Privacy Policy | Cookie Policy
Privacy Policy
Effective as of July 13, 2023
This Privacy Policy describes how BlueWind Medical, Ltd., BlueWind Medical, Inc., and our subsidiaries and affiliates (collectively “BlueWind Medical,” “we”, “us” or “our”) handle personal information that we collect though our websites and other digital properties that link to this Privacy Policy (collectively, the “Service”), through social media, in connection with our marketing activities, business activities, and through other activities described in this Privacy Policy.
BlueWind Medical may offer certain products, programs or services that have unique or additional terms, privacy notices and consent agreements. Please reference the respective terms, notices and agreements for more details on those products, programs and services.
Table of Contents
Personal information we collect
How we use your personal information
How we share your personal information
Changes to this Privacy Policy
Information regarding the European Economic Area and United Kingdom
Personal information we collect
Information you provide to us. Personal information you may provide to us through the Service or otherwise, includes:
- Contact data, such as your first and last name, email, phone number and mailing address.
- Professional or employment-related data about healthcare professionals and business partners, such as professional title, company or institution name, work address, professional experience and areas of specialization, and license information.
- Communications that we exchange, including when you contact us with questions, feedback, or otherwise.
- Marketing preference data, such as your preferences for receiving our marketing and other communications as well as details about how you engage with our communications.
- Health information, such as symptoms, conditions, diagnoses, treatments, and feedback about your experience with BlueWind Medical’s product or services that you provide as part of research recruitment, marketing testimonials, general support and outreach, or otherwise.
- Research data that you may provide when you agree to participate in our surveys, polls, focus groups, and other market research activities, including demographic information and survey responses.
- Other information that we may collect which is not specifically listed here, which we will use as described in this Privacy Policy or as otherwise disclosed at the time of collection.
Third party sources. We may combine personal information we receive from you with personal information we obtain from other sources. The sources may include:
- Data providers, such as information services and data licensors.
- Public sources, such as social media platforms and government and professional websites.
- Research partners, such as companies or organizations with whom we partner on market research initiatives.
Automatic data collection. We, our service providers, and our business partners may automatically log information about you, your computer or mobile device, and your activity over time on our sites and other sites and online services, such as:
- Device data, such as your computer’s or mobile device’s operating system type and version, manufacturer and model, browser type, screen resolution, RAM and disk size, CPU usage, device type (e.g., phone, tablet), IP address, unique identifiers (including identifiers used for advertising purposes), language settings, mobile device carrier, radio/network information (e.g., WiFi, LTE, 3G), and general location information such as city, state or geographic area.
- Online activity data, such as pages or screens you viewed, how long you spent on a page or screen, the website you visited before browsing to the Service, navigation paths between pages or screens, information about your activity on a page or screen, access times, and duration of access.
- Cookies. Some of our automatic data collection is facilitated by cookies and similar technologies. For more information, see our Cookie Policy.
How we use your personal information
We use your personal information for the following purposes or as otherwise described at the time we collect it:
Service delivery. We use your personal information to:
- provide, operate and improve the Service and our business;
- enable security features of the Service;
- communicate with you about the Service, including by sending announcements, updates, security alerts, and support and administrative messages; and
- provide support for the Service, and respond to your requests, questions and feedback.
Business transactions. During certain business interactions, we may use your personal information to manage business transactions with you or the company or organization you work(ed) for. This may include making or responding to requests related to the transaction or obtaining or making payments.
Research and development. We may use your personal information to offer opportunities to participate in market research surveys or other research and development activities. As part of these activities, we may create aggregated, de-identified or other anonymous data from personal information we collect. We make personal information into anonymous data by removing information that makes the data personally identifiable to you.
Marketing and advertising. We and our third-party advertising partners may collect and use your personal information for marketing and advertising purposes:
- Direct marketing. We may send you BlueWind Medical-related or other direct marketing communications as permitted by law, including by email. You may opt-out of our marketing communications as described in the Opt-out of marketing communications section below.
