We are strongly committed to protecting the privacy of your information and providing a safe and secure environment
for you, our users. It is Proof Diagnostic’s policy that we as a company respect each individual’s privacy regarding
any information we may collect from you from our Site, https://www.proofdx.com (“Site”) or our Proof Lab Central™ mobile application (“Service”).
We collect the following personal information about you in connection with the Site and/or the Service: (a) when you register to use the Service, we will collect your username and password; (b) if you pay your fees by credit card, we (or a third party payment processor acting on our behalf) will collect the name, expiration date and credit card number for the relevant card; and (c) if you communicate with us by email but do not otherwise register to use the Site or Service, we will collect your email address. We also collect health-related clinical or patient information in connection with your use of the Service, including Protected Health Information, as defined below, that may be necessary for you to receive testing services, which may include, without limitation, applicable clinical history and condition, vital sign measures, prescription history, any other information exchanged in emails, chats, or calls between you and Proof, and any other information to process and respond to your inquiries related to requests for testing, payment, customer service, and when you provide feedback on the Service. We may receive this information directly or indirectly from third parties that we work with to provide our Services. All of this information is referred to in this Policy as "Personal Information". When we use the phrase “Anonymous Information” in this Policy, we mean information that is not associated with or linked to your Personal Information. Anonymous Information does not enable identification of or contact with individual persons.
"Protected Health Information" or "PHI" is defined by the HIPAA Privacy Rule as individually identifiable health information held or transmitted by a HIPAA covered entity or its business associate, in any form or media, whether electronic, paper, or oral.
By visiting this Site, you are accepting the policies and practices described in this Policy. Each time you visit the Site or use the Services, you agree and expressly consent to our collection, use, and disclosure of the information that you provide as described in this Policy.
The Information We Gather
We collect two types of information: (1) information we receive from you about you, and (2) information that we collect through your use of this Site.
Information You Provide
We only ask for Personal Information when we truly need it to provide information or the Service to you, such as when you contact us through the Site to inquire about our products or sign up for our Services.
Information We Gather Through Your Use of the Site
You also provide us information in other ways, such as via your browser’s cookies or through similar technologies when you use or view our Site. are small pieces of information that a website attaches to your browser when you visit a website. We may use both session Cookies (which expire once you close your web browser) and persistent Cookies (which stay on your computer until deleted) to provide you with a more personal and interactive experience with the Site. We collect information such as your Internet Protocol address, browser software used, requests submitted to our web-servers, date and time the Site was accessed, and statistical information about which web pages you visited to improve the quality of our Site including for storing user preferences and tracking user trends. We use these tools to improve the quality of our Site.
How Does Proof Use and Share Personal Information?
We will not disclose your Personal Information or User Data to any third parties except as follows:
(i) to third party contractors engaged to provide services on our behalf (“Contractors”), such as performing marketing, analyzing data and usage of the Site or Service, hosting and operating the Site or Service or providing support and maintenance services for the Site or Service, or providing customer service. We enter into agreements with all Contractors that require Contractors to use the Personal Information they receive only to perform services for us.
(ii) when we have your consent to share the information.
We reserve the right to disclose any information we collect in connection with the Site or Service, including Personal Information, to: (a) any successor to our business as a result of any merger, acquisition, asset sale or similar transaction; and (b) any law enforcement, judicial authority, or governmental or regulatory authority, to the extent required by law or if in our reasonable discretion disclosure is necessary to enforce or protect our legal rights or to protect third parties
Your Rights Under the GDPR
If you are a citizen or a resident of a country in the European Union, the GDPR grants you the following rights:
Access To Your Personal Information
You have the right to receive a copy of your Personal Information that is subject to processing by Proof Diagnostics. Ordinary requests will be granted without charge to you within one calendar month of when you make the request. In cases of excessive, unreasonable, or repeated requests we may charge you a reasonable fee and may require additional time to grant your request. Also, we may use reasonable means to confirm your identity before granting any request for data so as to prevent granting fraudulent requests. To request a copy of your Personal Information, please contact us.
In certain circumstances, you have the following data protection rights:The right to access, update or to delete the information we have on you. Whenever made possible, you can access, update or request deletion of your Personal Information directly within your account settings section. If you are unable to perform these actions yourself, please contact us to assist you.
The right of rectification. You have the right to have your information rectified if that information is inaccurate or incomplete.
The right to object. You have the right to object to our processing of your Personal Information. The right of restriction. You have the right to request that we restrict the processing of your personal information.
The right to data portability. You have the right to be provided with a copy of the information we have on you in a structured, machine-readable and commonly used format.
The right to withdraw consent. You also have the right to withdraw your consent at any time where we relied on your consent to process your personal information.
Please note that we may ask you to verify your identity before responding to such requests.
You have the right to complain to a Data Protection Authority about our collection and use of your Personal Information. For more information, please contact your local data protection authority in the European Union (EU).
California Online Privacy Protection Act Notice
On September 27, 2013, California enacted A.B. 370, amending the California Online Privacy Protection Act to require
website operators like us to disclose how we respond to "Do Not Track Signals"; and whether third parties collect
personally identifiable information about users when they visit us.
(1) We do not track users who do not interact with our sharing functionality across the web, and therefore do not use "do not track" signals.
(2) We do not authorize the collection of personally identifiable information from our users for third party use through advertising technologies without separate member consent.
California Civil Code Section 1798.83 also permits our customers who are California residents to request certain information regarding our disclosure of Personal Information to third parties for their direct marketing purposes. Please note that we are only required to respond to one request per customer each year.
How Is Your Information Protected?
We use industry standard physical, technical and administrative security measures and safeguards to protect the confidentiality and security of Personal Information. Our Site is operated and managed on servers located and operated within the United States. By using and viewing the Site, you agree and consent to the transfer to and processing of Personal Information on servers located in the United States, even if you travel or are located outside the United States.
What if I Visit Other Websites?
This Policy applies only to information we collect through the Site. The Site also contains links to third party sites that are not owned or controlled by us. We are not responsible for the privacy practices of such other sites. We don’t share Personal Information with those other sites or services.
We reserve the right to change, modify, add or remove portions of this Policy at any time and without prior notice, and any changes will become effective immediately upon being posted unless we advise you otherwise. However, we will not use your Personal Information in a way that is materially different than the uses described in this Policy without giving you an opportunity to opt-out of such differing uses. Your continued use of the Site or Services after this Policy has been amended shall be deemed to be your continued acceptance of the terms and conditions of the Policy, as amended. We encourage you to bookmark this web page and review this Policy regularly.
What Are My Rights?
You may request information about the types of Personal Information that we collect, the sources that we collect Personal Information from, the purpose for collecting Personal Information, and the categories of third parties with whom we share Personal Information. You may also request that we delete Personal information about you. You may request this information or ask that we delete your Personal Information by contacting us at the email or mailing address below. You may complain to a regulator.
If you have any questions regarding privacy or this Policy, you may contact us as follows:
Email us at firstname.lastname@example.org or send us physical correspondence to
700 Main St.,
Cambridge, MA 02139