We care deeply about protecting your privacy and are committed to making Grandhealth® a brand that people love and trust. This document outlines how we use information and the circumstances in which we may disclose the personally identifiable information (the “Personal Information”) and other information that we may collect from you.
Grandhealth® and Grandhealth® are committed to protecting the rights of individuals in line with the Data Protection Act 1998 (the “DPA”), the new General Data Protection Regulation (the “GDPR”), and Canada’s Personal Information Protection and Electronic Documents Act (the “PIPEDA”). We comply with PIPEDA, which regulates the collection, use, and disclosure of the Personal Information. PIPEDA requires that we inform you why we collect your Personal Information, how we use it, and under what circumstances we will disclose such information. Additionally, under PIPEDA, you have the right to access your Personal Information that we hold as well as to receive an accounting of how that information is used or disclosed. We take all necessary and appropriate security measures to secure the Personal Information.
WHAT INFORMATION DO WE COLLECT?
When you use the content or services that we provide on our Website (the “Services”), we may collect Personal Information and other information from you, as described below.
NON-IDENTIFIABLE OR AGGREGATED INFORMATION
When you use our Services, we also receive and store certain non-identifiable personal information. Such information, which it is collected passively using various technologies, cannot presently be used to specifically identify you. Grandhealth® may store such information itself or such information may be included in databases owned and maintained by Grandhealth® affiliates, agents, or service providers. We may use such information and pool it with other information to track, for example, the total number of visitors to our Services, the number of visitors to each page of our Website, the domain names of our visitors’ Internet service providers, and how our users use and interact with the Services. At times, Grandhealth® also conducts research on its customer demographics, interests, and behavior based on the Personal Information and other information provided to us. This research may be compiled and analyzed on an aggregate basis. Grandhealth® may share this non-identifiable and aggregate data with its affiliates, agents, and business partners, but this type of non-identifiable and aggregate information does not identify you personally. Grandhealth® may also disclose aggregated user statistics in order to describe our Services to current and prospective business partners, and to other third-parties for other lawful purposes.
In operating our Website and Services, we may use a technology called “Cookies” to help provide additional functionality, analyze our Website’s usage more accurately, and to facilitate your use of the Website. Cookies are files with small amounts of data including an anonymous unique identifier that a website sends to your computer’s hard drive when you are viewing the website. Like other websites, we automatically collect some non-personally identifiable information, including but not limited to your IP address, geographic location, language preference, date, and time of visitors. This information is only collected to better serve and understand your user experience on the Website. If you wish, you have the option of turning off cookies on your computer. If you choose to do so, you may not be able to view all of our Website’s features and content.
If you are interested, your Web browser should contain a “Help” section that explains how to receive notifications when you receive a new cookie and how to turn cookies off.
HOW DO WE USE YOUR INFORMATION?
For example, we may use it:
- to monitor your use of the Services and improve your user experience;
- to respond to your comments or inquiries;
- to communicate with you regarding the Services; and
- for any other purpose for which the information was provided.
HOW LONG WE KEEP YOUR PERSONAL INFORMATION
Grandhealth® will not retain your Personal Information for longer than required.
We will keep your Personal Information:
- for as long as required by law;
- until we no longer have a valid reason for keeping it; or
- until you request us to stop using it.
WHAT INFORMATION DO WE SHARE WITH THIRD PARTIES?
- in the event of a corporate sale, merger, reorganization, dissolution or similar event;
- with service providers we work with in connection with the operation of the Services, such as email or database providers;
- if required to do so by law or in the good faith belief that such action is necessary to comply with a legal obligation;
- to protect and defend the rights or property of Grandhealth® and Grandhealth® ;
- to protect the personal safety of users of the Website or the public; or
- to protect against legal liability.
You can use the Website without providing any Personal Information. If you choose not to provide any Personal Information, you may not be able to use certain parts of the Website or Services.
We are committed to ensuring that your Personal Information is secure. In order to prevent unauthorized access or disclosure, we have put in place suitable physical, electronic, and managerial procedures to safeguard and secure the information we collect online.
Grandhealth® and Grandhealth® will respect your legal rights to your Personal Information. We will, to the extent legally permitted, promptly notify you if we receive any requests from you to exercise the following rights:
The right to be informed
The right to access
You may access your Personal Information. Please contact our Data Protection Officer if you wish to access your Personal Information that we hold.
The right to rectification
If your Personal Information that Grandhealth® holds is inaccurate or incomplete, you may ask us to rectify it. If that data has been passed to a third-party with your consent or for legal reasons, then we will also ask them to rectify the data. Please contact our Data Protection Officer if you need us to rectify your Personal Information.
