Privacy Statement
Last updated: December 12, 2024
GlobalMed Holdings, LLC dba GlobalMed (“GlobalMed,” “us,” “we” or “our”) created this Privacy Statement to ensure the confidence of visitors (“you” or “your”) to <globalmed.com> (the “Site”) and to demonstrate our commitment to fair information practices and the protection of your privacy. This Privacy Statement has been compiled to better serve those who are concerned with how their personally identifiable information (“Personal Information”) is being used online. Please read our Privacy Statement carefully to get a clear understanding of how we collect, use, protect, or otherwise handle your Personal Information through the Site.
This Statement applies to information we collect:
- On the Site; and
- From email, text, and other electronic messages between you and the Site.
The Statement does not apply to information collected by:
- GlobalMed from you offline or through any other means, including on any other website operated by us; or
- Any third party, including through any application or content (including advertising) that may link to or be accessible from the Site.
Please read this Statement carefully to understand our policies and practices regarding your information and how we will treat it. By accessing or using the Site, you agree to this Privacy Statement. If you do not agree with our policies and practices, your option is to not use the Site. This Statement may change from time to time. Your continued use of the Site after we make changes is deemed to be acceptance of those changes, so please check this Statement periodically for updates.
- Categories of Personal Information We Collect.
Personal Information is data that can be used to identify or contact a single person. We collect information that identifies, relates to, describes, references, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or device (“Personal Information”). In particular, we have (or have not as indicated) collected the following categories of personal information from individuals within the last twelve months, or anticipate collecting this type of information in the next twelve months:
Category | Examples | Collected
(Yes or No) |
A. Identifiers. | A real name, online identifier, Internet Protocol address, email address. | Yes |
B. Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)). | A signature, Social Security number, physical characteristics or description, address, telephone number, passport number, driver’s license or state identification card number, insurance policy number, education, employment, employment history, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information.
(Some personal information included in this category may overlap with other categories). |
Yes |
C. Protected classification characteristics under state or federal law. | Age (40 years or older), race, color, ancestry, national origin, citizenship, religion or creed, marital status, medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, pregnancy or childbirth and related medical conditions), sexual orientation, veteran or military status, genetic information (including familial genetic information). | No |
D. Commercial information. | Records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies. | No |
E. Biometric information. | Genetic, physiological, behavioral, and biological characteristics, or activity patterns used to extract a template or other identifier or identifying information, such as, fingerprints, faceprints, and voiceprints, iris or retina scans, keystroke, gait, or other physical patterns, and sleep, health, or exercise data. | No |
F. Internet or other similar network activity. | Browsing history, search history, information on a consumer’s interaction with a website, application, or advertisement. | Yes |
G. Geolocation data. | Physical location or movements. | No |
H. Sensory data. | Audio, electronic, visual, thermal, olfactory, or similar information. | No |
I. Professional or employment-related information. | Current or past job history or performance evaluations. | No |
J. Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99)). | Education records directly related to a student maintained by an educational institution or party acting on its behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial information, or student disciplinary records. | No |
K. Inferences drawn from other personal information. | Profile reflecting a person’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes. | No |
More specifically, we collect the following types of information from you from the Site:
- Contact Data which includes your name, telephone number, and email addresses;
- Online Tracking information, which is described below; and
- Your browsing history when visiting the Site.
- How We Collect Personal Information From You.
You directly provide us with most of the data that we collect from you. We collect Personal Information from you when you enter information on our contact us or support page. We collect data when you use or view the Site (see Section 3, below).
- Other Data We Collect, And How We Collect It.
In addition to Personal Information, we may collect information about your internet connection, the equipment you use to access the Site, and details about your usage of the Site, including your browsing patterns. This information is collected using automatic data collection technologies and may also include:
- Details of your visits to the Site, including traffic data, location data, and other communication data and the resources that you access and use on the Site.
- Information about your computer and internet connection, including your IP address, operating system, and browser type.
We will retain and evaluate information on your recent visits to our website and how you move around different sections of our Site for analytics purposes to understand how people use our Site so that we can make it more intuitive. We will also keep a record of the resources on our Site that you have clicked on and use that information to target advertising on this Site to you that is relevant to your interests, which we have identified based on resources that you used.
The technologies we use for this automatic data collection may include:
- Cookies (or browser cookies). A cookie is a small file placed on the hard drive of your computer. You may refuse to accept browser cookies by activating the appropriate setting on your browser. However, if you select this setting you may be unable to access certain parts of the Site. Unless you have adjusted your browser setting so that it will refuse cookies, our system will issue cookies when you direct your browser to the Site.
- Flash Cookies. Certain features of the Site may use local stored objects (or Flash cookies) to collect and store information about your preferences and navigation to, from, and on the Site. Flash cookies are not managed by the same browser settings as are used for browser cookies. For information about managing your privacy and security settings for Flash cookies, see Choices About How We Use and Disclose Your Information.
