Rooti Labs Privacy Policy
Effective from 24th May 2018
Rooti Labs is fully compliant with EU General Data Protection Regulations (GDPR) and is committed to EU data protection requirements (applicable to us as a data processor). We recognize the need for appropriate protection and management of any personally identifiable information (personal information) you share with us. Therefore, we don’t collect and process users’ personal information beyond what is legally required for the functioning of our products and services. Moreover, all of the information will be processed anonymously. Meaning, we don’t acquire or possess any information that can be used to identify an individual, nor can be reversed into sensitive personal information to identify the natural person, hence, to achieve complete anonymization.
Data anonymization is a technique that irreversibly destroys any way of identifying the data subject. Data can be considered anonymized when it does not allow identification of the individuals to whom it relates, and it is not possible that any individual could be identified from the data by any further processing of that data or by processing it together with other information which is available or likely to be available.
Personal information means any information that may be used to identify an individual, including, but not limited to, a first and last name, a home or other physical address, an email address or other contact information; whether at work or at home. In general, you can visit our web pages or use our app without telling us who you are or revealing any personal information about yourself.
Data Security
We provide secure hosting from Amazon Web service(AWS), one of the most credible web service around the globe. It consists of redundant networking connections with high levels of both digital and physical security. Under AWS, we successfully established Data-at-Rest Encryption and Data-in-Transit Encryption. Meaning, all the inactive data stored physically in any digital form, as well as active data which flows over the public network will be supervised and protected by us at Root Labs.
Our servers at AWS are backed up nightly to ensure that if anything were to happen – to the server or the premises – the data would remain completely secure. Each server we provide is fully supported by a dedicated web service team at Rooti Labs, ensuring that we provide the best uptime and the quickest response possible.
All servers are monitored 24/7, alerting key personnel within the company should a data breach occur. This allows us to easily notify users should anything happen to the server.
Data subject rights
GDPR compliance requires data subjects be granted certain rights. Even though Rooti Labs achieves full anonymization and the data we possessed is not sensitive personal information, we are willing to follow GDPR compliance and list those rights that are relevant to the collection, processing, and storage of personal data on RootiCare.com.
Right to be forgetten
Should data subjects at anytime wish to withdraw their consent and no longer allow Rooti Labs to store their data, this request can be manually made via service@rootilabs.com. Please be sure to include the patient ID of whom the data is in reference too, so that all data relating to the data subject in question can be accurately removed.
Data portbility
Data Portability requires that data subjects are able to request, obtain, and/or transfer possession of collected data at any time. As mentioned above, this data can be manually requested via service@rootilabs.com and provided in an electronic format free of charge. Should the data subject wish to transfer the possession of the data stored by Rooti Lab, please be sure to also include the patient ID and relevant contact information relating to the individual or organization whom you wish the data to be transferred to.
Breach notification
Should Rooti Labs Ltd. encounter a breach/unauthorized access of personal data that is likely to “result in a risk for the rights and freedoms of individuals”, Rooti Labs Ltd. will ensure that a notification is made within 72 hours of becoming aware of the breach.
In-App privacy
When Rooti Lab collects personal information on the app, we insist on asking you not to type in any real name, personal ID, and information that can identify the natural person in order to achieve complete anonymization. Rooti Labs does not intend to collect and transfer personal information without your consent to third parties who are not bound to act on our behalf unless such a transfer is legally required.
Cookies and tracking technologies
Cookies are small pieces of data, stored in text files, that are stored on your computer or other devices when websites are loaded into a browser. They are widely used to ‘remember’ you and your preferences, either for a single visit (through a ‘session cookie’) or for multiple repeat visits (using a ‘persistent cookie’). They ensure a consistent and efficient experience for visitors and perform essential functions such as allowing users to register and remain logged in. Cookies may be set by the site that you are visiting (known as ‘first party cookies’), or by other websites who serve up content on that site (‘third party cookies’).
Our web pages utilize “cookies” to only recognize the login account, vendor ID, and the display settings associated with the account. They were used purely to optimize your viewing experience and not to record any information such as Internet domain and host names, Internet protocol (IP) addresses, browser software and operating system types, clickstream patterns, and dates and times that may reveal or access to your personal preferences and information.
Your Consent
By using this website, you consent to the terms of our Online Privacy Policy Should the Online Privacy Policy change, we intend to take every reasonable step to ensure that these changes are brought to your attention by posting all changes prominently on our website for a reasonable period of time.
We are committed to protecting your right to privacy. Rooti Labs respects your privacy and we will use our best efforts to ensure that the information you provide remains private. Information provided will only be stored on computers based in Ireland.