The right to erasure
This right is sometimes called ‘the right to be forgotten’. If you would like us to erase all your Personal Information and we do not have a legal reason to continue to process and hold it, please contact our Data Protection Officer.
The right to restrict processing
You may ask us to restrict how we process your Personal Information. This means we are permitted to store the data but not further process it. We keep just enough data to make sure we respect your request in the future. If you want us to restrict the processing of your Personal Information, please contact our Data Protection Officer.
The right to data portability
Grandhealth® will allow you to obtain and reuse your Personal Information for your own purposes across services in a safe and secure way without affecting the usability of your data. Please contact our Data Protection Officer if you want information on how to transport your data elsewhere. This right only applies to Personal Information that you have provided to us as the Data Controller.
The right to object
You may object to Grandhealth® processing your Personal Information even if it is based on our legitimate interests, the exercise of official authority, direct marketing (including data aggregation), and processing for statistics purposes. If you wish to object, please contact our Data Protection Officer.
The right to withdraw consent
If you previously gave us your consent to process your Personal Information but change your mind later, you may withdraw your consent at any time, and we will stop processing your data. If you wish to withdraw your consent, please contact our Data Protection Officer.
LINKS TO OTHER WEBSITES
The Website and/or Services may contain links to other websites not operated or controlled by Grandhealth® or Grandhealth®. The policies and procedures we describe here do not apply to these third-party websites, nor do the links from the Services imply that Grandhealth® or Grandhealth® endorses or has reviewed these third-party websites.
We are not responsible for the privacy practices of other websites; we are also not responsible for examining or evaluating the content, accuracy, or safety of any third-party websites. We do not warrant and will not be liable or responsible for any third-party materials or websites, or for any other materials, products, services or information of third parties.
We are not liable for any harm or damages associated with the purchase or use of goods, services, resources, content, or any other transactions made in connection with any third-party websites.
We suggest that you contact those third-party websites directly for information on their own privacy policies. Please carefully review the third-party’s policies and practices and ensure you understand them before you engage in any transaction. Complaints, claims, concerns, or questions regarding third parties shall be directed to the third-party.
WE CAN DISCLOSE YOUR PERSONAL INFORMATION
We may engage and contract with third-party companies (e.g. service providers) to provide services that assist our business activities, such as cloud-hosting services. These third-party service providers are limited to only using information as instructed to provide contracted services to us.
We may also disclose your Personal Information:
- as required by law, such as to comply with a subpoena or similar legal process. To the extent we are legally permitted to do so, we will take commercially reasonable steps to notify you if we are required to provide your Personal Information to third parties as part of a legal process. We may also be required to disclose your Personal Information in response to lawful requests by public authorities, including requests from national security or law enforcement authorities;
- when we believe, in good faith, that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a written government request; or
STEPS WE TAKE TO PROTECT YOUR PRIVACY
Grandhealth® takes reasonable steps to protect the Personal Information provided via the Services from loss, misuse, unauthorized access, disclosure, alteration, or destruction. However, no Internet, email or other electronic transmission is ever fully secure or error free, so you should take special care in deciding what information you send to us in this way.
TRANSFERRING YOUR INFORMATION OUTSIDE OF EUROPE
If you are on the territory of the European Union (the “EU”), as part of the Services offered to you through this Website, the Personal Information which you provide to us may be transferred to countries outside the EU. For instance, this may happen if any of our servers are from time to time located in a country outside of the EU. These countries may not have similar data protection laws. By submitting your Personal Information and other data, you agree to this transfer, storing or processing. If we transfer your Personal Information or other data outside of the EU in this way, we shall take steps to ensure that appropriate security measures are taken with the aim of ensuring that your privacy rights continue to be protected as outlined in this Private Policy.
If you use our Services while you are outside the EU, your Personal Information or other data may be transferred outside the EU in order to provide you with those Services.
YOUR ACCEPTANCE OF THESE TERMS
By subscribing to Grandhealth® text notifications, you agree to receive automated marketing text messages from us about our products and services at the phone number you provided when you subscribed, and that the messages may be sent via automatic telephone dialing system or other technology. Message frequency is recurring. Consent is not a condition of purchase. Message and data rates may apply. Reply STOP, END, CANCEL, UNSUBSCRIBE or QUIT to opt-out and HELP for customer support. You may receive an additional text message confirming your decision to opt-out. You understand and agree that attempting to opt-out by any means other than texting the opt-out commands above is not a reasonable means of opting out.