- Interest-based advertising. We may contract with third-party advertising partners to display ads on our Service and other online services. These partners may use cookies and other technologies to collect information about you (including the device data and online activity data described above) over time across our Service and other online services, as well as your interaction with our emails. They use that data and other information they collect to try to help advertisers reach their desired audience on the Service and/or tailor the ads you see on the Service and other online services to your interests. You can learn more about your choices for limiting interest-based advertising, in the Your choices section below.
Treatment and/or quality control. We may use your personal information to carry out your treatment, including treatment prescribed by a physician, and to provide you with general information about your treatment. We may also use your personal information to ensure high standards of quality and safety related to health care and medical devices.
Compliance and protection. We may use your personal information to:
- comply with applicable laws, lawful requests, and legal process, such as to respond to subpoenas or requests from government authorities;
- protect our, your or others’ rights, privacy, safety or property (including by making and defending legal claims);
- manage adverse event reporting, product safety, and other reporting obligations;
- audit our internal processes for compliance with legal and contractual requirements and internal policies;
- enforce the terms and conditions that govern the Service; and
- prevent, identify, investigate and deter fraudulent, harmful, unauthorized, unethical or illegal activity, including cyberattacks and identity theft.
Retention. We retain personal information where we have an ongoing legitimate business need to do so (for example, to provide you with a service you have requested; to comply with applicable legal, tax or accounting requirements; to establish or defend legal claims; or for fraud prevention). Whether the retention period is sufficient to fulfill such purposes is the primary criteria for determining the duration of the retention period. When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize it or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will store your personal information and isolate it from any further processing until deletion is possible.
How we share your personal information
We may share your personal information with the following parties and as otherwise described in this Privacy Policy or at the time of collection:
Affiliates. Our corporate parent, subsidiaries, and affiliates, for purposes consistent with this Privacy Policy.
Service providers. Companies and individuals that provide services on our behalf or help us operate the Service or our business (such as information technology, customer relationship management and support, email delivery, advertising, marketing, and website analytics).
Advertising partners. Third party advertising partners that collect information about your activity on the Service and other online services to help us advertise our services, and/or use contact lists that we share with them to deliver ads on their platforms to those individuals and similar patients and customers.
Professional advisors. Professional advisors, such as lawyers, auditors, bankers and insurers, where necessary in the course of the professional services that they render to us.
Authorities and others. Law enforcement, government authorities, crisis lines and private parties, as we believe in good faith to be necessary or appropriate for the purposes described above.
Business transferees. Acquiring and other relevant parties (and their advisors) to business transactions (or potential transactions) involving a corporate divestiture, merger, consolidation, acquisition, reorganization, sale or other disposition of all or any portion of the business or assets of, or equity interests in, BlueWind Medical or our affiliates (including, in connection with a bankruptcy or similar proceedings).
Your choices
You have the following choices with respect to your personal information.
Opt-out of marketing communications. You may opt out of marketing-related emails by following the opt-out or unsubscribe instructions at the bottom of the email, or by emailing us at Compliance@bluewindmedical.com. You may continue to receive service-related and other non-marketing emails.
Cookies. Most browsers let you remove and/or stop accepting cookies from the websites you visit. To do this, follow the instructions in your browser’s settings. Many browsers accept cookies by default until you change your settings. If you do not accept cookies, however, you may not be able to access all features of the Service or they may not work properly. For more information about cookies, including how to see what cookies have been set on your browser and how to manage and delete them, visit http://www.allaboutcookies.org. Please refer to our Cookie Policy to learn more about your cookie choices.
Do Not Track. Some Internet browsers may be configured to send “Do Not Track” signals to the online services that you visit. We currently do not respond to “Do Not Track” or similar signals except where we expressly indicate otherwise. To find out more about “Do Not Track,” please visit http://www.allaboutdnt.com.
Declining to provide information. We need to collect personal information to provide certain services. If you do not provide the information requested, we may not be able to provide those services.
Other sites and services
The Service may contain links to websites, mobile applications, and other online services operated by third parties. These links are not an endorsement of, or representation that we are affiliated with, any third party. In addition, our content may be included on web pages or in mobile applications or other online services that are not associated with us. We do not control websites, mobile applications or online services operated by third parties, and we are not responsible for their actions.
