- Last Updated: April 5th, 2023
Retrace is transforming the way data is used in healthcare. Our products help our customers unlock the full potential of their data. Expert Healthcare Professionals at your Fingertips. We enable the healthcare world to benefit from renowned doctors with a click of a button
Your Online Privacy Responsibilities
By using this site, you agree to take basic steps to ensure your privacy online. You agree to log out of this site when you are finished, protecting your information from other users. You also agree not to share your password or login ID with anyone else. In addition, you agree to take reasonable precautions against malware and viruses by installing an anti-virus software to protect your online activities.
What Is Personal Information?
“Personal Information” means any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
Personal Information may include the following: name, address, date of birth, gender and contact data (i.e., email address, telephone number, and employer name).
We may also collect information that is related to you but that does not personally identify you (“Non-personal Information”). Non-personal Information also includes information that could personally identify you in its original form, but that we have modified (for instance, by aggregating, anonymizing or de-identifying such information) in order to remove or hide any Personal Information.
- Visitors to, or users of, its websites
- Prospective and current customers using Retrace services
- Service providers and business partners
- Prospective and current employees
- Other third-parties that it interacts with
We collect this information to continually improve and enhance the functionality of Retrace. We gather certain information automatically. This information may include IP addresses, browser type, Internet service provider (ISP), referring/exit pages, operating system, date/time stamp, and/or clickstream data. We link this automatically collected data to other information we collect about you
Collection of Personal Information
We take your privacy seriously and employ information protection controls in keeping with industry standards and practices to safeguard your information and protect your anonymity. Personal information about you may be collected from you through various sources, including information i) that is entered manually and voluntarily by you on the Site’s application and other forms or postings on the Site; ii) that you provide regarding your preferences (for example, based on your activity on our website); iii) from other sources with your consent (for example, from other institutions such as auditors or administrators); iv) from sources in the public domain; and v) from other interactions you may have with us (for example, discussions or emails with our staff, including through the use of the Site’s contact features).
In addition, when you visit our Site, we may gather anonymous technical and navigational information, such as computer browser type, Internet protocol address, cookie information, pages visited, and average time spent on our Website. This information does not personally identify you and may be used, for example, to alert you to software compatibility issues, to customize any advertising or content you see, fulfil your requests for products and services, contact you, conduct research or analyze and improve our Site design and functionality.
Such information collected by us may be stored and processed in the United States or any other country in which our agents or we maintain facilities. By using the website and our Services, you consent to the foregoing collection and use of information and any such transfer of information outside of your country. We make no representation or warranty with respect to any duty to permanently store any personal information you may provide.
Personal information you choose to provide
In order to provide the best experience when you visit our website, we may ask you for Personal Information. Personal information includes, for example, your name and e-mail address, both of which you may be asked to provide when registering with Retrace. A description of some of the ways that you may provide personal information to us, as well as further details on how we may use such personal information, is given below.
If you email us using a “Contact us” link on our Website, we may ask you for information such as your name and e-mail address so we can respond to your questions and comments. If you choose to correspond with us via e-mail, we may retain the content of your e-mail messages, your e-mail address and our response to you.
We may occasionally ask website visitors to complete online surveys and opinion polls about their activities, attitudes and interests. These surveys help us improve our products and services. When asking for participation in these surveys, we may ask you to provide us with your name and email address.
Our Website may offer visitors contact forms to request additional details and to download collateral. If you fill out one of our web forms, we may ask you for information such as your name and email address so we can respond to your questions and comments. If you choose to correspond with us via web forms, we may retain the form data which can include name, email address and other contact related details.
Website usage information
Technologies such as: cookies, beacons, tags and scripts are used by Retrace and our marketing partners, analytics providers, and customer support systems. These technologies are used in analyzing trends, administering the site, tracking users’ movements around the site and to gather demographic information about our user base as a whole. We may receive reports based on the use of these technologies by these companies on an individual as well as aggregated basis.
Most web browsers can be set to tell you when a cookie has been sent to you and give you the opportunity to refuse that cookie.
