Cookies are used to help provide a better web service to patients and others.
Uses include: remembering products you add to our cart, understanding what people need and ensuring our website works properly.
We at TheSocialMedwork are fully committed to compliance with the GDPR.
If you do not agree, please leave our site and do not access or use our service.
In order to achieve compliance, the following steps were taken:
This guide contains the policies and procedures put in place by TheSocialMedwork to protect the personal information of individuals on whom TheSocialMedwork maintains systems of records. All TheSocialMedwork systems of records from which information is retrieved by name or a personal identifier are covered.
Personal information is maintained in systems of records (SORs). A system of records is a file, database, or program from which personal information is retrieved by name or another personal identifier. Personally Identifiable Information (PII) are reviewed periodically to ensure they are relevant, necessary, accurate, up-to-date, and covered by the appropriate legal or regulatory authority. We use the Privacy Impact Assessment (PIA) as a tool to ensure that privacy issues and protections are addressed within information technology systems that contain any PII.
The terms in this part are defined to ensure consistency and common understanding when used in a Privacy Act context:
Record means any item, collection, or grouping of information about an individual which contains the individual's name or other personal identifier. The information may relate to education, financial transactions or medical conditions collected in connection with an individual's interaction with TheSocialMedwork.
System of records means a group of records under TheSocialMedwork's control from which information is retrieved by the name of an individual, or by any number, symbol, or other identifier assigned to that individual.
Routine use means disclosure of a record for the purpose for which it is intended.
Request for access means a request by an individual to obtain or review his or her record or the information in the record.
Disclosure of information means providing a record or the information in a record to someone other than the individual of record.
Information technology (IT) system (also known as electronic information system) means the equipment and software used in the automatic acquisition, storage, manipulation, management, movement, control, display, switching, interchange, transmission, or reception of data or information.
Information in identifiable form means data within an IT system or online collection that permits the identity of an individual to whom the information applies to be reasonably inferred; information that identifies the individual by name or other unique identifier or by which an individual is identified in conjunction with other data elements such as gender, race, birth date, geographic indicator, and similar personal information. Information permitting the physical or online contacting of a specific individual is considered information in identifiable form.
Privacy Impact Assessment (PIA) means the process for evaluating privacy issues in an electronic information system, including examining the risks and effects of collecting, maintaining, and disseminating information in identifiable form, and identifying and evaluating protections and alternative processes to mitigate the impact to privacy of collecting such information. The process consists of gathering data on privacy issues from a project, identifying and resolving privacy risks, and obtaining approval from agency privacy and security officials. Completion of the PIA process results in the PIA Report.
System Manager is the technically appointed employee dealing with any processing of any data.
We ask you for certain personal data to provide you with the products or services you request. For example, when you contact our consumer services, request to receive communications, prices or any information, create an account, use our website, or enter into a contract with us.
This personal data includes your:
We use your personal data in the following ways:
When you use our Site and Services we will use your personal data to provide the requested product and/or service. If you contact our consumer services, we will use information provided by you to inform you about a product, delivery, costs or payment information.
Please note that TheSocialMedwork only asks for and uses information that is needed to perform our services and enter into a purchase agreement. We use the personal data you provide to us to operate our business. For example, when you make a purchase, we use that information for accounting, audits and other internal functions. We may use personal data about how you use our products and services to enhance your user experience and to help us diagnose technical and service problems and administer our Site.
By getting in touch with customer services and sharing information such as your name, email address, address and further (patient) details you consent to the use of this data in order to perform our services and a possible contract. You can opt-out at any time after entering into a purchase agreement. Please do so in writing to firstname.lastname@example.org. Please note that after you opt out we cannot perform any service nor get into a purchase agreement.
If you are an existing customer of TheSocialMedwork (for example, if you have requested our services and/or placed an order with us), we store your personal details in our files (unless you have opted-out). Please note that according to Art. 80 sub e Directive 2001/83/EC records must be kept regarding transactions in medicinal products such as date, name of product, quantity, name and address of supplier, batch number.
We use data about how our visitors use our Site and services to understand customer behaviour or preferences. For example, we may use information about how visitors search for and find products to better understand the best ways to organise and present our services and products.
TSM shares your personal data with:
Entities for the purposes and under the conditions outlined above.
Third party service providers processing personal data on TSM’s behalf, for example to process credit cards and payments, shipping and deliveries, administering medicines, host, manage and service our data, research and analysis, and features. When using third party service providers we enter into agreements that require them to implement appropriate technical and organisational measures to protect your personal data.
No information contained in a system of records may be disclosed to anyone other than the individual of record without the written consent of that individual, unless specifically allowed under the EU GDPR.
When soliciting personal information from an individual or a third party, the system manager must include the following information on the data collection form or other data collection instrument:
Personal information provided by individuals must be accurate and complete. System managers must ensure that the information in the system is relevant, necessary, and timely.
Standards of Conduct on Personal Information
TheSocialMedwork employees have a duty to protect the security of personal information by:
Ensuring the accuracy, relevance, timeliness, and completeness of records
Avoiding any unauthorised disclosure, verbal or written, of records
Not collecting personal information unless authorized
Collecting only the information needed to perform an authorised function
Collecting information directly from the individual whenever possible
Maintaining and using records with care to prevent any inadvertent disclosure of information.
Physical, administrative, and technical safeguards for their systems of records must be established. The safeguards must ensure the security and confidentiality of records, protect against possible threats or hazards, and permit access only to authorised persons.
Paper records (if any) will be placed in secure locations. Electronic systems will use passwords, identity verification, detection of break-in attempts, firewalls, encryption, and/or other security measures determined to be appropriate by the responsible system and program managers.
