Our commitment to the protection of personal information
Scope of the policy
This policy deals with personal information about identifiable individuals and does not apply to information collected, used or disclosed in relation to corporations or business entities.
This policy does not impose limits on the collection, use or disclosure of the following information:
- your information on business contacts;
- certain information available to the public.
MD Analytics Inc. (“MDA”) is responsible for the personal information that is under its control. MDA has assigned a privacy officer the responsibility to ensure that MDA complies with this policy.
When collecting personal information, MDA will indicate the reasons for doing so and will answer any questions regarding the collection of this information.
Most of your personal information will be collected from you through surveys and other documents that you complete and through discussions with our representatives. Some of your information may be collected from other sources such as third party recruiters.
We share responses to aggregated surveys to our clients; however, we do not disclose to them any personal information that would identify you without our prior consent (except where we are required or permitted by law).
Your personal information and survey responses may be shared with our affiliates, legal counsel, service providers, regulatory and governance bodies (such as medical and surgical orders), federal departments and agencies, and ‘to other third parties for the purposes described below.
MDA and its representatives may collect, use and disclose your personal information for the following purposes:
- verify your identity and confirm your credentials to determine your eligibility to participate in the surveys;
- contact you to ask you to participate in the surveys;
- specify your responses to surveys;
- determine your eligibility to receive awards;
- provide you with the required products and services and administer them;
- protect MDA, yourself and others from fraud and errors;
- manage or transfer the assets or liabilities of MDA, such as in the case of an acquisition or a merger, the provision of a guarantee to obtain credit facilities or a change of supplier ;
- comply with the legal requirements and act in accordance with the legal authorizations.
If we need to use your personal information for other purposes, we will ask for your consent, unless the use of this information is authorized or required by law.
We will obtain your consent to collect, use or disclose personal information, except where, by law, we have the authorization or obligation to do so without such consent. For example, we may collect, use or disclose your personal information without your consent or consent when:
- personal information is available to the public in accordance with legislative or regulatory provisions;
- we get legal advice;
- we reasonably expect consent to compromise an investigation or proceeding.
Other exceptions may apply.
Your consent may be express, implied or expressed through an authorized representative, such as a lawyer, agent or broker. Your consent may be given verbally, in writing, by e-mail, by your inaction (for example, when we advise you that we want to collect, use or disclose your personal information for various purposes and you do not object), or in any other way.
You may revoke your consent at any time (subject to legal, contractual or other restrictions) if you give us reasonable notice to that effect. Upon receipt of this revocation of consent, we will inform you of the likely consequences of the revocation, which may include our inability to provide you with certain services or to maintain our relationship with you.
Limitations on the collection of personal information
We will not collect information at random and will only collect information that is reasonable and necessary to provide a product or service, directly or indirectly, and that is reasonable and necessary for the reasons you have given. We may also collect personal information that is permitted by law.
Limitations on the collection of personal information
Your personal information will only be used or disclosed for the reasons you have consented to unless we are required or permitted by law.
We will retain the personal information we use to make a decision about you for at least one year after using the information.
We will destroy, delete or anonymous documents containing the information, as well as any other document containing personal information, as soon as it is reasonable to assume (a) that there is no longer any reason to keep such documents and (b) their retention is no longer necessary for legal purposes or for business purposes.
We will exercise vigilance in the destruction of personal information to prevent unauthorized access to these documents.
MDA will do everything reasonable to ensure that the personal information it uses or discloses is accurate and complete. In most cases, we will need to rely on you to ensure that certain information, such as your street address, e-mail address or telephone number, is up to date, complete and accurate.
If you can demonstrate that the personal information that MDA has is inaccurate or incomplete, MDA will make the required changes. If so, we will send the amended information to the third parties to whom the information will have been disclosed.
If a challenge to the accuracy of your personal information is not resolved to your satisfaction, MDA will note in your personal information record, which is under our control, that a correction has been requested but that it does not was not made.
Protection of personal information
MDA protects personal information in its custody or control by taking reasonable security measures to guard against unauthorized access, collection, use, disclosure, copying, alteration, destruction of information personal or other similar risks.
MDA will take reasonable steps, contractually or by other reasonable means, to ensure that a comparable level of protection of personal information is put in place by its suppliers and agents who help to provide you with the products and services. Some of these protective measures are:
- physical measurements such as locked filing cabinets;
- organizational measures such as restricted access to files and databases where appropriate;
- electronic measures such as encryption, passwords and firewalls.
We will take reasonable steps, contractually or by other reasonable means, to ensure that a comparable level of privacy is put in place by suppliers and others to whom we request assistance in providing to you and to us, products and services.
Please note that confidentiality and security are not assured when information is transmitted via email or other wireless communication.
Access to your information
You have the right to access the personal information we hold about you.
Upon written request and verification of your identity, we will provide you with other personal information that we hold about you, as well as information about how your information is used and a description of the individuals or organizations to whom it has been disclosed.
The information will be available within 30 days, otherwise we will notify you in writing that we need additional time to respond to your request.
In some cases, we may be unable to give you access to certain personal information. For example, disclosure of this information may reveal personal information about someone else, that the personal information is protected by solicitor-client privilege, that the information was collected for the purpose of investigation, that the disclosure of the information has the effect of disclosing confidential information of a commercial nature and ultimately has the effect of adversely affecting our competitive position. It is also possible that the law prevents us from granting you access to certain personal information.
If a request to access is denied in whole or in part, MDA will notify you in writing, explain the reasons for the refusal and suggest other steps to take.
If you request it from us, we will provide you with information on our procedures for resolving complaints.
Any inquiries, complaints or questions about this policy or our compliance with privacy legislation should be directed to our Privacy Officer in writing as follows:
Name: Tyler Hassman