Privacy Notice
NISAD – National Institutes for Stress, Anxiety & Depression are 7 foundations, associations and research centres working toward a common goal.
This privacy notice has been compiled to inform those who are concerned with how their ‘Personally Identifiable Information’ (PII) is being used. PII is information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context. Please read our privacy policy carefully to get a clear understanding of how we collect, use, protect or otherwise handle your Personally Identifiable Information.
Your privacy is extremely important to us, so we want you to know exactly what kind of information we collect about you, whether you are a patient, member, client, supplier or just enquirer (whether as a website visitor, job applicant or otherwise).
YOUR PERSONAL DATA – WHAT IS IT?
Personal data relates to a living individual who can clearly be identified from that data, including your name, address, phone number, e-mail address, credit or bank card number. Identification can be made by the information alone or in conjunction with any other information otherwise in the data controller’s possession or likely to come into such possession.
This Privacy Notice describes how your personal information is collected, used, and shared when you visit or make a purchase from NISAD – National Institutes for Stress, Anxiety & Depression (the “Site”).
When we talk about “Personally Identifiable Information” in this Privacy Notice, we include Device Information and Order Information.
THE LAWFUL BASIS FOR PROCESSING DATA
The basis on which we keep data is that of legitimate interests. This means that the data is necessary for us to fulfil the objectives of NISAD/ELK Health and that it is data that would reasonably be expected for us to hold and use.
Health data is considered to be special category data. The condition for processing this special data is “processing is necessary for medical diagnosis, the provision of health care or treatment pursuant to contract with a health professional” or for archiving, research, statistics.
What personal information do we collect from the people who visit our blog, website or app?
When ordering or registering on our site you may be asked to enter your name, email address, postal address, telephone number, debit or credit card information, health data or other details to help you with your experience once you become a member.
When do we collect information?
The type of information we collect depends on the nature of your interactions with us. Depending on the circumstances, we may collect any of the following.
How do we use your information?
We may use the information we collect from you when you register, become a member, make a purchase, sign up for our newsletter, respond to a survey or marketing communication, surf the website, or use certain other site features in the following ways:
- To personalise your experience and to allow us to deliver the type of content and product offerings in which you are most interested.
- To allow us to offer you a better service in responding to your member service requests.
- To provide health care.
- To conduct research.
- To send periodic emails regarding your order or other products and services.
- To follow up with you after correspondence (live chat, email or phone inquiries)
How do we protect your information?
Our website is scanned on a regular basis for security holes and known vulnerabilities in order to make your visit to our site as safe as possible.
We use regular Malware Scanning.
Your personal information is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and are required to keep the information confidential. In addition, all sensitive/credit information you supply is encrypted via Secure Socket Layer (SSL) technology.
We implement a variety of security measures when a user places an order, enters, submits, or accesses their information to maintain the safety of your personal information.
All financial transactions are processed through a gateway provider and are not stored or processed on our servers.
Do we use ‘cookies’?
Yes. Cookies are small files that a site or its service provider transfers to your computer’s hard drive through your Web browser (if you allow) that enables the site’s or service provider’s systems to recognize your browser and capture and remember certain information. For instance, we use cookies to help us remember and process the items in your shopping cart. They are also used to help us understand your preferences based on previous or current site activity, which enables us to provide you with improved services. We also use cookies to help us compile aggregate data about site traffic and site interaction so that we can offer better site experiences and tools in the future.
We use cookies to:
- Help remember and process the items in the shopping cart.
- Understand and save user’s preferences for future visits.
- Compile aggregate data about site traffic and site interactions in order to offer better site experiences and tools in the future. We may also use trusted third-party services that track this information on our behalf.
You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You do this through your browser settings. Since each browser is a little different, look at your browser’s Help Menu to learn the correct way to modify your cookies.
If users disable cookies in their browser:
If you turn cookies off, some features will be disabled. Some of the features that make your site experience more efficient may not function properly, including your Personal Journey Dashboard other personal details about your membership.
However, you will still be able to place orders or gain service by contacting customer service.
Third-party disclosure
We do not sell, trade, or otherwise transfer your Personally Identifiable Information to outside parties unless we provide you with advance notice and you then give your permission. Please note though that “outside parties” does not apply to website hosting partners and other parties who assist us in operating our website, conducting our business, or serving our users, so long as those parties agree to keep this information confidential. We may also release information when we believe that doing so is appropriate to comply with the law, to enforce our site policies, or to protect your, our or others’ rights, property or safety.
However, non-personally identifiable visitor information may be provided to other parties for marketing, advertising, or other uses. By this, we mean statistics about members that do not identify any members personally.
