1 PURPOSE

​

1.1 At DEEP, we are committed to your privacy. We know that earning your trust is utmost important to us when you use our Services.

​

1.2 Our digital evidence ecosystem & protocols platform (“Platform”) provides a catalogue of digital measures and measurement solutions, and a collaborative framework for faster development of digital measures and measurement solutions improving regulatory decision-making of measurement solutions.

​

1.3 This privacy policy applies to the collection, use, and disclosure of personal data when you use our Platform and services as well as for marketing, sales, customer agreements, recruitment processes, and when visiting our website.

​

2 DESCRIPTION OF DATA SUBJECTS AND CATEGORIES OF PERSONAL

2.1 Processing of personal data concerns the following categories of data subjects:
(a) Users of our Platform (i.e. our Customers’ employees);
(b) Website visitors; and
(c) Representatives of our customers

2.2 We collect following personal data through different means when you use our Platform or interact with Us. The type of data collected depends on the data subject and varies by assignments. This includes, but is not limited to the following:
(d) basic information, such as name, date and place of birth and contact details (email address, phone number);
(e) information relating to our relationship, such as services and order details, contract information, payment details, billing information;
(f) service-related information, e.g. user IDs, authentication credentials as well as data generated in connection with service provision e.g., login information, and how services are used;
(g) project related data such as data of the participants to the missions;
(h) your communication and interactions with us, such as correspondence, and service requests; and
(i) other data, which is based on your consent and defined in detail on a case-by-case
basis.

2.3 As part of our recruitment process, we also collect and process data, which:
(a) Is generated or provided by you during the recruitment process (e.g. when you fill out an application form or provide information about you in an interview, or
provide your CV);
(b) Is obtained from publicly available sources or third parties, to the extent permitted by applicable laws e.g. from your referees, recruitment consultants and external
websites (e.g. LinkedIn) or use of which you have consented.

 

2.4 We may combine the data collected from various sources, e.g. from publicly available sources, and from your CV. You may decide not to provide any personal data to us, but we may not be able to proceed the recruitment process with you.

 
2.5 We may collect and use for any purpose aggregated data and metadata of the Platform, where individual person is not identified, e.g., statistical data collected in connection with the use of our Platform.

 
2.6 We do not collect any health or patient data (data collected from patients in a clinical trial).

 

3 MARKETING AND ANALYTICS

3.1 We may market and inform you about our Platform and services. We may combine the data collected from our different interactions with you. Furthermore, your personal data may also be used for market research and customer surveys. Processing of personal data is based on our legitimate interest to collect and analyse relevant information to better understand our customers and develop our Platform and relevant services.

3.2 Based on your consent we may store and access information, including personal data, on
your device to create personalized ads profile and deliver relevant content at the website
(e.g. information and ads about our services) as well as to measure the effectiveness of the
advertising. Respectively, your personal data may also be processed to develop and improve
the website, or for developing our own or our partners’ services.

​

4 PURPOSE AND LEGAL BASIS FOR PROCESSING OF PERSONAL DATA

4.1 We collect and process your personal data for the purposes of providing our Platform to you and fulfilling our contractual obligations to you, as well as for other legitimate business purposes, such as improving our services and communicating with you about our products and services.

4.2 The legal basis for processing your personal data may vary depending on the specific purposes for which we are processing your data, but may include your consent, our legitimate interests for performance of the contract, or compliance with legal obligations.

4.3 We use your data for the following purposes, among others:
(a) Keeping our Platform running - providing services to you and ensuring the functioning and maintenance of Platform;
(b) Verifying your identity for the purposes of signing into the Platform;
(c) Improving our Platform, products, services, marketing, and your experience;
(d) Interacting with You for feedback on our services;
(e) Managing recruitment process, evaluating suitability of job applicants, improving our recruitment process and for statistical and recordkeeping purposes;
(f) Improving and personalizing services and to develop new services and providing notifications on new features, changes, and improvements, including informative
communications related to the functionalities, products, or contracted services, including the security updates, when necessary or reasonable for their implementation
(g) Managing, pursuing, analysing, and improving the customer relationship with you,
including customer communication, user account management and processing
payments;

(h) Customer Support, corresponding with users, solving issues, and providing customer support;
(i) Informing and interacting with you of new services, features, and content we may offer; and
(j) For other purposes, such as data analysis, identifying usage trends and determining the effectiveness of our promotional campaigns.

4.4 We may process your personal data also for specific purposes if you have consented to such
processing.

 

5 DATA SHARING AND DISCLOSURES OF PERSONAL DATA

5.1 We may share your personal data with third-party service providers who assist us in providing our services. We may also disclose your personal data to comply with legal obligations or to protect our legal interests.

​

6 USE OF COOKIES

6.1 When you visit our website, Cookies, and other similar technologies (“Cookies”) are used to automatically collect information about your visit. Collected information is detailed in the cookie banner at our website. It is possible for you to accept or refuse the use of the website cookies. For the Platform, we only use essential cookies that are necessary to its function and thus cannot be refused.

