Where there are reasonable grounds to believe that personal information has been accessed or acquired by any unauthorised person, we will notify the affected persons and the Information Regulator which is appointed in terms of POPI. We will only delay notifying affected persons only in cases where a public body instruct us to do so in the case of criminal investigations.
You agree that we may use the information that you provide to us, including the personal information we hold about you in the following ways:
Personal information refers to information that identifies or relates specifically to you, for example, your name, email and practice information. In short, any information that we know about you and that is able to be linked to you will be regarded as your personal information. It could also include information relating to your patients, and if such infromation contains personal identifiers, such patient would have to provide written consent to the information being provided to us.
We will only collect and hold personal information that is reasonably necessary for the functioning of our Services and information necessary for our legitimate business interests or activities. Therefore, we will hold personal information such as, but not limited to, your name, email address, contact information, your preferred treatment and healthcare plan for a patient, etc. It could also include certain de-identified information relating to your patients, including, inter alia, patient file number, patient year of birth, gender of patient, condition of patient and a description of the proposed treatment and the treatment failure, and, if not totally de-identified, the sharing and use of which the patient consented to.
We will take every reasonable technical and organisational step to protect the security of your- and third party personal information.
We may also archive personal information (i.e. practitoner name, surname and queries or requests) where appropriate. No patient information will be archived.
We collect personal information when you first register on the Univadis Website as well as when you request assistance as part of the Services.
The Website may occasionally contain links to third-party websites. We are not responsible for the content of these third-party websites or for the security of your personal information when you use the third party websites. These third-party service providers and third-party websites may have their own privacy policies governing the storage and retention of your personal information that you may be subject to. They may also collect information that is not personal information such as your IP address, browser specification, or operating system.
In addition, our Website may use aggregated information for the purposes of tracking the usage of our Services and, in order to help us develop and improve the Website and such services, we may pass this information to third parties. The aggregated personal information and statistics passed to third parties will not, however, include details that can be used to identify you or your patients. We will not sell, rent or provide your personal information to unauthorised entities or other third parties, for their independent use, without your and your patients’ express consent. If at any stage, after you have given us your consent, you no longer wish us to use or share your personal information with an affiliate, you may at any stage withdraw your consent. This you can do by using the contact details below under point 12.
Personal information may also be shared under the following circumstances:
We value the information that you choose to provide us with and we will take reasonable steps to protect all personal information from loss, misuse or unauthorised alteration. The information we maintain concerning our customers is stored in databases that have built-in safeguards to ensure the privacy and confidentiality of that information. However, the transmission of information via the Internet is not completely secure and we cannot guarantee the security of your information transmitted to our Website. Any transmission of your information to our Website is entirely at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
In order to use our Services, you will be required to enter your unique username and password. You are responsible for maintaining the secrecy and confidentiality of your username and password. Please do not share your password with anyone.
If you ever want to update or correct any of your personal information held by us, you can update and correct your information by contacting MSD via email or telephonically – see the contact details below under point 12.
Copies of POPI and the ECT Act can be viewed and downloaded at http://www.justice.gov.za/legislation/acts/2013-004.pdf and http://www.internet.org.za/ect_act.html, respectively. It is your responsibility to ensure that the copies downloaded or viewed are the most recent versions of POPI and the ECT Act.
In terms of health information, the provisions of the National Health Act, 2003, apply to the sharing and use of such information. A copy of the National Health Act is available at: http://www.saflii.org/za/legis/consol_act/nha2003147/.
You also have the right to withdraw your consent for us to process your personal information at any time. However, you must be mindful of the fact that any such withdrawal may have an impact on our ability to provide our Service to you.
Telephone number: +27 11 655 3000
Email address: firstname.lastname@example.org