Home » PatientGO Privacy Policy Japanese

PatientGO Privacy Policy Japanese

PatientGO プライバシーポリシー

As part of the clinical trial, Illingworth Research Group Limited has been asked by the study sponsor or a third party appointed by the study sponsor to assist with the travel, lodging and/or expenses of participating in the clinical trial. To do so, we need to collect, store and share your personal information, and we are a "data processor". This means that we will retain and use your personal information.

 

This policy sets out how we collect and use your personal information to assist you in using the Travel, Accommodation, and Expense Reimbursement Services (also known as PatientGO) in accordance with the EU General Data Protection Regulation (GDPR) and data protection laws. This policy applies only to participants who use the Service. The personal information you provide to us when you use the App is separate and independent of the clinical trial data outlined in your consent document with the sponsor or a third party nominated by you.

 

Please read the following carefully to understand our practices regarding your personal information, how we use your personal information in the App, and how you use the Services.

 

Consent to the installation of this application

Under data protection laws, we are required to provide you with certain information about who we are, how we process your personal information, for what purposes, and your rights in relation to your personal information.

By installing the App, you consent to our processing of your personal information and special categories of data (e.g. name, contact details, passport details, financial information, medical information, etc.) as described in this Policy.

 

How can you withdraw your consent?

You can change your mind and withdraw your consent at any time by contacting us (PatientGO@illingworthresearch.com). However, this does not affect the lawfulness of any processing that took place before you withdrew your consent. Please note that withdrawing your consent may affect our ability to fulfil any requests you make within the App, such as reimbursement of expenses.

 

preface

This Policy, together with our End User License Agreement (EULA) set forth in https://illingworthresearch.com/patientgo-terms and any additional terms and conditions incorporated by reference into the EULA, and our Terms of Use, applies to:

  • PatientGO Version 1 mobile application software (app) available on both Google Play and Apple Store. If you download or stream a copy of the App to your mobile phone or mobile device.
  • PatientGO's services accessible through apps (services) available on the App Site or on our other sites (Service Sites). This Policy sets out the basis on which we process personal information that we collect from you (including special categories of data) or that you provide to us.
  • The App is not intended for use by children ("Children" refers to persons under the age of 18), and the App is available and the Service is provided only if the Clinical Trial Participant is a child who wishes to use the App and the Service, and the parent or guardian of the Child is a user of the App. Please read the following carefully to understand our practices with respect to your personal information (including special categories of information) and how we handle your personal information.

 

Important Information and Our Overview

Illingworth Research Group Limited is the controller of your personal information and is responsible for your personal information (collectively referred to in this Policy as "Illingworth", "we", "us", or "our").

If you have any questions about this Privacy Policy, please contact us using the contact information below.

Contact Details

The details of our company are as follows.

  • 法人の正式名称:Illingworth Research Group Limited
  • Eメールアドレス:PatientGO@illingworthresearch.com
  • Mail address: 1 Pinehurst Road, Farnborough GU14 7BF

You have the right to lodge a complaint at any time with the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues, or any other competent supervisory authority in an EU Member State if the App is downloaded outside the UK.

 

Changes to the Privacy Policy and your obligation to notify us of any changes

We regularly review our Privacy Policy. This version was last updated on June 23, 2020.

We reserve the right to update this Privacy Policy at any time without prior notice. We encourage you to periodically check our Privacy Policy for any changes.

It is important that the personal information and special categories of information we hold about you are accurate and up-to-date. Please let us know if there are any changes in your relationship with us.

 

Information We Collect About You

We may collect, use, store, and transfer different types of personal information about you, including:

  • Identity Information.
  • Contact information.
  • Financial Information.
  • Transaction information.
  • Device information.
  • Content information.
  • Profile information.
  • Usage information.
  • Special Category Information.

 

Special Category Information             

We collect special categories of personal information about you (which may include details about your race or ethnicity, religious or philosophical beliefs, and information about your health). We will only collect and process special categories of information if it is specifically necessary to fulfill any request you make within the App, such as arranging a hospital visit or accommodation.

 

How do we collect personal information?

We collect and process the following information about you:

  • Information you provide to us. This information (including your identity, contact information, and financial information) is information that you consent to provide to us about you by filling out forms on the App and Service Sites ("Our Sites") or by communicating with us (e.g., via email or chat).

