We take the privacy and confidentiality of our customers and visitors seriously. That is why we pledge to respect the privacy of the information we receive from you, to remain transparent and to keep your data safe, within the parameters identified herein. We will also endeavor to provide you with the possibility to decide how your information is shared.
This notice discloses the privacy practices for www.sophiagenetics.com and is served by: SOPHiA GENETICS SA which is headquartered at Rue du Centre 172, 1025 Saint-Sulpice, Switzerland and its subsidiaries, including without limitation SOPHiA GENETICS SAS, SOPHiA GENETICS LTD and SOPHiA GENETICS, Inc.
2. SOPHiA GENETICS is a Global Company Headquartered in Switzerland
Our headquarter is in Switzerland. You acknowledge and consent that any information you provide or we may collect may be used, processed, and transferred to Switzerland and other countries or territories and that those countries or territories may not offer the same level of data protection as the country where you reside.
This Policy does not cover the following elements of data:
The receipt, creation, or analysis of genomic or other data derived from people (such
as through customer’s use of SOPHiA DDM our Software as a Service Products);
Genotyping and sequencing services for research purposes;
The receipt and storage of clinical and administrative data;
The receipt and storage of radiomics images.
4. Information We Collect
We collect various types of information from you, including information you voluntarily provide us, information required to allow us to offer to you the Site or Products and information we get from your use of our Site or Products.
4.1 Information You Provide Us Directly
We may collect information from you, including, but not limited to your username, first and last name, e-mail, password, phone number, and mailing address, when you create an account to log in to our network or at other times. If you provide us feedback or contact us via email, we collect your name and email address, as well as any other content included in the email, in order to send you a reply, and any information that you submit to us, such as a resume.
4.2 Information Collected via Technologies
To make our website and related services more useful to you, our servers (which may be hosted by a third-party service provider) collect information from you, including browser type, operating system, Internet Protocol (IP) address (a number that is automatically assigned to your computer when you use the Internet, which may vary from session to session), domain name, and/or a date/time stamp for your visit.
4.3 Do Not Track
We do not respond to browser-based “do not track” signals. We do not have any third parties that push content to our site.
5. How the Information is Collected
6. Use of your data
We may use the information collected:
To improve the Site, the Products, including any applications, products, services, and
software available through them;
To improve the customer experience;
For marketing purposes;
To store your interests and preferences in order to customize your use of the Site or
To communicate with you (such as for product support and billing issues);
agreement governing the use of the Site, the Product, or other of our products or
To authenticate users;
To improve or otherwise modify our Products and/or services;
To compile and analyze trends;
To carry out transactions in connection with you;
We also may aggregate the collected information with information from other
customers and users of the Site, Products, or other products and services for analysis such as to determine user and performance trends. Generally, any such aggregation will involve de-identified or anonymous data.
7. Sharing of Personal Information
As a general rule we do not provide, sell, or lease your personal information to any third parties for their marketing use without your express consent. However, you acknowledge that your personal
information may be provided to third parties in connection with your use of their websites, applications, software, or products.
7.1 Data Storage
We store your account, profile, and member information (including Personal Information) on "cloud" servers operated by us or by third party providers. Our Site and the Products are stored using sufficient technical, physical and administrative security measures, including without limitation the encryption of all stored sequenced data using encryption algorithms.
While we strive to ensure that no data breach you occur, no computer system or transmission of information can ever be completely secure or error-free, and you should not expect that your information will remain private under all circumstances. It is your responsibility to safeguard any passwords, token, ID numbers or similar information associated with your use of the Site or the Products.
7.2 Service Providers
We may rely on various third-party service providers and contractors to provide services that support the Site and our operations, including, without limitation, maintenance of our databases, distribution of emails and newsletters on our behalf, data analysis, payment processing and other services of an administrative nature. Such third-parties may have access to your Personal Information for the purpose of performing the service for which they have been engaged. However, such third-party providers shall remain under confidentiality obligations for as long as they hold personal data from us.
