Privacy Policy
This website https://www.kimimed.io ( “Website”), provides information about the products and services (“Services”) marketed by Kimimed and its affiliated companies ("We", “Our”, “Us”). Kimimed is committed to protecting and respecting your privacy in accordance with applicable laws. This privacy policy provides comprehensive information about our processing activities (the “Privacy Policy”).
-
IMPORTANT INFORMATION AND WHO WE ARE
This Privacy Policy (together with the terms and conditions of any other agreement you may have with us) sets out the basis on which any Personal Data (as defined below) we collect from you, or that you provide to us, will be processed, stored and shared by us. We process Personal Data in accordance with “Applicable Data Protection Laws” (which means data protection and privacy laws and regulations applicable to us and if applicable the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation or “GDPR” and any). Please read the following carefully to understand our practices regarding your Personal Data, before you access or use the Website and/or our Services. By browsing this Website and using our Services, you consent to the processing of your Personal Data as detailed in this Privacy Policy. If you have read this Privacy Policy, and remain opposed to our practices, you must immediately leave this Website, and avoid or discontinue all use of the Website and/or Services.
If you have further questions or concerns regarding this Privacy Policy please contact us at: info@kimimed.io.
This Website and our Services are not intended for persons under 18 and we do not knowingly collect data relating to minors under 18. Insofar as Personal Data may be collected based on your consent, you must be above the age of 18. If these age requirements are not met, you are required to avoid using the Website and/or Services.
2. WHAT IS PERSONAL DATA?
“Personal Data” means information that can directly or indirectly identify you. Personal Data may include:
-
“Contact Details” such as your first name, last name, position, email address and in some cases phone number and physical address;
-
“Payment Information” such as debit/credit card, Paypal Account and/or bank account;
-
"Other information" such as an IP address, or if you access the Services from a mobile application, your unique mobile device ID number;
The term Personal Data shall also include and refer to similar terms in Applicable Data Protection Laws.
3. THE CATEGORIES OF PERSONAL DATA WE COLLECT AND HOW DO WE COLLECT IT
-
General Overview
We use different methods to collect Personal Data, including through:
-
Direct interactions: you may give us your Personal Data by speaking to us in person on or off-site, by filling forms or corresponding with us by post, phone, email or otherwise.
-
Automated technologies or interactions: as you interact with our Website and Services, we may automatically collect data about your device, browsing actions and patterns. It may include your device’s Internet Protocol (IP) address, your browser type and version, the pages you visit, the time and date of your visit, the time spent on each page, other details about your visit, and technical details that occur in conjunction with any errors you may encounter. We collect this Personal Data through the Services and by using technologies of third party providers.
-
Third party service providers: we may receive Personal Data such as Contact Details and Payment Information about you from various third parties including from providers of payment services.
-
Where we are required to collect Personal Data from you under the terms of a contract we have with you; if you fail to provide the data when requested we may not be able to perform the contract we have or are trying to enter into with you (for example, to provide the Services). In this case, we may have to cancel a service you have with us but we will notify you if this is the case at the time.
2. For easy reference, below we provide information about the collection of Personal Data according to the relationship we have with you.
-
Users: if you represent a business (a legal entity) that is one of our customers or service providers, and you wish to request a quote from us or place an order with us, we may collect your Contact Details and Payment Information.
-
Customers: if you are a potential or actual customer and you wish to request information, a quote or place an order, we may collect your: Contact Details and Payment Information.
In all of the above mentioned relationships in Section 3.2, we may collect information when handling your request or our engagement with you including any other Personal Data you voluntarily provide to us when you sign up to receive updates from us via email or social media channels, use a mobile device or web browser to access our content, contact us via email, social media, or on any similar technologies or when you mention us on social media. You hereby represent the Personal Data you provide is accurate, complete and up to date and that you are legally authorized to provide it.
4. HOW WE USE THE PERSONAL DATA AND WHAT ARE THE LEGAL BASES OF PROCESSING?
We collect and use your Personal Data for the following purposes and under the following legal bases:
-
In order to enter into or perform a contract with you, we may: provide you with information you request from us; maintain your order history and Contact Details in our customer relations database.
