: Personal Information: (Personal information) is information that identifies you as an individual. When you request information, subscribe to a mailing list, subscribe for a service, or respond to an online survey or otherwise contact us, we usually collect personal information such as your name, e-mail address(es), mailing address(es), and telephone numbers. We take your privacy and the quality of service we offer you very seriously. To ensure we provide the highest quality of service to our international visitors, we may forward your request for information and personal contact information to one of our regional partners. You opt into this sharing by filling out a form on our website; for example, by downloading an eBook or Requesting a Demo. To opt out of this sharing please email support@cimar.co.uk with the same name and email address you used when you submitted our forms. You can also opt out of providing information by not entering it when asked and, if such information is required in order to allow us to respond to your inquiry, you will receive a notice advising you of this. If you do not provide us with some or all of the requested information, we may not be able to provide services to you. Other Information Collected: The site also collects information that does not reveal your specific identity or does not directly relate to an individual (“other information”). For example, when you visit the site, we also track certain information about your computer and Internet connection, such as the IP address of your computer and/or Internet service provider, the date and time you access the site, the Internet address of websites from which you link to our site, the computer technology you are using and your movements and preferences on our site. We use technology that many other websites employ, including, without limitation, “cookies” or small data files stored on your computer’s hard drive, to collect such information. There are persistent cookies and session cookies. In some instances, we use cookies to collect information in connection with future visits from that website, to recognize you as a previous visitor, or to track your activity on our site. If you follow a link to the site from an affiliate or promotion, we store information about your arrival from that affiliate or promotion in a session cookie. A persistent cookie consists of a text file sent by a web server to web browser, which will be stored by the browser and will remain valid until its set expiry date. You do not need to have cookies turned on to visit our site. You can refuse cookies by setting your browser to decline them automatically or to give you the choice of declining or accepting the placement of cookies from the site. But, if you want to access CIMAR webpages, you need to accept a mandatory session cookie, which you can delete after you leave the site. We also may collect information related to your company, geographic location, or other demographic information that does not personally identify you. To the extent permitted by applicable law, we reserve the right to combine other information as defined above with personal information that you submit.
Sharing your information with people and services you trust
This section is specific to CIMAR® products:
- If you share your information with others, you can view a list of who has access to your information, and you can revoke sharing privileges at any time. When you revoke someone’s ability to read your health information, that party will no longer be able to read your information but may have already seen or may retain a copy of the information.
- You can approve access for some of these service providers to view and copy your health information. If a service provider accesses your health information and stores a copy of your information, that copy will be governed by that service provider’s privacy policy. Others at that facility – such as an on-call doctor – may be able to view your information. CIMAR is not responsible for the content, performance, or privacy policies of third-party service providers.
- Most, if not all of these third-party service providers will be covered by National health privacy laws (such as the Insurance Portability and Accountability Act, or “HIPAA”) or GDPR, and those laws will govern how they may use and share your information. HIPAA requires (as does CIMAR) that you must authorize these providers to send information to your CIMAR account. With that authorization, you also give them permission to send certain especially sensitive types of health information (such as mental health or substance abuse records) that are protected by law and require special authorization. When you ask CIMAR to send your health information to others, you will also be giving CIMAR permission to send those sensitive types of health information.
- All entities or business associates covered by HIPAA are contractually required to comply with HIPAA’s rules related to collection, use, and sharing of your information. All other third-party service providers are contractually required to abide by the CIMAR Developer Policies, which require that they comply with strict privacy standards for how they collect, use, or share your information.
EU General Data Protection Regulation (GDPR)
- CIMAR complies with the EU GDPR for the lawful processing of subject’s health data consistent with this privacy policy and the Regulation. This processing is based upon your consent as a subject and can be withdrawn at any time by contacting CIMAR Customer Service at support@cimar.co.uk.
- CIMAR may use information provided from you as a user to send marketing and product information. This information is not sold to a third party and is based upon a previous legitimate interest in our products and services. You may revoke this right and have your data removed from these communication lists at any time by clicking the unsubscribe link in the communications or contacting the CIMAR Customer Service Group at support@cimar.co.uk
- Your healthcare data will be stored in the CIMAR system indefinitely, or until such time you request your data be removed or transferred to another system, or until your care provider terminates their account with CIMAR.
- Incorrect information in your records can be rectified through your care provider or contacting CIMAR Customer Service.
- In compliance with the General Data Protection Regulation, CIMAR commits to resolve complaints about your privacy and our collection or use of your personal information. European Union individuals with inquiries or complaints regarding this privacy policy should first contact CIMAR, but you also have the right to lodge a complaint with a supervisory authority.
- Should you have additional questions, or would like more information on how your data is collected, stored, or processed, please contact our Data Protection Officer at the following address:
CIMAR UK Ltd
Kemp House
152 – 160 City Rd
London EC1V 2PD
+44 (0) 20 3904 0330
If you have additional questions, please contact us any time. Or write to us at the above address or email support@cimar.co.uk