By visiting this website, you are accepting the practices described herein.
Client”/”Sponsor”- Any individual, corporation, or other entity which contracts with DSG Inc. to perform services involving the transfer, processing, or reporting of personal information on behalf of and under the instruction of said “Client”/”Sponsor”.
Data Controller-The natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.
Data Processer-A natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
Processing-Any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
Third Party-Any individual, corporation, or other entity under written contract with DSG, Inc. to assist in fulfilling the responsibilities assigned by the Client/Sponsor or DSG Inc.
We act as a data processor when your personal information is entered into the eCaselink System. As part of our offered system and related data management services, our client/sponsors employees and authorized users may enter personal information from or about their authorized users, employees, and clinical trial subjects (collectively, “Customer Data”), into our servers. The client/sponsor is acting as a data controller and assumes responsibility for the handling of this data.
In regards to Customer Data, we act as a data processor and shall process personal information on behalf of the data controller in accordance with the client/sponsors instructions. Our use of “Customer Data” is subject to the written agreement between us and the client/sponsor. We are committed to ensuring that any customer data processed by us will be done so in full compliance with applicable laws on data privacy and confidentiality.
As a data processor we have no control or ownership of Customer Data. Please direct any inquires, complaints or questions regarding the collection, use, and retention of your personal information to the customer for which you work or which collected your information.
We collect personal information about you in the following ways:
Information You Give Us
We receive and store any information you enter on our website or give us in any other way. This includes information that can identify you (“personal information”), including your first and last name, telephone number, company name, email addresses, and billing information. We may also collect demographic information, such as your business or company information. Certain fields on the website are marked “optional” and you can choose not to provide information to us. Some information about you may be required in order for you to use the website, ask us a question, or initiate some of the transactions on our site.
We may ask you to provide information for various reasons, including when you:
- Use our website;
- Request quotes, services, support or information;
- Place orders for services;
- Participate in webinars;
- Register for events;
- Interact with us via social media;
- Participate in surveys or other promotional activities;
- Subscribe to newsletters, promotional emails or other materials; or
- Contact us
Information Automatically Collected
We may collect information about your visits to our website, including the pages you view, the links you click, search terms you enter, and other actions you take in connection with our website and services. We may also collect certain information from the browser you used to come to our website, such as your Internet Protocol (IP) address, browser type (such as Firefox or Chrome) and language, device type, geographic location, access times, the Uniform Resource Locator (URL) of the website that referred you to our website and to which URL you browse away from our site if you click on a link on our site. We use third party (Google Analytics) embedded scripts which are bits of programming code included within our web pages. This information is collected to measure how you view or interact with our web pages. We use this information to send marketing emails.
For more information on the privacy practices of Google, please visit the Google Privacy & Terms web page https://policies.google.com/privacy
Marketing emails are sent to the clients who have provided information during registration in the website. You may opt out of marketing-related emails by selecting the unsubscribe link within the marketing notification or by contacting us at firstname.lastname@example.org. You may continue to receive service-related and other non-marketing emails.
Where we act as a data controller; your information will only be used for the purpose of which it was originally collected and which you have consented to.
- Business Partners - We may disclose your personal information to carry out transactions you request with business partners that help us customize, analyze and/or improve our communication or relationship with you and/or provide our services to you. We may also provide this information to business partners with whom we may jointly offer products or services, or whose products or services may be of interest to you. Please note that while we will only disclose your information with business partners who share our commitment to protecting your personal information, we do not control the privacy practices of these third-party business partners
- Service Providers/Professional Advisors - We also may disclose aggregate or anonymous information with third parties, including our marketing agencies and investors. For example, we may tell our marketing agency the number of visitors our website receives. This information does not contain any personal information and is used to develop content and services we hope you will find of interest
According to the data protection and privacy regulation where you live, you may have certain rights with response to your personal information.
Your rights may include, under certain terms and conditions set in the Privacy Shield Principles, the EU General Data Protection Regulation (GDPR) or other applicable law
- Right of Access to your personal data processed by us
- Right of Rectification of inaccurate or incomplete personal data
- Right to Erasure of your personal data (“Right to be Forgotten”)
- Right to Restriction of Processing for a certain period or under certain conditions
- Right to Data Portability of your personal data to another data controller in a structured format;
- Right to Object the processing of your personal data. Specifically, you have the right to object further processing of your personal data for direct marketing purposes.
