Last updated: March 4th, 2019
This Policy covers both our online and offline data collection activities, including Personal Data that We collect through our various channels such as websites, apps, third-party social networks, points of sales and events. Please note that We combine Personal Data that We collect via one method (e.g. the Website) with Personal Data that We collect via another method (e.g. PhenoPen’s offline event).
If you fail to provide necessary Personal Data to us, We may not be able to provide you with our goods and/or services.
This Website is only directed to individuals in the United States. If you are located elsewhere, please close the Website. Under no circumstances are residents of the European Union permitted to visit our Website and share their personal information.
This Policy applies to Personal Data that We collect from or about you, from the following sources:
PhenoPen Websites. Consumer-directed websites operated by Us, including sites that We operate under our own domains/URLs and mini-sites that We run on third party social networks such as Facebook.
E-mail, text and other electronic messages. Electronic communications between you and Us.
Points of Sales. Demonstrators present in third-party physical stores to assist you with the registering of your ordering.
Data from other sources. Third party social networks (e.g. such as Facebook, Google) or market researchers (if feedback not provided on an anonymous basis).
PhenoPen Customer Relationship Centers. Calls to our Customer Relationship Centers (“CRC”).
Depending on how you interact with PhenoPen (online, offline, over the phone, etc.), We collect various types of information from you, as described below.
Personal contact information. This includes any information you provide to Us that would allow Us to contact you, such as your name, postal address, e-mail address, social network details, or phone number.
Account login information. Any information that is required to give you access to your specific account profile. Examples include your login ID/email address, screen name, password in an unrecoverable form, and/or security question and answer.
Demographic information & interests. Any information that describes your demographic or behavioral characteristics. Examples include your date of birth, age or age range, gender, geographic location (e.g. postcode/zip code), favorite products, hobbies and interests, and household or lifestyle information.
Technical information about computer/mobile device. Any information about the computer system or other technological device that you use to access one of our Websites or apps, such as the Internet protocol (IP) address used to connect your computer or device to the Internet, operating system type, and web browser type and version. If you access the Website or app via a mobile device such as a smartphone, the collected information will also include, where permitted, your phone’s unique device ID, advertising ID, geo-location, and other similar mobile device data.
Websites/communication usage information. As you navigate through and interact with our Websites or newsletters, We use automatic data collection technologies to collect certain information about your actions. This includes information such as which links you click on, which pages or content you view and for how long, and other similar information and statistics about your interactions, such as content response times, download errors and length of visits to certain pages. This information is captured using automated technologies such as cookies (browser cookies, flash cookies) and web beacons, and is also collected through the use of third-party tracking. You have the right to object to the use of such technologies, for further details please see Section 3.
Market research & consumer feedback. This includes information that you voluntarily share with Us about your experience of using our products and services.
Consumer-generated content. This refers to any content that you create and then share with Us on third party social networks or by uploading it to one of our Websites or apps, including the use of third-party social network apps such as Facebook. Examples include photos, videos, personal stories, or other similar media or content. Where permitted, We collect and publish consumer-generated content in connection with a variety of activities, including contests and other promotions, website community features, consumer engagement, and third-party social networking.
Third party social network information. This refers to any information that you share publicly on a third party social network or information that is part of your profile on a third party social network (such as Facebook) and that you allow the third party social network to share with Us. Examples include your basic account information (e.g. name, email address, gender, birthday, current city, profile picture, user ID, list of friends, etc.) and any other additional information or activities that you permit the third party social network to share. We receive your third-party social network profile information (or parts of it) every time you download or interact with PhenoPen web application on a third party social network such as Facebook, every time you use a social networking feature that is integrated within the Website (such as Facebook Connect) or every time you interact with Us through a third party social network. To learn more about how your information from a third party social network is obtained by PhenoPen, or to opt-out of sharing such social network information, please visit the website of the relevant third party social network.
Payment and Financial information. Any information that We need in order to fulfill an order, or that you use to make a purchase, such as your debit or credit card details (cardholder name, card number, expiration date, etc.) or other forms of payment (if such are made available). In any case, We or our payment processing provider(s) handle payment and financial information in a manner compliant with applicable laws, regulations and security standards such as PCI DSS.
