FindMeCure stresses its privacy and security standards to guard against identity theft and provide security for your personal information. We regularly re-evaluate our privacy and security policies and adapt them as necessary to deal with new challenges.
The company, which uses your information as a controller of personal data is: FINDMECURE LTD. - a company incorporated under the law of the England and Wales, registered into the Registrar of Companies for England and Wales under company number 10821379.
Contract person for privacy matters:
In the course of using the Service, we collect some personal data relating to you. Here is what we collect and what we use it for:
The information about your medical condition is treated with high level of privacy and confidentiality by the applicable data protection legislation, so we need your explicit consent to receive and process this data, which you can withdraw at any time. Immediately after you delete your profile or terminate using the Services in any other way, your health data collected will be erased or anonymized in accordance with the law.
The information about your medical condition will be collected only after consent given by you.
You may withdraw your consent at any time by writing to our Contract person for privacy matters in any convenient way: by letter or e-mail at the addresses stated above. You may also withdraw your consent very easily with the special feature, installed in your profile specially to provide you with that option.
We collect personal data only from the person concerned. As entering personal data is personal and voluntary for everyone, each person shall be responsible not to provide third person’s personal data.
We provide Services to, allow registration and collect personal data only to persons aged 18 and over. If aged under 18, please ask for the assistance of a person aged at least 18 in order to use our Services.
If we obtain actual knowledge that we have collected personal data from a person under the age of 18 in violation of the legal requirement, we will promptly take appropriate measures and we may delete it, unless we are legally obligated to retain such data. Please, contact us, if you believe that we have mistakenly or unintentionally collected information from a person under the age of 18 in violation of the legal requirements.
After terminating your profile, we shall delete or anonymize all your personal data in accordance with the requirements of the applicable legislation in a manner designed to ensure that it cannot be reconstructed or associated with you.
We take appropriate contractual, technical and organisational measures to protect your personal data against loss or other forms of unlawful processing. We make sure that personal data is only accessible by only those who need access to do their job, and that they are properly trained and authorised. Our staff is required to conduct themselves in a manner consistent with the company’s guidelines regarding confidentiality, ethics, and appropriate usage of data. Staff is required to execute a confidentiality agreement and are provided with proper training in online privacy and security.
Based on the above we store data information in the European Union and the United States. We always make sure that our data processor partners are part of the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks. We have signed DPAs (Data Processing Agreements) with every data processors, which stores data outside of European Union. Here is a list of the third-party data processors we use:
We do not share personal information with companies, organizations and individuals. We may share some information regarding clinical trials with third parties, nut such information shall be anonymized and no third party shall receive individualized information about you. We may also share non-personally identifiable information publicly and with our partners. For example, we may share information publicly to show trends about the general use of our Services or clinical trials in general.
We may share data in case one of the following circumstances applies:
Personal Content that does not personally identify you (“Non Personal Identifiable Information”), may be collected in the following ways:
The security of your Personal Information is very important to FindMeCure. We use commercially reasonable physical, electronic and administrative safeguards that are designed to protect your Personal Information from loss, misuse and unauthorized access, disclosure, alteration, and destruction. Our data is encrypted both - at rest and in motion and our partners are world wide leaders in their respective domain and have taken top security measures.
In the event that your Personal Information is acquired, or is reasonably believed to have been acquired, by an unauthorized person and applicable law requires notification, FindMeCure will notify you by e-mail. FindMeCure will give you notice promptly, consistent with the reasonable needs of law enforcement and/or FindMeCure to determine the scope of the breach and to investigate and restore the integrity of the data system.
You have the right to request a copy of your personal details at any time, to check the accuracy of the information held and/or to correct or update this information. You may ask your personal information to be transferred or deleted completely, if no enquiry from you is in progress. You also have the right to complain when your personal data protection rights have been violated. We will make commercially reasonable efforts to provide you with reasonable access to any of your personal information we maintain or correct it within 30 days as of receipt of your access request.
Please, note that after deleting your information, you shall not be able to use adequately the Services. You have the right to delete data in a manner consistent with the functionality of the Services, if such deletion is in accordance with the GDPR. We will comply with this instruction as soon as reasonably practicable and within a maximum period of 30 days, unless EU or Bulgarian law requires storage. Please, note that we may keep that information for legitimate business or legal purposes or be required (including by contract or GDPR) to keep certain of information and not delete it (or to keep this information for a certain time, in which case we will comply with the deletion request only after we have fulfilled such requirements).
If you wish to access, delete (when applicable) or correct your personal information please use the contacts listed on top. Please state clearly in the subject that your request concerns a privacy matter, and more specific whether it is a request to access, correction, transfer or deletion. Bear in mind that we may ask for additional information to determine your identity.
You can at any moment unsubscribe from our newsletters and notifications, by sending a notification to the email stated on top or by using the link in the mails, but after that we shall not be able to provide you with the full set of Services, which includes regular update and information about clinical trials.
We may reject requests that are unreasonably repetitive, require disproportionate technical effort (for example, developing a new system or fundamentally changing an existing practice), risk the privacy of others, or would be extremely impractical (for instance, requests concerning information residing on backup systems). Where we can provide information access and correction, we will do so for free, except where it would require a disproportionate effort.
Complaints, in case of conflict, can be addressed to the contacts listed on top. If you file a privacy-related complaint, we will collect your name and/or company name, name of a complaint-related person, email, and country location and details that gave rise to your complaint. We will use the information you provide to investigate your complaint and to send you an answer once your complaint is reviewed.
If you think we have infringed your privacy rights, you can lodge a complaint with the supervisory authority of UK, which is the Information Commissioner’s Office (ICO). More information can be found at: https://ico.org.uk.
You can also lodge your complaint in particular in the country where you live, your place of work or place where you believe we infringed your rights.