Last updated: November 19, 2020
Thank you for reviewing this Medable DigiBioMarC App Privacy Statement. Medable Inc (“Medable”, “we” or “us”) is a small business that provides various products and services used in clinical research studies and clinical trials. This DigiBioMarC (Digital Biomarkers for Health or “DBM”) App was created by Medable with funding from the federal government to help identify better and more efficient ways to monitor health of populations and participants in clinical trials and research. One of the intended purposes is to help detect early signs of possible adverse events or declining health when viable treatment options may be available. Use of this app is pursuant to an IRB approved protocol. This Medable DBM App Privacy Statement applies to products and services you may receive in connection with our DBM app. Please note that this Privacy Statement does not apply to non-DBM products, goods or services provided by other individuals or entities associated with our collaborators.
The purpose of this statement is to describe Medable’s commitment to protecting and respecting the privacy of your personally identifiable information (“Personal Information”). This Privacy Statement only applies to information we may collect through our DBM app.
Please read this policy carefully, as it details:
>How we collect, use and disclose your information that we collect from you when you use our DBM App.
>The security approaches we use to protect your information.
>How you can access and request modification of certain information that we may store about you.
>Any applicable rights you may have.
Please note that this policy applies only to information collected via the DBM App; it does not apply to information you voluntarily disclose to us through other means or to information that we acquired or will acquire through other sources. It also does not apply to any Personal Information collected on any third-party website or application, of which we have no influence or control. The use of other sites or applications or the submission of Personal Information to other third parties is at your own risk.
Medical Disclaimer: The information on the DBM App is not intended or implied to be a substitute for professional medical advice, diagnosis or treatment. You are encouraged to confirm any information obtained from or through this mobile app with the principal investigator or the Independent Review Board (“IRB”), and review all information regarding any medical condition or treatment with your physician.
NEVER DISREGARD PROFESSIONAL MEDICAL ADVICE OR DELAY SEEKING MEDICAL TREATMENT BECAUSE OF SOMETHING YOU HAVE READ ON OR ACCESSED THROUGH THIS (OR ANY) MEDABLE APP.
Your Acceptance of the DBM App Privacy Statement and Potential Future Changes to the Privacy Statement
If you do not agree to this Statement, you are not authorized to use the DBM app. Please delete the app from your smartphone at this time. Thank you for your time and we look forward to the possibility of working with you on a future project.
II. App Usage Is Limited to Adults Residing in the United States
The DBM app and related Services are intended to be used by adult residents of the United States. By using our DBM app and Services, you confirm that you are a resident of the United States and at least 18 years of age.
III. What Information We Collect
In connection with your use of the Services, we collect and process Personal Information and other non-individually identifiable information from you when you register to use the DBM App, respond to communication such as email, or otherwise use the DBM App in any manner. This information is collected for the purpose of identifying you and contacting you with important information.
The information we collect is stored in a HIPAA-security complaint cloud located in the US. The information collected may include:
>Identity Data: Such as your name, date of birth, sex at birth, ethnicity, and race.
>Contact Data: For example, your email address, telephone number, zip code.
>Health Data: For example, health indicators, clinical data as part of the current study, and any other relevant information on your general health and wellness.
>Data from your smartphone devices: Where applicable, your data is collected during your use of the DBM App in conjunction with your smartphone.
We may collect and use mobile device identifiers, IP addresses and session identifiers to analyze trends, to administer a Medable App, to track user activities, to infer user interests, and to otherwise gather information about individual users and market segments.
We may also collect and store certain other non-personally identifiable information. This information is collected passively using various technologies, and cannot presently be used to specifically identify you.
IV. How We Use Your Information
We may use your Personal Information and other data we collect from you when you register, access, view, or use DBM in the in the following ways:
>To verify and validate your identity.
>To personalize your DBM experience and to allow us to deliver the content.
>To better understand your needs and how we can improve the DBM App.
>To administer a survey or other DBM App features.
>To troubleshoot problems with the DBM App.
>To enforce our rights (including protecting our intellectual property), and to detect and protect against error, fraud and other unauthorized or illegal activities.
>To respond to any of your subsequent requests.
>To re-contact you for future health-related initiatives. These initiatives may include, but are not limited to: research participation opportunities, information about this or other Medable studies, and philanthropic causes to support your local communities and research institutions.
We may also de-identify and aggregate your Personal Information for our own purposes. Aggregated Data is information that has been combined with that of other users and analyzed or evaluated as a whole, such that no specific individual may be reasonably identified. De-identified Information is information that has been stripped of your identifiers, such as your name, contact information, and any other identifying data, such that you cannot reasonably be identified as an individual. We may use this to present a summary of the work in the DBM project in publications, posters and conference presentations.