Third-party links
We do not include or offer third-party products or services on our website.
California Online Privacy Protection Act
This website complies with CalOPPA a law in California, USA that requires commercial websites and online services to post a privacy notice. More information at: http://consumercal.org/california-online-privacy-protection-act-caloppa/#sthash.0FdRbT51.dpf
According to CalOPPA, we agree to the following:
Users can visit our site anonymously.
Once this privacy notice is created, we will add a link to it on our home page or as a minimum, on the first significant page after entering our website.
Our Privacy Notice link includes the word ‘Privacy’ and can easily be found on the page specified above.
You will be notified of any Privacy Notice changes:
- Via Email
Can change your personal information:
- By emailing us
- By logging in to your account. Note: we don’t offer membership at this very moment, however it is in the pipeline.
How does our site handle Do Not Track signals?
We honour Do Not Track signals and Do Not Track, plant cookies, or use advertising when a Do Not Track (DNT) browser mechanism is in place.
Does our site allow third-party behavioural tracking?
To protect your privacy, we do not allow third-party behavioural tracking
COPPA (Children Online Privacy Protection Act)
Fair Information Practices
The Fair Information Practices Principles form the backbone of privacy law in the European Union, the United States and the concepts they include have played a significant role in the development of data protection laws around the world. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.
In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur:
We will notify you via email
- Within 1 business day
We will notify the users via in-site notification
- Within 1 business day
We also agree to the Individual Redress Principle which requires that individuals have the right to legally pursue enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute non-compliance by data processors.
CAN SPAM Act
The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.
We collect your email address in order to:
- Send information, respond to inquiries, and/or other requests or questions.
- Process orders and to send information and updates pertaining to orders.
- Send you additional information related to your product and/or service.
- Market to our mailing list or continue to send emails to our clients after the original transaction has occurred.
To be in accordance with CANSPAM, we agree to the following:
- Not use false or misleading subjects or email addresses.
- Identify the message as an advertisement in some reasonable way.
- Include the physical address of our business or site headquarters.
- Monitor third-party email marketing services for compliance, if one is used.
- Honour opt-out/unsubscribe requests quickly.
- Allow users to unsubscribe by using the link at the bottom of each email.
If at any time you would like to unsubscribe from receiving future emails, you can email us by following the instructions at the bottom of each email, or directly to info@nisad.ngo. We will promptly remove you from ALL future correspondence.
Personal details
All information about you is restricted to staff at NISAD.ngo. Personal information about your health which is taken by a health professional at your request is held and only visible to qualified health professionals who are registered with government-approved regulators. This means that in the unlikely event of someone not respecting your privacy, that person could be struck off their professional register.
Confidentiality is a basic rule taught early in training to the biomedical scientists, clinicians, facilitators and mentors who work with NISAD.ngo – but there are exceptions to confidentiality. You can expect the very highest standards regarding your personal information.
YOUR RIGHTS
You have certain rights in respect of the personal information that we hold about you, including:
- The right to be informed of the ways in which we use your information, as laid out in this Privacy Notice;
- The right to ask us not to process your information for marketing purposes;
- The right to request access to the information that we hold about you;
- The right to request that we correct or rectify any information that we hold about you which is out of date or incorrect;
- In certain circumstances, the right to ask us to stop using information about you. You will have certain additional rights in respect of the information that we hold about you:
- The right to withdraw consent for us to process or keep your personal details;
- The right to object to our using your data;
- The right to ask us to limit or cease processing your data
Please note that this may prevent us from being able to offer our product and services to you.
If you wish to withdraw your consent, object to how we use your data, ask us to delete it or restrict how we use it please see the ‘How to contact us’ details below. We may ask you to provide additional information (such as to confirm your identity and/or to confirm what information you wish to access) in order to process your request.
We may need to retain certain information for recordkeeping, to complete any transactions you began before your request, or for other purposes as permitted by law.
If you have an account on this site or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you.
COMPLAINTS
If you have any comments, questions or concerns about the contents of this Privacy Notice or the way in which we use your information, we encourage you, in the first instance, to contact us using the details in the ‘How to contact us’ section below.
If we cannot resolve your concern and would like to make a formal complaint, you can contact the Information Commissioner’s Office (also known as the “ICO”). The ICO is an independent authority and the UK’s supervisory authority for information rights. (https://ico.org.uk/)
Please email info@nisad.ngo if you have any questions about privacy whatsoever.
Contacting Us
If there are any questions regarding this Privacy Notice, you may contact us using the information below.
Our contact page:
https://nisad.ngo/contact-help/
Please email info@nisad.ngo if you have any questions about our Privacy Notice.