To protect the privacy and Personally Identifiable Information (PII) of CRYOEFFECT customers and employees.
Customer – a company or individual who has entered a business relationship to purchase goods and/or services from CRYOEFFECT.
Individual – The person whose data CRYOEFFECT has processed using the CRYOEFFECT website or other tool.
Personally Identifiable Information – (PII) is any data that could potentially identify a specific individual. Any information that can be used to distinguish one person from another and can be used for de-anonymizing anonymous data can be considered PII.
CRYOEFFECT, its employees and contractors take responsibility for PII in accordance with CRYOEFFECT policies and standards. CRYOEFFECT Privacy Officer is responsible for defining the requirements of this policy.
CRYOEFFECT’s Information Security Officer is responsible for implementing and maintaining appropriate controls and measures to enable compliance.
Notice, Choice and Consent
CRYOEFFECT provides notice as to the purposes for which PII is collected, used, retained, and disclosed.
Unless required by law, CRYOEFFECT shall not use or disclose personal information for any purpose other than the purpose for which it was originally collected without first identifying and documenting the new purpose and obtaining the appropriate consent.
Collection and Use
CRYOEFFECT does not collect data indiscriminately. CRYOEFFECT collects PII only for the purposes of providing and promoting services we offer and limits use to those purposes, including initiating, maintaining, enhancing, and terminating the employee-employer relationship. PII shall be collected by fair and lawful means, and not misleading or deceiving individuals about the purpose for which information is collected.
CRYOEFFECT may also collect PII from other sources either with the consent of the individual or where permitted or required by law. Examples of indirect sources of PII include background checks, employers, or personal references.
Retention and disposal
CRYOEFFECT retains PII only as long as necessary to fulfill the stated purposes or al legally required and thereafter appropriately disposes of such information. CRYOEFFECT will specify the minimum and maximum retention periods for the various records containing PII. When PII is no longer necessary or relevant for the identified purpose or to fulfill a legal or business requirement, it shall be securely destroyed. CRYOEFFECT will either physically or electronically erase the PII or make it anonymous in a non-recoverable manner.
Unless CRYOEFFECT is permitted or required by law to prohibit access, CRYOEFFECT makes PII available for review and updating, either directly through self-service features or through a direct request of access.
CRYOEFFECT does not use or disclose PII for purposes other than those for which it is collected, unless required by law. CRYOEFFECT does not sell any PII to third parties for marketing or any other commercial purposes.
CRYOEFFECT has implemented policies, procedures, and practices to protect PII. CRYOEFFECT protects PII using recognized industry standard security safeguards appropriate to the sensitivity of the information. CRYOEFFECT reviews its security policies and procedures on a regular basis and updates them as needed to maintain their relevance. CRYOEFFECT makes reasonable security arrangements to protect PII in its custody or under its control from and against risks, such as loss or theft, unauthorized access, collection, use, disclosure, copying modification, disposal, and destruction.
The methods of protection include physical measures, organizational measures, and technological measures.
CRYOEFFECT relies on customers and employees to supply CRYOEFFECT with accurate, complete, and up-to-date information that is relevant to CRYOEFFECT’s services. Individuals are asked to review their records on a regular basis and make the appropriate updates or notify CRYOEFFECT of errors promptly. CRYOEFFECT makes reasonable efforts to maintain the integrity of the data necessary to fulfill the purposes for which the information is to be used.
Changes to this Policy
Last Update: October 2020.