International Medical Interpreters Association, Inc.
SECTION 1: How We Collect Information
We may collect certain limited information about visitors to our website and users of our Services, potentially but without limitation including their locations and devices they use, in order to provide and improve our Services and to support our related advertising and marketing.
We collect certain information directly from you, such as when you fill out forms with a name or email address. We may collect other information automatically (usually about devices, browsers, or locations). We may also collect information about you from other sources, such as if we purchase a list of contact information of people who may be interested in our Services.
Information We Collect from You. You have the option - but no obligation - to provide us with information about yourself when you:
- Register or log in to your account
- Create or edit your user profile
- Contact us through our website to obtain quotes or Services
- Contact us through our website to inquire about employment
- Contact customer support
Examples of the information you may provide are: name, email address, mailing address, phone number, and professional credentials or other typical resume/employment-related information.
The information we may automatically collect includes:
Device, Usage Information, and Transactional Data about how you use our Services and the computers or other devices, such as mobile phones or tablets which you use to access our Services. Examples may include your IP address, precise geolocation information that you allow our apps to access (usually from your mobile device), unique device identifiers and device attributes, like operating system and browser type, usage data, such as web log data, referring and exit pages and URLs, platform type, number of clicks, domain names, landing pages, pages and content viewed and the order of those pages, the amount of time spent on particular pages, the date and time you used our Services, the frequency of your use of our Services, error logs, and other similar information.
At IMIA, our only purpose for the automatic accessing and collecting transactional data is for assisting us to provide our clients and site visitors with the best possible user and Service experience, including maximizing our response and resolution times for resolving potential site and/or user issues. We have tried to reach a reasonable balance between the period of time that we maintain user activity logs and other data for the foregoing purposes, versus offering the maximum privacy afforded by either not collecting the information, or by deleting such information as quickly as prudent business practices and applicable laws allow.
Tailored Advertising/Ads for Other Products & Services.Third parties whose products or services are marketed on our Services may place or read from Cookies on your computer or other device to collect information. They do this to: (a) Tailor and serve advertising based on information like past visits to our Services and other sites; and (b) To report the number of ads served and the responses to those ads.
SECTION 2: Use of Information
In general, we collect, use and store or process your information solely in order to provide and improve our Services, to assist us with developing new services, and/or to market our services. Here are some examples of how we use the information we process:
- Provide you with the services and/or products you request, and collect related fees;
- Send you records of our relationship, including for purchases or other events;
- Market features, products, or special events or send you marketing communications about third party products and services we think may be of interest to you;
- Choose and deliver content and tailored advertising;
- Create and review data about our users and how they use our Services;
- Test changes in our Services and develop new features and products;
- Fix problems you may have with our Services, including answering support questions and resolving disputes;
- Prevent, investigate and respond to fraud, unauthorized access to or use of our Services, breaches of terms and policies, or other wrongful behavior; and
- Meet legal retention periods.
We normally collect or use information from you or others only where we have your consent to do so, where we need the information to perform a contract with you, or where the processing is in our legitimate interests and not overridden by your data protection interests or fundamental rights and freedoms. In some cases, we may have a legal obligation to collect or retain personal information or may need the personal information to protect your vital interests or those of another person. For example, when we:
- Use information to create and manage an account, we need it in order to provide relevant services;
- Use names and email addresses for email marketing purposes, we do so with your consent (which you are permitted to revoke at any time); and
- Gather usage data and analyze it to improve our Services, we do so based on our legitimate interest in safeguarding and improving our Services.
If you have additional questions or need further information concerning the lawful basis on which we collect and use your personal information, please contact us using the contact details provided in Section 11.
SECTION 3: Information Sharing
We share information as follows:
Business Transactions.We may share your information during a corporate transaction like a merger, or sale of our assets. If a corporate transaction occurs, we will provide notification of any changes to control of your information, as well as choices you may have.
Consent.We may share your information in other ways if you have asked us to do so or have given consent. For example, with your prior consent, we may post user testimonials that may identify you.
SECTION 4: Retention of Information
We keep your personal information for no longer than we deem reasonably necessary or prudent for the purposes for which that information is collected. The length of time for which we retain information depends on the known or reasonably anticipated collection purposes and uses and/or as required for compliance with applicable laws. Where there are technical limitations that prevent deletion or anonymization, we use both internal policy measures and commercially reasonable technical protocols to both safeguard personal data and limit or prevent the unauthorized access and/or use of that data.
See Section 5 for choices about storage of your information.
SECTION 5: Your Choices
This section describes many of the actions you can take to change or limit the collection or use of your information.
Profile.You are not required to fill out a profile. If you do, you can access and review this information. If any information is inaccurate or incomplete, you can make changes in your account settings.
Marketing Messages.You can opt out of email marketing messages we send. You can opt out of these messages by clicking on the "unsubscribe" link in the email message. Please note that we may send you one message to confirm you want to opt out. If you are a registered user of our Services, or if you have engaged in transactions with us, we may continue to send transactional or relationship messages (e.g., signing notifications or account notifications) after you opt out of marketing messages. To opt out of any notifications that do not include an embedded "unsubscribe" function, please contact us using the information provided in Section 11.
Cookies and Other Related Technology.You can choose to decline cookies through your browser settings. However, if you decline cookies, you may not be able to use some parts of our Services.
While we use reasonable efforts to comply with our users' wishes, our system may not recognize or respond to browser-initiated Do Not Track signals.