6.2 Website Cookies. We use the following types of cookies on our website to enhance your
browsing experience and to better understand our website's performance:
(a) Necessary Cookies: These cookies are essential for the operation of our website. They enable core functionalities such as security, network management, and
accessibility. You cannot disable these cookies, but you can set your browser to block or alert you about these cookies.
(b) Statistics Cookies: These cookies allow us to measure and improve the performance of our website. They help us understand how visitors interact with our website by collecting and reporting information anonymously.
(c) Functional Cookies: These cookies enable enhanced functionality and personalization of the website. They may be set by us or by third-party providers whose services we have added to our pages.
(d) Marketing Cookies: These cookies are set by our advertising partners or social media services to display targeted advertising. They work by uniquely identifying your browser and device and may be used to build a profile of your interests and show you relevant adverts on other sites.

6.3 Platform Cookies. Our Platform uses cookies primarily for authentication and user session management. These cookies store necessary data to ensure secure and seamless access to our Platform. The key information stored in our authentication cookies includes, for example:

(a) Authentication Tokens: Access tokens for the DEEP Platform;
(b) Session Management: Refresh token to maintain user login status;
(c) User Profile Information: First name, last name, and organization ID; and

(d) Customization & Preferences: User default workspace and accepted Terms of Use version.

6.4 Retention time for all cookies is one (1) month by default. You can accept or refuse optional cookies or change your earlier choices through cookie banner at our website. You can always disable optional cookies or clear your cookie history for all visited websites from your browser settings.

6.5 Accepting optional cookies will enable you to get the best from our website. If you refuse cookies, some aspects of the website may not work on your device, and you may not be able to access all areas thereof.

 

7 TRANSFER OF PERSONAL DATA OUTSIDE OF THE EU OR EEA

7.1 The data we collect is processed by Us within the European Union (EU)/European Economic Area (EEA) and in third party data processing facilities within the EU/EEA.

7.2 Some of our service providers may have access or are located outside the EU/ EEA and their processing of your personal data will involve a transfer of data outside of EU/EEA. We will take necessary steps to provide appropriate safeguards for international data transfers and to the extent necessary implement supplementary measures for protection of personal data as required by applicable laws. Personal data is transferred only to countries that have been deemed to provide an adequate level of protection of personal data, and where not we will implement the standard contractual clauses as described in Article 46(2)c of the GDPR and implement necessary technical, organisational, or contractual supplementary measures to ensure that personal data has the same protection as in EU/EEA.

 

​

8 RETENTION OF PERSONAL DATA

8.1 We will retain your personal data only for as long as necessary to provide services to you and as required by law (different data categories have different retention periods). After that, we will securely dispose of your personal data.

8.2 With your consent we may process your personal data for future open positions for a specified period of 2 years. With your consent, this period may be extended for future open positions. This consent may be revoked at any time.

8.3 We may also process your personal data to meet our statutory obligations and e.g., to defend Ourselves against discrimination claims.

8.4 If you have provided your consent to the collection and processing of your personal data in connection with the recruitment process, you have the right to withdraw your consent for that specific processing at any time. If you wish to withdraw your consent, you may contact info@deepmeasures.health .

 

9 YOUR RIGHTS

​

9.1 You have certain rights regarding your personal data:

9.2 Right to Access: You have the right to access your personal data that we hold.

9.3 Right to Rectify Personal Data: You have the right to request that we correct any inaccurate or incomplete personal data that we hold.

​

9.4 The Right to Object to the Processing: You have the right to object to the processing of your personal data for certain purposes.

9.5 The Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format.

9.6 The Right to Be Forgotten: You have the right to request that we erase your personal data under certain circumstances.

9.7 The Right to Restriction of the Processing: You have the right to request that we restrict the processing of your personal data under certain circumstances.

9.8 The Right to Give and Withdraw Your Consent: You have the right to give or withdraw your consent for the processing of your personal data.

 

10 DATA SECURITY

 

10.1 We take appropriate technical and organizational measures to protect your personal data from unauthorized access, disclosure, or other misuse. These measures include physical, electronic, and procedural safeguards that comply with applicable legal requirements.

10.2 Our Platform is running in Microsoft Azure cloud. Microsoft Azure provides various security measures and controls to help protect members data, including network security, identity and access management, encryption, and monitoring.

​

10.3 To ensure information security and data protection for the Platform, access control mechanisms are implemented to restrict access to data to authorized personnel only. Data is encrypted both in transit and at rest, and secure protocols are used.

 

10.4 Although our good faith efforts to store your data in a secure operating environment that is not available to the public, please remember that unfortunately no data transmission or storage is 100% risk free. You provide your personal data at your own risk, and we cannot guarantee the absolute security of your data. In the unfortunate case of a security breach that endangers your privacy or data we will inform you as well as the relevant authorities, as required by law. We may also temporarily shut down services to protect the personal data.

11 CHANGES TO THE PRIVACY POLICY

11.1 We may update this privacy policy from time to time. We will notify you of any significant changes by posting a notice on our website or by sending you an email.

 

12 CONTACT US

12.1 If you have any questions or concerns about this privacy policy or our use of your personal data, please contact us at info@deepmeasures.health