Last Updated: August, 2019
HIPEC Registry operates and offers on a Software as a Service basis, a web-based HIPEC patient registry and research database (the “Database”). The Database may be made available through the website with a home page currently located at hipecpatientregistry.com and through any optimized version of this website via a wireless device or via mobile applications that we make available.
How we collect and Use Information
Personally Identifiable Information. We collect personally identifiable information such as your name, contact information, or employer, organization, or hospital information when you provide it to us directly, such as when you:
• Register and set up an account to use the Database.
• Request a subscription to the Database.
• Fill out and submit forms, including about your professional practice.
• When you enter data into the Database about your patients, your experience with HIPEC surgery or related information provided for in any applicable Database fields.
• Respond to a survey.
• Email, call or communicate with us.
• Sign up for email updates.
• Inquire about the Database.
• Contact us to request more information about the Database.
Patient Data; User Contributions. We also collect information about users’ patients, when you or another user enters information into the Database about such patients (“Patient Data”). This information may include the name, birthdate, address, medical data, and other personally identifiable information about such patients. You transmit, upload or otherwise submit Patient Data at your own risk. You are responsible for obtaining all authorizations and consents required under applicable law, including, but not limited to, those required and defined by the HIPAA Privacy Rule under U.S. law, under any applicable state law, and all consents required as appropriate, with regards to Patient Data.
The Database may now, or in the future, include forums for users to post and share information, experience and opinions, in addition to Patient Data (“User Contributions”). Any User Contributions are posted on and transmitted to others at your own risk. We cannot control the actions of other users of the Database with whom you may choose to share your User Contributions. Therefore, we cannot and do not guarantee that your User Contributions will not be viewed by unauthorized persons or that User Contributions will not be re-distributed to a wider audience.
Use of Personally Identifiable Information and Patient Data
You agree that we may contact you through any and all contact information you provide to us. You also acknowledge and agree that we may use personally identifiable information that we collect about you or that you provide to us, including Patient Data, as follows:
• To present, provide and deliver the Database to you and your agents or authorized users.
• To conduct or allow others to conduct research regarding HIPEC surgery or other topics.
• To process and complete any actions or reports you have requested.
• To send you related information, including updates, security alerts and support and administrative messages.
• To respond to your comments and questions and otherwise provide customer service.
• To send you communications about us and our services, offers, promotions, news, upcoming events and geographically relevant information.
• To maintain and administer your account.
• To notify you about changes to the Database.
• To allow you to participate in interactive features on the Database.
• To present content that is customized to your interests.
• To fulfill any other purpose for which you provide it.
• For any other purpose with your consent.
We may also use aggregated user data or Patient Data that does not identify any individual, for any legal purpose.
Sharing of Your Personally Identifiable Information or Product Information
We may share your information, including personal information, with our partners, subsidiaries, affiliates, contractors, buyer or successor in interest, and other third parties that support our business, including payment card processing companies.
We may share your information, including personal information, with the service providers and vendors that assist us with our business. For example, we may share your name and email address with the provider who assists with and manages our communications regarding the Database. We may also share your information with third party vendors or service providers that provide the information technology systems necessary to provide you the Database. In general, we require our third party service providers and vendors to restrict their use of personally identifiable information received through the Database or via our website to the intended purposes for disclosure.
We may also disclose your information, including personal information: (i) to comply with any court order, law, or legal process, including to respond to any government or regulatory request; (ii) to enforce or apply our Data Access and Use Agreement and other agreements, including for billing and collection purposes; (iii) in the event of a merger, acquisition, change of control or other reorganization of Company, or as is requested by our investors, auditors or advisors; (iv) and if we believe disclosure is necessary or appropriate to protect the rights, property, or safety of Company, our customers, or others.
We may also share aggregated user data or Patient Data that does not identify any individual with third parties, without restriction.
With your consent, we may share Patient Data in an un-identified format with other users.
We do not sell or rent your personal information to third parties for marketing purposes.
All non-personal information collected through the Database may be used and shared by us without any restriction.
The Database automatically collects certain standard internet log information that you do not visibly enter, such as your IP address, browser type, click stream data, HTTP protocol elements, and the status of cookies placed on your computer by Company.
In addition, in order to manage and improve the Database, we or our service providers may certain technologies such as cookies (small packets of information that are stored by your web browser) or web beacons (electronic images that allow us to count visitors who have accessed a webpage). These tools do not identify you personally and allow us to track and analyze aggregated usage data about the Database and its use.
You may choose to block or disable cookies from your device using your browser settings or options. However, this may impact your user experience and parts of the Database may not work for you. You cannot remove or block web beacons as they form part of the content of the web pages, however because they work in conjunction with cookies, turning off cookies will prevent web beacons from tracking your user activity on our site. The beacon can still account for an anonymous visit, but your unique information will not be recorded.
Do Not Track Disclosure. We may use the above technologies to collect information about your online activities over time and across third-party services or other online services. The Database does not monitor for or behave differently if your computer transmits a “do not track” or similar beacon or message.
Geographic Restrictions; Data Processing in the United States
HIPEC Registry, LLC and its servers and technology supporting the Database are located in the United States. Information collected through the Database is processed, transmitted and stored in the United States. If you submit any personal information through the Database or our website (for example, if you provide your email in order to request information) you understand that you are voluntarily consenting to the transmission of such information to a company in the United States and your information will be stored and processed in the United States. You acknowledge and consent to such collection, process, transmission and storage of your information in the United States.
Updating Your Personal Information
If you would like to update or correct your personal information, send us an email at email@example.com to request access to, correct or delete any personal information that you have provided to us. In each such case, you must clearly identify the information that you wish to have changed or clearly indicate that you wish to have your personal information removed from our database. Note that despite any request for a change to or removal of your personal information, we may need to retain certain information for recordkeeping purposes, and there may also be residual information that will remain within our databases and other records, which will not be removed or changed.
Your Communication Choices
You may opt out of receiving promotional emails from Company by following the unsubscribe instructions contained in those emails. You may also change your communication preferences in your My Account profile. Should you opt out, we may still send you non-promotional emails, including emails regarding your purchases, account, or other ongoing business relations.
California Privacy Notice
California Civil Code Section § 1798.83 provides certain rights to California residents, including the right to request information from a business, with whom the California resident has an established business relationship, regarding the business’s disclosure of personal information to third parties for their direct marketing purposes during the immediately preceding year. To make such a request pursuant to Section 1798.83 of the California Civil Code, please send an email to firstname.lastname@example.org.
Security of Your Personal Information
We use reasonable security measures and safeguards designed to protect personal information from loss, misuse, unauthorized access, disclosure, alteration and destruction while it is under our control. Unfortunately, the transmission of information via the internet is not completely secure. Although we do our best to protect your personal information, we cannot guarantee the security of your personal information transmitted to the Database. Any transmission of personal information is at your own risk. You acknowledge and agree that we are not responsible for circumvention of any privacy settings or security measures contained on the Database.