- Right to File a Complaint with the applicable data protection authority in your country
Should you wish to exercise any of these rights, please contact us at: email@example.com
Where we act as a data processor of Customer Data, please direct any questions regarding your rights to the customer for which you work or which collected your information.
We want you to feel confident about using our website and services, and we are committed to protecting the personal information we collect. As part of this commitment, we have achieved ISO/IEC 27001:2013 –Information security management system certification. ISO/IEC 27001:2013 provides a standard for maintaining an information security management system (ISMS) including appropriate administrative, technical, and physical security procedures to help protect the personal information you provide to us. In addition, we use encryption (as applicable) when transmitting your personal information between your system and ours, and we employ firewalls and intrusion detection systems to help prevent unauthorized persons from gaining access to your information.
We retain personal information we collect for different periods, depending on the type of information, the period of our contract with our Customers, legal requirements regarding certain types of data, and other factors. Generally speaking we will retain your personal information for as long as necessary to fulfil the purposes of which we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
We are required to inform you of the legal bases of our processing of your personal information, which are described in the list below.
- To provide a service - processing is necessary to perform the contract governing our provision of the services or to take steps that you request prior to signing up for the services.s
- To communicate with you; to create anonymous data for analytics; and for compliance, fraud prevention and safety-These processing activities constitute our legitimate interests. We make sure we consider and balance any potential impact on you (both positive and negative) and your rights before we process your personal information for our legitimate interests. We do not use your personal information for activities where our interests are overridden by the impact on you (unless we have your consent or are otherwise required or permitted to by law).
- To comply with law- Processing is necessary to comply with our legal obligations
- With your consent-Processing is based on your consent. Where we rely on your consent you have the right to withdraw it anytime
If you have questions about the legal bases of how we process your personal information, contact us at firstname.lastname@example.org
This is a general audience website and is not intended to or designed to neither attract children under aged 13, nor do we offer services directed to such children. We do not collect personal information from any person we actually know to be under the age of 13.
We are subject to the investigatory and enforcement powers of the U.S. Federal Trade Commission (FTC).
Our accountability for personal information that we receive under the Privacy Shield and subsequently transferred to a third party is described in the Privacy Shield Principles. In the context of an onward transfer, we have responsibility for the processing of personal information we receive under the Privacy Shield and subsequently transferred to a third party acting as an agent on our behalf. We remain liable under the principles if a third party that we engage to process personal information on our behalf does so in a manner inconsistent with the principles, unless we prove that we are not responsible for the event giving rise to the damage.
You can contact us at the below address if you have any inquires, complaints, or questions:
DSG Global Headquarters
325 Technology Drive
Malvern, PA 19355
Email address: email@example.com
In compliance with the Privacy Shield Principles, we commit to resolve complaints about our collection or use of your personal information. European Union and/or Swiss individuals with inquiries or complaints regarding our Privacy Shield policy should first contact us at the above address or via email.
We commit to cooperate with the panel established by the EU data protection authorities (DPAs) and/or the Swiss Federal Data Protection and Information Commissioner, as applicable, and comply with the advice given by the panel and/or Commissioner, as applicable, with regard to data transferred from the EU and/or Switzerland. We have chosen the EU Data Protection Authorities (EU DPAs) through the United States Council for International Business USCIB acting as a trusted third party on behalf of the European Union (EU) Data Protection Authorities to serve as an independent recourse mechanism (IRM) for dispute resolution arising from collection, use, and retention of personal Information transferred from EU member countries to DSG. We have chosen the Swiss Federal Data Protection and Information Commissioner (FDPIC) to serve as an independent recourse mechanism (IRM) for dispute resolution arising from collection, use, and retention of personal Information transferred from Switzerland to DSG
Under certain conditions you may have the possibility to invoke binding arbitration for complaints regarding Privacy Shield compliance (EU-U.S. Privacy Shield and/or Swiss-U.S. Privacy Shield) not resolved by any of the other Privacy Shield mechanisms-see the following link for additional information- https://www.privacyshield.gov/article?id=ANNEX-I-introduction