Cookies/Similar Technologies. Please see our Cookie Notice to learn how you can manage your cookie settings and for detailed information on the cookies We use and the purposes for which We use them.
Log Files. We collect information in the form of log files that record website activity and gather statistics about your browsing habits. These entries are generated automatically, and help Us to troubleshoot errors, improve performance and maintain the security of our Websites.
Web Beacons. Web beacons (also known as “web bugs”) are small strings of code that deliver a graphic image on a web page or in an email for the purpose of transferring data back to Us. The information collected via web beacons will include information such as IP Address, as well as information about how you respond to an email campaign (e.g. at what time the email was opened, which links you click on in the email, etc.). We will use web beacons on our Websites or include them in e-mails that We send to you. We use web beacon information for a variety of purposes, including but not limited to, site traffic reporting, unique visitor counts, advertising, email auditing and reporting, and personalization.
The following paragraphs describe the various purposes for which We collect and use your Personal Data, and the different types of Personal Data that are collected for each purpose with your consent (where required). Please note that not all of the uses below will be relevant to every individual.
Our interest and reasons to collect such Personal Data are as follows:
We share your Personal Data with the following types of third-party organization:
Service providers. These are external companies that We use to help Us run our business (e.g. order fulfillment, payment processing, fraud detection and identity verification, website operation, market research companies, support services, promotions, website development, data analysis, CRC, etc.). Service providers, and their selected staff, are only allowed to access and use your Personal Data on our behalf for the specific tasks that they’ve been requested to carry out, based on our instructions, and are required to keep your Personal Data confidential and secure.
Credit reporting agencies/debt collectors. To the extent permitted by applicable law, credit reporting agencies and debt collectors are external companies that We use to help Us to verify your creditworthiness (in particular for orders with invoice) or to collect outstanding invoices.
Third party companies using Personal Data for their own marketing purposes. Except in situations where you have given your consent, We do not license or sell your Personal Data to third party companies for their own marketing purposes. Their identity will be disclosed at the time your consent is sought.
In accordance with applicable laws, We will use your Personal Data for as long as necessary to satisfy the purposes for which your Personal Data was collected (as described in Section 4 above) or to comply with applicable legal requirements.
Personal data used to provide you with a personalized experience (see Section 4 above for details) will be kept for a duration permitted by applicable laws.
We use a variety of reasonable measures (described below) to keep your Personal Data confidential and secure. Please note, however, that these protections do not apply to information you choose to share in public areas such as third-party social networks.
People who can access your Personal Data. Your Personal Data will be processed by our authorized staff or agents, on a need to know basis, depending on the specific purposes for which your Personal Data have been collected (e.g. our staff in charge of customer care matters will have access to your customer record).
Measures taken in operating environments. We store your Personal Data in operating environments that use reasonable security measures to prevent unauthorized access. We follow reasonable standards to protect Personal Data. The transmission of information via the Internet is, unfortunately, not completely secure and although We will do our best to protect your Personal Data, We cannot guarantee the security of the data during transmission through our Websites/apps.
Measures We expect you to take. It is important that you also play a role in keeping your Personal Data safe and secure. When signing up for an online account, please be sure to choose an account password that would be difficult for others to guess and never reveal your password to anyone else. You are responsible for keeping this password confidential and for any use of your account. If you use a shared or public computer, never choose to have your login ID/email address or password remembered and make sure to log out of your account every time you leave the computer. You should also make use of any privacy settings or controls We provide you in our Website/app.
Where provided by law, you, your successors, representatives and/or proxies can (i) request deletion, the portability, correction or revision of your Personal Data; (ii) oppose the data processing; (iii) limit the use and disclosure of your Personal Data; and (iv) revoke consent to any of our data processing activities.
Please note that, in certain circumstances, We will not be able to delete your Personal Data without also deleting your user account. We may be required to retain some of your Personal Data after you have requested deletion, to satisfy our legal or contractual obligations. We may also be permitted by applicable laws to retain some of your Personal Data to satisfy our business needs.
Where available, our Websites have a dedicated feature through which you can review and edit the Personal Data that you have provided. Please note that We require our registered consumers to verify their identity (e.g. login ID/email address, password) before they can access or make changes to their account information. This helps prevent unauthorized access to your account.
