The data-driven clinical supply chain.
This Policy applies to all web sites operated by Slope.io for the purpose of the provision of information about its products, solutions and services or general information. Slope.io may be a data Controller (as that term is used under the EU General Data Protection Regulation ("GDPR")), which means that we decide how and why the information you provide to us is processed. This Policy may be amended or updated from time to time to reflect changes in our practices with respect to the Processing of your information, or changes in applicable law. We encourage you to read this Policy carefully, and to regularly check this page to review any changes we might make.
Slope.io recognizes that the protection of the privacy of personal and organizational data and information received and stored by it is important. Due to the Children’s Online Privacy Protection Act of 1998, users must be at least 13 years of age to use the services and we ask that minors (generally, under the age of 18) do not submit any personal information to Slope.io or use the services. Slope.io will not knowingly collect information from users in this age group.
"Consent" of the data subject means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
"Controller" means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.
"Personal Data" means any information relating to an identified or identifiable natural person ("data subject"); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
"Processing" means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
"Processor" means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
Slope.io collects and stores some or all of the following information about individuals (collectively, the "Information"):
Slope.io may Process: your personal details (e.g., your name); demographic data (e.g., your age); your contact details (e.g., your address); records of your Consents; purchase details; details of your employer (where relevant); information about your interactions with our content or advertising; and any views or opinions you provide to us.
Slope.io may also Process information about you from your use of our Services (e.g., the type of device you are using, the internet service provider, etc.), including your interactions with content and advertising on the Services.
All individuals for whom Slope.io has collected or stored Information may provide updates or request that Slope.io delete such Information at any time by emailing Slope.io at email@example.com and providing adequate identifying details for Slope.io to search and find such Information.
Generally speaking, Slope.io uses the Information to respond to requests and inquiries made to it; to communicate with correspondents about products, services, and information that may be of interest; and to conduct market research. All Information is considered to be confidential and Slope.io shall protect the confidentiality of such Information. It is Slope.io’s policy to not disclose Information to or share Information with third parties for any reason except as may be required by law.
Slope.io may also de-identify the Information and aggregate it with other de-identified data anonymously and in aggregate and combined with other individuals’ anonymous data to improve Slope.io’s offerings, provided that such use will not, under any conditions, reveal the identity of the individual or the organization.
Slope.io may Process user Information for the following purposes: providing the services to you; communicating with you; providing advertising to you; analyzing engagement with our audience; observing user engagement and purchase activity; marketing our services and offerings to current and prospective customers; managing our IT systems; financial management; conducting surveys; ensuring the security of our systems; conducting investigations where necessary; compliance with applicable law; and improving our services.
Slope.io may Process your user Information where: you have given your Consent; the Processing is necessary for a contract between you and us; the Processing is required by applicable law; the Processing is necessary to protect the vital interests of any individual; or where we have a valid legitimate interest in the Processing.
Slope.io may disclose your user Information to: legal and regulatory authorities; our external advisors; Processors; any party as necessary in connection with legal proceedings; any party as necessary for investigating, detecting or preventing criminal offences; any purchaser of our business; and any third party providers of advertising, plugins or content used on the services.
Slope.io takes every reasonable step to ensure that your Information that we Process is limited to the Information reasonably necessary in connection with the purposes set out in this Policy or as required to provide you services or access to the services.
With respect to email addresses, Slope.io may contact individuals directly for such purposes as: (a) to inquire as to such individuals’ satisfaction with their interaction with Slope.io, its Website and/or its solutions and services, and (b) to provide newsletters and/or information about other products and services from Slope.io that may be of interest. Upon receipt of written notice from any such individual that he or she is no longer interested in receiving such contact or information, Slope.io shall cease such contact with that individual within 30 days.
Slope.io’s Website may contain links to external websites owned and maintained by third parties. When individuals click on one of these links, he or she is opening a session to another website. While such external websites are vetted and believed by Slope.io to follow appropriate information security and privacy policies, Slope.io does not accept liability or responsibility for any website to which Slope.io may link, and Slope.io encourages individuals to read the privacy statements of such linked websites, as their privacy policies may differ.
Slope.io uses software tags known as "cookies" within certain functions of its Website to remember its visitors’ preferences and to maximize the performance of the Website and the individual’s experience. Access to certain functionality may not be available to individuals that do not give their consent to the data processing carried out through cookies or whose browsers are set to reject all cookies.
All Information is stored and maintained in secure facilities that limit access to authorized personnel only. As part of Slope.io’s continuous risk management process, its Website is regularly tested to assess vulnerabilities and controls, remediate deficiencies, and to ensure that all Information is secure from unauthorized access or modification. Information is protected in transit via HTTPS and SSL security. Data is backed up routinely at an off-site remote location consistent with Slope.io’s business continuity plan. While Slope.io will exert all commercially reasonable efforts to protect the confidentiality, integrity and availability of the Information, Slope.io cannot guarantee that such efforts will prevent an unauthorized breach of the Information, and we are not responsible for any breach of security or for the actions of any third parties. Because the internet is an open system, the transmission of information via the internet is not completely secure. Although we will implement reasonable measures to protect your information, we cannot guarantee the security of your data transmitted to us using the internet. Any such transmission is at your own risk and you are responsible for ensuring that any Personal Data that you send to us are sent securely.
Slope.io may post an individual’s feedback on its Website or in material promoting or describing Slope.io and its solutions and services. Prior to publishing any such feedback that includes individual or organizational identifying details, Slope.io will obtain written consent from the individual and organization.
Slope.io takes every reasonable step to ensure that your Information is only Processed for the minimum period necessary for the purposes set out in this Policy. The criteria for determining the duration for which we will keep your Information are as follows: we will retain copies of your Information in a form that permits identification only for as long as is necessary in connection with the purposes set out in this Policy, unless applicable law requires a longer retention period. Unless there is a specific legal requirement for us to keep the information, we plan to retain it for no longer than is necessary to fulfill a legitimate business need. Slope.io shall securely erase Information from any equipment it retires or transfers.
Slope.io’s exercise of this Policy with respect to the Information is subject to existing laws and legal process, and nothing contained in this Policy is in conflict with Slope.io’s right to comply with governmental, court, and law enforcement requests or requirements relating to the Information. In the event of a third party request for the Information, to the extent permitted by law, Slope.io will provide the individual or organization with prompt notice of such request so that the individual or organization may take such actions it may deem appropriate to protect the confidentiality of such Information and/or oppose the request.
GDPR provides certain rights for EU residents. You may decline to share certain information with us, in which case we may not be able to provide some of the features and functionality of the services. These rights include, in accordance with applicable law, the right to object to or request the restriction of processing of your information, and to request access to, rectification, erasure and portability of your own information. Where we process your information on the basis of your consent, you have the right to withdraw that consent (noting that such withdrawal does not affect the lawfulness of any Processing performed prior to the date on which we receive notice of such withdrawal, and does not prevent the Processing of your Personal Data in reliance upon any other available legal bases). Requests should be submitted by contacting us (using the contact instructions in Section 15 below). If you are an EU resident and have any unresolved privacy concern that we have not addressed satisfactorily after contacting us, you have the right to contact the appropriate EU Supervisory Authority and lodge a complaint.
If you have any comments, questions or concerns about any of the information in this Policy, or any other issues relating to the Processing of Information carried out by us, or on our behalf, please contact Slope.io by emailing: firstname.lastname@example.org or mail to:
548 Market Street
San Francisco, CA 94104