- Web Beacons. Pages of our Site, and our e-mails, may contain small electronic files known as web beacons (also referred to as clear gifs, pixel tags, and single-pixel gifs) that permit Us to, for example, count users who have visited those pages or opened an email and for other related website statistics (for example, recording the popularity of certain website content and verifying system and server integrity).
- Use Of Cookies
Cookies are different depending on each site that you access. Generally speaking, a cookie is information that is stored on your computer or mobile device by the Site. For purposes of our Site, we use cookies for website analytics and indexing. Third party applications on the Site may use additional cookies.
The browser you are using will dictate how your cookies are managed. All standard browsers will allow you to elect to not accept cookies. If you make such a setting within your browser, there is a chance that our Site will not work or will not work as efficiently as it would if you allowed cookies.
- How We Store Your Data.
We store your personal information in our U.S.-based cloud infrastructure.
- How We Use Your Data.
We use Contact Data to contact you if you opt in to send periodic marketing and sales emails. We may also use your information for internal purposes, such as auditing, data analysis, and research to improve our products, services, and customer communications. With your specific consent, we may also use your information for any other identified or stated purpose at the time of that consent.
- Third Party Collection of Personally Identifiable Information.
We approve third parties to collect certain information from the Site for the purpose of integrating those third-party tools with the Site. We utilize Google Analytics.
- Disclosure of Personal Information to Third Parties
We do not disclose your personal information to third parties. We may, however, disclose your personal information:
- To comply with any court order, law, or legal process, including to respond to any government or regulatory request.
- If we believe disclosure is necessary or appropriate to protect the rights, property, or safety of GlobalMed, our customers, or others.
- In the event of a sale, to the purchaser of all or substantially all the assets of GlobalMed.
- Data Protection Rights – EU residents only
This Section 9 of the Privacy Statement only applies to residents of the European Union who are identified as covered by the GDPR, including those persons identified at https://gdpr.eu/companies-outside-of-europe/.
For EU residents, you have the right to be fully aware of all options to protect your personal data. Each EU resident who is also a user of the Site is entitled to the following:
- The right to access – You have the right to request from us copies of your personal data. We may charge you a fee for this service.
- The right to rectification – You have the right to request that we correct any information that we control that you believe is inaccurate. You also have the right to request that we complete any information you believe is incomplete.
- The right to erasure – You have the right to request that we erase your personal data that we control, under certain conditions.
- The right to restrict processing – You have the right to request that we restrict the processing of your personal data that we control, under certain conditions.
- The right to object to processing – You have the right to object to our processing of your personal data, under certain conditions.
- The right to data portability – You have the right to request that we transfer the data we have collected to another organization or directly to you, under certain conditions.
We have one month from the date of your request to respond to it. Please make your request in writing and send it to [email protected].
- Data Privacy Rights
I. Access to Specific Information and Data Portability Rights
You have the right to request that we disclose certain information to you about our collection and use of your personal information over the past 12 months. Once we receive and confirm your verifiable consumer request, we will disclose to you:
- The categories of personal information we collected about you.
- The categories of sources for the personal information we collected about you.
- Our business or commercial purpose for collecting or selling that personal information.
- The categories of third parties with whom we share that personal information.
- The specific pieces of personal information we collected about you (also called a data portability request).
- If we sold or disclosed your personal information for a business purpose, two separate lists disclosing:
- sales, identifying the personal information categories that each category of recipient purchased; and
- disclosures for a business purpose, identifying the personal information categories that each category of recipient obtained.
II. Deletion Request Rights
You have the right to request that we delete any of your personal information that we collected from you and retained, subject to certain exceptions. Once we receive and confirm your verifiable consumer request, we will delete (and direct our service providers to delete) your personal information from our records, unless an exception applies.
We may deny your deletion request if retaining the information is necessary for us or our service provider(s) to:
- Complete the transaction for which we collected the personal information, provide a good or service that you requested, take actions reasonably anticipated within the context of our ongoing business relationship with you, or otherwise perform our contract with you.
- Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities.
- Comply with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546 et seq.) (for California residents only).
- Enable solely internal uses that are reasonably aligned with consumer expectations based on your relationship with us.
- Comply with a legal obligation.
- Make other internal and lawful uses of that information that are compatible with the context in which you provided it.
III. Exercising Access, Data Portability, and Deletion Rights
To exercise your rights to access, data portability, and deletion of your personal information from the Site, you must submit a verifiable consumer request to the Operator by emailing us at <[email protected]>.
Only you or someone legally authorized to act on your behalf may make a verifiable consumer request related to your personal information. You may also make a verifiable consumer request on behalf of your minor child.
You may only make a verifiable consumer request for access or data portability twice within a 12-month period. The verifiable consumer request must:
- Provide sufficient information that allows us to reasonably verify you are the person about whom we collected personal information or an authorized representative.
- Describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to the request.
We cannot respond to your request or provide you with personal information if we cannot verify your identity or authority to make the request and confirm the personal information relates to you. We will only use personal information provided in a verifiable consumer request to verify the requestor’s identity or authority to make the request.