Security
We employ a number of technical, organizational and physical safeguards designed to protect the personal information we collect. However, security risk is inherent in all internet and information technologies, and we cannot guarantee the security of your personal information.
International data transfer
We operate primarily in the United States and Israel. We may use service providers that operate in other countries. Your personal information may be transferred to the United States, Israel or other locations where privacy laws may not be as protective as those in your state, province or country.
Residents of the European Economic Area and United Kingdom should read the important information provided below about transfer of personal information outside of the European Economic Area and United Kingdom.
Children
The Service is not intended for use by children under 16 years of age. If we learn that we have collected personal information through the Service from a child under 16 without the consent of the child’s parent or guardian as required by law, we will delete it.
Changes to this Privacy Policy
We reserve the right to modify this Privacy Policy at any time. If we make changes to this Privacy Policy, we will notify you by updating the date of this Privacy Policy and posting it on the website. If required by law we will also provide notification of changes in another way that we believe is reasonably likely to reach you, such as via email or another manner through the Service. Any modifications to this Privacy Policy will be effective upon our posting the modified version (or as otherwise indicated at the time of posting). In all cases, your continued use of the Service after the effective date of any modified Privacy Policy indicates your acceptance of the modified Privacy Policy.
How to contact us
If you have any questions about this Privacy Policy, please contact us using one of the following methods:
- Email: Compliance@bluewindmedical.com
- Mail: Attention: DPO 1389 Center Drive, Park City, UT 84098, USA
Information regarding the European Economic Area and United Kingdom
This section applies only to individuals in the United Kingdom and the European Economic Area.
Personal information: References to “personal information” in this Privacy Policy are equivalent to “personal data” governed by European data protection legislation.
Controller: BlueWind Medical is the controller of your personal information covered by this Privacy Policy for purposes of European data protection legislation. We have appointed a Data Protection Officer, who can be reached at the contact details above.
EEA representative: Our EU representative is DataRep, who can be reached at Place de L’Université 16, Louvain-La-Neuve, Waals Brabant, 1348, Belgium or via email at datarequest@datarep.com.
UK representative: Our UK representative is DataRep, who can be reached at BPM 335368, 372 Old Street, EC1V 9AU, London, United Kingdom or via email at datarequest@datarep.com.
Legal bases for processing: The legal bases of our processing of your personal information as described in this Privacy Policy will depend on the type of personal information and the specific context in which we process it. However, the table below sets out the legal bases on which we typically rely when we process personal information other than medical information or other special categories of data. We rely on our legitimate interests as our legal basis only where those interests are not overridden by the impact on you (unless we have your consent, or our processing is otherwise required or permitted by law). If you have questions about the legal basis of how we process your personal information, contact us at the contact details above.
| Processing Purpose | Legal Basis |
|---|---|
| Service delivery and business transactions | Processing is necessary to perform the contract governing our provision of the Service or to take steps that you request prior to signing up for the Service. Where we cannot process your personal data as required to operate the Service on the grounds of contractual necessity, we process your personal information for this purpose based on our legitimate interest in providing you with the Service you access and request. |
| Marketing and advertising | Where consent is not required by applicable law, we process your personal information for these purposes based on our legitimate interests in promoting our business. |
| Research and development | These activities are based on legitimate interests, if consent is not the basis of processing. |
| Treatment and/or quality control | Where processing is not on the grounds of contractual necessity or consent, processing may be necessary for the vital interests of a patient and/or to comply with our legal obligations. |
| Compliance and protection | Processing is necessary to comply with our legal obligations. |
| Actions we take with your consent | Processing is based on your consent. Where we rely on your consent you have the right to withdraw it any time in the manner indicated when you consent or in the Service. |
Use for new purposes. We may use your personal information for reasons not described in this Privacy Policy as permitted by law and the reason is compatible with the purpose for which we collected it. If we need to use your personal information for an unrelated purpose, we will notify you and explain the applicable legal basis.
Sensitive personal information. We always ask for your explicit consent before processing sensitive personal information like your medical conditions, gender, ethnicity, or other special categories, when collected through the Service (e.g., when signing up to participate in clinical studies, completing surveys or participating in marketing testimonials).
