List of active policies
This Application collects some Personal Data from its Users.
Further information about Personal Data
SNOMED International Education Service
Your privacy is important to us, this policy is intended to provide more transparency over how we collect and use your personal data. They will also explain how to exercise your rights around the use of your personal information.
When we refer to "SNOMED International," "we," or "us" in this policy, we mean the International Health Terminology Standards Development Organisation (IHTSDO), which controls the information we collect when you use the E-Learning Service (the Data Controller). SNOMED International also own and operate other related services, like support. We refer to all of these products, together with our other services and websites as "Services" in this policy.
In some cases we may need to ask for your explicit consent to process your information or send you emails. In such cases we will either contact you directly or you will be asked for your consent when you next access the service. You have the right at any time to change your consent or have your details removed from our systems where applicable. Further information on how to do this can be found below.
Information we collect about you
We collect information about you when you provide it to us, when you use our Services, and when other sources provide it to us, as further described below.
Information you provide to us
We collect information about you when you input it into the Services or otherwise provide it directly to us.
Account and Profile Information: We collect information about you when you register for an account, create or modify your profile, or set preferences through the Services. For example when you provide your name and email address. You also have the option of adding a profile photo, and other details to your profile information to be displayed in some of our Services. We keep track of your preferences when you select settings within the Services.
Content you provide through this Service: When you apply for a course, request a deferral or extension or withdraw from a course, we will collect information from you to track and manage your progress. We also sometimes ask you for feedback on specific presentation or videos or complete course questionnaires.
Information you provide through our support channels: The Services also include customer support, where you may choose to submit information regarding a problem you are experiencing with a Service. Whether you designate yourself as a technical contact, open a support ticket, speak to one of our representatives directly or otherwise engage with our support team, you will be asked to provide contact information, a summary of the problem you are experiencing, and any other documentation, screenshots or information that would be helpful in resolving the issue.
Information we collect automatically when you use the Services
We collect information about you when you use our Services, including:
Automated self enrollment on informal courses, pathways or open access educational areas;
Starting and completing viewing of online presentations;
Starting, completing and gaining marks in online assessments;
Contributions for online discussion forum as part of course assignments;
Undertaking informal online exercises and self-assessments;
Booking and attending webinar sessions.
Device and Connection Information: We collect information through your device about your operating system, browser type, IP address, or URLs of referring/exit pages. We use your IP address and/or country preference in order to approximate your location to provide you with a better Service experience. How much of this information we collect depends on the type and settings of the device you use to access the Services.
How we use information we collect
How we use the information we collect depends on how you use the service, and any preferences you have communicated to us. Below are the specific purposes for which we use the information we collect about you.
To provide the Services and personalize your experience: We use information about you to provide the Services to you, including to process transactions with you, authenticate you when you log in, provide customer support, and operate and maintain the Services.
To enable E-Learning Service Delivery: Creating an account requires sufficient information to allow the user to login and track the E-Learning presentations they have seen. Some courses, pathways or learning areas enable automatic enrollment. This requires no additional data entry and simply records the date of that students enrollment and allows them to access the materials it contains.Additional information collected in application or registration form for formal courses is used to determine suitability of the course for the student's need. Tracking information on presentations and assessment completion allows the progress of students to be managed and records completion of required and scored learning activities, allowing course completion and grades to be confirmed. Tracking completion of course also allows students to be added to a group of Alumni granted continuing access to course materials (included future updates of those materials).
To enable issuing and validation of certificates: Confirmation of course completion and grade allows the student to be issued with a completion certificate. This information is retained to enable automated online validation of completion certificate information. This data may also be used to determine requirements for future recertification after a prescribed period has elapsed following completion.
To improve and enhance the Service: Information provided in course feedback or questionnaires is used for correcting errors and enhancing course material. Course progress, assessment and overall outcome data is also analyzed to evaluate the appropriateness of learning materials and assessment questions. This information is also used to produce internal Key Performance Indicators and high level statistics to improve performance and monitor demand for the Service.
To communicate with you about the Services: We use your contact information to send transactional communications via email and within the Services, including, reminding you of course completion deadlines, responding to your comments, questions and requests, providing customer support, and sending you updates, security alerts, and administrative messages. These communications are part of the Services and in most cases you will have the option to unsubscribe to opt out of them.
Customer support: We use your information to resolve technical issues you encounter, to respond to your requests for assistance, and to repair and improve the Services.
For safety and security: We use information about you and your Service use to verify accounts and activity, to monitor suspicious or fraudulent activity and to identify violations of Service policies.
To protect our legitimate business interests and legal rights: Where required by law or where we believe it is necessary to protect our legal rights, interests and the interests of others, we use information about you in connection with legal claims, compliance, regulatory, and audit functions.
