Medacta International SA, with registered offices in Strada Regina, Castel San Pietro (Switzerland) (hereinafter “Medacta”), in its capacity as Data Controller regarding the processing of personal data, pursuant to Federal Act on Data Protection of 19 June 1992 (FADP), to UE General Data Protection Regulation 2016/679 (GDPR) and to all the applicable privacy laws (hereinafter collectively defined “Applicable Law”), recognizes the importance of personal data protection and considers that preserving the confidentiality of your personal data is one of the main objectives of its activity.
Before providing any personal data, Medacta invites you to carefully read this privacy policy (“Privacy Policy”), since it contains important information regarding the personal data protection and security measures adopted, in order to ensure confidentiality and full respect of the Applicable Law. Moreover, this Privacy Policy:
By browsing this website, you hereby consent to the processing of your personal information in accordance with this Policy. If you do not agree with this Policy, you may not use this website.
Medacta informs you that processing of your data will be carried out in accordance with the principles of lawfulness, fairness, transparency, accuracy, purpose and storage limitations, data minimisation, integrity and confidentiality. Your personal data will be processed in accordance with the legislative provisions of the Applicable Law and of the confidentiality obligations included therein.
TABLE OF CONTENTS
Please find below the table of contents, which will enable you to quickly track information related to the processing of your personal data.
1. DATA CONTROLLER AND DATA PROTECTION OFFICER
Pursuant to the Applicable Law, Medacta is the Data Controller of the data processing activities necessary to provide the contents of this website.
This policy describes the extent of the use, protection and precaution Medacta will take in respect of your data.
Medacta has appointed a Data Protection Officer (“DPO”) who is freely contactable for any information relating to the processing of personal data by Medacta (e.g., the list of the other data processors) at the following address: privacy@medacta.ch
2. PERSONAL DATA SUBJECT TO PROCESSING
“Personal Data” means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, mental, economic, cultural or social identity of that natural person.
By means of this website, Medacta collects the following Personal Data:
a) Data provided for service performance
By means of this website, you may voluntarily provide Personal data to allow you to make use of the content and services required (i.e.: use of the “Contact Us” form). Medacta will process this data and other data necessary for the functionalities of the website, in accordance with the Applicable Law and on the presumption they refer to you, or to third parties who have authorized you to provide them, pursuant to an appropriate legal basis which legitimizes the processing at stake.
b) Browsing Data
The computer systems and software procedures collect some Personal Data, the transmission of which is an integral part of Internet communication protocols. This information is not collected to be associated with you but, by its very nature, it may allow you to be identified by processing and associating it with data held by third parties. Among collected Personal Data, there are IP addresses or domain names related to the devices used by you to connect to the Website, the URI (Uniform Resource Identifier) of requested resources, the time of the request, the method used to submit the request to the server, the size of the file received as a reply, the numeric code indicating the status of the reply given by the server (successful, error, etc.) and other parameters regarding your operating system and device environment.
This data is used exclusively for the purposes of obtaining anonymous statistics on the use and proper functioning of Website, to control its correct functioning, to enable Medacta to correctly provide the various functionalities to you, as well as for security reasons. This Personal Data may also be used to ascertain any liability in cases of alleged computer crimes against our websites, mobile applications and other tools, or against third parties.
c) Cookies and similar technologies
Cookie is a small text file that’s stored on your device when you visit the Website. Thanks to cookies, the Website remembers the actions and preferences (for example, the login data, the preferred language, the font size, other display settings, etc.).
Cookies perform computer authentication, monitoring of sessions and storing information about the activities of users who log onto Website.
Some operations may not be performed without the use of cookies, which in some cases are technically necessary for the operation of the website.
You may find further information on the use of cookie and similar technologies in the Cookie Policy.
3. PURPOSES OF THE PROCESSING AND VOLUNTARY OR OBLIGATORY NATURE OF PROVIDING THE DATA
The Personal Data that you provide will be processed by Medacta for the following purposes:
a) Purposes related to the performance of the Website and necessary to allow You to make use of the content and services required. Medacta may monitor Your usage in order to improve the Websites’s user experience, to use anonymized data in order to provide aggregated community stats, add online features to expand the usability;
b) Purposes related to research/statistical analyses on aggregated or anonymous data, without the possibility of identifying the data subject, aimed at improving user experience and measuring the functioning of Website;
c) Purposes related to the compliance with a legal obligation to which the controller is subject;
d) Purposes necessary for the establishment, exercise or defence of legal claims or whenever courts are acting in their judicial capacity.
