Privacy policy
Introduction
MedBrief recognises the importance of protecting privacy. Our privacy policy describes what personal information we may collect and how we may use and protect personal information made available to us. Save where the context indicates otherwise our privacy policy applies to both registered users and resellers of our software and to visitors to any MedBrief websites (individually and collectively referred to in this policy as "the Services").
Where used in this policy, the terms "End-User" or "Reseller" means you, the person making use of and/or reselling the Services, "we" or "our" means MedBrief or its Licensors as defined in the MedBrief Terms of Use and "personal information" means any information identifying or describing an identifiable individual, including, but not limited to information relating to their name, age, gender, reproductive status, marital status, national, ethnic or social origin, sexual orientation, physical or mental health, disability, conscience, belief, culture, language and birth of the individual; educational, criminal or employment history of the individual, financial status or information relating to financial transactions in which they have been involved and any identifying number, address or contact information of the individual.
Commitments to privacy
We are committed to maintaining the confidentiality, integrity and security of personal information and we will take all appropriate technical and organisational security measures to ensure that where any personal information is provided to us it will be protected against loss, destruction and damage, and against unauthorised or accidental access, processing, erasure, transfer, use, modification, disclosure or other misuse.
We shall not disclose to any person any personal data of a data subject that is processed or hosted by us unless such disclosure complies in all respects with the provisions of any applicable data protection legislation or regulations relating to the data subject.
MedBrief software users may be required to submit limited personal information when accessing the Services including a username, email address and password for the purposes of protecting user accounts against unauthorised access. In addition, document and files contained in the Services may contain the personal information of third parties.
We may automatically record certain information about the use of our Services such as account activity (e.g. storage, usage, number of log-ins, actions taken), data displayed or clicked on (e.g. GUI elements, links), and other log information (e.g. browser type, IP address, date and time of access).
We may use this information to provide authorised users with usage reports and internally to deliver the best possible service to clients, such as improving software user interfaces and maintaining a consistent, reliable and secure user experience.
We may also detect and log an End-User's location and IP address in order to identify the End-User's geographic region or time zone for routing traffic to geographically based servers or for managing time-sensitive tasks like the sending of notifications.
Like most online companies, our Services, including our website, other online services, applications, email messages and advertisements, if any, may use "cookies" and other technologies such as pixel tags and web beacons to collect information. A cookie is a small data file stored on the web browser on your computer's hard drive. Cookies and other technologies allow us to count how many users visited certain web pages within our web site, their personal preferences and to measure the effectiveness of our website and electronic advertisements for different computing devices and regions.
We use this information to understand and analyse trends, to administer our web site, and to learn about user behaviour on our web site. If an End-User blocks cookies from being stored on a computer, the functionality of Services may be negatively affected.
We may carry out and perform functional, statistical, textual, semantic and other forms of analysis of non-personally identifiable data that is hosted or processed by us in relation to our Services. We do this to improve the performance of our Services, to understand the way in which our Services are being utilised, to identify usage patterns, market trends, to gain insights and to formulate new products and service offerings. We may also process, aggregate and anonymise personal data such that it does not reveal any confidential, personal or sensitive data or any features from which confidential, personal or sensitive data may be ascertained. We will never disclose confidential, personal or sensitive data without the consent of the party to whom we owe the duty of confidentiality and/or the data subject concerned. We may process and transfer anonymised data in our reasonable discretion including within the Licensor’s group of companies.
API's and thirdparty processing
Where, for the purpose of providing the Services to you, any MedBrief Service acts as an Application Programming Interface ("API") for the purpose of specifying how different software systems should interact with each other, or where for that same purpose any MedBrief Service interacts with other API's, including third party API's, we may pass and retrieve data, including personal information, between the different software systems and third parties that interact via those API's. Where we make use of third party service providers to help us provide the Services to you, including for the purposes of retrieving or delivering information, records, notifications or other messages to you or your End-Users or for hosting or providing any component of our services to you, we require such third parties to maintain the confidentiality of any personal information we provide to them for these purposes. Some of these third parties may be situated outside of your country and you consent to your personal data and that of any data subjects you provide to us being transferred cross-border so that we can provide the Services to you. In this regard, we engage only with reputed third party service providers who have security and privacy policies and procedures providing at least the same level of protection as we do ourselves. You warrant that you have all necessary permissions to give us the above consent.
Communications with you
We communicate with our End-Users, resellers and other persons by email and other messaging applications. We may invite you to opt in to promotional communications from us that are not strictly related to the provision of the Services to you.
Revisions and termination
This policy may be updated from time to time at our discretion and changes will become effective upon posting to the site.
If the MedBrief Licensor merges with, or is acquired by, any other business, you acknowledge that your personal information may fall under the control of another person.
If you terminate your relationship with MedBrief, portions of your personal information may be retained in back-ups and archives for as long as is reasonably necessary to assist us in meeting our legal compliance obligations.
Questions and comments
If you have questions, comments, concerns or feedback regarding this Privacy Policy, please send an e-mail to [email protected].