Regarding the use of guardian angel devices sold by Aulisa medical USA, inc.
We at Aulisa value keeping your personal information confidential and using it solely in the context of our mission to provide continuous monitoring of vitals in order to aid patients, healthcare providers (“providers”), and caregivers make informed decisions about your care.
The personal information we collect and transmit may include healthcare information, including medical information. Therefore, our privacy practices are intended to comply with the health insurance portability and accountability act (“HIPPA”). We will maintain the privacy of your health information as required by HIPPA and the regulations promulgated under that act. For additional information related to your healthcare information, please contact [email protected].
Please read the following carefully to understand our views and practices regarding your personal information and how we will treat it. For the purposes of applicable data protection laws including the European economic area data protection law (the “data protection law”):
Non-Provider Users: The data controllers are the Provider and Taiwan Aulisa Medical Device Technologies, Inc., 10F., No.3-2, Yuan Qu St., Nangang Dist., Taipei City 11503, Taiwan.
Provider Users: The data controller is Taiwan Aulisa Medical Device Technologies, Inc, 10F., No.3-2, Yuan Qu St., Nangang Dist., Taipei City 11503, Taiwan.
Data Protection Officer: Paul Liu
Access to and use of the Devices by a Provider who is an Aulisa customer (a “Customer”) and such Customer’s authorized users is subject to and governed by the agreement between Aulisa and the applicable Customer executed by authorized representatives of each party (the “Customer Agreement”). Aulisa may collect, use and disclose information from a Customer and such Customer’s authorized users as set forth in the Customer Agreement. If you would like more information about the Devices or becoming a Customer, please contact us at [email protected].
Personal Data that You Provide Through the Devices
We collect Personal Information (e.g. demographic information) from you when you voluntarily provide such information to us, use the Devices (including without limitation, the software featured on the Devices and/or platforms), contact us with inquiries, or use certain features of the Devices. We use this information to allow the Devices to provide the information to you and/or your Provider.
In addition to demographic information, if you are a Patient, we collect Health Data through the Devices. Such Health Data may include information about your vital signs, health conditions, age, gender, weight, and height. We collect this information to communicate information to your healthcare provider.
Primarily, the collection of your Personal Information assists us in providing a means to track your vital signs in order to better enable you to communicate information with caregivers and healthcare providers and be an active participant with those providers in monitoring your care, tailoring interventions, and assessing treatment outcomes. We may also use your Personal Information to (1) store data; (2) comply with the law; (3) respond to requests from public and government authorities; (4) to enforce our terms and conditions; (5) manage and improve our operations and applications; (6) provide additional functionality; (7) protect our rights, privacy, safety or property, and/or that of yours or others; and (8) allow us to pursue available remedies or limit the damages we may sustain.
Failure to Provide Information
Providing your Personal Information is not statutorily or contractually mandated. If you choose not to provide this information, we cannot monitor your vital signs, and you will be unable to use our Devices.
Aggregated Personal Data: In an ongoing eﬀort to better understand and serve our customers, other users of the Devices, and communities of patients with similar health conditions, Aulisa may conduct research on its user demographics and behavior based on the Personal Information we collect from you and the other information provided to us. This research may be compiled and analyzed on an aggregate basis, and Aulisa may share this research and related information in aggregated, de-identiﬁed and/or anonymized format with its aﬃliates, agents and other healthcare research and services entities, including without limitation insurance and pharmaceutical companies. For the avoidance of doubt, this aggregate information does not identify you personally. Aulisa may also disclose aggregated, de-identiﬁed and/or anonymized information in order to describe our business and the Devices to current and prospective business partners and Customers, and to other third parties for other lawful purposes.
Where Is My Personal Information Stored And/Or Processed?
Information Aulisa collects through the Devices will be processed and/or stored on secure third-party cloud-based servers or through a wifi network. All of the information you share with us through the Devices is double-encrypted during transmission using AES-128 data encryption as well as an Aulisa private encryption method.
Will You Share My Personal Information With Anyone Else?
We consider your information to be a vital part of our relationship with you. There are, however, certain circumstances in which we may share your Personal Information with certain third parties without further notice to you. Those circumstances are described below:
With Our Provider Customers: If you are a Patient, we will share your Personal Information and Health Data with our Provider Customer(s) that provide healthcare services to you. This will enable your Provider to track your Health Data and combine such Health Data with other information about you that your Provider obtains in providing healthcare services to you.