The choices about accessing, updating and removing Personal Data
You can request access in writing (email sufficient). You will be able to examine the record and get a copy of it on request. If you are requesting the information on behalf of another individual, you will be asked to provide a signed statement authorising disclosure of the record from that person, and the statement will be kept with the record.
Send your request to email@example.com with the subject “Request for Information". Include in your email:
The record will be provided to you by the system manager within 28 working days after receipt of your request.
What is a routine use? It's the sharing of information for the purpose for which it is collected.
What are TheSocialMedwork's standard routine uses? TheSocialMedwork has identified certain standard routine uses for its systems of records.
TheSocialMedwork may disclose system information as a routine use: TheSocialMedwork employees in the performance of their official duties
In any legal proceeding, where pertinent, to which TheSocialMedwork is a party before a court or administrative body
To authorised officials engaged in investigating or settling a grievance, complaint, or appeal filed by an individual who is the subject of the record.
We use a variety of technical and organisational security measures, including encryption and authentication tools, to maintain the safety of your personal data.
You have the right to request: (i) access to your personal data; (ii) an electronic copy of your personal data (portability); (iii) correction of your personal data if it is incomplete or inaccurate; or (iv) deletion or restriction of your personal data in certain circumstances provided by applicable law (to the extend records must not be kept by law).
If you like would to request a copy of your personal data or exercise any of your other rights, please contact the firstname.lastname@example.org.
TheSocialMedwork collects information, which may include personal data, from your browser when you use our Sites. We use a variety of methods, such as cookies and pixel tags to collect this information, which may include your (i) IP-address; (ii) unique cookie identifier, cookie information and information on whether your device has software to access certain features; (iii) unique device identifier and device type; (iv) domain, browser type and language, (v) operating system and system settings; (vi) country and time zone; (vii) previously visited websites; (viii) information about your interaction with our Sites such as click behaviour, purchases and indicated preferences; and (ix) access times and referring URLs.
Third parties may also collect information via Sites through cookies, third party plugins and widgets. These third parties collect data directly from your web browser and the processing of this data is subject to their own privacy policies. More information on the identity of these third parties and their privacy policies is provided here Link to Cookie Landing Page.
Functional: These cookies are required for basic site functionality and are therefore always enabled. These include cookies that allow you to be remembered as you explore our Sites within a single session or, if you request, from session to session. They help make the shopping cart and checkout process possible as well as assist in security issues and conforming to regulations.
Performance: These cookies allow us to improve our Sites’ functionality by tracking usage. In some cases, these cookies improve the speed with which we can process your request and allow us to remember site preferences you have selected. Refusing these cookies may result in poorly-tailored recommendations and slow site performance.
Social media and Advertising: Social media cookies offer the possibility to connect you to your social networks and share content from our Sites through social media. Advertising cookies (of third parties) collect information to help better tailor advertising to your interests, both within and beyond our Sites. In some cases, these cookies involve the processing of your personal data. Refusing these cookies may result in seeing advertising that is not as relevant to you or you not being able to link effectively with Facebook, Twitter, or other social networks and/or not allowing you to share content on social media.
You can always change your preference by visiting the "Cookie Settings" at the bottom of each page of our Sites.
For a comprehensive and up-to-date summary of every third-party accessing your web browser, we recommend installing a web browser plugin built for this purpose. You can also choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You do this through your browser settings on each browser and device that you use. Each browser is a little different, so look at your browser Help menu to learn the correct way to modify your cookies. If you turn cookies off, you may not have access to many features that make our Sites and Apps more efficient and some of our services will not function properly.
Driftt_aid: anonymous identifier token
Driftt_sid: identifier token for specific browser session
_hjClosedSurveyInvites: This cookie is set once a visitor interacts with a survey invitation modal popup. It is used to ensure that the same invite does not re-appear if it has already been shown.
_hjDonePolls: This cookie is set once a visitor completes a poll using the Feedback Poll widget. It is used to ensure that the same poll does not re-appear if it has already been filled in.
This cookie is set once a visitor minimises a feedback poll widget. It is used to ensure that the widget stays minimised when the visitor navigates through your site.
Cookie name: _ga
Typical value: 1
Cookie name: _gat_UA_XXXXXXXXX_1 (where X is a number)
Typical value: GAXXXXXXXXXX (where X is a number)
View more information from Google on its use of analytics cookies on websites (external website).
CART: The association with the customer's shopping cart.
CATEGORY_INFO: Stores the category info on the page to load pages faster.
COMPARE: The items in the customer's Compare Products list.
CUSTOMER: An encrypted version of the shopper's customer ID.
CUSTOMER_AUTH: Indicates if the customer are currently logged in to the store.
CUSTOMER_INFO: An encrypted version of the shopper's customer group.
EXTERNAL_NO_CACHE: Indicates if caching is disabled or enabled.
FRONTEND: The customer's session ID.
GUEST-VIEW: Determines if guests can edit their orders.
LAST_CATEGORY: The last category visited by the shopper.
LAST_PRODUCT: The most recent product viewed by the shopper.
NEWMESSAGE: Indicates whether a new message has been received.
NO_CACHE: Indicates if the cache can be used to store information.
PERSISTENT_SHOPPING_CART: A link to information about the shopper's cart and viewing history.
RECENTLYCOMPARED: Items recently compared b the shopper.
STF: Information on products the shopper has emailed to friends.
STORE: The store view or language chosen by the shopper.
USER_ALLOWED_SAVE_COOKIE: Indicates if the shopper allows cookies to be saved.
VIEWED_PRODUCT_IDS: The products recently viewed by the shopper.
WISHLIST: An encrypted list of products added to the shopper's wishlist.
WISHLIST_CNT: The number of items in the shopper's wishlist.