With your consent: We use information about you where you have given us consent to do so for a specific purpose not listed above. For example, we may invite you to participate in surveys or market research, with your permission. We may also ask your consent to share information from the Member Territory with you about announcements or changes regarding SNOMED CT in your Country.
Legal bases for processing (for EEA users): If you are an individual in the European Economic Area (EEA), we collect and process information about you only where we have legal bases for doing so under applicable EU laws. The legal bases depend on the Services you use and how you use them. This means we collect and use your information only where:
We need it to provide you the Services, including to operate the Services, provide customer support and personalized features and to protect the safety and security of the Services;
It satisfies a legitimate interest (which is not overridden by your data protection interests), such as to control the use and access to our services, the use and licensing of SNOMED CT and to protect our legal rights and interests;
You give us consent to do so for a specific purpose; or
We need to process your data to comply with a legal obligation.
If you have consented to our use of information about you for a specific purpose, you have the right to change your mind at any time, but this will not affect any processing that has already taken place. Where we are using your information because we or a third party (e.g. your employer) have a legitimate interest to do so, you have the right to object to that use though, in some cases, this may mean no longer using the Services.
Sharing with third parties
We sometimes share information with third parties that help us operate, provide, improve, integrate, and support our Services.
Service Providers: We work with third-party service providers to provide website and tooling development, hosting, maintenance, backup, storage, virtual infrastructure, payment processing, analysis and other services for us, which may require them to access or use information about you. If a service provider needs to access information about you to perform services on our behalf, they do so under instruction from us, including abiding by policies and procedures designed to protect your information.
SNOMED International Member Countries: We provide anonymised Statistical data on presentation viewing, course intakes and outcomes for students resident in a Member territory. Your Personal Information will only be shared with Member Countries when you give us explicit consent to do so.
Individuals or Organisations supporting translated courses: We engage with nominated individuals or organisations to support the delivery of translated courses to non-English speakers. Such individuals or organisations need to access information about you to perform these services on our behalf, they do so under instruction from us, including abiding by policies and procedures designed to protect your information.
How we store and secure information we collect
Information storage and security:We use data hosting service providers in the United States to host the information we collect, and we use technical measures to secure your data. We have ensured that our service providers are GDPR or Privacy Shield compliant. While we implement safeguards designed to protect your information, no security system is impenetrable and due to the inherent nature of the Internet, we cannot guarantee that data, during transmission through the Internet or while stored on our systems or otherwise in our care, is absolutely safe from intrusion by others.
How long we keep information:How long we keep information we collect about you depends on the type of information. After such time, we will either delete or anonymise your information or, if this is not possible (for example, because the information has been stored in backup archives), then we will securely store your information and isolate it from any further use until deletion is possible.
How to access and control your information:You have certain choices available to you when it comes to your information. Below is a summary of those choices, how to exercise them and any limitations. We will respond to requests about this within thirty(30) days.
Your request and choices may be limited in certain cases. For example, if fulfilling your request would reveal information about another person, or if you ask to delete information which we are permitted by law or have compelling legitimate interests to keep. If you have unresolved concerns, you may have the right to complain to a data protection authority in the country where you live, where you work or where you feel your rights were infringed.
You have the right to request a copy of your information. To object to our use of your information, to request the deletion or restriction of your information, or to request your information in a structured, electronic format. To initiate these requests, you may contact our Data Protection Team via email@example.com.
You can request to have your data deleted, (the right to be forgotten). Please note, however, that we may need to retain certain information for record keeping purposes, to complete transactions or to comply with our legal obligations. We will advise you if there is any reason we cannot delete your data as described above.
You can request that we stop using your information. In some cases, you may ask us to stop accessing, storing, using and otherwise processing your information where you believe we don't have the appropriate rights to do so. For example, if you believe a Services account was created for you without your permission or you are no longer an active user, you can request that we delete your account as provided in this policy. Where you gave us consent to use your information for a limited purpose, you can contact us to withdraw that consent, but this will not affect any processing that has already taken place at the time. When you make such requests, we may need time to investigate and facilitate your request. If there is a delay or dispute as to whether we have the right to continue using your information, we will restrict any further use of your information until the request is honoured or the dispute is resolved.
You can Opt out of communications. You may opt out of receiving communications from us by using the unsubscribe link within each email, updating your email preferences within your Service account settings menu, or by contacting us as provided below to have your contact information removed from our email list or registration database. Even after you opt out from receiving promotional messages from us, you may still receive transactional messages from us regarding our Services to allow us to operate your account or in relation to the provision or use of the Services. You can opt out of some notification messages in your account.
You have the right to Data portability. To obtain some of your information in a format you can move from one service provider to another (for instance, when you transfer your mobile phone number to another carrier). Depending on the context, this applies to some of your information, but not to all of your information. Should you request it, we will provide you with an electronic file of your basic account information.