This includes information that you provide when you register to use the App Site, download or register for an App, subscribe to our Services, or search for an App or Service, and to use the App to facilitate travel and lodging requests, reimburse expenses, or report problems with the App, our Services, or any of our Sites. This includes information that you provide. If you contact us, we will keep a record of that communication.

 

  • お客様およびお客様のデバイスについて当社が収集する情報。お客様が当社サイトのいずれかを訪問したり、当社アプリのいずれかを使用したりするたびに、当社は、デバイス情報、コンテンツ情報、利用状況に関する情報を含む個人情報を自動的に収集します。当社は、クッキーやその他の類似技術を使用してこのデータを収集します。

 

  • 第三者および一般に入手可能な情報源を含む他の情報源から当社が受け取る情報。当社は、以下に示すとおり、さまざまな第三者からお客様の個人情報を受け取ります:
  • 治験依頼者または、その指名した第三者(EU域内 または域外を拠点とする可能性がある)からの身元情報および連絡先情報。

 

クッキーについて

当社は、お客様を本アプリ、アプリサイト、配信プラットフォーム(App Store)またはサービスサイトの他のユーザーと区別し、お客様の好みを記憶するために、クッキーおよび/またはその他の追跡技術を使用します。これにより、お客様が本アプリを使用したり、当社サイトを閲覧したりする際にお客様に優れた体験を提供することができ、また、当社が本アプリおよび当社サイトを改善することができます。当社が使用するクッキー、当社がそれを使用する目的、および当社のクッキーの使用に関するお客様の選択方法の詳細については、Eメール[PatientGO@illingworthresearch.com]似てお問合せください

 

お客様の個人情報および特別カテゴリーの情報の使用方法

当社は、法律で認められている場合にのみ、お客様の個人情報を使用します。最も一般的な以下のような状況で、お客様の個人情報を使用します:

  • 処理前にお客様の同意がある場合。
  • 当社がお客様と締結しようとしている、または締結した契約を履行する必要がある場合。
  • 当社の正当な利益(または第三者の利益)のために必要であり、お客様の利益および基本的権利がこれらの利益に優先しない場合。
  • 法的または規制上の義務を遵守する必要がある場合。

お客様の個人情報および特別カテゴリーの情報の使用目的

目的/活動 データの種類 処理の合法的根拠
 

本アプリをインストールし、

お客様を本アプリの新規ユーザー

として登録するため

 身元情報

連絡先情報

財務情報

デバイス情報

 お客様の同意

お客様との契約の履行

当社の正当な利益のために必要であること(お客様への経費の支払いのため)
アプリ内での依頼を処理し、

通院/宿泊の依頼の管理や払い戻

しの依頼を含むサービスを提供するため。

 身元情報

連絡先情報

財務情報

取引情報

デバイス情報

位置情報

特別カテゴリーの情報

 お客様の同意

お客様との契約の履行

当社の正当な利益のために必要であること(お客様への経費の支払いのため)
本アプリまたは本サービスの変更の通知を含め、お客様との関係を管理するため 身元情報

連絡先情報

財務情報

プロファイル情報

 お客様の同意

お客様との契約の履行

当社の正当な利益のために必要であること(記録を最新に保ち、お客様による当社サービスの利用状況を分析するため)

法的義務を遵守する必要がある(当社の契約条件の変更をお客様に通知するため)
トラブルシューティング、データ分析、システムテストを含む、当社の事業および本アプリの管理と保護のため 身元情報

連絡先情報

デバイス情報

 当社の正当な利益のために必要であること(当社の事業運営、管理およびITサービスの提供、ネットワークセキュリティのため)

Disclosure of your personal information

If you have consented to us providing you with your personal information and special categories of information, we will also ask for your consent to share your personal information with the third parties set out below for the purposes set out in the table below [for what we use your personal information].

  • Internal third parties listed in the glossary.
  • External third parties as described in the glossary.
  • Third parties with whom we may elect to sell, transfer or consolidate any portion of our business or our assets. Alternatively, we may attempt to acquire or merge with other businesses of those third parties. In the event of a change in our business, the new owner will be able to use your personal information and special categories of information in the same manner as set out in this Privacy Policy.

 

International Transfers

Many of our external third parties are based outside the EEA, and their processing of your personal information involves the transfer of data outside the EEA.