Refusing a cookie may in some cases prevent you from using or negatively impact the display or function of our Website or certain areas or features of our Website. There are numerous resources on the Internet that can provide more information about how cookies work and how you can manage them.
Web Beacons, also known as pixel tags and clear GIFs, (“Web Beacons”), are electronic images that allow a website to access cookies and help track marketing campaigns and general usage patterns of visitors to those websites. Web Beacons can recognize certain types of information, such as cookie numbers, time and date of a page view, and a description of the page where the Web Beacons is placed. No personally identifiable information about you is shared with third parties through the use of Web Beacons on the Site. However, through Web Beacons, we may collect general information that will not personally identify you, such as: Internet browser, operating system, IP address, date of visit, time of visit and path taken through the Site.
Internal use of Web Beacons: Retrace may use Web Beacons internally to count visitors and recognize visitors through cookies. Access to cookies helps personalize your experience when you visit the Site.
Email: Retrace may include Web Beacons in HTML-formatted email messages that Retrace sends to you. Web Beacons in email messages helps determine your interest in and the effectiveness of such emails.
External use of Web Beacons: Retrace may also use Web Beacons externally. For example, Retrace may report aggregate information about visitors, such as demographic and usage information, to its affiliates and other third parties. Retrace may also include other Web Beacons within the Site.
Your opt in/opt out choices
You may “opt in” and/or “opt out” of certain uses of your Personal Information. For example, you may have the opportunity to choose whether you would like to receive email correspondence from us. Your Personal Information will not be shared with third-party service providers unless you give consent. You will have the opportunity to opt out of Retrace marketing emails by clicking the “opt out” or “unsubscribe” link in the email you receive. You can also request this by filling out a web form via our Data Subject Access Request (DSAR) Portal. If the Retrace DSAR portal is unavailable, requests can be sent to [email protected].
Please take note that if you opt out of receiving promotional correspondence from us, we may still contact you in connection with your relationship, activities, transactions and communications with us.
Permitted Use of Personal Information
Retrace uses your Personal Information to provide you products and services, such as to fulfil your requests for products or to help us personalize our offerings to you. We also use your Personal Information to support our business functions, such as fraud prevention, marketing, and legal functions. To do this, we combine personal and non-Personal Information, collected online and offline, including information from third-party sources.
- Fulfill Requests: To fulfill your requests for products and services and communicate with you about those requests.
- Understand Customer Behavior: To better understand customer behavior so that we may improve our marketing and advertising efforts and to improve the distribution of our products and services;
- Personalize Offerings: To help us personalize our service offerings, websites, mobile services, and advertising;
- Protection: To protect the security and integrity of our websites, mobile services, and our business;
- Legal: To comply with legal and/or regulatory requirements;
- Responding to Customer: To respond to reviews, comments, or other feedback you provide us;
- Employment Applications: In connection with a job application or inquiry, you may provide us with data about yourself, including your educational background or resume and other information, including your ethnicity where required or permitted by law. We may use this information throughout Retrace, its subsidiaries and affiliates, and its joint ventures for the purpose of employment consideration.
- Promotional Messaging or Advertising: With your consent, Retrace uses your contact information to recommend products and services that might be of interest to you, to send you marketing and advertising messages such as newsletters, announcements, or special offers or to notify you about our upcoming events. If at any time, you would like to discontinue receiving any such email updates, you may unsubscribe by following the unsubscribe instructions included in each promotional email
Use, disclosure, and sharing of Personal Information
We may use third-party partners to help us operate and maintain our Website and deliver our products and services. We may also share your information with our service providers and other third parties (“Affiliated Parties”) that provide products or services for or through this Website or for our business (such as website or Infrastructure hosting companies, communications providers, email providers, analytics companies, credit card processing companies and other similar service providers that use such information on our behalf).
Third-party service providers are contractually restricted from using or disclosing the information, except as necessary to perform services on our behalf or to comply with legal requirements.
Retrace may be required to disclose collected information in order to (i) respond to investigations, court orders or legal process, (ii) to investigate, prevent or take action regarding illegal activities, suspected fraud, potential threats to the physical safety of any person, (iii) violations of the Company’s terms of service, or (iv) as otherwise required by law.
