Last updated: 30th November 2018
Who we are
Caros Connect is registered with Companies House as Caros Connect Limited.
Our website address is www.carosconnect.com
Our registered business address is 860-862 Garratt Lane, London, England, SW170NB, UK.
Help is available via email through email@example.com
Nominated representative: Amer Fasihi
ICO registration: ZA201594
Regarding your personal data, we act as both data controller and processor.
Types of data we collect
Users of the service
We may collect and process the following data about you: name, email, country, health readings that you record on devices or upload to your online profile (including blood pressure, activity levels and weight), any information about you that you enter in messages and any information about you that other users enter in messages.
We use this information to provide the Service to you, identify you when you use the Service, to send you login details and to notify you about changes to the Service
We may collect personal information from individuals who contact us via email. This will include name and contact details, including email address.
We will use this information to answer any questions that you send us and now and again to check that you’re happy.
We may use your personal information to contact you with important communications about Caros Connect, marketing or promotional materials and other information that may be of interest to you.
We may employ third party companies and individuals to facilitate our Service, to provide the Service on our behalf, to perform Service related services or to assist us in analysing how our Service is used.
We may share your personal data (including health information) with individuals that you invite to your care network (“Supporters”), e.g. your family, friends, doctor etc. By issuing invitations to individuals to become Supporters you give us express permission to share all information and data stored in your profile with them. They will see all of the information that you have uploaded to your online profile. Some of this information may be highly sensitive so please consider carefully who you wish to share it with. You can remove Supporters from your network at any time so that they may no longer view your personal information.
Caros Connect will only transfer data outside of the European Economic Area or EEA where it is compliant with data protection legislation and the means of transfer provides adequate safeguards in relation to your data.
Compliance with Laws
We will disclose your Personal Information where required to do so by law, or in accordance with an order of a court of competent jurisdiction, or if we believe that such action is necessary to comply with the law and the reasonable requests of law enforcement, or to protect the security or integrity of our Service.
Legal Basis for Data Processing
For all individuals, we rely on separate, explicit consent for direct marketing.
You can withdraw your consent for further processing, fully or for certain purposes at any time by emailing firstname.lastname@example.org . Details are found further down this page.
In some cases, the collection of personal data may be a statutory or contractual requirement, and we will be limited in the services we can provide you if you don’t provide your personal data in these cases. Therefore, it is important to note that withdrawing consent may affect the services we are able to offer you. We may need to continue to process data relating to your request to withdraw consent.
Users of the Service
Non-disclosure of Personal Identifiable Data
This policy is not intended to place any limits on what we do with data that is aggregated and/or de-identified so it is no longer associated with an identifiable user.
You have the right to:
- request access to, deletion of or correction of, your personal data held by us at no cost to you;
- request that your personal data be transferred to another person (data portability);
- be informed of what data processing is taking place;
- restrict processing;
- object to processing of your personal data; and
- lodge a complaint with the ICO as our supervisory authority.
You also have rights with respect to automated decision-making and profiling.
A subject access request (SAR) can be made via email to email@example.com or via post to the address listed above.
Disclosing Your Information
We can disclose your information if we have a legal obligation to do so, or in order to protect other people’s property, safety or rights.
We can exchange information with others to protect against fraud or credit risks.
Links to Other Sites
We have no control over, and assume no responsibility for the content of, privacy policies or practices of any third party sites or services.
Caros Connect does not address anyone under the age of 13 (“Children”).
We do not knowingly collect personally identifiable information from Children under 13. If you are a parent or guardian and you are aware that your Children have provided us with personal information, please contact us. If we become aware that we have collected personal information from a child under age 13 without verification of parental consent, we will remove that information from our servers with immediate effect.
This Policy shall be governed and construed in accordance with the laws of England and Wales, without regard to its conflict of law provisions.