When we transfer your personal information out of the EEA, we ensure the same level of protection as the EEA by ensuring that at least one of the following safeguards is in place:

  • We will only transfer your personal information to countries that have been deemed by the European Commission to provide an adequate level of protection for your personal information. For more information, see European Commission: Adequacy of protection of personal data in non-EU countries.
  • When we use certain service providers, we may use specific contracts approved by the European Commission that provide the same protection for personal information as in Europe. For more information, please refer to the European Commission: Model Contract for the Transfer of Personal Data to Third Countries.
  • If we use a provider based in the United States, we may transfer data to that provider if they are part of the Privacy Shield, which requires them to provide similar protections for personal information shared between Europe and the United States. For more information, please refer to the European Commission: EU-US Privacy Shield.

If you would like more information about the specific mechanisms we use to transfer your personal information outside the EEA, please contact us.

 

[Data Security]

All information provided by you is stored on our secure servers. Information "at rest" on our secure servers is protected using industry-standard data encryption. If we provide you with a password to access certain parts of our Site (or if you choose to do so), you are responsible for maintaining the confidentiality of this password. Do not share your password with anyone.

After we receive your information, we use strict procedures and security features to prevent your personal information from being accidentally lost, used, or accessed in an unauthorized way. As part of the Service, data transmitted between you (the End User) and Illingworth is protected using industry-standard encryption methods. Data stored on our servers is protected with encryption at rest and state-of-the-art firewalls to prevent unauthorized access.

No personally identifiable data is stored on the end-user's device. To facilitate login, two encrypted tokens are stored on the end-user's device.

We have procedures in place to deal with suspected personal information breaches and will notify you and applicable regulators if legally required to do so.

 

Data Retention

By law, we must retain basic information about you (including contact, identity, financial and transaction information) for 7 years after the conclusion of the clinical trial for financial audit purposes.

In some circumstances, you may ask us to delete your data. For more information, see "Your Legal Rights" below.

In some circumstances, we anonymize your personal information for research or statistical purposes (so that it can no longer be associated with you). In that case, we may use this information indefinitely without notifying you.

 

What are your legal rights?

Under certain circumstances, you have the following rights under data protection laws relating to your personal information:

  • Request access to your personal information (commonly referred to as a "Data Subject Access Request")
  • Request for correction of your personal information held by us
  • Request to delete your personal information
  • Object to the processing of your personal information on this basis where we are relying on legitimate interests (or those of a third party) and we believe that in your particular situation it will affect your fundamental rights and freedoms.
  • Request restriction of processing of your personal information
  • Request the transfer of personal information to you or to a third party
  • If we rely on your consent to process your personal information, withdraw your consent at any time

 

You may exercise these rights at any time by contacting us at 1 Pinehurst Road, Farnborough GU14 7BF OR PatientGO@illingworthresearch.com.

 

glossary

 

Lawful Basis

Consent means the processing of personal information for which you have expressed your consent by statement or express opt-in for processing for a specific purpose. Consent is only valid if it is freely given, specific, and fully informed and clearly stated that you wish to do so. You can withdraw your consent at any time by contacting us.

EEA means the European Economic Area.

Legitimate interest means our interest in conducting and managing our business in order to provide you with the best service/product and to be able to provide you with the best and safest experience. Before processing your personal information for our legitimate interests, we will ensure that we consider and balance the potential impact on you (both positive and negative) and your rights. We will not use your personal information for activities where our interests override their impact on you (except with your consent or as required or permitted by law). You can get more information about how we evaluate our legitimate interest in the potential impact on you in relation to certain activities by contacting us.

Performance of a contract means the processing of your data if it is necessary for the performance of a contract to which you are a party or to take steps at your request prior to entering into such a contract.

Compliance with a legal obligation means processing your personal information where it is necessary to comply with a legal obligation to which we are subject.

 

Third

 

Internal Third Parties

Other companies belonging to the Illingworth Group act as joint controllers or processors and are based in Spain, France, Italy, Australia and the United States, providing IT and systems management services and providing guidance reporting.

 

External Third Parties

 

It is a service provider acting as a processor and provides IT and systems administration services.

Professional advisers acting as processors or joint controllers (e.g. consultants, lawyers, bankers, auditors, insurance companies, etc., providing banking, legal, insurance and accounting services).

Service providers acting as processors who provide you with visits, lodging, and transportation as part of the Services.

UK HM Revenue & Customs, regulators and other authorities acting as UK-based processors or joint controllers who are required to report processing activities under certain circumstances.

 

What are your legal rights?

