Introduction
VLEPIS PTY LTD (“we”, “our”, “us”) is committed to protecting the privacy and security of our customers’ personal data. This Data Privacy Policy outlines how we collect, use, disclose, and protect information, in the context of our wearable medical sensor technology and use of our website.
Our operations extend across Australia, the UK, Europe, Asia, and the Middle East, and we strive to comply with applicable data protection laws in these regions, including the General Data Protection Regulation (GDPR) in Europe, the Privacy Act 1988 in Australia, and other relevant legislation.
Scope
This policy applies to all personal data collected, used, and disclosed by us through our wearable medical sensor technology, associated services and our website. It covers the handling of identifiable personal data as well as deidentified data.
Definitions
- Personal Data: Any information relating to an identified or identifiable natural person.
- Deidentified Data: Data that does not identify an individual and cannot reasonably be used to identify an individual, either alone or in combination with other data.
- Processing: Any operation performed on personal data, including collection, storage, use, disclosure, and deletion.
Data Collection
We collect the following types of data:
1. Identifiable Personal Data:
Sensitive information, such as health data, is collected and processed with explicit consent and used strictly for the purposes outlined in this policy.
- User Information: Name, contact details, date of birth, gender, and other demographic information.
- Health Data: Health data collected by our wearable medical sensors, including but not limited to heart rate, blood pressure, temperature, activity levels, and other relevant health metrics collected by the wearable sensor(s).
- Technical Information: IP address, device information, and usage data collected when you interact with our website or use our wearable devices.
- Payment Information: Credit card details, billing information, and transaction history.
- Usage Data: Information about how users interact with our products and services.
2. Deidentified Data:
- Aggregated health metrics
- Statistical data derived from identifiable personal data after removing identifying details.
Purpose of Data Collection
We collect and process personal data for the following purposes:
- Providing and improving our products and services
- Conducting research and analysis to enhance user experience and product development
- Marketing and communications, with user consent
- Complying with legal obligations
- Promoting and selling anonymised and aggregated data
Use of Deidentified Data
Deidentified data is used for:
- Research and development
- Statistical analysis
- Marketing and business intelligence
- Sharing with third parties for purposes aligned with our business objectives
Data Sharing and Disclosure
1. Identifiable Personal Data:
- We share identifiable personal data with third parties only with user consent or when required by law.
- Data may be shared with service providers who assist in delivering our services, under strict confidentiality agreements.
2. Deidentified Data:
- We may share deidentified data with partners, researchers, and other third parties for research, analysis, and business purposes.
- This data does not include any information that can be used to identify individuals.
International Data Transfers
As we operate globally, your data may be transferred to and processed in countries outside your region, including Australia, the UK, Europe, Asia, and the Middle East. We ensure appropriate safeguards are in place to protect your data in accordance with applicable laws.
Data Security
We implement comprehensive security measures to protect personal data, including:
- Encryption of data in transit and at rest
- Access controls and authentication mechanisms
- Regular security audits and risk assessments
- Employee training on data privacy and security
Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by law. Deidentified data may be retained indefinitely for research and analysis purposes.
User Rights
Depending on your location, you may have the following rights regarding your personal data:
- Access: Request access to your personal data.
- Rectification: Correct any inaccurate or incomplete data.
- Deletion: Request deletion of your personal data.
- Restriction: Restrict processing of your personal data under certain conditions.
- Portability: Request transfer of your data to another organization.
- Objection: Object to processing of your personal data.
To exercise these rights, please contact us by using the information provided in the section labelled Contact Information.
Children’s Privacy
Our products and services are not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children without verifiable parental consent. If we become aware that we have collected personal information from a child without consent, we will take steps to delete it.
Consent
By using our products and services, you consent to the collection, use, and disclosure of your personal data as described in this policy. You may withdraw your consent at any time by contacting us, though this may affect your ability to use our services.
Changes to This Policy
We may update this policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any significant changes and update the effective date at the top of this policy.
Contact Information
If you have any questions or concerns about this policy or our data practices, please contact us at:
VLEPIS PTY LTD
By mail: Level 26, 44 Market Street Sydney NSW 2000
By phone: +61 2 9089 8608
By email: admin@vlepis.com
By ensuring transparency and maintaining robust data protection measures, we strive to earn and retain the trust of our users while advancing the benefits of wearable medical sensor technology.