Device and Usage Information.If you do not want us to see your device location, you can turn off location sharing on your device, change your device privacy settings, or decline to share location on your browser.
Closing Your Account.If you wish to close your account, please contact us, or go to your account settings.
SECTION 6: Children's Privacy
Our website and Services are not designed for and are not marketed to people under the age of 18 ("minors"). We do not knowingly collect or ask for information from minors. We do not knowingly allow minors to use our Services without a parent, guardian or other legally responsible adult. If you are a minor, please do not use our Services or send us your information. We delete information that we learn is collected from a minor without appropriate parental/adult consent. Please contact us if you believe we might have information from or about a minor.
SECTION 7: California Residents' Privacy
If you are a California resident, you may ask for a list of third parties that have received your information for direct marketing purposes during the previous calendar year. This list also contains the types of information shared. We provide this list at no cost. We do not share your information with third parties for their own marketing purposes.
SECTION 8: Users From Outside the United States
Transfers to the U.S. and Third Countries.
If you are in Switzerland or the European Economic Area ("EEA"), you understand and acknowledge that we may transfer your personal data outside of Switzerland and the EEA for processing. IMIA has adopted Binding Corporate Rules to facilitate the transfer of personal data from the EEA to IMIA outside of the EEA. You may view our Binding Corporate Rules upon request, using the contact information provided at Section 11.
Other Rights:You can access and review information associated with your account at any time. You also can request the following information: (a) How we collect and use your information and why; (b) The categories of personal data involved; (c) The categories of recipients of your personal data; (d) How we received your personal data; and (d) How long we use or store your personal data or the manner in which we determine relevant retention periods.
You have a right to provide us with guidance on the use, storage, and deletion of your personal data after your death. You have a right to raise questions or complaints with your local data protection authority at any time. If you wish to exercise these rights, please contact us via the information set forth below.
C/O Litman, Gerson Associates, LLP
500 W. Cummings Park, #5650
Woburn, MA 01801
Attn: IMIA Data Privacy Officer
FOR SWITZERLAND AND EUROPEAN ECONOMIC AREA (EEA) USERS:
DATA PROTECTION ATTACHMENT
SECTION 1: Definitions
General.The terms "Personal Data," "Process/Processing," "Controller," "Processor," Subprocessor," and "Data Subject" have the meanings ascribed to them under the General Data Protection Regulation; provided that the term "Personal Data" as used herein only applies to Personal Data for which IMIA is a Processor.
"EEA" means the European Economic Area.
"General Data Protection Regulation" or "the GDPR" means Regulation 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, as amended.
"Processor Privacy Code" or "Processor Code" means IMIA's processor binding corporate rules for the Processing of Personal Data, the most current version of which is available upon IMIA's website or otherwise upon request.
SECTION 2: Data Processing and Protection of Personal Data
2.3 Assistance to Customer and Regulatory Investigation.Upon written request, IMIA will provide reasonable assistance and information to Customer in fulfilling any legal obligations that Customer may have under the GDPR regarding data protection impact assessments, data and systems inventory, records of Processing, and related consultations of data protection authorities, or in the event of an investigation by any governmental authorities, if and to the extent that such investigation relates to Personal Data Processed by IMIA in accordance with the Agreement. Such assistance will be at Customer's sole expense, except where such an investigation was required due to IMIA's failure to act in accordance with the Agreement.
2.4 Transfers of Personal Data from EEA.
SECTION 3: Customer Responsibilities
By accessing our site, users acknowledge and accept the responsibility for properly implementing access and use controls and configuring certain features and functionalities of IMIA Services that they may elect to use, in such manner that the user in each case deems adequate to maintain appropriate security, protection, deletion, and backup of their Personal Data. IMIA will be entitled to rely solely on the user/Customer or the Customer Affiliate's instructions relating to any Personal Data Processed by IMIA. The Customer is responsible for coordinating all communication with IMIA under this DPA, including, without limitation, any communication in relation to this DPA on behalf of any applicable IMIA Affiliates.
SECTION 4: Information Security
SECTION 5: Personal Data Breach
IMIA will notify the Customer without undue delay if IMIA becomes aware of a Personal Data Breach affecting the Personal Data. Taking into account the nature of Processing and the information available to IMIA, IMIA will assist the Customer at the Customer's request and expense in complying with the Customer's notification obligations regarding Personal Data Breaches as required by the GDPR.
SECTION 6: Data Privacy Contact
IMIA's data privacy officer can be reached at the following address:
C/O Litman, Gerson Associates, LLP
500 W. Cummings Park, #5650
Woburn, MA 01801
Attn: IMIA Data Privacy Officer
SECTION 7: Data Subjection Rights; Access, Correction, Restriction and Deletion
We will use best commercially reasonable efforts to provide the site functionality reasonably required to provide Customers/site users with appropriate technical measures to access, correct, amend, restrict, or delete Personal Data that we collect, and to address requests by a Data Subject under the GDPR.
SECTION 8: Subprocessors
SECTION 9: Return or Disposal
Prior to termination or expiration of the Agreement for any reason, a user may retrieve Personal Data collected by IMIA in accordance with the terms of the Agreement, and at the user's request provided in writing to IMIA, IMIA will promptly return or (at IMIA's sole discretion), confirm in writing the deletion of said Personal Data, expressly excluding any instance where IMIA reasonably believes that the continuing storage of all or any part of said data is required by applicable law.