If you are at this page, then you are ImmunifyMe’s client/customer/ user, who are EU Residents, to whom the General Data Protection Regulations apply. The General Data Protection Regulation (“GDPR”) (EU) 2016/679 is a regulation in EU law on data protection and privacy for all individuals within the European Union. It also addresses the export of personal data outside the EU. The GDPR places limits on the gathering and use of personal data and establishes clear responsibilities for companies that collect it, as well as clear rights for people whose data is gathered.
This Policy describes how ImmunifyMe collects, uses and discloses information, and what choices you have with respect to the information.
It is ImmunifyMe's policy to respect your privacy regarding any information we may collect while using our software applications and websites, collectively called the Services.
This Policy applies when you use our Services and for such purposes, the Data Controller are our clients/customers/ Healthcare Providers and ImmunifyMe is the Data Processor.
We process two main types of personal data.
Information We Collect
Customer Data - Personal data that forms part of data that is provided by our customers/clients/Healthcare Providers.
Other Data - Personal data about our customers, visitors and other individuals that is collected and processed directly by us.
As customers, the data is provided by you, when you use ImmunifyMe’s Website and the Services therein.
Customer Data may be processed by us as a result of customer’s use of the Services when our customers input or upload information onto the Website.
This data includes name, email address, phone number, landline number, other medical information and documents. We collect billing details for invoice purposes.
Customers provide data that is necessary to create user accounts.
How We Use Your Data
Account Information. When you sign up on the Website, we require certain information such as your first name, last name, and email address. To use certain features of the Website, we may ask you to provide additional information, which may include your address, and phone number.
Payment Information. To use certain features of the Website (such as to make payment towards the license fee/products and/or services), we may require you to provide certain financial information (like your bank account or credit card information) in order to facilitate the processing of payments via the payment gateway.
Communications with ImmunifyMe. When you communicate with ImmunifyMe or use the Website to communicate with us, we collect information about your communication and any information you choose to provide.
Information you choose to give us. You may choose to provide us with additional personal information in order to obtain a better user experience when using the Website. This additional information will be processed based on your consent.
Other Information. You may otherwise choose to provide us information when you fill in a form, conduct a search, respond to surveys, post to community forums, participate in promotions, or use other features on the Website (if available and applicable).
Information We Automatically Collect from Your Use of the Website. When you use the Website, we automatically collect information, including personal information, about the services you use and how you use them. This information is necessary for the adequate performance of the contract between you and us, to enable us to comply with legal obligations and given our legitimate interest in being able to provide and improve the functionalities of the Website.
Geo-location Information. When you use certain features of the Website, we may collect information about your precise or approximate location as determined through data such as your IP address or mobile device’s GPS to offer you an improved user experience. Most mobile devices allow you to control or disable the use of location services for applications in the device’s settings menu. The Website may also collect this information even when you are not using the app if this connection is enabled through your settings or device permissions.
Usage Information. We collect information about your interactions with the Website such as the pages or content you view, your searches for a product/service that is provided by ImmunifyMe, and other actions on the Website.
Log Data and Device Information. We automatically collect log data and device information when you access and use the Website, even if you have not created an account with ImmunifyMe and/or the Website or logged in. That information includes, among other things: details about how you’ve used the Website (including if you clicked on links to third party applications), IP address, access dates and times, hardware and software information, device information, device event information, unique identifiers, crash data, cookie data, and the pages you’ve viewed or engaged with before or after using the Website.
Information We Collect from Third Parties. ImmunifyMe may collect information, including personal information, which others provide about you when they use the Website or reach the Website through a third-party, or obtain information from other sources and combine that with information we collect through the Website. We do not control, supervise or are responsible for how the third parties providing your information process your personal data, and any information request regarding the disclosure of your personal information to us should be directed to such third parties.
Other Sources. To the extent permitted by applicable law, we may receive additional information about you, such as demographic data or fraud detection information, from third party service providers and/or partners, and combine it with information we have about you. We may receive information about you and your activities on and off the Website through partnerships, or about your experiences and interactions from our partner ad networks.
How we use your personal data will depend on how you use those Services.
The data provided by you will be used by ImmunifyMe in accordance with your consent, instructions, including any applicable terms in the Terms of Service available on our Website and as required by applicable law. Other Data is used by us to provide our services, send our newsletters and to communicate with you by responding to your requests, comments and questions.
Lawful bases for processing
We have lawful bases to process your personal data. We also use your consent as bases for lawfully processing your personal data.
We process your personal data only when we have a lawful basis. Your data is processed upon signing accepting the terms of service and consents, which forms the lawful basis for processing personal data. For certain processing, such as specific direct marketing, we may also use legitimate interests as provided under the Data Protection Regulations. In some cases, we may also have a legal obligation to collect personal information from you or may otherwise need the personal information to protect your vital interests or those of another person. Where you have consented to a particular processing, you have a right to withdraw the consent at any time.
How we use Customer data
We use your data to authenticate you and authorize access to our Services
We only process your Data in accordance with your instructions to provide our Services and provide customer support to you. In each case, ImmunifyMe collects such information only in so far as is necessary or appropriate to fulfil the purpose of the interaction with our Services, such as:
How we use Other data
To send emails and other communications. We may send you Service, technical and other administrative emails, messages and other types of communications. We may also contact you to inform you about changes in our Services and our Services offerings. These communications are considered part of the Services and you may not opt out of them.