Pursuant Applicable Law, your consent is not requested for the purpose referred to in point a).
The purpose referred to in point b) does not imply the processing of Personal Data, whilst the processing for the purposes referred to in points c) and d) constitutes a legitimate processing of Personal Data within the meaning of the Applicable Law because, once the Personal Data has been provided, the processing is indeed necessary to comply with a legal obligation to which Medacta is subject.
Providing your Personal Data for the above-mentioned purposes is voluntary, however, any refusal to provide such data may not allow Medacta to reply to your requests and to comply with legal obligations to which Medacta is subject.
4. RECIPIENTS
Your Personal Data may be disclosed, in close relation to the purposes specified above in section 3, only to:
a) subjects necessary for order fulfillment of the services (i.e. contractors we use to support our business), in which case we will require such third parties to agree to treat it in accordance with this Privacy Policy and use it for the same purposes. You can obtain the complete list of authorized third parties, by request addressed to DPO at privacy@medacta.ch
b) persons authorized by Medacta to process Personal Data, that are committed to/ or under an appropriate statutory obligation of confidentiality (e.g., hosting provider, employees of Medacta) (a. and b. are hereinafter collectively referred to as “Recipients”);
c) law enforcement agencies and public authorities when so required by the Applicable Law.
Medacta guarantees that they will not communicate Your Personal data to non-authorised recipients and will not sell them to anyone.
5. TRANSFERS
For the purposes described in Section 3, Medacta might transfer some of your Personal Data to Recipients who may be established outside your Country and also outside the European Economic Area pursuant to the Applicable Law and to the Decisions of European Commission. Specifically, Medacta may call upon service providers to supply Website (i.e.: our hosting provider): these third parties may have access to your personal data in the course of providing such services. We require such third parties, who might be based outside the Country from which you have accessed to Website, to comply with the Applicable Law in relation to your personal data. Medacta ensures that the processing of Personal Data by these Recipients is carried out pursuant to the Applicable Law. Further details may be requested to the DPO at privacy@medacta.ch
6. DATA RETENTION
Medacta will process your Personal Data only for the duration necessary to achieve the purposes described in section 3. Apart from the above, Medacta will retain your Personal Data for a period of time necessary or permitted to comply with the Applicable Law. Further information regarding the period of retention of Personal Data and the criteria used to determine such period may be required to the DPO.
7. ABOUT CHILDREN
Medacta will not knowingly collect personally, identifiable information of children under the age of 16, unless with the consent of their parents, pursuant to the Applicable Law.
8. YOUR RIGHTS
Pursuant to and to the extent allowed by the Applicable Law, you have the right, at any time, to request, to Medacta, access to, rectification, erasure, restriction of the processing concerning your Personal Data or to object to relevant processing activity and to receive in a structured, commonly used and machine-readable format the Personal Data concerning you.
Requests to exercise your rights must be sent to the following address: privacy@medacta.ch
In any case, pursuant to the Applicable Law, you have the right to lodge a complaint with the relevant supervisory authority if you believe that the processing of your Personal Data is against the Applicable Law.
9. SECURITY
Medacta takes reasonable steps to protect personally identifiable information and implemented appropriate technical and organizational measures to ensure a level of security appropriate to the risk, and to protect the information from loss, misuse, and unauthorized access, disclosure, alteration, or destruction. You should keep in mind that no Internet transmission is ever completely secure or error-free.
The security of processing is guaranteed by:
a)the pseudonymisation and encryption of personal data;
b)the separation of the anagraphic and clinical data;
c)the confidentiality, integrity, availability and resilience of processing systems and services;
d)the ability to restore the availability and access to personal data in a timely manner in the event of a physical or technical incident;
e)a regular process of testing, assessing and evaluating the effectiveness of technical and organizational measures for ensuring the security of the processing.
10. AMENDMENTS
This Privacy Policy came into force on 1st April 2018. Medacta reserves the right to amend or to update its content, whether in whole or in part, including following changes in the legal and regulatory obligations regarding data protection.
11. CONTACT US
If you wish to request access to the personal data we hold about you or if you have any question, simply contact us:
privacy@medacta.ch
Medacta International SA
Strada Regina CH-6874
Castel San Pietro, Switzerland