Bio-Optronics, Inc., (“BIO”), is committed to protecting the privacy and security of its clients, partners, and associates and therefore operates under a set of strict privacy principles.
BIO adheres to the U.S. HIPAA Standards and to the Safe Harbor Agreement concerning the transfer of personal data from the European Economic Area (“EEA”) and/or Switzerland to the United States of America. Accordingly, BIO follows the Safe Harbor Principles published by the U.S. Department of Commerce. If there is any conflict between the policies in these EEA and Swiss Safe Harbor Privacy Guidelines (these “Privacy Guidelines”) and the principles published by the U.S. Department of Commerce, the latter principles shall govern.
These Privacy Guidelines set forth the privacy principles that BIO follows with respect to any transfer of personal data from the EEA and/or Switzerland to the United States. These Privacy Guidelines apply to all personal data received from the EEA and Switzerland by BIO whether in electronic or paper format.
Please note that BIO provides its clients with services that involve it processing personal data on its client’s behalf, such as where it provides remote hosting, system monitoring, system trouble-shooting, data warehousing and application management services. In this capacity, BIO does not own or control the personal data it processes, but rather its client does. In this capacity, BIO receives and processes personal data merely as a “data processor” on behalf of its client. In such situations, BIO often has no contact with the individuals to whom such personal data relates and so is dependent upon its client to comply with applicable EEA and/or Swiss data protection law at the time that the personal data is originally collected or received by its client. As a data processor acting on behalf of a BIO client, BIO is not required to comply with these principles but is required to perform its services in accordance with its contract with the client concerned and any data privacy protections incorporated therein. These Privacy Guidelines are to be read subject to this distinction.
No personally identifiable information that is collected or transferred from individuals in the EEA and/or Switzerland is used by BIO for any purpose. However, BIO does hold and process private personal data on behalf of its healthcare clients. BIO’s clients in the U.S., EEA and/or Switzerland collect this data.
As a manufacturer of clinical and management information systems, BIO assists its clients worldwide in the implementation and support of BIO solutions in their healthcare institution(s). Since BIO provides implementation and support for different healthcare institutions, BIO may receive, hold, and process personal data from clients within the EEA and/or Switzerland, including patient data provided by clients for the purpose of troubleshooting specific computer system hardware and software problems and issues in accordance with business and/or service agreements. In addition, BIO also provides managed services such as remote hosting, remote system monitoring, disaster recovery, data warehousing and application management services, in which it may act as the custodian patient health information for certain clients. With these offerings, BIO not only has access to provider-based personal health information, but also performs many of a provider’s custodial duties as well.
BIO will not offer individuals the opportunity to choose (through an ‘opt out’ choice) since BIO is not responsible for collecting the personal data. It is BIO’s client that has the responsibility for the collected data and the choice and accuracy of that data. Should an individual desire to Opt-out of the information system, they should contact the Healthcare institution that collected the data for its policies and procedures for doing so.
BIO does not in itself collect sensitive personal data (that is personal data specifying medical or health conditions, racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership or information specifying the sex life of the individual or other personal data.
BIO does not transfer personal data to third parties.
BIO takes all reasonable measures to protect the personal data from loss, misuse, unauthorized access, disclosure, alteration and/or destruction. BIO accordingly has put in place appropriate physical, electronic and managerial security measures to safeguard and secure any personal data under BIO’s control from loss, misuse, unauthorized access or disclosure, alteration or destruction. However, BIO cannot guarantee the security of personal data on or transmitted via the Internet.
BIO will only process personal data in a way that is compatible with and relevant for the purpose for which it was collected or authorized by the individual. To the extent necessary for those purposes, BIO will take reasonable steps to ensure that personal data is accurate, complete, current and reliable for its intended use.
It is BIO’s clients who have the responsibility to allow access to their personal data.
BIO uses a self-assessment approach to assure compliance with these Privacy Guidelines and periodically verifies that these Privacy Guidelines are accurate, comprehensive for the information intended to be covered, prominently displayed, completely implemented and accessible and in conformity with the most current Safe Harbor principles.
BIO encourages interested persons to raise any concerns using the contact information provided below and it will investigate and attempt to resolve any complaints and disputes regarding use and disclosure of personal data in accordance with the Safe Harbor principles.
If a complaint or dispute cannot be resolved through our internal process, BIO agrees to dispute resolution using the American Arbitration Association (http://www.adr.org/) as an independent third party resolution provider.
Questions, comments or complaints regarding these Privacy Guidelines or data collection and processing practices please contact us by one of the following methods:
You can send e-mail to: support@bio-optronics.com
You can send mail to the following postal address:
Bio-Optronics, Inc.
1870 Winton Rd. South, Ste 10
Rochester, NY 14618
You can call the following telephone number: + 1 (585) 272-1960
These Privacy Guidelines may be amended from time to time consistent with the requirements of the Safe Harbor. We will post any revised policy on this website.
Effective Date:
January 2010