Customer Support. If you send us a request (for example via a support email or via one of our feedback mechanisms), we respond to your request or to help your issues.
For any other purpose as provided for in and opted-in by you;
In accordance with or as may be required by law.
We may send you Service related messages or marketing / promotional materials. You may choose to restrict the collection or use of your personal information
We will update you with improvements in our services, new features and from time to time also carry out direct marketing of our products and services. Direct marketing is carried out only if you consent to receiving such communications from us or we have a legitimate purpose for doing so.
Users under 16 years of age
The Sites and Services do not knowingly collect personal information from users under the age of 16
The profiles being created are by parents of various children under the age of 16 for the purposes of utilising the Services provided herein, and by use of the Services herein, an express consent is given by the users/customers to use the information provided therein by ImmunifyMe for the purposes generating generic statistical data or reports as required by ImmunifyMe.
Data Retention Policy
We will retain your personal information for as long as is needed to fulfil the purposes outlined in this Policy, unless a longer retention period is required or permitted by law (such as tax, accounting or other legal requirements).
Customer Data -
We retain your information for as long as you continue to use the Software and Services. We may also retain your personal information for extended period under applicable statutory laws.
ImmunifyMe will retain Customer Data in accordance with a Customer’s instructions, including any applicable terms in the terms and conditions of our Registration Form that are used by the customers/clients/users
Other Data -
We retain your information for as long as necessary for the purposes that we have described in this Policy
ImmunifyMe may retain Other Information pertaining to you for as long as necessary for the purposes described in this Policy.
Your Rights -
You can request to access, update or correct your personal information. You also have the right to object to direct marketing.
Under the GDPR regulations, your personal information is processed based on legitimate interests, you have the right to object to the processing on grounds relating to your specific situation. Under GDPR you may also have the right to request to have your personal information deleted or restricted and ask for portability of your personal information.
Your Rights to Control Data
Whenever you use our Services, we aim to provide you easy means to access, modify, delete, object to or restrict use of your personal information
We strive to give you ways to access, update/modify your data quickly or to delete it unless we have to keep that information for legal purposes. Some rights can be access from within the ImmunifyMe application. For visitors, these rights can be exercised by contacting us with your specific request.
Change or Correct Data: You can edit some of your personal data through your account. You can also ask us to change, update or fix your data in certain cases, particularly if it’s inaccurate.
Delete Data: You can ask us to erase or delete all or some of your personal data (e.g. if it is no longer necessary to provide Services to you).
Object to, or Limit or Restrict, Use of Data: You can ask us to stop using all or some of your personal data (e.g. if we have no legal right to keep using it) or to limit our use of it (e.g. if your personal data is inaccurate or unlawfully held).
Right to Access and/or Take Your Data: You can ask us for a copy of your personal data and can ask for a copy of personal data you provided in machine readable form.
We keep some personal data even after termination/suspension of the use of the Software
Once you choose to terminate the relationship with ImmunifyMe, we generally delete your personal information within 180 (one hundred and eighty) days of termination of Services. Some information that is necessary for statutory obligations such as records of payment processing, invoicing data will be retained as necessary.
Your information shared with others
Recipients of your data
Your data will be shared with other recipients in order to provide you with Services. We use third party servers/systems, that have been listed in the Annexure to this Policy. These third-parties provide the services necessary for use of the Software.
While we aim to limit the sharing of your data, at times, it is necessary to share your data with certain service providers. Examples of when and for what purpose your data is shared include data center/ hosting services, email marketing services, etc.
The following categories of recipient will most likely receive your data in order for us to provide services to you
To Comply with Laws. - If we receive a request for information, we may disclose if we reasonably believe disclosure is in accordance with or required by any applicable law, regulation or legal process.
Cross-Border Data Transfers
Your data will be stored and processed in multiple countries including outside of the European Union (EU) Region
Since we are an international company, your data will be processed outside of the EU region. Your data will be processed within Third Party Data Centres in USA, currently our servers situated at AWS, West Virginia, United States of America.
Security Measures to Protect your Data
We implement security controls to prevent breaches and unauthorised access to your data.
We maintain reasonable and appropriate security measures to protect Customer Data and Other Data from loss, misuse, and unauthorized access, disclosure, alteration, and destruction.
Examples of security measures include physical access controls, HTTPS, restricted access to data, monitoring for threats and vulnerabilities etc.
We also subject our services to internationally recognised certification and attestation standards. Details about our security measures are available at our website.
Protection of personal information
We use commercial efforts to maintain safeguards for protection of your Personal Information
ImmunifyMe takes all measures reasonably necessary to protect against the unauthorized access, use, alteration or destruction of potentially personally-identifying and personally-identifying information.
You can contact us about this Policy
If you have questions or complaints regarding this Policy, you may contact us through email at firstname.lastname@example.org
As a resident of the European Economic Area you have additional rights. If you are not satisfied with the resolution, you can also lodge a complaint with the Supervisory Authority in the country of your residence within the EU.