Your ability to access, limit use and disclosure
You may request access to your personal data to update, correct or delete, or to limit the use or disclosure of, your personal data.
Individuals wishing to view, update, delete, or supplement their personal data may do so by contacting the business that provided Retrace your personal data directly to make your requests, or alternatively you can submit your request through our Data Subject Access Request (DSAR) Portal. If the Retrace DSAR portal is unavailable, requests can be sent to [email protected]. Individuals outside the EU may also use our Data Subject Access Rights portal to submit complaints about your privacy and our collection or use of your personal information.
Disclosure of Personal Information
Retrace does not sell or otherwise disclose the Personal Information it holds to third parties, except for the following exceptional circumstances:
- Third Parties: Retrace will not rent or sell your Personal Information to others but may disclose Personal Information with third-party vendors and service providers that work with Retrace. We will only share Personal Information to these vendors and service providers to help us provide a product or service to you at your request and in accordance with our respective agreement. We will ensure appropriate contractual clauses are in place to ensure compliance with data protection legislation.
- Business Purposes:In a prospective business transaction, Retrace may disclose Personal Information where Retrace has entered into an agreement that restricts the use and disclosure of that data solely for purposes related to the transaction, protects the data by security safeguards appropriate to the sensitivity of the information, and if the transaction does not proceed, the data is returned to Retrace or destroyed within a reasonable time. With respect to employee data, Retrace may disclose Personal Information if it is necessary to establish, manage or terminate an employment relationship, as allowed by law.
- Legal and Safety Reasons: Retrace may be required to disclose Personal Information to law enforcement agencies, government agencies, or legal entities. We may disclose information by law, litigation, or as a matter of national security to comply with a valid legal process including subpoenas, court orders or search warrants, and as otherwise authorized by law. We may also need to disclose Personal Information in the event of an emergency that threatens an individual’s life, health, or security. If the data requested is held on behalf of a customer, Retrace will consult the customer unless it is prohibited to do so by law. Retrace may be required to disclose information without your consent or knowledge if: (i) it is reasonable to expect that disclosure with your knowledge or consent would compromise an investigation of a breach of an agreement or a contravention of the law; (ii) it is reasonable for the purposes of preventing, detecting or suppressing fraud and it is reasonable to expect that the disclosure with your knowledge or consent would compromise the ability to prevent, detect or suppress the fraud; (iii) it is necessary to identify an individual who is injured, ill or deceased to a government institution or the individual’s next of kin or authorized representative and, if the individual is alive, with notification to the individual.
We take reasonable and appropriate precautions, including administrative, technical, personnel, and physical measures, to safeguard Personal Data against loss, misuse, theft, and unauthorized access, disclosure, alteration, and destruction. We also use Secure Sockets Layer (SSL) encryption when transmitting sensitive information. Please keep in mind that due to the inherent nature of the Internet, there is no way to make the transmission of electronic data entirely safe from intrusion.
Data Retention and Storage
All Personal Information is retained only for as long as it is necessary for the purposes for which it was collected or transferred. Retrace retains your information for business purposes, for as long as your account is active, and/or as long as is reasonably necessary to provide you with our products and services. Retrace will also retain your information as reasonably necessary to comply with our legal obligations, resolve disputes and enforce our agreements. We may also retain cached or archived copies of your information for a reasonable period of time. At any point in time, you can withdraw consent and we will immediately stop processing your data.
International Transfer of Personal Information
Retrace may share customer information within our family of companies for a variety of purposes, for example, to provide you with the latest information about our products and services and offer you our latest promotions. To facilitate our global operations, Retrace may transfer Personal Information from your home country to other Retrace locations across the world. To protect your Personal Information, we will only transfer data to countries who provide an “adequate” level of Personal Information protection. If the data is transferred to counties without ‘adequate’ protection as determined by the European Parliament, we will use additional safeguards to ensure your data is protected.