We reserve the right to share Personal Information in response to duly authorized information requests of any law enforcement agency, court, regulator, government authority or other third party, where we believe such disclosure is necessary to comply with a legal or regulatory obligation, to prevent the unauthorized or illegal use of our App, or to prevent or detect a crime.
v. How We Communicate with You
When you send email or other communications to Medable, we may retain those communications in order to process your inquiries, respond to your requests, and improve our App, our studies, trials and related products and services. When you send and receive messages, we may collect and maintain information associated with those messages.
We may also send you service-related announcements when it is necessary to do so. For instance, if our App is temporarily suspended for maintenance, we might send you an email or text. Generally, you may not opt-out of these communications, which are not promotional in nature. If you do not wish to receive service-related announcements, you have the option to deactivate your account.
Based upon the Personal Information you provide us, we may send you a welcome email to verify your username and password. We will communicate with you in response to your inquiries, to provide the services you request and to manage your account. We will communicate with you by email or telephone, in accordance with your preference.
VI. We May Disclose Your Personal Information to Certain Outside Parties
You understand and agree that we can disclose your Personal Information and other data to third parties, as follows:
>To our subsidiaries or affiliates, strategic partners and to third parties we engage to provide services on our behalf, such as web site hosting companies or companies who send communications to you on our behalf. Our agreements with these third parties require them to protect this data and prohibit these parties from using your Personal Information for unrelated purposes.
>To third parties who are involved in conducting our studies and trials, including investigators, clinical research organizations, Institutional Review Boards, and research institutions. This may also include government regulatory agencies who may need access to Personal Information to ensure the studies are being conducted in accordance with law.
>To potentially share your information with other qualified third parties (e.g. researchers) consistent with the purposes herein.
>In the event of the sale or transfer of Medable, of one or more of our business units or of some or all of our assets, or in the context of some other business acquisition transaction.
>In response to a subpoena or court order, or a request from a law enforcement or other government agency; to establish or exercise our legal rights, or to defend against claims; or to protect the safety or security of the public or of users of a Medable App or study participants.
Medable does not currently use tracking cookies. Cookies are small data files that a site or its service provider transfers to your computer’s hard drive or mobile device through your Web browser that enables the site’s or service provider’s systems to recognize your browser and capture and remember certain information. Although cookies do identify a user’s device, cookies do not personally identify users.
Additionally, mobile device’s may use other tracking files which are similar to cookies. For example, iOS devices use Apple’s “identifier for advertisers” (IDFA) and Android devices use Google’s Android ID. In the context of tracking within an App, the concept of a cookie will include an IDFA and an Android ID. We may, however, use secure cookies for session management, (“Session Cookies”), but Session Cookies do not collect or store Personal Information and are only temporary. Information gathered by Session Cookies is not retained after the browser is closed. In the future, if we choose to use tracking cookies, we will update this policy with information on the types we use and how we use them.
VIII. “Do Not Track”
Our Medable Apps currently do not respond to “Do Not Track” (DNT) signals.
IX. Safeguarding Your Personal Information
We follow generally accepted industry security standards to safeguard and help prevent unauthorized access and maintain data security of Personal Information. However, no commercial method of information transfer over the Internet or electronic data storage is known to be 100% secure. As a result, we cannot guarantee the absolute security of any Personal Information submitted to or otherwise collected during your use of the DBM App. Accordingly, you understand and agree that you transmit all data, including Personal Information, to us at your own risk.
X. Retention of Your Personal Information
In accordance with our record retention policy, we will store your Personal Information for as long as we have a relationship with you or believe it is necessary to carry out the purposes for which we collected it, or to comply with applicable laws, rules or regulations. Under our record retention policy, data will be destroyed at a future date that is dependent upon the study or trial consent form or the purposes for which the data was collected. To request that your Personal Information be deleted from our databases, please contact us as described in XI below.
XI. Your Rights over Your Personal Information
You may have certain rights regarding Your Personal Information, subject to local law. These rights may include the following:
>Right to access your Personal Information.
>Right to rectify the information we hold about you.
>Right to erase your Personal Information.
>Right to restrict our use of your Personal Information.
>Right to object to processing of your Personal Information.
>Right to receive your Personal Information in a usable electronic format and transmit it to a third party (right to data portability).
>Right to lodge a complaint with your local data protection authority, if one exists in your state.
We encourage you to contact us to update or correct your Personal Information if it changes, or if the Personal Information we hold about you is inaccurate. Please note that we may require additional information from you in order validate your identity before processing your requests.
Please note that should you request that your Personal Information be deleted, you may continue to receive communications for a short period while we are updating our lists. Your records will then be permanently deleted from our systems, other than information where you have been screened or participated as a clinical trial volunteer in which case such information may continue to be processed in connection with the clinical trial.
XII. Contact Us
If you have any questions or concerns regarding the way in which your Personal Information is used, please contact us at email@example.com or via mail at:
Attn: Data Protection Officer
525 University Ave, Ste A70
Palo Alto, CA 94301