Last Updated: August 15, 2021
Retrace is transforming the way data is used in healthcare. Our products help our customers unlock the full potential of their data. Expert Healthcare Professionals at your Fingertips. We enable the healthcare world to benefit from renowned doctors with a click of a button
By using this site, you agree to take basic steps to ensure your privacy online. You agree to log out of this site when you are finished, protecting your information from other users. You also agree not to share your password or login ID with anyone else. In addition, you agree to take reasonable precautions against malware and viruses by installing an anti-virus software to protect your online activities.
“Personal Information” means any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
Personal Information may include the following: name, address, date of birth, gender and contact data (i.e., email address, telephone number, and employer name).
We may also collect information that is related to you but that does not personally identify you (“Non-personal Information”). Non-personal Information also includes information that could personally identify you in its original form, but that we have modified (for instance, by aggregating, anonymizing or de-identifying such information) in order to remove or hide any Personal Information.
We collect this information to continually improve and enhance the functionality of Retrace. We gather certain information automatically. This information may include IP addresses, browser type, Internet service provider (ISP), referring/exit pages, operating system, date/time stamp, and/or clickstream data. We link this automatically collected data to other information we collect about you
We take your privacy seriously and employ information protection controls in keeping with industry standards and practices to safeguard your information and protect your anonymity. Personal information about you may be collected from you through various sources, including information i) that is entered manually and voluntarily by you on the Site’s application and other forms or postings on the Site; ii) that you provide regarding your preferences (for example, based on your activity on our website); iii) from other sources with your consent (for example, from other institutions such as auditors or administrators); iv) from sources in the public domain; and v) from other interactions you may have with us (for example, discussions or emails with our staff, including through the use of the Site’s contact features).
In addition, when you visit our Site, we may gather anonymous technical and navigational information, such as computer browser type, Internet protocol address, cookie information, pages visited, and average time spent on our Website. This information does not personally identify you and may be used, for example, to alert you to software compatibility issues, to customize any advertising or content you see, fulfil your requests for products and services, contact you, conduct research or analyze and improve our Site design and functionality.
Such information collected by us may be stored and processed in the United States or any other country in which our agents or we maintain facilities. By using the website and our Services, you consent to the foregoing collection and use of information and any such transfer of information outside of your country. We make no representation or warranty with respect to any duty to permanently store any personal information you may provide.
In order to provide the best experience when you visit our website, we may ask you for Personal Information. Personal information includes, for example, your name and e-mail address, both of which you may be asked to provide when registering with Retrace. A description of some of the ways that you may provide personal information to us, as well as further details on how we may use such personal information, is given below.
If you email us using a “Contact us” link on our Website, we may ask you for information such as your name and e-mail address so we can respond to your questions and comments. If you choose to correspond with us via e-mail, we may retain the content of your e-mail messages, your e-mail address and our response to you.
We may occasionally ask website visitors to complete online surveys and opinion polls about their activities, attitudes and interests. These surveys help us improve our products and services. When asking for participation in these surveys, we may ask you to provide us with your name and email address.
Our Website may offer visitors contact forms to request additional details and to download collateral. If you fill out one of our web forms, we may ask you for information such as your name and email address so we can respond to your questions and comments. If you choose to correspond with us via web forms, we may retain the form data which can include name, email address and other contact related details.
Technologies such as: cookies, beacons, tags and scripts are used by Retrace and our marketing partners, analytics providers, and customer support systems. These technologies are used in analyzing trends, administering the site, tracking users’ movements around the site and to gather demographic information about our user base as a whole. We may receive reports based on the use of these technologies by these companies on an individual as well as aggregated basis.
Most web browsers can be set to tell you when a cookie has been sent to you and give you the opportunity to refuse that cookie.
Refusing a cookie may in some cases prevent you from using or negatively impact the display or function of our Website or certain areas or features of our Website. There are numerous resources on the Internet that can provide more information about how cookies work and how you can manage them.