We ask that you not provide us with any sensitive personal information through the Service or otherwise that is unnecessary. If you do not consent to our processing and use of such sensitive personal information, you must not provide it to us.
Your rights. European data protection laws give you certain rights regarding your personal information. If you are located within the United Kingdom or European Economic Area, you may ask us to take the following actions in relation to your personal information that we hold:
- Access. Provide you with information about our processing of your personal information and give you access to your personal information.
- Correct. Update or correct inaccuracies in your personal information.
- Delete. Delete your personal information.
- Transfer. Transfer a machine-readable copy of your personal information to you or a third party of your choice.
- Restrict. Restrict the processing of your personal information.
- Object. Object to our reliance on our legitimate interests as the basis of our processing of your personal information that impacts your rights.
You may submit these requests by sending them to our email or postal address provided above in the How to contact us section. We may request specific information from you to help us confirm your identity and process your request. Applicable law may require or permit us to decline your request. If we decline your request, we will tell you why, subject to legal restrictions. If you would like to submit a complaint about our use of your personal information or our response to your requests regarding your personal information, you may contact us or submit a complaint to the data protection regulator in your jurisdiction. You can find your data protection regulator here.
Cross-Border data transfers. If we transfer your personal information from the United Kingdom or European Economic Area to another country such that we are required to apply additional safeguards to your personal information under European data protection laws, we will do so. Please contact us for further information about any such transfers or the specific safeguards applied.
Information regarding visitors from Israel
You might know that Israeli residents have specific rights to their personal data under the Protection of Privacy Law, 5741-1981 (PPL). You may want to exercise your rights, and may submit these requests by sending a request to our email or postal address provided above in the How to contact us section above.
Information regarding visitors from the United States
You might know that residents in California and other states such as Virginia, Colorado, Texas, Utah, Connecticut, Indiana, Iowa, and Montana have specific rights to their personal data under their respective state data privacy laws. You may want to exercise your rights, and may submit these requests by sending a request to our email or postal address provided above in the How to contact us section above.
Cookie Policy
Effective as of November 29, 2023
This Cookie Policy explains how BlueWind Medical Ltd., BlueWind Medical, Inc., BlueWind Medical Limited, and our subsidiaries and affiliates (collectively “BlueWind Medical,” “we,” “us,” or “our”) uses cookies and similar technologies in connection with https://bluewindmedical.com and any other website that we own or control and to which this Cookie Policy is posted (collectively, the “Sites”).
What are cookies and similar technologies?
Cookies are small data files that are placed on your computer or mobile device when you visit a website. Cookies serve different purposes, like helping us understand how a site is being used, letting you navigate between pages efficiently, remembering your preferences and generally improving your browsing experience. Pixels are small images on a web page or in an email. Pixels collect information about your browser or device and can set cookies.
Our Sites may use both session cookies (which expire once you close your web browser) and persistent cookies (which stay on your computer or mobile device until you delete them). We use two broad categories of cookies: (1) first party cookies, served directly by us, which we use to recognize your computer or mobile device when it revisits our Sites; and (2) third party cookies, which are served by service providers or business partners on our Sites, and can be used by these parties to recognize your computer or mobile device when it visits other websites. Third party cookies can be used for a variety of purposes, including site analytics, advertising, and social media features.
We use Google Analytics to help us understand user activity on the Sites. You can learn more about Google Analytics cookies and about how Google protects your data by clicking on the respective links. You can prevent the use of Google Analytics relating to your use of our sites by downloading and installing a browser plugin available here.
