Privacy Policy

euPlexus Inc. Privacy Notice & Policy

 

Effective Date: 11.29.2023  

 

Last Revised: 11.29.2023

 

Purpose of the Policy

euPlexus Inc. (“euPlexus”) is committed to respecting and protecting your privacy and your personal information. This document explains how euPlexus collects, uses, and protects the personal data of individuals who use our services, who participate in euPlexus market research, or who visit our website. We ask that you read this document carefully, as it provides information about your rights, as well as resources that you can use if you have any questions or concerns about your data or how we use it. We provide direct contact information later in this document, so that you can send us any questions that are not fully addressed by this document.

Please note that euPlexus may update our policies regarding personal data collection and use from time to time considering changes in the law or regulatory requirements. Those changes will be reflected in revised versions of this document, which will be available on our website or upon direct request. Where it is appropriate to do so, we may also communicate updates to our policy via email for those individuals who consent to direct communication.

 

What is euPlexus?

We are an independent consultancy that conducts market research, marketing consulting and custom data analysis for manufacturing organizations in the life sciences. More information about our professional experience and activity can be found on our website: www.euplexus.com.

 

Defining Personal Information

Personal information is any information that can be used to identify you. Personal information may include the following types of information:

Your first and last name Social security number Your mailing address Your phone number Your email address or username Your financial information

Information about your health Usage data relating to your activities on a website or app Your IP (internet protocol) address, browser information and information identifying electronic devices you may use to access a website Professional identifiers for healthcare providers (ME number or NPI number)

Because the specific definition of personal information can vary by country and by state, we include the above examples for purposes of illustration. Only the minimum amount of personal information would typically be captured and some of the examples listed above are not typically collected (such as social security numbers). 

 

Our Collection & Use of Personal Data

Our policies for personal data collection and use are consistent with the code-of-conduct guidelines issued by the Insights Association and EPHMRA. For additional information about how these professional organizations address the protection and use of personal data, see the links below.

• Insights Association Guidelines: https://www.insightsassociation.org/Resources/Code-of-Standards
• EPHMRA Guidelines: https://www.ephmra.org/code-conduct-aer

How We Use Your Personal Information

euPlexus only collects personal information from you with your direct consent, or in circumstances where collection of personal data is permitted by law.

• We collect personal information as part of our conducting of market research activities, such as online survey research, one-on-one interviews, web-based communities, and group-based interviews. For these activities, personal information is collected with the express consent of the research participant. The research findings are always presented in an aggregated way (i.e., the data of many participants are pooled together so that individuals are anonymized).
• In some instances, we receive personal information from manufacturing organizations to whom you have already granted consent to use your data. In nearly all such cases, your information comes to us in the form of lists, which provide contact information for many individuals. In these cases, euPlexus uses your data under an agreement established with the manufacturing organization who retains control of the data. In such cases, your anonymity is maintained throughout the process and your participation is not revealed to the manufacturing organization. . 
• Specific data may come to us directly when provided by individuals who contact us to learn more about our services, or to correspond with us for other business reasons (e.g., to provide feedback or to update previously collected data). This may happen via interaction with our website, via phone, post, electronic mail, or other means of direct communication. In some cases, we collect this type of personal data from clients or potential clients to market our services.
• We collect personal data from individuals who visit our website. This type of personal information is referred to as user generated data. Additional information about this type of data collection is presented later in this document.
• In cases where sensitive personal information is collected, including health information, financial information, or information about sensitive or highly personal topics, euPlexus will only ever use or disclose your information based upon your express consent.
• Finally, we may receive personal information from third party analytics providers, such as Google Analytics.

 

Appropriate Use of Personal Information

Any use of personal information must be lawful and justified by a legitimate business need. Situations that meet this standard include the following:

• You provide euPlexus with consent to use your personal information for specific purposes (e.g., for marketing research)
• We need to use your personal information in order to comply with the law or with specific government regulations
• We need to use your personal information in order to comply with the requirements of a legal contract, as is the case with adverse event reporting and certain legally required disclosures of research participation on the part of physicians
• The use of your personal information supports a legitimate business need, such as promotion and marketing of our services, and is done in a manner that respects your privacy

euPlexus only uses your personal information for purposes linked to the reasons for its collection. For example, we may use your personal information to:

• Carry out our obligations arising from contracts for the completion of market research or other work for our clients
• Alert people to the fact that we are actively recruiting for a research study
• Manage the payment of research participation fees
• Provide individuals with information about our services that they have requested, or provide them with information we think may be of interest to them if they have consented to be contacted for such purposes
• Notify individuals about changes to this policy
• Update our records of your personal information
• Report adverse events or product complaints on behalf of our clients

We will not transfer your personal information to any third party without your consent, except in cases permitted or required by law. In situations where we are legally able or required to transfer your personal data, the third-party recipients would be limited to organizations and individuals who are directly associated with the specific lawful scenario described above, which may include: 