Web Beacons, also known as pixel tags and clear GIFs, (“Web Beacons”), are electronic images that allow a website to access cookies and help track marketing campaigns and general usage patterns of visitors to those websites. Web Beacons can recognize certain types of information, such as cookie numbers, time and date of a page view, and a description of the page where the Web Beacons is placed. No personally identifiable information about you is shared with third parties through the use of Web Beacons on the Site. However, through Web Beacons, we may collect general information that will not personally identify you, such as: Internet browser, operating system, IP address, date of visit, time of visit and path taken through the Site.
Internal use of Web Beacons: Retrace may use Web Beacons internally to count visitors and recognize visitors through cookies. Access to cookies helps personalize your experience when you visit the Site.
Email: Retrace may include Web Beacons in HTML-formatted email messages that Retrace sends to you. Web Beacons in email messages helps determine your interest in and the effectiveness of such emails.
External use of Web Beacons: Retrace may also use Web Beacons externally. For example, Retrace may report aggregate information about visitors, such as demographic and usage information, to its affiliates and other third parties. Retrace may also include other Web Beacons within the Site.
You may “opt in” and/or “opt out” of certain uses of your Personal Information. For example, you may have the opportunity to choose whether you would like to receive email correspondence from us. Your Personal Information will not be shared with third-party service providers unless you give consent. You will have the opportunity to opt out of Retrace marketing emails by clicking the “opt out” or “unsubscribe” link in the email you receive. You can also request this by filling out a web form via our Data Subject Access Request (DSAR) Portal. If the Retrace DSAR portal is unavailable, requests can be sent to firstname.lastname@example.org.
Please take note that if you opt out of receiving promotional correspondence from us, we may still contact you in connection with your relationship, activities, transactions and communications with us.
Retrace uses your Personal Information to provide you products and services, such as to fulfil your requests for products or to help us personalize our offerings to you. We also use your Personal Information to support our business functions, such as fraud prevention, marketing, and legal functions. To do this, we combine personal and non-Personal Information, collected online and offline, including information from third-party sources.
We may use third-party partners to help us operate and maintain our Website and deliver our products and services. We may also share your information with our service providers and other third parties (“Affiliated Parties”) that provide products or services for or through this Website or for our business (such as website or Infrastructure hosting companies, communications providers, email providers, analytics companies, credit card processing companies and other similar service providers that use such information on our behalf).
Third-party service providers are contractually restricted from using or disclosing the information, except as necessary to perform services on our behalf or to comply with legal requirements.
Retrace may be required to disclose collected information in order to (i) respond to investigations, court orders or legal process, (ii) to investigate, prevent or take action regarding illegal activities, suspected fraud, potential threats to the physical safety of any person, (iii) violations of the Company’s terms of service, or (iv) as otherwise required by law.
You may request access to your personal data to update, correct or delete, or to limit the use or disclosure of, your personal data.
Individuals wishing to view, update, delete, or supplement their personal data may do so by contacting the business that provided Retrace your personal data directly to make your requests, or alternatively you can submit your request through our Data Subject Access Request (DSAR) Portal. If the Retrace DSAR portal is unavailable, requests can be sent to email@example.com. Individuals outside the EU may also use our Data Subject Access Rights portal to submit complaints about your privacy and our collection or use of your personal information.
Retrace does not sell or otherwise disclose the Personal Information it holds to third parties, except for the following exceptional circumstances:
We take reasonable and appropriate precautions, including administrative, technical, personnel, and physical measures, to safeguard Personal Data against loss, misuse, theft, and unauthorized access, disclosure, alteration, and destruction. We also use Secure Sockets Layer (SSL) encryption when transmitting sensitive information. Please keep in mind that due to the inherent nature of the Internet, there is no way to make the transmission of electronic data entirely safe from intrusion.
All Personal Information is retained only for as long as it is necessary for the purposes for which it was collected or transferred. Retrace retains your information for business purposes, for as long as your account is active, and/or as long as is reasonably necessary to provide you with our products and services. Retrace will also retain your information as reasonably necessary to comply with our legal obligations, resolve disputes and enforce our agreements. We may also retain cached or archived copies of your information for a reasonable period of time. At any point in time, you can withdraw consent and we will immediately stop processing your data.
