Themis north america, inc.
Themis North America, Inc. (“THEMIS,” “we,” “us” or “our”) is a leading provider of platform analytics to the global pharmaceutical industry provided through our website at http://www.themisanalytics.com and/or any successor or similar services that reference this policy (collectively, the “Site”). THEMIS is concerned about protecting the privacy of individuals who access the Site and/or whose information we may process via the Site as directed by our clients (“you”).
For the purposes of this Policy:
“Controller” means a person or organization which, alone or jointly with others, determines the purposes and means of the processing of Personal Information.
“Personal Information” means information about an identified or identifiable individual received by THEMIS.
“Privacy Shield” or “Privacy Shield Framework” means the Privacy Shield framework issues by the U.S. Department of Commerce as described more fully at https://www.privacyshield.gov/.
“Privacy Shield Principles” means the Principles and Supplemental Principles of the Privacy Shield.
“Processor” means any natural or legal person, public authority, agency or other body that processes Personal Information on behalf of a Controller.
“Required Disclosure Event” means any instance where disclosure of Personal Information is required by law or that THEMIS reasonably believes that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or comply with a law, court order, or legal process.
“Sensitive Personal Information” means Personal Information that relates to race, ethnic origin, political opinions, religious or philosophical beliefs, trade union membership or that concerns an individual’s health or any information relating to an individual’s sex life.
- Personal Information Collected through the Site.
THEMIS collects Personal Information through the Site, either as a Controller (with respect to Personal Information provided by Site users) or as Processor (based on Personal Information that we process on behalf of clients, who the Controllers in such instances). The Personal Information we collect or may collect includes:
first and last name,
user ID, address;
company name; and
other Personal Information as provided to us by our clients
We do not collect Sensitive Personal Information. However, if we were to do so, we would require opt-in consent for the sharing of any Sensitive Personal Information.
- How Personal Information Is Used by Us
THEMIS retains Personal Information in a form that identifies or renders identifiable the relevant individuals in accordance with applicable laws and only for as long as it serves a purpose that is compatible with the purposes for which the Personal Information was collected or subsequently authorized.
Except in the case of disclosure to affiliates, third-party Processors performing on our behalf, or in the case of Required Disclosure Events, THEMIS offers individuals the opportunity to choose whether their Personal Information may be (i) disclosed to third-party Controllers or (ii) used for a purpose that is materially different from the purposes for which the information was originally collected or subsequently authorized. You may contact THEMIS as indicated below regarding the THEMIS’ use or disclosure of their Personal Information. Unless THEMIS offers individuals an appropriate choice, it will use Personal Information only for purposes that are materially the same as those indicated in this Policy.
- Accountability for Onward Transfer; Sharing of Personal Information with Third Parties.
We may share Personal Information with third party Controllers as well as Processors that we may retain to perform certain services on our behalf. We reserve the right to use or disclose your Personal Information as necessary in response to any Required Disclosure Events.
In the event that THEMIS is sold, has its assets acquired or transferred, whether voluntarily or involuntarily, or merges or becomes affiliated with any other division, individual or entity, any customer information owned or under the control of THEMIS, may be one of the transferred assets. We reserve the right, as part of such transaction, to transfer or assign the Personal Information and other information we have collected from users of the Site.
THEMIS remains liable under the Privacy Shield Principles if the company’s third-party Processor onward transfer recipients process relevant Personal Information in a manner inconsistent with the Privacy Shield Principles, unless THEMIS proves that it is not responsible for the event giving rise to the damage
THEMIS will make commercially reasonable efforts to protect the Personal Information it collects from loss, misuse and unauthorized access, disclosure, alteration and destruction. THEMIS has put in place appropriate physical, electronic and managerial procedures to safeguard and secure your Personal Information from loss, misuse, unauthorized access or disclosure, alteration or destruction. These measures are appropriate to the risks involved and the nature of the Personal Information.
- Data Integrity and Purpose Limitation
THEMIS shall only process and uses Personal Information in a way that is compatible with and relevant for the purpose for which it was collected or authorized. To the extent necessary for those purposes, THEMIS shall take reasonable steps to ensure that Personal Information is accurate, complete, current and reliable for its intended use.
- Access – Corrections/Information Removal/Opt-Out.
THEMIS acknowledges the right of individuals generally to access their Personal Information. THEMIS shall allow an individual access to their Personal Information by contacting THEMIS using the contact information provided below to confirm whether their Personal Information is being processed, as well as whether the Personal Information is accurate and whether THEMIS is processing it lawfully. THEMIS shall also allow the individual to amend or delete inaccurate information.
THEMIS may charge a reasonable fee for access, and it will respond to any request for access within a reasonable time and in a reasonable manner. THEMIS may restrict access to Personal Information in exceptional circumstances where the legitimate rights of persons other than the individual would be violated or where the burden or expense of providing access would be disproportionate to the risks to the individual’s privacy. THEMIS may also deny access where it could reveal confidential commercial information, such as trade secrets.
THEMIS may not retain all Personal Information it collects, which may impact requests for access. Additionally, access may be restricted where disclosure would interfere with national security, defense, public security, or research.
- Compliance with the EU-US and Swiss-US Privacy Shield Frameworks.
- Recourse, Enforcement and Liability
THEMIS has further committed to refer unresolved privacy complaints under the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks to an independent dispute resolution mechanism operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit https://www.bbb.org/EU-privacy-shield/for-eu-consumers/ for more information and to file a complaint.
Under certain limited conditions, you may also have the right to invoke binding arbitration before the Privacy Shield Panel to be created by the U.S. Department of Commerce and the European Commission or Swiss Government.
Our commitments under the Privacy Shield are subject to the investigatory and enforcement powers of the United States Federal Trade Commission.
- Contact Us.
Themis North America Inc., a QuintilesIMS Company
Attn: Legal Department
83 Wooster Heights Road
Danbury, CT 06810