B. Anonymous Web Site Visits. In general, you can visit the Site without disclosing any personal information. Company does keep track of the domains from which people visit us and analyzes the data gathered from Site visits for trends and statistics, and then Company discards the gathered data.
C. Web Site Transactions. At times, Company will need personal information regarding a site user or customer (“User”). For example, Company stores email addresses and any other information provided through an email sign up form for the purposes of signing up to receive emails from HeartMD Institute. It also may need to know a User’s name, mailing address, e-mail address and credit card details in order to process an ebook download and/or purchase. It is Company’s intent to inform you before Company collects personal information, such as user’s name and/or address on the Internet. If you tell us that you do not wish to have this information used as a basis for further contact with you, Company will respect your wishes.
Attn: HeartMD Institute Administrator
257 E. Center St.
Manchester, CT 06040
2. Personal Information That May Be Collected
A. Identifying Information. In order to sign up to receive emails from HeartMD Institute, or to download and/or purchase an ebook, Company will request a user to provide certain personal identifying information, which may include: your name, postal address, e-mail address, telephone number, method of payment, and, if applicable, credit card number (“Personal Information”). Company may request additional information necessary to establish and maintain User’s account.
When you access the Site and/or services offered on the Site through social media services or when you connect the Site to social media services, you are authorizing Company to collect, store, and use such information and in accordance with this Policy.
B. Information from Children. The Site and the goods/services offered on the Site are not directed or intended for children under 13 years of age. Company does not knowingly collect Personal Information from individuals under 13 years of age. If you are under 13 years of age, you should not provide Personal Information on the Site. If you are the parent or guardian of a child whom you believe has disclosed Personal Information to Company, please contact Company at firstname.lastname@example.org so that Company may delete and remove such child’s information from Company systems.
C. Links to Other Web Sites. The Site may contain links to other web sites. Company is not responsible for the privacy practices or the content of those other web sites. Company does not monitor, control, or endorse the information collection or privacy practices of any third parties. Company encourages you to become familiar with the privacy practices of every website you visit and to contact the owners or operators of those sites if you have any questions about their respective privacy policies and practices. This Policy applies solely to information collected by Company through the Site and does not apply to these third-party websites. The ability to access information of Third Parties from the Site, or links to other websites or locations, is for your convenience only and does not signify Company’s endorsement of such Third Parties, their products, services, websites, locations or their content.
D. Non-Identifiable Information. As you use the Site, certain information may also be passively collected. Through cookies, pixels and beacons for the purposes of targeted and retargeted advertising, log files and other technologies, Company may collect information about how you use the Site. This information allows Company to deliver more helpful information, programs, tools and advertisements.
- Uses Made of the Information.
A. Limited Uses Identified. Without User’s prior consent, Company will not use your personal identifiable information for any purpose other than that for which it is submitted. Company may use personal identifiable information for, but not limited to, the following purposes:
- administer your account;
- provide you access to materials for download;
- respond to inquiries or requests in connection with the Site;
- fulfill your requests for products or services;
- handle complaints;
- send communications and administrative/operational emails about the Site;
- personalize and better tailor the features, performance and support of the Site for your use;
- send you Site-related communications, including any notices required by law, in lieu of communication by postal mail. You may not opt out of Site-related e-mails;
- send you newsletters and other messages, including changes to features of the Site and special offers that you may opt out of by clicking “unsubscribe” in the email. Opting out may prevent you from receiving email messages regarding updates, improvements, or offers;
- send you promotional/marketing information, offers or other information regarding opportunities and functionality that Company thinks would be of particular interest to you;
- improve the quality of the Site; and
- analyze, benchmark and conduct research on user data and user interactions with the Site.
Company does not sell your Personal Information.
B. Marketing Uses. Company offers you choices regarding the collection, use, and sharing of your Personal Information. When you receive promotional communications from Company, you will have the opportunity to “opt-out” by following the unsubscribe instructions provided in the promotional e-mail you receive.
C. Stored Information Uses. Company stores the information provided by User or the information entered on the Site. This information is used to deliver User purchases or free downloads; to send broadcast emails, and/or to contact User again about other Company services and products.
- Disclosure of the Information.
A. Within Corporate Organization. Company may share your Personal Information within the Company corporate organization, and may transfer the information to other locations where Company conducts business. In such locations, Company will still handle User Personal Information in the manner describe herein.
B. Mergers and Acquisitions. Circumstances may arise where for business reasons, Company decides to sell, buy, merge, dissolve, or otherwise reorganize its businesses in the United States or some other country. Such a transaction may involve the disclosure of personal identifying information to prospective or actual purchasers, and/or receiving such information from sellers. It is Company’s practice to seek appropriate protection for information in these types of transactions.