-
To exercise tasks under our legitimate interests such as to:
-
Enforce our Service and Website terms and conditions, notably conditions of payments;
-
Deliver and improve the Services and our Website and your overall user experience.
-
To protect, investigate, and deter against fraudulent, unauthorized, or illegal activity.
-
To link or combine user information with other Personal Information.
-
To Email, text, message, or otherwise contact you with information and updates about us and the Services;
-
To respond to your comments and questions and provide customer service.
-
To send you information including confirmations, billing and invoices, technical notices, updates, security alerts, and support and administrative messages.
-
To analyze how you use the Services with tools such as Google Analytics and other tools to help us understand traffic patterns and know if there are problems with the Services.
-
To create targeted advertising to promote the Services and engage our users.
-
to enable you to access and use our website, associated applications, and associated social media platforms.
3. Where you have provided your consent we may: deliver relevant on-line or off-line advertising to you, make suggestions and recommendations about goods or Services that may be of interest to you.
5. TECHNICAL DATA
-
In addition to the categories of Personal Data described above, we will also process "Technical Data” meaning, information that does not directly identify a natural person, such as anonymized information, collected by automated means through our Services and our Website and in the following ways:
-
Information that your browser sends (Log Data). This may include, but is not limited to, Technical Data regarding the User’s device, operating system, internet browser type, screen resolution, language and keyboard settings, internet service provider, referring/exit pages, date/time stamps, the web page you were visiting, searches, etc.
-
We may collect Technical Data through use of automated devices and applications to evaluate usage of our Service. We use these tools to help us improve our Website, performance and user experience. We may also engage third parties to track and analyze data or provide services on our behalf. Such third parties may combine Technical Data we provide about you with other information that they have collected from other sources. This Policy does not cover such third parties’ use of the data and such use is governed by such third parties’ privacy policies.
-
Other applications may also place analytical and performance tools, such as cookies on your computer’s browser which may collect Technical Data. For more information about our use of cookies, please see our Cookie Policy.
6. DATA RETENTION - FOR HOW LONG IS THE DATA STORED?
We retain Personal Data for as long as we are required to keep the information under applicable laws, or in accordance with our contractual obligations or legitimate interests. The information may be located in the EU, Israel, the USA and other jurisdictions.
7. WITH WHOM DO WE SHARE INFORMATION?
We do not rent, sell, or share your Personal Information with other people or non-affiliated third parties except with your consent or as necessary to complete any transaction or provide any service you have requested or authorized. To help us do our work, we may provide limited access to some of your Personal Information to the following third parties:
-
Our service providers – such as accountants, auditors, experts, lawyers, IT systems providers, manufacturers, support and hosting service providers; printing, advertising, marketing and market research and analysis service providers; document and records management providers; technical engineers; data storage and cloud providers and similar third-party service providers that assist us in carrying out our business activities.
-
Payment processors: We work with payment processors such as Paddle.com to help process credit card transactions and other payment methods made through the Services. These payment processors will store certain information about you. Please refer to their privacy policies to learn more about how they use your Personal Information.
-
Government or other public authorities – including, but not limited to law enforcement or other agencies to which we are required to disclose Personal Data by law, or by a warrant, subpoena or court order.
-
Other third parties - in the event of a merger, acquisition or any other structural change, we may be required to transfer Personal Data to another entity, provided, the receiving entity will comply with this Policy.
8. MARKETING
-
If you opt-in to receiving on-line marketing and offers, we will add your name and email address to our marketing database. In some jurisdictions, we may also send you on-line marketing messages if you have previously placed an order with us or where you have provided your information for future contact. You can change your marketing preferences at any time and will always be offered the opportunity to unsubscribe.
-
We will still contact you regarding your account or orders even if you have opted out of receiving marketing from us.
9. SECURITY
-
We take reasonable steps to prevent your Personal Data from being accidentally lost, used or accessed in an unauthorized way, altered or disclosed. In addition, we limit access to your Personal Data to those employees, agents, contractors and other third parties strictly on a need-to-know basis. Any third-party receiving data from us, is under contractual obligation to process Personal Data only under our instructions and subject to a duty of confidentiality.
