Helius Medical Technologies (“HELIUS”, “WE” or “US”) is committed to protecting and respecting your privacy and ensuring that your personal information is processed fairly and lawfully in line with all relevant privacy legislation. The purpose of this Privacy Statement is to set out the principles governing our use of personal information that we may obtain about you through this website (the “Site”) and in connection with our business (the “Business”). By using this Site, you agree to our use of the personal information that we obtain about you.
“Personal information” is information, or a combination of pieces of information, that could reasonably allow you to be identified.
Please note that our collection or use of your personal information may be governed by a separate privacy notice. If you receive a different notice at the time we collect your personal information, that privacy notice will govern how we use that personal information.
Please read this Privacy Statement carefully. We may change our Privacy Statement from time to time. We therefore ask you to check it occasionally to ensure that you are aware of the most recent version that will apply each time you access this Site. If a revision meaningfully reduces your rights, we will notify you. BY USING THIS SITE, YOU AGREE TO THIS PRIVACY STATEMENT. IF YOU DO NOT AGREE TO THIS PRIVACY STATEMENT, DO NOT USE THIS SITE.
For your convenience, this Site may contain links to a number of other websites. The privacy policies and procedures described here do not apply to those sites; we suggest contacting those sites directly for information on their data collection and distribution policies. Any reference to a linked site or any specific third-party product or service by name does not constitute or imply its endorsement by us, and you assume all risk with respect to its use.
YOUR PERSONAL INFORMATION
We may collect, use, store and transfer the following personal information to provide, improve and protect our Site and in connection with our Business.
The persona information we collect and process. You may give us personal information by visiting or interacting with the Site, filling in forms or submitting information on the Site, interacting with our Business, by corresponding with us by phone, e-mail, SMS or otherwise, or through your employment by HELIUS. This personal information includes the following data which are referred to in this Privacy Statement as ‘your data’, ‘your personal data’ or ‘your personal information’:
We also may obtain your personal information from third parties and sources, such as web hosting providers, analytics providers, and advertisers. In some cases, these third parties collect information on our behalf as our processors or service providers. In other cases, we collect information from third parties based on the account or privacy settings that you have established with those third parties. The information we collect from other sources may include any of the types of personal information listed above.
PURPOSES FOR WHICH WE WILL USE YOUR DATA
We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:
Applicable law may require HELIUS to identify a legal basis in order to process your personal information. Such bases include:
SHARING YOUR DATA
We may share information as discussed below, but we won’t sell it to advertisers or third parties.
PROTECTING YOUR DATA
We only process personal data where we have a legal basis for doing so. We review the personal data we hold periodically to ensure it is being lawfully processed.
Before transferring personal data to any third party (e.g. suppliers, partners and back office support), we seek to establish that there is a legal reason for making the transfer, which may include your consent.
We have implemented measures and procedures that protect the privacy of individuals and help ensure that data protection is integral to all processing activities. This includes implementing measures which may include, for example:
PRIVACY RIGHTS FOR EU RESIDENTS
If you are an individual in the European Union, you have certain rights with respect to the access, correction, restriction, and erasure of your personal information stored on our platform at any time. You can exercise these rights by contacting us using the contact information below. Your rights include the following:
You have the right to ask us to suspend or otherwise restrict the processing of your personal data where:
If we have given the personal data to any third parties, we will tell those third parties that we have received a request to restrict the use of your personal data, unless this proves impossible or involves a disproportionate effort. Those third parties should also rectify the personal data they hold – however, we will not be in a position to audit those third parties to ensure that the rectification has occurred.
Withdrawing your consent. Where we are relying on consent to process your personal data (for example consent to receive marketing) you have the right to withdraw your consent at any time. However, this will not affect the lawfulness of any processing carried out before you withdraw your consent. If you withdraw your consent, we may not be able to provide certain products or services to you.
INTERNATIONAL DATA PROCESSING & TRANSFER
We process information collected from or about you in any country in which HELIUS operates, as permitted by applicable law. In some cases, your information may be transferred to, stored, and processed in a country that is not regarded as ensuring an adequate level of protection for information under applicable laws(such as from the European Economic Area (“EEA”) to outside the EEA). When we conduct such transfers, we put in place appropriate safeguards (such as standard contractual clauses) in accordance with applicable legal requirements. Information located outside of your home country may be subject to access by that country’s government or its agencies under a lawful order. For more information on the appropriate safeguards in place or to obtain a copy of the standard contractual clauses, please contact us.
PRIVACY RIGHTS FOR CALIFORNIA RESIDENTS
The following applies only to California residents:
California residents have the following rights regarding our collection and use of your personal information. To exercise those rights, please contact us using the contact information below. We may ask you to provide additional information to verify your request. We may not discriminate against you if you exercise your rights as described in this notice. For example, we may not deny goods or services to you, or charge you different prices or rates, or provide a different level of quality of products or services.
Right to Information
You have the right to request the following information regarding the personal information we have collected about you:
You have the right to request the following information regarding the personal information we have sold or disclosed about you:
Right to Opt Out of Sharing, Disclosure, or Sale of Personal Information
Right to Request Deletion
WHERE WE STORE AND TRANSFER YOUR DATA
The Site is controlled by HELIUS from its offices in the United States. HELIUS may store and use information in the United States and other jurisdictions; any personal data provided to HELIUS will be transmitted to or within those jurisdictions. HELIUS also may transfer information and personal data to other jurisdictions to facilitate HELIUS’s third party processors’ access to and/or processing of information and/or personal data.
HELIUS makes no representation that materials on this Site are appropriate or available for use in other locations, and access to them from territories where their contents are illegal is prohibited. Those who choose to access this Site from other locations do so on their own initiative and are responsible for compliance with applicable local laws.
We retain your personal information for as long as necessary to carry out the purposes set out in this Policy, unless a longer retention period is required by applicable law.
To determine the appropriate retention time for your personal information, we consider the amount, nature, and sensitivity of personal information, the potential risk of harm from unauthorized use or disclosure of your personal information, the purposes for which we process your personal information, and whether we can achieve these purposes through other means, as well as applicable legal requirements. In some circumstances we may anonymize personal information so that it may no longer be associated with an individual, and in such cases we may use that anonymized information without further notice to you and outside of this Policy (because, once anonymized, it ceases to constitute “personal information”).
We implement technical and organizational measures to maintain a level of security appropriate to any risks presented to the personal information we process. These measures seek to ensure the ongoing integrity and confidentiality of personal information. Please note that no security measures can be 100% secure; however, we evaluate and test our chosen measures on regular basis in order to protect your personal information in accordance with this Policy and applicable law.
DO NOT TRACK
We do not currently respond to web browser “do not track” signals or other mechanisms that provide a method to opt out of the collection of information across the networks of websites and online services in which we participate. For more information, visit www.allaboutdnt.org.
This Policy applies solely to the information collected by HELIUS. Our Sites may contain links to websites not owned or controlled by HELIUS. HELIUS does not have any control over these third-party websites. We encourage you to be aware of these other third-party websites and their privacy statements, as we cannot control and are not responsible for privacy policies or practices of third-party websites.
For any questions regarding this Policy or to exercise your applicable data privacy rights, contact us at email@example.com or 215-944-6100.
Effective Date: Aug 13th, 2021