Company Response to a Data Request and/or Security Breach
In regard to the aforementioned rights to voice questions, make requests regarding your data privacy or withdraw consent, we will respond to your request within 30 days. In some cases, however, we may limit or deny your request if: the law permits or requires us to do so, if it infringes on the privacy of other individuals or internal procedures, if we find the request to be unfounded or excessive or if we are unable to verify your identity.
If the volume or complexity of the request requires internally processing at Retrace beyond 30 days, Retrace will inform the requester within 30 days of the reasons for an extension and may charge a reasonable fee to cover administrative costs.
Security of all information is of the utmost importance for Retrace. Retrace uses technical and physical safeguards to protect the security of your Personal Information from unauthorized disclosure. We use encryption technology to keep all information secure. We also make all attempts to ensure that only necessary people and third parties have access to Personal Information. Nevertheless, such security measures cannot prevent all loss, misuse or alteration of Personal Information and, unless otherwise agreed in a written agreement between Retrace and the applicable party, we are not responsible for any damages or liabilities relating to any such incidents to the fullest extent permitted by law. In the case of a data breach, we will notify you without undue delay of any loss, misuse or alteration of Personal Information that may affect you. We will notify relevant regulatory bodies within 72 hours of a breach
California Consumer Privacy Act
This section for California residents applies solely to visitors, users, and others who reside in the State of California (“consumers” or “you”). We adopt this notice to comply with the California Consumer Privacy Act of 2018 (“CCPA”) and other California privacy laws. Any terms defined in the CCPA have the same meaning when used in this notice.
Information We Collect
We collect information that identifies, relates to, describes, references, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or device (“personal information”). In particular, we have collected the following categories of personal information from consumers within the last twelve (12) months:
A real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, Social Security number, driver’s license number, passport number, or other similar identifiers.
B. Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)).
A name, signature, Social Security number, physical characteristics or description, address, telephone number, passport number, driver’s license or state identification card number, insurance policy number, education, employment, employment history, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information. Some personal information included in this category may overlap with other categories.
C. Protected classification characteristics under California or federal law.
Age (40 years or older), race, color, ancestry, national origin, citizenship, religion or creed, marital status, medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, pregnancy or childbirth and related medical conditions), sexual orientation, veteran or military status, genetic information (including familial genetic information).
D. Commercial information.
Records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.
E. Biometric information.
Genetic, physiological, behavioural, and biological characteristics, or activity patterns used to extract a template or other identifier or identifying information, such as, fingerprints, faceprints, and voiceprints, iris or retina scans, keystroke, gait, or other physical patterns, and sleep, health, or exercise data.
F. Internet or other similar network activity.
Browsing history, search history, information on a consumer’s interaction with a website, application, or advertisement.
G. Geolocation data.
Physical location or movements.
H. Sensory data.
Audio, electronic, visual, thermal, olfactory, or similar information.
I. Professional or employment-related information.
Current or past job history or performance evaluations.
J. Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99)).
Education records directly related to a student maintained by an educational institution or party acting on its behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial information, or student disciplinary records.
K. Inferences drawn from other personal information.
Profile reflecting a person’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.
We will use and retain the collected personal information as needed to provide the Services or for:
Category A – As long as the user has an account with us
Category B – As long as the user has an account with us
We may also collect other personal information outside of these categories through instances where you interact with us in person, online, or by phone or mail in the context of: Receiving help through our customer support channels; Participation in customer surveys or contests; and Facilitation in the delivery of our Services and to respond to your inquiries.
COPPA (Children Online Privacy Protection Act)
When it comes to the collection of personal information from children under 13, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, the nation’s consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online. We do not specifically market to children under 13.
Fair Information Practices
The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.
In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur:
- We will notify the users via email Within 7 business days
- We also agree to the individual redress principle, which requires that individuals have a right to pursue legally enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or a government agency to investigate and/or prosecute non-compliance by data processors.
CAN SPAM Act
The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.
To be in accordance with CANSPAM we agree to the following:
If at any time you would like to unsubscribe from receiving future emails, you can email us at [email protected] and we will promptly remove you from ALL correspondence.
1 Market Street Suite 3600,
San Francisco CA 94105.
Updates to our privacy statement