At BioHorizons, Inc., your privacy is important to us. We process personal data in different contexts and we do so by fully respecting your privacy and your other rights and freedoms, as part of our unwavering commitment to ethical and responsible practices.
We recognize personal data as any information related to an identified or identifiable individual. Depending on the context of your interactions with BioHorizons, we collect and use different types of personal data from employees, contractors, candidates, clients, prospect clients and vendors.
Types of personal data we collect from:
Our services are not directed to children. We do not knowingly collect personal data from children. If a parent or guardian becomes aware that his or her child has provided us with personal data without their consent, please contact us. If we become aware that a child has registered for a service and has provided us with personal data, we will delete such information from our files.
BioHorizons receives and uses various types of personal data in order to conduct our day-to-day business activities. We apply the data minimization principle in the collection and use of personal data ensuring that we only collect information that is necessary and by fair means, and providing notice and requiring consent when necessary.
Some of this data is collected directly from you in the following situations when:
The purposes for which we collect and use your personal data may vary depending on the type of relationship you have with us, such as if you are one of our employees, clients, or a website user. BioHorizons always collect and use personal data according to the purpose limitation principle. The use of personal data for new purposes should always guarantee consistency and your privacy expectations, otherwise we will request your authorization.
BioHorizons only collects and uses personal data when there is a fair and legal basis for its collection and use, for instance, when the collection of personal data is necessary to enter into a contract, to meet our legitimate interests, to comply with legal obligations or when we have your authorization.
The information we collect when we enter into a contract or business relationship with you, except if we indicate otherwise, is mandatory to develop our contractual relationship and to comply with legal obligations. For instance, some tax laws, labor, anti-fraud or compliance laws require organizations to collect certain information that may vary depending on the local regulations. Without the required mandatory information, we would not be able to work with you.
Anti-fraud or compliance laws require organizations to collect certain information that may vary depending on the local regulations. Without the required mandatory information, we would not be able to work with you.
Marketing activities are usually based on your consent or to an existing business relationship with us. However, you can opt-out of these communications anytime and free of charge.
When we use your personal data for our legitimate interests, we always conduct a balancing test in order to ensure that data subject rights are not overridden.
Finally, when we have access to personal data on behalf of our clients, in our role as data processors, there is always a written contract regulating the service, including specific instructions for the data processing and safeguards.
BioHorizons applies the storage limitation principle in order to retain personal data in our records only for the length of time required to fulfill the purpose for which the data was collected. We do not keep personal data for longer than is necessary, and what is necessary depends on specific circumstances such as regulations require retaining information for a certain period of time and limitation periods of legal claims.
At times, BioHorizons engages third party contractors, service providers, and other vendors to help us accomplish our business objectives. There are other circumstances where we are required by law to disclose personal data to third parties such as public bodies or judicial authorities.
We engage with third party contractors, service providers and other vendors for the following services: credit, business, and banking verification. If the engagement involves the transmission of personal data, BioHorizons requires the service provider to treat that data consistent with this Policy. A contract to protect the personal data should be executed before any data is disclosed. In certain circumstances, BioHorizons may be required to disclose personal information when required by law, when required to protect our legal rights, or in an emergency situation where the health or security of an individual is endangered. We may also disclose personal data in the context of any sale or transaction involving all or a portion of the business.
BioHorizons is committed to the security, confidentiality and integrity principle. We take commercially reasonable precautions to keep all information obtained from our online visitors secure against unauthorized access and use and we periodically review our security measures. We are committed to processing your data in a secure manner and have put in place specific technical and organizational measures to prevent the personal data we hold from being accidentally or deliberately compromised. Our employees participate in a training and compliance program and are required to safeguard your information.
BioHorizons uses GoDaddy for its sites security certificates. Please be aware that these protection tools do not protect information that is not collected through our Web site, such as information provided to us by e-mail.
We also conduct information risk assessments, we ensure that our staff understands the importance of protecting personal data, and we are responsibly managing access rights within the company. We include both physical security and IT security in our overall data security approach. We are diligent in selecting vendors that process personal data on our behalf so that they also ensure appropriate technical and organizational measures to protect the data.
BioHorizons makes reasonable efforts to notify individuals and regulatory authorities, as required by law, if we reasonably believe that personal information has been stolen, disclosed, altered or infringed by an unauthorized person. We create and maintain a breach notification and reporting protocol.
We also endorse the concept of privacy by design which is an approach to projects that promotes privacy and data protection compliance from the outset. This means considering the privacy and security implications for any new project or process throughout its lifecycle.
If you reside or otherwise find yourself in the territory of Europe, BioHorizons is committed to facilitate the exercise of your rights granted by the European data protection law. Otherwise you can contact us at any time to discuss your privacy concerns.
Privacy rights under the European regulation:
Transparency and the right to information: we provide notice to our employees, customers, suppliers, vendors and others of how we use personal data in our day-to-day operations at the time of collecting personal data, or as soon thereafter as possible. We also publish this privacy notice for a greater transparency.
Right to access, rectification, restriction of processing, and erasure: we provide data subjects with access to their own personal data where required by applicable law. In addition, we will rectify their personal data when it is incorrect and inaccurate, and we will ensure the right to erasure and to restriction of processing when these rights are not compatible with local regulations.
Right to object and withdraw consent at any time: for all marketing materials, you can opt-out anytime, and free of charge. The right to object for other processing activities will be balanced in order to ensure that it is not incompatible with local regulations or the legitimate interests of BioHorizons.
Right to data portability: based on your specific situation, we provide data subjects with the right to obtain and reuse your data across different services and includes transferring of your data to you, another controller or a trusted third party.
Right to lodge a complaint with a supervisory authority
These requests should be submitted as follows:
If you are located outside the United States and you interact with our website or provide us personal data, then your personal data may be transferred to the United States. If you are based in the European Economic Area or Switzerland, please be informed that the United States is not in the list of countries that the European Commission considers adequate to the protection of personal data. However, we provide appropriate safeguards for your data in the US, as we transfer it based on Standard Contractual Clauses we entered with third parties.
We reserve the right to modify this Privacy Statement and related business practices at any time. We will duly inform you of any changes.
If you have any concerns or questions about how your personal data is used, please contact us at:
2300 Riverchase Center
Birmingham, AL 35244
Attn: Regulatory Affairs
Or calling BioHorizons toll-free at 1-888-246-8338
You can also contact our Data Protection Officer at firstname.lastname@example.org. We will promptly respond and do everything possible to address your concern.