7.3 Compliance with Laws and Law Enforcement
SOPHiA GENETICS cooperates with government and law enforcement officials and private parties to enforce and comply with the law. We may disclose Personal Information and other user information when we, in our sole discretion, have reason to believe that disclosing this information is necessary to identify, contact, or bring legal action against someone who may (either intentionally or unintentionally) be causing injury to or interference with our rights or property, users of our Site, or anyone else who could be harmed by such activities. We may also disclose user information when we believe, in our sole discretion, that such disclosure is required by applicable law. We also may be required to disclose an individual’s personal information in response to a lawful request by public authorities, including to meet national security or law enforcement requirements.
7.4 Business Transfers
We reserve the right to transfer any and all information that we collect from Site users, including Personal Information, to a third-party in the event of any corporate reorganization, merger, sale, joint venture, assignment, transfers, or other disposition of all or any portion of SOPHiA GENETICS' business, assets, or stock.
8. Changing or deleting your Information
You may access, review, update, correct or delete the Personal Information you provide to us by contacting us. If you completely delete all such information, then your account may become deactivated. If you would like us to delete your account in our system, please contact us at firstname.lastname@example.org with a request that we delete your Personal Information from our database. We will use commercially reasonable efforts to honor your request. We may retain an archived copy of your records as required by law or for legitimate business purposes.
9. Limited use in our email list
We require consent prior to adding you to any emailing list, unless we deem such email communication is required as part of the provision of the Products. If you no longer wish to receive new notices, email newsletters or other future promotional communications from us, you may choose to unsubscribe by clicking on the link at the bottom of any such communication and following the instructions thereto. Alternatively, you may notify us by email at email@example.com with the word "remove" in the subject header, and we will remove your name from our email recipient list, within five (5) days’ notice. Opt-out is not possible for necessary service or account maintenance notices or other administrative and transactional notices.
10. Google AdWords Remarketing
We use Google AdWords Remarketing to advertise across the Internet. AdWords Remarketing will display relevant ads tailored to you, based on what parts of our sites you have viewed by placing a cookie on your machine. This cookie does not identify you. As an example, it could mean that we advertise to previous visitors who haven’t completed a task on our site such as an incomplete contact form.
If you do not wish to participate in our Google AdWords Remarketing, you can opt out by visiting Google's Ads Preferences Manager.
11. Contacting You
12. Retention of Collected Information
14. Security of Collected Information
The Site and Products are not directed towards persons under the age of 16. We do not knowingly collect personal information from minors under the age of 16 that use the Site or Products. If you become aware that a user under the age of 16 has used the Site, please contact SOPHiA GENETICS at firstname.lastname@example.org. If we become aware that a child under 16 has provided us with Personal Data, SOPHiA GENETICS will take the necessary steps to have that Personal Data irrevocably removed.
16. Your California Privacy rights (for users located in California)
Under California Civil Code Section 1798.83 (known as the “Shine the Light” law), SOPHiA GENETICS customers who are residents of California may request certain information about our disclosure of personal information during the prior calendar year to our affiliates or to third parties their direct marketing purposes. To make such request, please write to us at the following address: SOPHiA GENETICS SA, Rue du Centre 172, 1025 Saint-Sulpice, Switzerland or you may send us an email at email@example.com.
17. Canada’s CASL (for consumers located in Canada)
18. Privacy Compliance (General Data Protection Regulation)
SOPHiA GENETICS is compliant with the General Data Protection Regulation (“GDPR”) as it becomes effective starting May 25th, 2018. As provided for by GDPR, SOPHiA GENETICS positions remains a data processor (or a subprocessor) of its clients, whom are either Data Controllers or Data Processors. As such, SOPHiA GENETICS is not liable for the provisions of GDPR that pertain to the Data Controllers, unless SOPHiA GENETICS acts in the capacity of a Data Controller.
Data Processor obligations, are indicated in the document entitled GDPR Addendum, which may be requested to SOPHiA GENETICS, as provided for in Section 28 of GDPR.
19. Contact Us