You have the right to:

  • Requests for access to your personal information (commonly referred to as "Data Subject Access Requests"). This allows you to receive a copy of the personal information we hold about you and to ensure that we are lawfully processing it.
  • Request correction of the personal information we hold about you. This allows us to correct any incomplete or inaccurate data we hold, but we may need to verify the accuracy of any new data you have provided to us.
  • 個人情報の抹消要求。これにより、当社が個人情報の処理を継続する正当な理由がない場合には、当社に個人情報の消去または削除を求めることができます。また、お客様が処理に異議を唱える権利(下記参照)を正常に行使した場合、当社がお客様の情報を違法に処理した可能性がある場合、または現地の法律を遵守するためにお客様の個人情報を消去する必要がある場合にも、お客様は、当社に個人情報の削除または削除を求める権利を有しています。ただし、特定の法律上の理由により、お客様からの抹消要求に応じられない場合があり、その場合は、お客様の要求時に通知されます。
  • 当社が正当な利益(または第三者の利益)に依拠しているお客様の個人情報の処理の対象であり、お客様の特定の状況について、お客様の基本的な権利および自由に影響を及ぼすと感じ、異議を唱えたい場合には、お客様の個人情報の処理に異議を唱えることがあります。場合によっては、当社がお客様の権利と自由に優先する、お客様の情報を処理するためのやむを得ない正当な理由があることを証明することができます。
  • お客様の個人情報の処理の制限要求。これにより、以下の場合に個人情報の処理を一時停止するように求めることができます。
    • データの正確性を確認することを希望する場合
    • 当社によるデータの使用がづ製であるか、お客様がデータ消去を希望しない場合
    • お客様が法的要求を確立、行使、または弁護するために必要であるため、当社がデータを必要としなくなった場合でも、お客様がデータを保持する必要がある場合。または
    • お客様が当社によるお客様のデータの使用に異議を唱えたが、当社がそれを使用する正当な根拠を無効にしているかどうかを確認する必要がある場合。
  • お客様または第三者への個人情報の転送要求。当社は、お客様またはお客様が選択した第三者に対し、お客様の個人情報を、構造化された、一般的に使用された、機械で読み取り可能なフォーマットで提供します。この権利は、お客様が当初、使用に対し同意を提供した自動化された情報、または当社がお客様との契約を履行するために情報を使用した場合にのみ適用されることにご注意ください。
  • 当社がお客様の個人情報を処理するために同意に依拠している場合、いつでも同意を撤回することができます。ただし、これはお客様が同意を撤回する前に行われた処理の合法性には影響しません。お客様が同意を撤回された場合、当社はお客様に特定の製品やサービスを提供できない場合があります。その場合は、お客様が同意を撤回した時点でお知らせいたします。

 

個人情報のカテゴリーの説明

  • 身元情報:姓、名、旧姓、ユーザー名または類似の識別子、婚姻状況、肩書、生年月日、性別、パスポート情報(番号、名前、発行国、有効期限を含む)。
  • 連絡先情報:自宅住所、メールアドレス、電話番号、緊急連絡先の詳細。
  • 財務情報:銀行口座および支払カードの詳細。
  • 取引情報:お客様への支払いに関する詳細、アプリ内リクエストの詳細など。
  • デバイス情報:お客様が使用しているモバイルデバイスの種類、固有のデバイス識別子(デバイスのIMEI番号、デバイスのワイヤレスネットワークインターフェースのMACアドレス、またはデバイスが使用する携帯電話番号など)、モバイルネットワーク情報、モバイルオペレーティングシステム、使用するモバイルブラウザの種類、およびタイムゾーン設定情報が含まれます。
  • コンテンツ情報:写真、ビデオ、その他のデジタルコンテンツを含む、お客様のデバイスに保存されている情報が含まれます。
  • プロファイル情報:ユーザー名とパスワード、アプリ内リクエストの履歴、お客様の好みやフィードバックが含まれます。
  • 使用状況に関する情報:当社アプリの利用状況、または当社サイトへのアクセス状況の詳細を含みます。これには、当社の請求目的に必要かどうかにかかわらず、トラフィックデータおよびその他の通信データ、ならびにお客様がアクセスするリソースが含まれますが、これらに限定されません。

 

特別カテゴリーの情報

これには、お客様がアプリ内で行ったリクエスト(交通機関や宿泊施設のリクエストなど)に関連して当社に提供した情報が含まれます。また、お客様の人種または民族、宗教的または哲学的信念、および健康に関する情報についての詳細が含まれる場合があります。