We believe that the personal information of individuals is a valuable asset and the individuals have their right to make sure that their information is properly protected.
E-Merge tech was awarded the internationally recognized ISO 27001 Information Security Management System (ISMS) certification, as back as in the year 2013. This certification is a demonstration of our commitment to our customers and stakeholders that their business and personal information is held safely. It allows for secure exchange of information internationally and show consistency in the delivery of our products and services under the technical and operational requirements necessary to prevent a data breach for our customers. GDPR requirement has only complemented our commitment to data privacy.
We will conduct a continuous review of all incidents, security & privacy policies and processes to ensure integration of GDPR requirements featuring risk assessments across all relevant areas of business. We conduct audits and monitor data security risks assessment with great understanding and commitment to ensure compliance to heavily reduce the chances of data exposure to security threats and also respond to the risk effectively, in the unlikely happening of security threat.
We respect individual privacy and value the confidence of our employees, clients, business partners, and others. We adhere to the GDPR to handle personal data. The following process describes in general our policy and practices related to data security and in particular our compliance with GDPR requirements.
Data we collect
E-Merge tech collects personal information of an individual such as name, email address, physical address, contact number, or identifiers issued by government such National Provider Identifier (NPI). We collects/process information on individuals who have made their information publicly available for anyone to contact them for business or professional purposes, specifically in the field of medical, health, pharmaceutical, business, technology, science, industries or any other knowledge intensive domains.
We collect and use the data in the following ways:
We collect personal information from publicly available sources in order to generate insights about the professionals. This personal information about professionals will then be used by our clients to build relationship with the professionals for furtherance of knowledge, accelerating research, and collaborating for business promotions.
Our clients, subject to the terms of our service and in accordance with applicable laws, may provide us with basic information of individuals for processing for their service. We use this basic information to identify and profile health care and other professional networks. Our clients may also require us to collect information of individuals as per the criteria they define and then create profiles. Unless otherwise agreed, we will not hold ownership or control of this information.
We also collect/process relevant business contact information for B2B marketing purpose based on lawful and legitimate interest. We collect very limited or basic information such as name, work job role of the person, business email address, business telephone number and location information such as city/country in the context of our business that is necessary for meeting our business purpose.
Disclosure of personal data
Data integrity and security
We will use personal information only in the ways that are compatible with the purposes for which it was collected. We will take reasonable steps to ensure that the personal information is relevant to its intended use, accurate, complete and current.
We will take reasonable precautions to protect personal information in its possession from loss, misuse, and unauthorized access, disclosure, alteration, and destruction.
We will conduct internal compliance audits of its relevant privacy practices to verify adherence to this policy. Any employee that we found in violation of this policy will be subject to disciplinary action.
E-Merge tech acknowledges that individuals, whose information has been processed by us, have their right to access their personal information.
In general, we act as a service provider to our clients. We collect information under the direction of our clients and generally have no direct relationships with the individuals whose personal information we process.
If you believe that you are a data subject whose information we process on behalf of one of our clients, you may contact the corresponding client that you interact with directly. An individual who seeks access, or who seeks to correct, modify or delete personal information should direct queries to our client. If our client requests us to assist to correct, modify or delete personal information, we will respond to such requests within 30 business days.
Individuals who are entitled under the GDPR wishes to clarify if we process their personal information may contact at email@example.com
Privacy protections for children
E-Merge tech never collects or maintains personal information of minors under the age of 13 and no part of our site is structured to attract any minor.
Marketing purpose and legitimate interest
We also collects/process business contact information that is publicly available for B2B marketing purpose based on lawful and legitimate interest.
We ensure all data that we process is focused on specific, relevant target markets.
We ensure marketing is well targeted and directly relevant to the person that we are communicating.
The personal data we collect and use for marketing purposes relates to individual employees of our clients and other companies with which we have an existing business relationship.
We may also obtain contact information from public sources, including social media websites, to make an initial contact with a relevant individual at a client or any other company with a potential to become our client.
We would like to send relevant and insightful marketing emails to our existing clients or potential clients about our services which may be of interest to them. These marketing emails can be unsubscribed by them at any time by selecting opt-out option
We may do a direct voice call to our potential clients about our services which may be of interest to them. These marketing voice calls can be opt-out by them if they are not interested.
Individual have a right at any time to stop receiving marketing communications. If they no longer wish to be contacted for marketing purposes, they can do an opt-out.
We will not share the personal information outside E-Merge tech unless the data subject explicitly consented.
We have developed a robust data management (CRM) system in order to track engagement and honour ‘opt-outs’
If a data subject has opted out, we will retain minimum personal data to note that they have opted out from being contacted again.
We always ensure that our database is always up to date and relevant with ongoing maintenance processes and data research.
Individuals whose data we collect for our B2B marketing purpose are entitled to obtain a copy of their personal data, the purposes of such processing and the individual’s request will be responded within 30 days of receipt of the request.
Such Individual have right to correct / update or ask to delete their personal information available with us or to choose (opt-out) if their personal information is used for a purpose other than the purpose for which it was originally collected or subsequently authorized by the individual.