Tracking technology we use
We use the following tracking technologies on our website:
| Type of Technology | Description | Purpose |
|---|---|---|
| Cookies | A type of data from a website in the form of a text command (e.g., a script) stored within a web browser to remember information about you, such as language preference and login information, or to carry out the necessary communication transmission (e.g., HTTP requests) to provide a service or application that you have requested. |
|
| Fingerprints | The process to collect a set of features and characteristics from a device (e.g., navigator language, window screen, time zone, location, CPU vendor, memory size, or image processing) for several purposes, like enhancing security or adapting the user’s experience on the website. |
|
| Web Beacons | A small tag placed on a website resource or in an email to track how the user interacts with the content. This interaction generates a “hit,” counting your interaction with the HTML content (e.g., if you click on one of our ads on the website, a web beacon will record that interaction). |
|
| Web Tags or Tracking Pixels | A type of code (e.g., JavaScript code in a tag manager) or pixel (a small 1×1 transparent image) loaded into the web page to enable website features, like the web design components, or to track user’s behavior with social media widgets such as a like button. |
|
What types of cookies and similar technologies are used on our Sites?
Strictly necessary. These cookies are necessary for the Sites to function and cannot be switched off in our systems. Without them you would not be able to use our basic services. You can set your browser to block or alert you about these cookies, but some parts of the Sites will not work.
| Host | Cookie Name | Description | Expiration | Type of Service |
|---|---|---|---|---|
| bluewindmedical.com | OptanonAlertBoxClosed | This cookie is set by websites using certain versions of the cookie law compliance solution from OneTrust. It is set after visitors have seen a cookie information notice and, in some cases, only when they actively close the notice down. It enables the website not to show the message more than once to a user. The cookie has a one-year lifespan and contains no personal information. | 365 Days | First Party |
| bluewindmedical.com | OptanonConsent | This cookie is set by the cookie compliance solution from OneTrust. It stores information about the categories of cookies the site uses and whether visitors have given or withdrawn consent for the use of each category. This enables site owners to prevent cookies in each category from being set in the user’s browser when consent is not given. The cookie has a normal lifespan of one-year, so that returning visitors to the site will have their preferences remembered. It contains no information that can identify the site visitor. | 365 Days | First Party |
| bluewindmedical.com | __cf_bm | The __cf_bm cookie is a cookie necessary to support Cloudflare Bot Management, currently in private beta. As part of our bot management service, this cookie helps manage incoming traffic that matches criteria associated with bots. This is a CloudFoundry cookie. | [0 Days] | First Party |
Performance. These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our Sites. They help us to know which pages are the most and least popular and see how visitors move around the Sites. If you do not allow these cookies we will not know when you have visited our Sites and will not be able to monitor its performance.
| Host | Cookie Name | Description | Expiration | Type of Service |
|---|---|---|---|---|
| bluewindmedical.com | _ga_xxxxxxxxxx | To generate statistical data on how the visitor uses the Service | 365 Days | First Party |
| bluewindmedical.com | _ga | This cookie name is associated with Google Universal Analytics – which is a significant update to Google’s more commonly used analytics service. This cookie is used to distinguish unique users by assigning a randomly generated number as a client identifier. It is included in each page request in a site and used to calculate visitor, session and campaign data for the site analytics reports. By default it is set to expire after 2 years. | 365 Days | First Party |
| bluewindmedical.com | _gid | This cookie name is associated with Google Universal Analytics. This appears to be a new cookie and as of Spring 2017 no information is available from Google. It appears to store and update a unique value for each page visited. | [0 Days] | First Party |
| nr-data.net | JSESSIONID | This domain is controlled by New Relic, which provides a platform for monitoring the performance of web and mobile applications. | [0 Days] | Third Party |
Functional. These cookies enable the Sites to provide enhanced functionality and personalization. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.
| Host | Cookie Name | Description | Expiration | Type of Service |
|---|---|---|---|---|
| vimeo.com | vuid | This domain is owned by Vimeo. The main business activity is: Video Hosting/Sharing. | 365 Days | Third Party |
| vimeo.com | __cf_bm | This is a CloudFoundry cookie. | [0 Days] | Third Party |
| bluewind.formtitan.com | S_sUId | 365 Days | Third Party | |
| bluewind.formtitan.com | AWSALBCORS | 6 Days | Third Party | |
| t.co | muc_ads | 365 Days | Third Party | |
| bluewind.formtitan.com | AWSALB | 6 Days | Third Party |
Targeting. These cookies may be set through our Sites by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other Sites based on uniquely identifying your browser and internet device. If you do not allow these cookies, you will experience less targeted advertising.
