Privacy Policy

PRIVACY NOTICE

Last updated August 03, 2020  

We are committed to protecting your personal information and your right to privacy. If you have any questions about our privacy policy, please contact us.

Our policy explains what information we collect, how we use it and what rights you have.  It applies to all information collected through our website (such as http://www.ayemed.org), and/or any related services, sales, marketing or events (we refer to them collectively in this privacy policy as the "Sites").

Please read this privacy policy carefully as it will help you make informed decisions about sharing your personal information with us.  

1. HOW DO WE USE YOUR INFORMATION?  

We use the information we collect or receive:           

  1. To fulfill and manage your orders, payments, returns, and exchanges made through the Sites.           

  2. We post testimonials on our Sites that may contain personal information. Prior to posting a testimonial, we will obtain your consent to use your name and testimonial. If you wish to update, or delete your testimonial, please contact us at conorc65@yahoo.co.uk.

  3. We may use your information to request feedback.

  4. To enforce our terms, conditions and policies.

  5. To respond to legal requests and prevent harm. 

  6. We may use your information for other Business Purposes, such as data analysis, identifying usage trends, determining the effectiveness of our promotional campaigns and to evaluate and improve our Sites, products, services, marketing and your experience.  

2. WILL YOUR INFORMATION BE SHARED WITH ANYONE?  

We may process or share data based on the following legal basis:

  • If you have given us specific consent to use your personal information.

  • When it is reasonably necessary to achieve our legitimate business interests. 

  • Where we have entered into a contract with you, we may process your personal information to fulfill the terms of our contract. 

We may need to process your data or share your personal information in the following situations:   

  • We may share your data with third party vendors, service providers, contractors or agents who perform services for us or on our behalf and require access to such information to do that work. We do not share, sell, rent or trade any of your information with third parties for their promotional purposes.    

3. WHO WILL YOUR INFORMATION BE SHARED WITH?  

We only share and disclose your information with the following third parties. If you wish to revoke your consent, please contact us.  

  • Communicate and Chat with Users
    Facebook Customer Chat

  • Content Optimization 
    YouTube video embed

  • Data Backup and Security
    Dropbox Backup

  • Invoice and Billing
    PayPal

  • Website Hosting
    Squarespace

4. HOW LONG DO WE KEEP YOUR INFORMATION? 

We will only keep your personal information for as long as it is necessary for the purposes set out in this privacy policy, unless a longer retention period is required or permitted by law (such as tax, accounting or other legal requirements).

5. HOW DO WE KEEP YOUR INFORMATION SAFE? 

We have implemented appropriate technical and organizational security measures designed to protect the security of any personal information we process. However, please also remember that we cannot guarantee that the internet itself is 100% secure.

6. WHAT ARE YOUR PRIVACY RIGHTS? 

In some regions (like the European Economic Area), you have certain rights under applicable data protection laws. These may include the right (i) to request access and obtain a copy of your personal information, (ii) to request rectification or erasure; (iii) to restrict the processing of your personal information; and (iv) if applicable, to data portability. In certain circumstances, you may also have the right to object to the processing of your personal information. To make such a request, please use the contact details provided below. We will consider and act upon any request in accordance with applicable data protection laws. 

If we are relying on your consent to process your personal information, you have the right to withdraw your consent at any time. Please note however that this will not affect the lawfulness of the processing before its withdrawal.

If you are resident in the European Economic Area and you believe we are unlawfully processing your personal information, you also have the right to complain to your local data protection supervisory authority. You can find their contact details here: http://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.htm  

7. DO WE MAKE UPDATES TO THIS POLICY?

We may update this privacy policy from time to time. The updated version will be indicated by an updated “Revised” date and the updated version will be effective as soon as it is accessible.

8. HOW CAN YOU CONTACT US ABOUT THIS POLICY?

If you have questions or comments about this policy, you may contact our Data Protection Officer (DPO), Conor Brown, by email at conorc65@yahoo.co.uk

9. HOW CAN YOU REVIEW, UPDATE, OR DELETE THE DATA WE COLLECT FROM YOU?

Based on the applicable laws of your country, you may have the right to request access to the personal information we collect from you, change that information, or delete it in some circumstances.

10. DATA WE ACCEPT

In order to comply with, The data protection act, GDPR and endnote 14/15 of the Health Insurance Portability and Accountability Act “45 CFR § 164.502 - Uses and disclosures of protected health information: General rules.” we only accept De-Identified Health information.

De-identified health information neither identifies nor provides a reasonable basis to identify an individual. There are two ways to de-identify information; either: (1) a formal determination by a qualified statistician; or (2) the removal of specified identifiers of the individual and of the individual’s relatives, household members, and employers is required, and is adequate only if the covered entity has no actual knowledge that the remaining information could be used to identify the individual.

11. HOW WE STORE DATA

Only staff who have been trained in our data handling procedure will have access to your documents via our dropbox server.  Documents we are working on are stored securely at AyeMed and on our encrypted dropbox server.  Completed documents are redacted and stored for 3 months. We can reissue these to you on request if required.

12. QUOTES

Quotes we provide are valid for 14 days.

13. HOW WE COMMUNICATE WITH OUR CUSTOMERS

All business communications are via our central customer service e-mail info@ayemed.org. Staff are trained in our data handling procedures and all communications are confidential.