• Regulators or government agencies
• Third party IT support companies responsible for the integrity of our digital security and data protection systems
• Professionals who may be associated with euPlexus for reasons related to compliance, auditing, or organizational best practices
• Organizations who may assist us in the development and testing of our website
• Third party suppliers who may assist us in providing specific services to clients to fulfill our contractual obligations

When we need to share personal data with a third party, we will do so only to the extent necessary. All third parties are required to respect the security and privacy of personal data, and to treat it in accordance with applicable laws and regulations. euPlexus does not allow third parties to use personal data for their own purposes, and such parties will be restricted such that their use of personal information for the reasons for which it was transferred.

euPlexus will not share, rent or sell your personal data to any third party for the purposes of marketing.

 

Consent

At the time of data collection, we explain the reasons for the data collection as well as the nature of the information and the specific ways in which it will be used. Your consent is always required for us to collect your personal information, except in instances where automated data collection is allowable by law. Consent to use personal information may be provided orally, in writing or electronically. For example, oral consent may be granted during a market research interview. Electronic consent may be granted via email or through our website. Your data will be retained only for periods of time required by our contractual obligations to clients or requirements by law.

There may be instances where euPlexus needs to use individual personal information without consent to fulfill legal or regulatory obligations or meet legitimate business needs. Examples include external audits of our security practices and data protection infrastructure, the communication of new services and offerings and testing of our website’s performance.

 

Opting Out

You may choose to opt out of ongoing communications about market research by unsubscribing to our email database. Additionally, you may choose to opt out of participating in a market research study at any time. Clients may opt out of receiving automated marketing communications by unsubscribing or by sending an email to privacy@euplexus.com.  

 

Data Collection from Children

The safety and privacy of children is a central priory for euPlexus. We do not permit participation in research by individuals under the age of 18 without the express consent of a parent or guardian. euPlexus complies with the Children’s Online Privacy Protection Act of 1998, and we do not allow people under 13 years of age to participate in our research unless special steps are taken to disclose the content and purpose of the research to the adult providing consent.

 

Third Party Compliance

We ensure that all subcontractors and individuals whom we employ are bound by this policy.

 

Security of Your Data

We have appropriate security measures in place to prevent your personal information from being stolen, lost, accessed, deleted, altered, or otherwise used for unauthorized reasons. Access to your personal information is limited to euPlexus employees, subcontractors and legally appropriate third parties who need access to the data for business reasons (see scenarios explained above).

Despite appropriate efforts and processes to ensure information security, the risk of unauthorized access to your personal information can never be eliminated completely. In cases where a breach of data security is suspected, we will notify affected parties, suspected affected parties and appropriate regulatory authorities of the breach in a timely manner.

 

Accuracy of Your Personal Information

In cases where we have obtained your consent to acquire and use your personal information, you have the right to review the data for accuracy at any time. To receive an up-to-date copy of your data from euPlexus, you may send a direct email request to the contact listed below. You may also submit a data request via the “Contact Us” tab on our website (www.euplexus.com).

We make all reasonable efforts to ensure that personal information is accurate. However, if you discover that some aspect of your personal data is inaccurate, you may request a revision to it. To do this, please submit a request via our privacy email address or to the mailing address provided later in this document.

We will normally be able to respond to your questions and requests within 30 days. If we cannot, we will alert you to the delay and provide an estimate of the timing for our reply.

 

Data Collection Through Our Website

When you visit www.euplexus.com, there are several areas of the site where you can voluntarily provide information that may be used to identify you. This includes your name, email address, phone number, and organizational affiliation. Such information is used only for the specific business-appropriate purposes and scenarios described previously in this document. Additionally, the website automatically collects information that your browser transmits whenever you visit a website. This type of data is referred to as Log Data and includes details such as your computer’s IP (internet protocol) address, the type of browser, the pages of www.euplexus.com that you visit, and the date and time spent on those pages.

Cookies are small files that are sent to your browser from web sites and stored on your computer hard drive. Cookies typically include a unique identifier. You may instruct your browser to refuse all cookies or to alert you when a cookie is being sent. Note that in cases where the cookie is not accepted, some aspects of our web site functionality may be diminished, and some content may not be accessible.

 

A Note to International users

Our website is hosted in the United States, and data collected through the site is subject to the laws and regulations of the United States. Individuals who access the website from other countries with specific laws and regulations on the use, protection and collection of personal information that differ from those of the United States should be aware that, through your ongoing use of the website, you are automatically consent to the transfer of your data to the United States. Please be aware that the laws and regulations governing your personal information may be different from or less stringent than those in your country.

 

Contact Information

Should you have any questions or concerns, or if you would like to review or update your personal information, you may reach us by email, or using the direct mailing address below.

privacy@euplexus.com

euPlexus

Attn:  Compliance Officer

5 Woodbury Lane

Nantucket, MA 02554