-
Unfortunately, the transmission of information via the internet is not completely secure. Although we do our best to protect your Personal Data we cannot guarantee the security of data transmitted to our website and Services and any transmission is at your own risk. The safety and security of your Personal Information also depends on you. If you have an account with us, you are responsible for keeping your subscription details confidential. Your account is protected by your account password and we urge you to take steps to keep your Personal Information safe by not disclosing your password and by logging out of your account after each use. We further protect your Personal Information from potential security breaches by implementing certain technological security measures such as encryption. However, these measures do not guarantee that your Personal Information will not be accessed, disclosed, altered or destroyed by breach of such firewalls and secure server software.
10. SOCIAL MEDIA PLATFORMS AND LINKS TO THIRD PARTY WEBSITES
-
When you use our company page on a social media platform, click social sharing buttons on our Website, or any links contained in our Website leading to other websites, you do so at your own discretion and subject to the terms and conditions and privacy policies of those websites. Please note that we do not accept any responsibility or liability for these policies and that these social media platforms or websites may track your activity.
-
We may collect Personal Data from your public profile, including, name, photo and other information you make publicly available when you “like”, post on or otherwise interact with our social media pages such as Facebook, Twitter and Instagram.
11. YOUR RIGHTS
-
Different privacy rights may apply in various jurisdictions. In some jurisdictions, you may have a right to receive information about the processing of your Personal Data by us, the right to rectify your Personal Data or to request deletion of your Personal Data.
-
General conditions for complying with Personal Data inquiries: when you contact us about your Personal Data, we may need to ask you to provide us certain credentials to verify your identity in order to avoid accidental disclosure of Personal Data unrelated to you and to better understand the nature and scope of data that you request to access. We may redact from the data which we will make available to you, any Personal Data related to others. In addition, we may delete your Personal Data if required by Applicable Data Protection Laws.
-
At any time, you may contact us at: info@kimimed.io in order to inquire about your Personal Data rights. We will make our best effort to assist you, as required under the Applicable Data Protection Laws.
-
If you think that the processing of Personal Data by us violates Applicable Data Protection Laws, you can lodge a complaint with the regulator at your jurisdiction. We may provide the details of the regulator upon request.
12. INFORMATION FOR EUROPEAN UNION RESIDENTS:
-
Data Location and International Data Transfers:
-
Your Personal Data may be stored on our servers outside the EEA and may be processed by us and our service providers outside the EEA. We transfer and process your Personal Data outside the EEA, and we do so in a manner commensurate with Applicable Data Protection Laws. In such cases we remain controller of the personal data, the third parties only process the data in accordance with our instructions, and we are responsible for ensuring such third parties are compliant with all applicable data protection regulations in relation to their processing activities.
-
To the extent that the laws in your jurisdiction require consent for the transfer of Personal Data outside your jurisdiction, by using our Website and Services and providing us your Personal Data, you consent to such transfer. Our staff who need to access personal information to perform their roles will have access to it and have agreed to comply with our policies on data protection.
-
We also utilize servers from Amazon Web Services (AWS) to host our platform and to store our data. By using our Services and platform You understand and agree that Your personal Information may be stored on any or all AWS servers. More information about AWS's compliance can be found on its Compliance page.
-
-
Your EU Privacy Rights
-
If you are a European resident, in addition to the rights mentioned above, under the GDPR and subject to its conditions, you have the following additional rights:
-
-
Erasure of Personal Data (“right to be forgotten”);
-
Objection to the processing of Personal Data and automated individual decisions-making;
-
Restriction of processing of Personal Data;
-
Portability of Personal Data – to receive the Personal Data you have provided to us in a structured, commonly used and machine-readable form and transmit it to another data controller; and –
-
Right to lodge a complaint with the relevant supervisory authority in your jurisdiction
-
In some instances, our legal obligations may override your rights under Applicable Data Protection Laws. We are also legally required to identify you before we process your request.
-
Normally, you will not have to pay a fee to access your Personal Data (or to exercise any of your rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request in these circumstances.
-
We try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
-
13. CHANGES TO OUR PRIVACY POLICY
Any changes we may make to our Privacy Policy in the future will be posted on this page and, where appropriate, notified to you by e-mail. Please check back frequently to see any updates or changes to our Privacy Policy.