| Host | Cookie Name | Description | Expiration | Type of Service |
|---|---|---|---|---|
| bluewindmedical.com | _fbp | Used by Facebook to deliver a series of advertisement products such as real time bidding from third party advertisers. | 60 Days | First Party |
| bluewindmedical.com | _gat_UA-XXXXXX-X | Google Analytics Cookies. | [0 Days] | First Party |
| twitter.com | personalization_id | This domain is owned by Twitter. The main business activity is: Social Networking Services. Where twitter acts as a third party host, it collects data through a range of plug-ins and integrations, that is primarily used for tracking and targeting. | 365 Days | Third Party |
| twitter.com | guest_id_ads | This domain is owned by Twitter. The main business activity is: Social Networking Services. Where twitter acts as a third party host, it collects data through a range of plug-ins and integrations, that is primarily used for tracking and targeting. | 365 Days | Third Party |
| twitter.com | guest_id | Twitter does not currently provide information on the use of specific cookies. | 365 Days | Third Party |
| twitter.com | guest_id_marketing | This domain is owned by Twitter. The main business activity is: Social Networking Services. Where twitter acts as a third party host, it collects data through a range of plug-ins and integrations, that is primarily used for tracking and targeting. | 365 Days | Third Party |
| www.facebook.com | This domain is owned by Facebook, which is the world’s largest social networking service. As a third party host provider, it mostly collects data on the interests of users via widgets such as the ‘Like’ button found on many websites. This is used to serve targeted advertising to its users when logged into its services. In 2014 it also started serving up behaviorally targeted advertising on other websites, similar to most dedicated online marketing companies. | [0 Days] | Third Party |
Your Choices
You have a number of options to control or limit what information cookies and similar technologies collect about you:
- Use the cookie preference manager. You can toggle off and on different advertising, analytics, functionality/performance, and social cookies and trackers using the Sites’ cookie preference manager.
- Global Privacy Control (GPC). You can broadcast the Global Privacy Control (GPC) to opt-out for each participating browser system that you use. Learn more at the Global Privacy Control website. Learn more at https://globalprivacycontrol.org.
- Blocking cookies in your browser. Most browsers let you remove or reject cookies. To do this, follow the instructions in your browser settings. Many browsers accept cookies by default until you change your settings. Please note that if you set your browser to disable cookies, the Sites may not work properly. For more information about cookies, including how to see what cookies have been set on your device and how to manage and delete them, visit www.allaboutcookies.org. If you do not accept our cookies, you may experience some inconvenience in your use of our Sites. For example, we may not be able to recognize your computer or mobile device and you may need to re-set your preferences every time you visit our Sites.
- Privacy browsers/plug-ins. You can limit use of your information for interest-based advertising by using privacy browsers such as Brave or ad-blocking browser plug-ins such as Privacy Badger, DuckDuckGo, Ghostery or uBlock Origin, and configuring them to block third-party cookies/trackers.
- Third party opt-out option. You can opt-out of interest-based advertising through some of the third parties by using the corresponding third party opt-out tools they make available online. For example, Google and Facebook offer opt-out features that let you opt-out of use of your information for interest-based advertising:
- Industry association opt-outs. You may opt out of receiving interest-based advertising on websites through members of the Network Advertising Initiative by clicking here or the Digital Advertising Alliance by clicking here. You may opt out of receiving targeted advertising in mobile apps through participating members of the Digital Advertising Alliance by installing the AppChoices mobile app, available here, and selecting the user’s choices. Please note that we also may work with companies that offer their own opt-out mechanisms and may not participate in the opt-out mechanisms linked above.
- Blocking advertising ID use in your mobile settings. Your mobile device settings may provide functionality to limit use of the advertising ID associated with your mobile device for interest-based advertising purposes.
Changes
Information about the cookies we use may be updated from time to time, so please check back on a regular basis for any changes.
Questions
If you have any questions about our use of cookies, please contact us at Compliance@BlueWindMedical.com.
For more information about how we collect, use and share your information, see our Privacy Policy.