C. Agents. Company employs or engages third-party companies and individuals to help us operate this Site and related communications. These companies and individuals are provided with personal identifying information required to perform their functions, but are prohibited by contract from using the information for other purposes. These persons engage in a variety of functions which include, but are not limited to, hosting and developing this Site, and sending broadcast emails and Access to your Personal Information by these service providers is limited to the information reasonably necessary to perform its limited function.
We may store Personal Information in locations outside the direct control of Company (for instance, on servers or databases co-located with hosting providers).
D. Marketing and Usage Analysis by Third Parties. Company reserves the right to disclose to third parties Personal Information about Users for marketing analysis and usage patterns; however, any information disclosed will be in the form of aggregate data that does not describe or identify an individual User.
E. Disclosure to Governmental Authorities. Company may disclose and release your Personal Information to government representatives: (a) to comply with valid legal requirements such as a law, regulation, search warrant, subpoena or court order; or (b) in special cases, such as a physical threat to you or others, a threat to homeland security, a threat to Company’s system or network, or in any cases in which Company believes it is reasonably necessary to investigate or prevent harm, fraud, abuse, illegal conduct or a violation or alleged violation of this Policy or other agreement Company may have with you.
- Use of Computer Tracking Technologies
A. No Tracking of Personal Information. Company Web Site(s) are not set up to track, collect or distribute Personal Information not entered by visitors. Through web site access logs, Company does collect clickstream data and HTTP protocol elements, which generate certain kinds of non-identifying site usage data, such as the number of hits and visits to our sites. This information is used for internal purposes by technical support staff for research and development, user analysis and business decision making, all of which provides better services to the public. The statistics garnered, which contain no Personal Information and cannot be used to gather such information, may also be provided to third parties.
B. “DO NOT TRACK” browser signals. Please note that we do not alter our Site’s data collection and use practices when we see a Do Not Track signal from your browser.
D. Use of Web Beacon Technologies. Company may also use web beacon or other technologies to better tailor its web site(s) to provide better User service. If these technologies are in use, when a visitor accesses these pages of the web site, a non-identifiable notice of that visit is generated which may be processed by Company or by its suppliers. Web beacons usually work in conjunction with cookies. If User does not want cookie information to be associated with User’s visits to these pages, User can set its browser to turn off cookies; however, web beacon and other technologies will still detect visits to these pages, but the notices they generate cannot be associated with other non-identifiable cookie information and are disregarded.
E. Collection of Non-Identifiable Information. Company may collect non-identifiable information from user visits to the Site in order to provide better User service. Examples of such collecting include: traffic analysis, such as tracking of the domains from which users visit, or tracking numbers of visitors; measuring visitor activity on the Site; web site and system administration; user analysis; and business decision making. Such information is sometimes known as “clickstream data.” Company or its contractors may use this data to analyze trends and statistics.
F. Collection of Personal Information. Company collects personal identifying information from User during a transaction. Company may extract some personally identifying information about that transaction in a non-identifiable format and combine it with other non-identifiable information, such as clickstream data. This information is used and analyzed only at an aggregate level (not at an individual level) to help Company understand trends and patterns. This information is not reviewed at an individual level.
- Information Security and Deletion
A. Commitment to Online Security. Company employs physical, electronic and managerial procedures to safeguard the security and integrity of Personal Information. Billing and payment data is encrypted whenever transmitted or received online. Personal information is accessible only by staff designated to handle online requests or complaints. All Company agents and contractors with access to Personal Information on the Site are also bound to adhere to Company security standards.
B. No Liability for Acts of Third Parties. Company exercises all reasonable efforts to safeguard the confidentiality of User Personal Information. Company uses secure server software (SSL) to process all financial transactions that occur on the Site. SSL technology can encrypt Personal Information transmitted over the Internet. However, transmissions protected by industry standard security technology and implemented by human beings cannot be made absolutely secure. Consequently, Company does not warrant the security of its servers, nor does Company warrant that your information, including Personal Information, will be completely secure or not be intercepted while being transmitted over the Internet. Company shall not be liable for unauthorized disclosure of Personal Information due to no fault of Company including, but not limited to, errors in transmission and unauthorized acts of Company staff and/or third parties.
In addition, Company is not responsible for the privacy or data security practices of other organizations, such as Facebook, Tumblr, Twitter, Apple, Google, Microsoft or any other app developer, app provider, social media platform provider, operating system provider, wireless service provider, or device manufacturer, including in connection with any information you disclose to other organizations through or in connection with the Site.
