California Resident Privacy Notice
California Resident Privacy Notice
Effective Date: July 1, 2020
Last Reviewed: July 1, 2020
This California Resident Privacy Notice supplements the information and disclosures contained in our Privacy Policy. It applies to individuals residing in California from whom we collect Personal Information as a business under California law.
Personal Information Collection, Disclosure, and Sale
For the purposes of this notice, “Personal Information” means information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household, or as otherwise defined by the California Consumer Privacy Act of 2018 (California Civil Code §§ 1798.100 to 1798.199) and its implementing regulations, as amended or superseded from time to time (“CCPA”).
Personal Information does not include information that is:
-
Lawfully made available from government records.
-
Deidentified or aggregated.
-
Otherwise excluded from the scope of the CCPA.
The chart below provides the categories of Personal Information (as defined by the CCPA) we have collected, disclosed for a business purpose, sold, or used for business or commercial purposes in the preceding twelve months since this notice was last updated, as well as the categories of sources from which that information was collected, and the categories of third parties with whom we shared Personal Information. The examples of Personal Information provided for each category reflect each category’s statutory definition and may not reflect all of the specific types of Personal Information associated with each category.
If you do not provide your information when requested, you may not be able to use our Services if that information is necessary to provide you with our Services or if we are legally required to collect it.
Category | We Collect | We Disclose | We Sell | Categories of Third Parties with Whom We Share Personal Information |
---|---|---|---|---|
A. Identifiers Examples: Name, online identifier, internet protocol address, account name, or other similar identifiers. |
Yes | Yes | Yes | Internet Marketing |
B. Categories of Personal Information in Cal. Civ. Code Section 1798.80(e) Examples: Name, physical characteristics or description, address, telephone number, insurance policy number, employment, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information. |
Yes | Yes | No | |
C. Characteristics of Protected Classifications under California or Federal Law Examples: Mental or physical disability, sex (including gender and pregnancy, childbirth, breastfeeding or related medical conditions), medical condition, and genetic information. |
No | N/A | N/A | |
D. Commercial Information Examples: Records of products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies. |
Yes | Yes | Yes | Internet Marketing |
E. Biometric Information Examples: Physiological, biological, or behavioral characteristics that can be used to establish individual identity and that contain identifying information. |
No | N/A | N/A | |
F. Internet or Other Electronic Network Activity Information Examples: Browsing history, search history, and information regarding a consumer’s interaction with an internet website, application or advertisement. |
Yes | Yes | Yes | Internet Marketing |
G. Geolocation Data Example: Precise physical location. |
No | N/A | N/A | |
H. Sensory Information Examples: Audio, electronic, visual, thermal, olfactory, or similar information. |
No | N/A | N/A | |
I. Professional or employment-related information Examples: Job application or resume information, past and current job history, and job performance information. |
Yes | Yes | No | |
J. Non-Public Education Information (as defined in 20 U.S.C. 1232g; 34 C.F.R. Part 99) Examples: Records that are directly related to a student maintained by an educational agency or institution or by a party acting for the agency or institution. |
No | N/A | N/A | |
K. Inferences Drawn from Personal Information Examples: Consumer profiles reflecting a consumer’s preferences, characteristics, behavior, and similar preferential info. |
Yes | Yes | Yes | Internet Marketing |
Use of Personal Information
We collect, use, and disclose your Personal Information in accordance with the purposes disclosed in our Privacy Policy and for the specific business and commercial purposes below:
-
Providing Services. To deliver, maintain, and enhance our Services, such as providing information, samples, or newsletters you request, or to complete a transaction requested by you.
-
Communicating. To communicate with you, provide you with updates and other information about products and service offerings from us and of our vendors and service providers that you have requested or authorized, respond to comments and questions, and otherwise provide customer support.
-
Marketing. For marketing purposes, such as to alert you to special offers, updated information and other new products from us or to forward promotional materials that may be useful, relevant, valuable or otherwise of interest to you.
-
Personalization. To personalize your experience on our Services, such as developing and presenting content that is relevant to you and tailored to your particular interests.
-
To send you text messages, email messages or postal mail.
-
Facilitating Payments. To facilitate transactions and payments.
-
Safety Issues. To find and prevent fraud, and respond to trust and safety issues that may arise.
-
Compliance. For compliance purposes, including enforcing our legal rights, or as may be required by applicable laws and regulations or requested by any judicial process or governmental agency, including to respond to any government or regulatory request.
-
Auditing Interactions. Auditing related to a current interaction with you and concurrent transactions, including, but not limited to, counting ad impressions to unique visitors, verifying positioning and quality of ad impressions, and auditing compliance with this specification and other standards.