Retrace may share customer information within our family of companies for a variety of purposes, for example, to provide you with the latest information about our products and services and offer you our latest promotions. To facilitate our global operations, Retrace may transfer Personal Information from your home country to other Retrace locations across the world. To protect your Personal Information, we will only transfer data to countries who provide an “adequate” level of Personal Information protection. If the data is transferred to counties without ‘adequate’ protection as determined by the European Parliament, we will use additional safeguards to ensure your data is protected.
In regard to the aforementioned rights to voice questions, make requests regarding your data privacy or withdraw consent, we will respond to your request within 30 days. In some cases, however, we may limit or deny your request if: the law permits or requires us to do so, if it infringes on the privacy of other individuals or internal procedures, if we find the request to be unfounded or excessive or if we are unable to verify your identity.
If the volume or complexity of the request requires internally processing at Retrace beyond 30 days, Retrace will inform the requester within 30 days of the reasons for an extension and may charge a reasonable fee to cover administrative costs.
Security of all information is of the utmost importance for Retrace. Retrace uses technical and physical safeguards to protect the security of your Personal Information from unauthorized disclosure. We use encryption technology to keep all information secure. We also make all attempts to ensure that only necessary people and third parties have access to Personal Information. Nevertheless, such security measures cannot prevent all loss, misuse or alteration of Personal Information and, unless otherwise agreed in a written agreement between Retrace and the applicable party, we are not responsible for any damages or liabilities relating to any such incidents to the fullest extent permitted by law. In the case of a data breach, we will notify you without undue delay of any loss, misuse or alteration of Personal Information that may affect you. We will notify relevant regulatory bodies within 72 hours of a breach
On January 1, 2020, the California Consumer Privacy Act of 2018 (CCPA) took effect, and sets new requirements and rights relating to personal information of California consumers. This section for California residents applies solely to visitors, users, and others who reside in the State of California (“consumers” or “you”). We adopt this notice to comply with the California Consumer Privacy Act of 2018 (“CCPA”) and other California privacy laws. Any terms defined in the CCPA have the same meaning when used in this notice.
Information We Collect
We collect information that identifies, relates to, describes, references, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or device (“personal information”). In particular, we have collected the following categories of personal information from consumers within the last twelve (12) months:
A real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, Social Security number, driver’s license number, passport number, or other similar identifiers.
B. Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)).
A name, signature, Social Security number, physical characteristics or description, address, telephone number, passport number, driver’s license or state identification card number, insurance policy number, education, employment, employment history, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information. Some personal information included in this category may overlap with other categories.
C. Protected classification characteristics under California or federal law.
Age (40 years or older), race, color, ancestry, national origin, citizenship, religion or creed, marital status, medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, pregnancy or childbirth and related medical conditions), sexual orientation, veteran or military status, genetic information (including familial genetic information).
D. Commercial information.
Records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.
E. Biometric information.
Genetic, physiological, behavioural, and biological characteristics, or activity patterns used to extract a template or other identifier or identifying information, such as, fingerprints, faceprints, and voiceprints, iris or retina scans, keystroke, gait, or other physical patterns, and sleep, health, or exercise data.
F. Internet or other similar network activity.
Browsing history, search history, information on a consumer’s interaction with a website, application, or advertisement.
G. Geolocation data.
Physical location or movements.
H. Sensory data.
Audio, electronic, visual, thermal, olfactory, or similar information.
I. Professional or employment-related information.
Current or past job history or performance evaluations.
J. Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99)).
Education records directly related to a student maintained by an educational institution or party acting on its behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial information, or student disciplinary records.
K. Inferences drawn from other personal information.
Profile reflecting a person’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.
When it comes to the collection of personal information from children under 13, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, the nation’s consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online. We do not specifically market to children under 13.
The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.
In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur:
The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.
To be in accordance with CANSPAM we agree to the following:
If at any time you would like to unsubscribe from receiving future emails, you can email us at firstname.lastname@example.org and we will promptly remove you from ALL correspondence.
1 Market Street Suite 3600,
San Francisco CA 94105.