C. Deletion and Disabling of Your Account. If you would like assistance disabling your account, please contact customer service at email@example.com.
Keep in mind, however, that even if you delete information from your account and/or profile, Company may retain your Personal Information in conformance with its data retention policy and Personal Information may remain within Company’s databases, access logs, and other records. In addition, Company is not responsible for updating or removing your Personal Information contained in the lists or databases of Third Parties who have been provided information as permitted by this Policy.
B. Opt-Out Right. Company does not sell your Personal Information. However, if you are a California resident, you have the right to opt-out of any transfer or sale of your Personal Information Company collects about you. If you choose to opt out, please contact us at firstname.lastname@example.org.
- Access Rights to Data
A. Information Maintained by Company. Upon customer’s request, Company will provide a reasonable description of customer’s personally identifiable information that Company maintains in its data bank. Company can be contacted by e-mail at email@example.com.
B. Corrections and Changes to Personal Information. Help Company to keep User Personal Information accurate. If User’s Personal Information changes, or if customer notes an error upon review of customer information that Company has on file, please promptly e-mail Company at firstname.lastname@example.org and provide the new or correct information.
C. Deletion of Your Personal Information. You have the right to request that Company delete Personal Information collected by Company. Upon receipt of such request, Company will delete your Personal Information collected as of the date of such request, except when necessary to: (i) complete the transaction for which the Personal Information was provided or perform a contract with the you; (ii) detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity and prosecute those responsible; (iii) debug to identify and repair errors that impair existing intended functionality; (iv) exercise free speech (of business or another consumer) or other rights; (v) comply with the California Electronic Communications Privacy Act or other federal or state acts or regulations; (vi) engage in public or peer reviewed research in the public interest; (vii) enable internal uses reasonably aligned with the expectations of the consumer based on their relationship with the business; (viii) comply with a legal obligation; and (ix) use your Personal Information internally, in a lawful manner that is compatible with the context in which User provided the information.
Please note that if Company deletes your Personal Information, you may not be able to use certain Site functions that require your Personal Information.
D. Your California Privacy Rights. For California residents, California Civil Code Section 1798.83 permits customers of Company who are California residents to request certain information regarding Company’s disclosure of Personal Information for their direct marketing purposes. To make such a request, please send a request to email@example.com. Within thirty (30) days of receiving such a request, Company will provide a list of the categories of Personal Information disclosed to third parties for third-party direct marketing purposes during the immediately preceding calendar year, along with the names and addresses of these third parties. Company reserves its right not to respond to requests submitted other than to the address specified in this paragraph. In addition, California’s privacy laws require a company to provide notice to California users of their rights to receive information on to which entities their information was shared for marketing purposes. Although we do not currently share Personal Information with others outside our Company for marketing, we may decide to in the future, and reserve the right to do so unless you tell us not to. Under California’s “Shine the Light Act,” California residents are permitted to opt-out of such sharing. Please contact us using the information in the How to Contact Us section above to opt-out of the sharing of your Personal Information with third parties for marketing purposes. We will not share your information after we have received and processed your request.
E. California Consumer Privacy Act (“CCPA”) Notice. California residents also have the right to:
- Request and receive a copy of the Personal Information we have collected about them during the prior 12 months;
- Request and receive disclosure of our information sharing practices during the prior 12 months, including a list of the categories of Personal Information sold with the category of third party recipients and a list of the categories of Personal Information that we disclosed for a business purpose;
- Request that we not sell Personal Information about them; and
- Request that we delete (and direct our service providers to delete) their Personal Information subject to certain exceptions.
For purposes of the CCPA, Personal Information means information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular California resident or household. In the event of a conflict between this CCPA Notice and any of our other privacy policies, this CCPA Notice shall control only with respect to California residents and their Personal Information.
The Personal Information that we collect about a specific California resident will depend on, for example, the Company’s relationship or interaction with that individual. During the past 12 months, we have collected the following categories of Personal Information:
- Personal Information — Personal information, including contact details such as telephone number and address, financial information such as account number and balance, and payment card details including credit and debit card numbers.
- Purchase Information — Purchase information, such as ebooks obtained and transaction histories;
- Internet or Online Information — Internet or online information such as browsing history, and information regarding interaction with our websites, applications, or advertisements;
- Geolocation Data — Geolocation data, such as device location.
The sources from which we collect Personal Information depend on, among other things, our relationship or interaction with a specific California resident. The information below lists the categories of sources from which we would ever collect Personal Information in different contexts.