With Caregivers: If you are a Patient, family and/or friends may view certain of your Personal Information and/or Health Data and related alerts.
In the Event of a Business Transfer: We might sell or buy businesses or assets. In the event of a corporate sale, merger, reorganization, dissolution or similar event, Personal Information may be part of the transferred assets.
With our Agents, Consultants and Related Third Parties: Aulisa, like many businesses, sometimes hires other companies to perform certain business-related functions. Examples of such functions include data hosting and billing management. When we employ another entity to perform a function of this nature, we only provide the entity with the information that it needs to perform its speciﬁc function.
To Meet Our Legal Requirements: We may disclose your Personal Information if required to do so by law or if we have a good faith belief that such action is necessary to (i) comply with a legal obligation, (ii) protect and defend our rights or property, (iii) act in urgent circumstances to protect the personal safety of you, us, other users of the Devices or the public, or (iv) protect against legal liability.
NOTE: We may, from time to time, rent or sell aggregated data and/or other information that does not contain any personal identifiers (i.e., if the information has been anonymized by stripping out identifiers such as name, address, phone number, etc.). The purpose of this type of disclosure is to allow research institutions to learn more about symptoms associated with your medical condition(s).
How Long Will You Retain the Information?
We only store certain of your Personal Information for as long as you use the Devices and up to five (5) years after you cease to use the Devices. At the end of this five-year period, we will remove your Personal Information from our databases and will request that our business partners remove your Personal Information from their databases. However, once we disclose your Personal Information to third parties, we may not be able to access that Personal Information any longer and cannot force the deletion or modification of any such information by the parties to whom we have made those disclosures. Written requests for deletion of Personal Information other than as described should be directed to [email protected]. We retain anonymized data indefinitely.
How Do You Protect My Personal Information?
Aulisa is committed to protecting the security and conﬁdentiality of Personal Information. We use a combination of reasonable physical, technical, and administrative security controls to maintain the security and integrity of your Personal Information, to protect against any anticipated threats or hazards to the security or integrity of such information, and to protect against unauthorized access to or use of such information in our possession or control that could result in substantial harm or inconvenience to you. However, Internet data transmissions, whether wired or wireless, cannot be guaranteed to be 100% secure. As a result, we cannot guarantee the security of information you transmit to us. By using the Devices, you are assuming this risk.
The information Aulisa collects and stores on secure servers is protected by a combination of technical, administrative, and physical security safeguards, such as authentication, encryption, backups, and access controls. If Aulisa learns of a security concern, we may attempt to notify you and provide information on protective steps, if available, through the email address that you have provided to us or other reasonable notiﬁcation. Depending on where you live, you may have a legal right to receive such notices in writing.
Notwithstanding any of the steps we take, it is not possible to guarantee the security or integrity of data transmitted over the internet. There is no guarantee that your information will not be accessed, disclosed, altered, or destroyed by breach of any of our physical, technical, or administrative safeguards. Therefore, we do not and cannot ensure or warrant the security or integrity of any information you transmit to us and you transmit such information at your own risk.
How can I protect my personal information?
We will never send you an e-mail requesting confidential information such as account numbers, or social security numbers, and you should never respond to any e-mail requesting such information. If you receive such an e-mail purportedly from Aulisa, do not respond to the e-mail and do not click on any links and/or open any attachments in the e-mail, and notify Aulisa support at [email protected].
You are responsible for taking reasonable precautions to safeguard the device from exposure to unauthorized third parties, and you are not permitted to circumvent the use of required encryption technologies.
EU Data Subject Rights
If you are an EU data subject, you have the following rights under certain circumstances:
to receive communications related to the processing of your personal data that are concise, transparent, intelligible and easily accessible;
to be provided with a copy of your personal data held by us;
to request the rectification or erasure of your personal data held by us without undue delay;
to request that we restrict the processing of your personal data (while we verify or investigate your concerns with this information, for example);
to object to the further processing of your personal data, including the right to object to marketing;
to request that your personal data be moved to a third party;
to receive your personal data in a structured, commonly used and machine-readable format;
to lodge a complaint with a supervisory authority.
Where our processing of your Personal Information is based on consent, you have the right to withdraw that consent without detriment at any time by contacting us at [email protected]. You can also exercise the rights listed above at any time by contacting us at [email protected].
How Can I Update, Correct Or Delete My Personal Information?
If you need to make changes or corrections to your information, you may make such changes or corrections on the Device.
Information Submission By Minors
How Can I Contact Aulisa?