INDAGO HEALTH INTERNET PRIVACY AND COOKIES POLICY
NDAGO has always processed its data with the highest privacy and confidentiality standards, protecting them in accordance with Data Protection legislation.
As a member of the EphMRA (European Pharmaceutical Market Research Association), INDAGO complies with all guidelines and requirements defined by this association for its associated market research companies, and, in particular, as regards the protection of participants’ personal data.
Data Processing Entity
Indago Market Research, legal person number 513 826 750, with registered office at Rua Pinto Ferreira, 17 – 1st floor 1300-464 Lisbon – Portugal, is the entity responsible for processing your personal data collected within the scope of Market Research Studies, and shall process your data in accordance with applicable European data protection laws, including the General Data Protection Regulation.
Purpose of Processing your Personal Data
The personal data that we process will only be used for the following purposes:
• Recruitment of participants for conducting market research studies by INDAGO, at the request of its clients;
• Submission of invitations to take part in market research activities that may occur via telephone, email or SMS;
• Responding to requests for information that you may have sent us.
Under no circumstances shall we transfer your data to third parties without your prior consent, or transfer them to other States without your prior consent.
Information and Consent
Type of Personal Data Collected:
The personal data we collect may include: identification data (name, date of birth, address, phone number / mobile phone number, taxpayer number), data on the diagnosed health condition, and professional data (occupation / specialty, work experience, years of experience, place of employment).
INDAGO will not request or encourage the collection of personal data relating to ethnic or racial origin, political opinions, religion or other beliefs, criminal records, membership to trade unions, as well as data relating to sexual life or sexual orientation. Should you voluntarily provide any such data, INDAGO will not be liable for its processing under this policy.
INDAGO processes special categories of personal data (sensitive data), such as your health related data, provided that you have previously and freely offered your explicit and separate consent within a specific context, for a specific objective, such as during your participation in a specific market research activity. In this case, specific measures will be taken to encrypt all such data.
INDAGO will not collect or process minors’ personal data unless it has their parents’ prior consent, in accordance with applicable local law. Should we become aware that any minor’s personal data has been unintentionally collected, we will delete all such data without delay.
Right of Access, Rectification, Deletion, Limited Processing, and Right of Portability of your Personal Data
In accordance with the law, you are assured at any time, the right to access, rectify, transfer or even delete your personal data from our panel, which may be done online through the email address: firstname.lastname@example.org, or by sending us a letter to the above-mentioned address. Should you request to stop being part of our panel, your data will be permanently deleted. In order to protect its participants’ or future participants’ personal data, INDAGO reserves the right to request proof of ownership of the respective data.
Security in Processing your Personal Data
Personal data will be processed and stored in a computerized manner, and may also be kept on paper. The confidentiality and security of your data collected through this Website is totally assured. Personal data will be stored on a Secure Server (SSL and HTTPS) that encrypts / codifies (transforms into a code) all such data. You can confirm that your browser is secure if the lock symbol appears or if the address starts with https instead of http, and they can only be accessed by authorized INDAGO employees who agree to respect and preserve the confidential nature of all data.
INDAGO has implemented and will continue to implement the necessary technical and organizational security measures to assure the security of all your personal data against accidental, unlawful destruction, accidental loss, alteration, unauthorized access or disclosure, and against any form of illicit processing. Only authorized INDAGO employees have access to personal data, and are bound by the duty of secrecy and confidentiality.
Whenever we access personal data, INDAGO undertakes to:
• Use the data exclusively for the previously defined purposes.
• If, for any reason, there is a security breach that causes accidental or unlawful destruction, loss, alteration, unauthorized disclosure or access to personal data, INDAGO will communicate such security breach to the competent authorities, whenever possible, within 72 hours of becoming aware of it, and in accordance with the applicable legislation. Likewise, INDAGO will communicate the Personal Data breach to the respective Personal Data subject, in accordance with the applicable legislation.
Collection of Personal Data from Other Sources
Period for the Preservation of Personal Data:
We shall retain your data for the period necessary to carry out the market research studies, and until your consent is withdrawn.
Communication of Personal Data to Third Parties
Within the scope of our activity, INDAGO may resort – whenever necessary – to third parties, for the provision of certain services. At times, the provision of such services implies access by these providers to the participants’ personal data.
Should INDAGO subcontract other entities for the provision of services involving the transfer of personal data, such entities will be obliged to adopt the necessary technical and organizational measures in order to protect personal data against destruction, loss, alteration, disclosure, unauthorized access or any other illegal processing. INDAGO may, for example, provide personal data to other companies, contractors or partners that host its databases, for data processing services, or to send you the information you have requested. For example, to call-centres with the objective of conducting interviews during a specific market research project.
Whenever this happens, INDAGO takes all the appropriate measures to ensure that such external service providers who have access to Personal Data are reputed providers offering high guarantees at this level, which will be duly stated and safeguarded in a written agreement to be signed between INDAGO and such third party(ies).
In any case, INDAGO shall remain responsible for the processing of your Personal Data.
The version published on our Website is the one currently in effect.