-
Fraud and Incident Prevention. Detecting security incidents, protecting against malicious, deceptive, fraudulent, or illegal activity, and prosecuting those responsible for that activity.
-
Debugging. Debugging to identify and repair errors that impair existing intended functionality.
-
Transient Use. Short-term, transient use.
-
Contracting Vendors. Contracting with service providers to perform services on our behalf or on their behalf, including maintaining or servicing accounts, providing customer service, processing or fulfilling orders and transactions, verifying customer information, processing payments, providing financing, providing advertising or marketing services, providing analytic services, or providing similar services on our or their behalf.
-
Research. Undertaking internal research for technological development and demonstration, and creating datapoints.
-
Product Improvement. Undertaking activities to verify or maintain the quality or safety of our services, and to improve, upgrade, or enhance our services, such as speeding up your searches and recognizing when you return to our services.
-
Enabling Transactions. Otherwise enabling or effecting, directly or indirectly, a commercial transaction.
-
Deidentification and Aggregation. To de-identify and aggregate information collected through our Services and use it for any lawful purpose.
-
Notified Purpose. For other purposes for which we provide specific notice at the time the information is collected.
Collection of Personal Information
In the preceding twelve months since this notice was last updated, we have collected Personal Information from the following categories of sources:
-
You or your devices directly.
-
Other users of our services.
-
Affiliates.
-
Advertising networks.
-
Internet service providers.
-
Analytics providers.
-
Government entities.
-
Operating systems and platforms.
-
Social Networks.
-
Consumer data brokers.
-
Business partners.
-
Healthcare professionals.
-
Publicly accessible sources.
Disclosure of Personal Information
Pursuant to our Privacy Policy, we share your Personal Information with the following categories of third parties:
-
Affiliates. Partners and affiliates.
-
Vendors. Vendors and service providers.
-
ISPs. Internet service providers.
-
OS/Platform Provider. Operating systems and platforms.
-
Analytics Providers.
-
Advertising Providers. Advertising technology companies, such as advertising networks.
-
Social Networks.
-
Government entities.
-
Third Parties as Legally Required. Third parties as required by law and similar disclosures.
-
Third Parties in Merger/Sale. Third parties in connection with a merger, sale, or asset transfer.
-
Third Parties with Consent. Other third parties for whom we have obtained your permission to disclose your Personal Information.
Your California Privacy Rights
If you are a California resident, you may exercise the following rights.
Right to Know and Access. You may submit a verifiable request for information regarding the: (1) categories of Personal Information collected, sold, or disclosed by us; (2) purposes for which categories of Personal Information are collected or sold by us; (3) categories of sources from which we collect Personal Information; (4) categories of third parties with whom we disclosed or sold Personal Information; and (5) specific pieces of Personal Information we have collected about you during the past twelve months.
Right to Delete. Subject to certain exceptions, you may submit a verifiable request that we delete Personal Information about you that we have collected from you.
Verification. Requests for access to or deletion of Personal Information are subject to our ability to reasonably verify your identity in light of the information requested and pursuant to relevant CCPA requirements, limitations, and regulations. To verify your access or deletion request, please authenticate your identity by logging into your account or please email us with your name, address, and any other identifying information that you previously provided to us.
Right to Opt Out. In some circumstances, you may opt out of the sale of your Personal Information. Click here to opt out of the sale of your Personal Information: Do Not Sell My Personal Information.
Right to Equal Service and Price. You have the right not to receive discriminatory treatment for the exercise your CCPA privacy rights, subject to certain limitations.
Shine the Light. You may request information once per calendar year about our disclosures of certain categories of personal information to third parties for their direct marketing purposes. Such requests must be submitted to us in writing using the Contact Information section below.
Submit Requests. To exercise your rights under the CCPA, please email cic@convatec.com, call us at 1-800-422-8811, or visit our contact us page to submit a request.
Authorizing an Agent. To authorize an agent to make a request to know or delete on your behalf, please send a written authorization signed by you and the authorized agent to us via cic@convatec.com.
Do Not Track
There is not yet a consensus about what steps a website should take when it receives a do-not-track signal from a site visitor's browser or what information collection or use restrictions should be applied when a do-not-track signal is received. Our services do not respond to such signals set by browsers.
Contact Information
If you have any questions, comments, or concerns about our processing activities, or you would like to exercise your privacy rights, please contact us at 1-800-422-8811 or cic@convatec.com.
Additional Data Privacy questions can be sent by email to dataprivacy@convatec.com, or by post:
Convatec Group Data Protection Officer
Floor 7, 3 Forbury Estate
23 Forbury Road
Reading, RG1 3JH
United Kingdom