We strive to provide you with choices regarding the Personal Data that you provide to Us. The following mechanisms give you the following control over your Personal Data:
Cookies/Similar Technologies. You manage your consent via (i) our consent management solution or (ii) your browser so as to refuse all or some cookies/similar technologies, or to alert you when they are being used. Please see Section 3 above.
Advertising, marketing and promotions. If you wish to have your Personal Data used by Us to promote its products or services, you can indicate so through the relevant tick box(es) located on the registration form or by answering the question(s) presented at tradeshows. If you decide that you no longer wish to receive such communications, you can subsequently unsubscribe from receiving marketing-related communications at any time, by following the instructions provided in each such communication. To opt-out of marketing communications sent by any medium, including third-party social networks, you can opt-out at any time by logging into the Websites/apps or third-party social networks and adjusting your user preferences in your account profile by unchecking the relevant boxes ,by addressing our customer service at the Website or by sending your request to [add email address]. Please note that, even if you opt-out from receiving marketing communications, you will still receive administrative communications from Us, such as order or other transaction confirmations, notifications about your account activities (e.g. account confirmations, password changes, etc.), and other important non marketing related announcements.
Personalization (offline and online): Where required by law, if you wish to have your Personal Data used by Mabsut to provide you with a personalized experience/targeted advertising & content, you can indicate so through the relevant tick box(es) located on the registration form or by answering the question(s) presented at tradeshows. If you decide that you no longer wish to benefit from this, you can opt-out at any time by logging into the Websites/apps and adjusting your user preferences in your account profile by unchecking the relevant boxes, by addressing our customer service at Website or by or by sending your request to [add email address].
California Do Not Track Disclosures
How do we respond to Web browser “do not track” signals or other mechanisms that provide consumers the ability to exercise choice regarding the collection of personally identifiable information about an individual consumer’s online activities over time and across third-party websites or online services?
We currently do not respond to DNT signals in browsers because we do not track individual users across the web.
May other parties collect personally identifiable information about an individual consumer’s online activities over time and across different websites when they visit www.PhenoPen.com?
Notice to California Residents
In response to a California law, we will automatically treat individuals with California addresses or telephone numbers (when disclosed to us) as if you requested us to not share your information with nonaffiliated third parties except as permitted by the applicable California law. We will also limit the sharing of information about you with our affiliates to comply with California privacy laws that apply to us.
Notice to Vermont Residents
In response to Vermont regulations, we automatically treat accounts with Vermont billing addresses as if you requested that we not share your information with nonaffiliated third parties, and that we limit the information we share with our affiliates. If we disclose information about you to nonaffiliated third parties with whom we have joint marketing agreements, we will only disclose your name, address, other contact information, and information about our transaction and experiences with you.
Notice to Nevada Residents
We are providing you this notice pursuant to state law. You may be placed on our internal Do Not Call List by requesting that we cease calling you by contacting us directly and making such request in writing [firstname.lastname@example.org]. Nevada law requires that we also provide you with the following contact information: Bureau of Consumer Protection, Office of the Nevada Attorney General, 555 E. Washington St., Suite 3900, Las Vegas, NV 89101; Phone number: 702-486-3132; e-mail: BCPINFO@ag.state.nv.us.
Notice to Users Outside of the United States
Our Website is not intended to be used by children under 18 years old. You represent and warrant that you are at least 18 years of age. If you are under age 18, you may not use the Website or services. We do not knowingly collect personal information from, or target our Website or services to children under the age 18. We understand that there may be exceptions to this rule including, but not limited to children who are emancipated. If we discover that the Website is being used inappropriately, we will take steps, if possible, to disable access so that the individual may no longer access our Website.
If We change the way We handle your Personal Data, We will update this Notice. We reserve the right to make changes to our practices and this Notice at any time, please check back frequently to see any updates or changes to our Notice.
We are not responsible for events beyond our direct control. We cannot guarantee nor do we represent that there will be error-free performance regarding the privacy of the Information, and we will not be liable for any direct, indirect, incidental, consequential or punitive damages relating to the use or release of the Information.
If you have any questions about your personal information or this policy, please contact us by email at [E-MAIL ADDRESS], or by using the contact details below:
MabsutLife, KNEZOVA ULICA 1, 1000 LJUBLJANA, SLOVENIA