IV. Response Timing and Format
We endeavor to respond to a verifiable consumer request within sixty days of its receipt. If we require more time, we will inform you of the reason and extension period in writing.
We will deliver our written response by mail or electronically, at your option.
Any disclosures we provide will only cover the 12-month period preceding the verifiable consumer request’s receipt. The response we provide will also explain the reasons we cannot comply with a request, if applicable.
We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.
V. Non-Discrimination
We will not discriminate against you for exercising any of your California Consumer Privacy Act of 2018 (“CCPA”) rights.
VI. Shine The Light Law (CA Residents only)
California’s “Shine the Light” law (Civil Code Section § 1798.83) permits users of the Site who are California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes. To make such a request, please send an email to <[email protected]>.
VII. Additional Resources
If you would like further information or need further assistance, or to object or report information regarding the protection of your data, the following resources are available in various jurisdictions.
- Argentina: Argentinian data protection authority: https://www.argentina.gob.ar/aaip
- Brazil: Brazilian data protection authority: https://www.gov.br/anpd/pt-br
- California: Attorney General of California: https://oag.ca.gov
- Canada: Office of the Privacy Commissioner of Canada: https://www.priv.gc.ca/en/
- China: The Cyberspace Administration of China: http://www.cac.gov.cn
- Colorado: The Colorado Attorney General: https://coag.gov
- Connecticut: The Connecticut Attorney General: https://portal.ct.gov/AG
- European Union: https://ec.europa.eu/justice/article-29/structure/data-protection-authorities/index_en.htm
- India: Ministry of Electronics and Information Technology: https://www.meity.gov.in
- Malaysia: Ministry of Communications and Multimedia Commission: https://www.pdp.gov.my/jpdpv2/my-calendar/
- Mexico: National Institute of Transparency for Access to Information and Personal Data Protection: http://inicio.inai.org.mx/SitePages/English_Section.aspx
- Philippines: National Privacy Commission: https://www.privacy.gov.ph
- Saudi Arabia: The Saudi Data & Artificial Intelligence Authority: https://sdaia.gov.sa/ar/default.aspx
- United Kingdom: Information Commissioner’s Office: https://www.gov.uk/government/organisations/information-commissioner-s-office
- Utah: The Utah Attorney General: https://attorneygeneral.utah.gov
- Virginia: The Virginia Attorney General: https://www.oag.state.va.us
- Data Security.
Secure Sockets Layer, or SSL, is an encryption technology that provides secure communications over the Internet. It does this by verifying that the server to which you are connected is actually the one it claims to be. It also encrypts all transactions between the parties communicating. Encryption is the scrambling of information as it is transmitted over the Internet to protect your confidentiality. Personal information passing between your computer and/or mobile device and many of our services is encrypted. This means that while your information is in transit it is scrambled so that only we can reassemble it in its original text format. The support page form where you input your information has HTTPS automatically enabled.
Unfortunately, transmission of information through the Internet cannot be completely secure. Although we do our best to protect your personal information, we cannot guarantee the security of your personal information transmitted to us through the Site. Any transmission of personal information is at your own risk. We are not responsible for circumvention of any privacy settings or security measures contained on the Site.
We take all reasonable measures and precautions to protect your personal information and follow industry best practices to help ensure that your information is not misused, altered, or destroyed.
The third-party service who provides payment processing encrypts all credit card information using Secure Sockets Layer (SSL) technology while in transit and stores it with AES-256 encryption at-rest. The third-party also comply with all PCI-DSS requirements.
PAYMENTS
The payment methods used in our Telemedicine Service are processed by third-party services. These third-party services comply with all security and encryption standards to keep your information safe. They will only use the necessary information to complete the required process. We also recommend reading the Privacy Policies of these providers to better understand how they handle the provided information.
- Other Limits to Your Privacy.
We may provide you with links to other websites and may approve other websites to obtain online tracking information from the Site. We are not responsible for the privacy practices or the content of such websites.
- CAN-SPAM Act.
The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them.
If at any time you would like to unsubscribe from receiving future emails, you can email us at <[email protected]> and we will promptly remove you from ALL correspondence.
- Updates and Changes to Privacy Statement.
We reserve the right to change, update, or modify this Privacy Statement. We will post all privacy changes and, if we have your contact information to do so, we will notify you of any material change in our privacy practices. Any such change, update, or modification will be effective immediately upon publication. Our failure to provide notice through direct communication will not be grounds to invalidate any provision of our Privacy Statement. We will maintain prior versions of our Privacy Statement which will be available for your review.
- Contact Information
If you have any questions or comments about this notice, the ways in which GlobalMed collects and uses your information described here, your choices and rights regarding such use, or wish to exercise your rights under the law, please do not hesitate to contact us at:
Phone: +1 (480) 922-0044
Email: [email protected]
Postal Address: 15023 N 73rd Street, Scottsdale, AZ 85260
Data Protection Officer: David Ross