- From California residents directly, or other individuals acting on their behalf, through physical (e.g., paper application), audible (e.g., phone), or electronic (e.g., website, social media) sources.
- Outside companies or organizations that provide data to support activities such as fraud prevention, underwriting, and marketing. Examples may include internet service providers, social networks, operating systems and platforms, data brokers, advertising networks, and data analytics providers.
- Outside companies or organizations from whom we collect Personal Information to support human resource and workforce management activities. Examples may include operating systems and platforms, and social networks.
- Outside companies or organizations from whom we collect Personal Information as part of providing products and services, completing transactions, supporting our everyday operations, or business management and development. Examples include companies or organizations to whom we provide products or services; other parties, partners, and financial institutions; and parties involved with mergers, acquisitions, and other transactions involving transfers of all or part of a business, or a set of assets.
In order to make a request for disclosure, California residents may contact us by either by calling us at (800) 228-1507 or emailing us at firstname.lastname@example.org. We will ask you for information that allows us to reasonably verify your identity (that you are the person about whom we collected Personal Information) and will use that information only for that purpose. We may request that you submit a signed statement under penalty of perjury that you are the individual you claim to be. We will acknowledge receipt of your request within 10 days and will endeavor to respond within forty-five days of receipt of your request, but if we require more time (up to an additional forty-five days) we will notify you of our need for additional time. Please understand that we cannot respond to your request or provide you with Personal Information if we cannot verify your identity and confirm that the Personal Information relates to you.
You may make a request for disclosure of our information collection practices, the information we collected about you, or our sharing practices up to twice within a 12-month period. You may make a request that we not sell information or for deletion of your information at any time.
For requests for a copy of the Personal Information we have collected during the 12 months prior to your request, we will endeavor to provide the information in a format that is readily useable, including by mailing you a paper copy or providing an electronic copy to your email, if you have provided us with an email address.
For requests for deletion of your information please understand that California law permits us to retain certain information and not to delete it under certain circumstances. By way of example, we are not required to comply with a request to delete information if the information is necessary for us to complete a transaction for you or otherwise perform a contract; to detect, protect against, or prosecute security incidents, fraud or illegal activity; to use the information only internally in ways reasonably aligned with your expectations as our User (such as maintaining sales records), and to comply with legal obligations. If we receive such a request from you we will notify any service providers we have engaged to delete your information as well.
We will not discriminate against you as a result of your exercise of any of these rights.
You may submit a request through someone holding a formal Power of Attorney. Otherwise, you may submit a request using an authorized agent only if (1) the person is registered with the Secretary of State to do business in California, (2) you provide the authorized agent with signed written permission to make a request, (3) you verify directly with us that you have authorize the person to make the request on your behalf, (4) you verify your own identity directly with us and (5) your agent provides us with proof that they are so authorized. We will require the agent to submit proof to us that they have been authorized to make requests on your behalf.
If you are a California resident interested in exercising your privacy choices please send us a request to email@example.com. For all requests, please include your name, street address, city, state and zip code. We are not to be responsible for notices that are not labeled, are sent improperly or do not have complete information.
F. For individuals within the European Economic Area only. For the purposes of the European Union General Data Protection Regulation 2016/679, (the “GDPR”), the data controller is [name of company]. Under the GDPR, in certain circumstances, you have the right to:
- Request access to any Personal Information we hold about you as well as related information, including the recipients or categories of recipients to whom the Personal Information has been shared;
- Obtain without undue delay the correction of any inaccurate Personal Information we hold about you;
- Request Personal Information held about you to be deleted, provided the Personal Information is not required by Company for compliance with a legal obligation under European or Member State law or for the establishment, exercise, or defense of a legal claim;
- Prevent or restrict processing of your Personal Information, except to the extent processing is required for the establishment, exercise or defense of legal claims; and
- Request transfer of Personal Information directly to a third party where this is technically feasible.
If you are based in the European Economic Area (“EEA”) and we collect your Personal Information on our own behalf, we will only process your Personal Information, including sharing it with third parties, for a purpose described herein if: (i) you have provided your consent, which can be withdrawn at any time; (ii) the processing is necessary for the performance of a contract to which you are a party; (iii) we are required by law; (iv) it is required to protect your vital interests or those of another person; or (iv) the processing is necessary for the purposes of our legitimate commercial interests, except where such interests are overridden by your rights and interests.
In addition, where you believe that Company has not complied with its obligations under this Policy or European law, you have the right to make a complaint to an EU Data Protection Authority, such as the UK Information Commissioner’s Office.
You can exercise any of these rights by contacting us using the How to Contact Us section above.
Effective and Last Updated on January 3, 2022.