This policy is for anyone who uses our Website mapsciences.com as a customer or for any other reason (User). In order to use our Website, you have to confirm that you have read, understood and agreed to this policy. If you do not agree, then you should not use our Website. This policy relates to any personal data or personal information we hold about Users.
This policy covers all data that is shared by a User whether directly from you, from the samples you provide to us, or by email.
This policy may be updated so we suggest you review it regularly or click the link which will always take you to the most recent version.
This policy provides an explanation as to what happens to any personal data that you share with us, or that we collect from you in any way.
Types of Information We Collect
Personal Information – Personal data, or personal information, means any information about an individual from which that person can be identified. We collect personal information from Users in a variety of ways, including when Users only visit our Website as well as those Users who fill in any online forms or questionnaires to place an order. If you do order a test from our Website then we collect name, email address, postal address, phone number, gender, ethnicity, date of birth, and in some cases information about your pregnancy if you are pregnant or other information relating to your health. We collect this information as part of our service to provide Results to you after we run your test. For many of these services, it is impossible for us to provide you with a quality service without this information. Therefore, it is essential that you read, understand and agree to this policy. It is possible for Users visit our Website anonymously but, in these circumstances, we still collect information in accordance with our Cookies Policy (below). We collect personal information from Users only if they voluntarily submit such information to us. Users can always refuse to supply personal information, except that it may prevent them from engaging in further services provided by our Website.
Non-Personal Information – We may also collect non-personal information about Users which may not identify the individual but may indirectly link to other information about them whenever they interact with our site. Non-personal identification information may include the browser name, the type of computer and technical information about Users means of connection to our site, such as the operating system and the Internet service providers utilised and other similar information.
Third party websites – You might find links to other websites on our Website. These websites should have their own privacy policies which you should check. We do not accept any responsibility or liability for their policies whatsoever as we have no control over them.
What we do with your Information and Why
MAP Sciences may collect, store and use personal information from our Website Users. We only ever use your information in line with data protection laws – in particular, the EU General Data Protection Regulation, otherwise known as GDPR. This means that we only use User information where we have a legal basis to do so. MAP Sciences adheres to the following general rules for using personal information.
MAP Sciences will only use and process your personal information:
Sharing your personal information – We do not sell, trade, or rent the personal information of our Users to anyone else. We may share generic (anonymised) aggregated information or data not linked to any personal information regarding visitors and users with our business partners, trusted affiliates and advertisers for the purposes outlined above.
We use third party service providers to help us operate our business and the Site or administer activities on our behalf, such as sending out newsletters or surveys. All of our third-party service providers are required to take appropriate security measures to protect your personal information in line with our policies. We do not allow our third-party service providers to use your personal data for their own purposes.
When you buy products or services from us, your personal information will be shared with applicable third parties to ensure the running of the service we provide. These include:
Disclosing your information – Where applicable, we may disclose your personal information to any member of our group. This includes, where applicable, our subsidiaries, our holding company and its other subsidiaries as detailed in our Terms and Conditions.
We may also disclose your personal information to third parties:
Storing your personal data – We have put in place appropriate security measures to prevent your personal information from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. We have put in place procedures to deal with any suspected data security breach and will notify you and any applicable regulator of a suspected breach where we are legally required to do so.
Data that is provided to us is stored on our secure servers inside the EEA. Details relating to any transactions entered into via our Website will be encrypted to ensure its safety against unauthorized access, alteration, disclosure or destruction of your personal information.
The transmission of information via the internet is not completely secure and therefore we cannot guarantee the security of data sent to us electronically and the transmission of such data is entirely at your own risk. Where we have given you (or where you have chosen) a password so that you can access certain areas of our Site, you are responsible for keeping this password confidential.
We store personal information for as long as you use the services we provide and then as required to comply with applicable laws. In particular, we are required by law to hold medical records for 10 years.
The children’s online privacy protection act – Protecting the privacy of the very young is especially important. For that reason, we never collect information on our Website from those we believe to be under 18 unless with the express permission of a parent or guardian and no part of our Website is structured to attract anyone under 18.
Specific Data Security When Order Test Kits through our Website
When placing your order with us we collect limited personal data for us to be able to process your sample and obtain your unique Results. In addition, data will be generated from your sample when it is processed by the MAP Sciences laboratory. We do not send your sample or data to any other laboratory and analyse your sample entirely “in-house”. We will not disclose this personal data to any third party.
In the MAP Sciences Laboratory your sample is anonymised using a barcode system and registered only as a tracking number, in order to best protect your data and privacy. However, your Results are also securely stored should you require access in future years, and in order for us to be legally compliant to store medical records for 10 years.
The laboratory database containing your sample ID and analysis data is anonymised so as not to link your personal identifier information (PII) such as name, address or IP address to any laboratory results. Laboratory personnel and data process developers have access to your Results but are not able to identify individuals or to whom the Results belong. In other words, there is no link between your sample number and your name and address as the laboratory testing system and the ordering system are two separate and distinct operations. Anonymised spectral data of samples are continually reviewed to improve and develop new diagnostics algorithms and continually improve our service.
If the User decides to opt-in to our mailing list, they will receive emails that may include company news, updates, related product or service information, etc. We use the third-party service MailChimp (http://www.mailchimp.com/) to help to administer activities on our behalf, such as sending out newsletters or surveys. Your information such as name and email address is shared with the third-party but you will not be contacted unless opted-in to receive such communications.
If a User purchases a Test, they will receive emails with regards to their order such as a receipt, dispatch notification and notification when Results are ready. This is actioned automatically by MAP Sciences. However, you may also be communicated directly by a member of our customer support team who may send and receive emails, we use the third-party service Google Mail (mail.google.com) to help to administer these activities. Depending on the purpose of the communication, your information such as name, email address and details of your order may be transmitted through this third party.
Options you have and your Rights to Choose them
At any time:
You can contact us by email at firstname.lastname@example.org at any time, to request that we:
Please remember that we are required by law to retain medical records for 10 years, as such any requests for us to contravene this law will have to be refused.
If you have any questions, or require clarification, about this policy or any other policy on this Website please contact our customer support at: Customersupport@mapsciences.com.
If you are not satisfied with our responses to your questions or if you have any concerns or complaints about the way we have handled your personal information then you can lodge any such grievance with the appropriate authority at the European Commission or the DPA.