HMR Health Market Research International, SA (referred to “HMR”), with VAT number 514.190.094 and headquarters at Travessa de Santa Catarina, 8, 1200-403 Lisbon (Portugal) is the data controller regarding the processing of your personal data.
HMR is committed to complying with the best practices in the field of security and protection of personal data. For this purpose, HMR has approved a program capable of protecting the data that is provided to us by all those who are related to HMR in any way.
In this context, a Data Protection Officer has been appointed which can be contacted by the email email@example.com.
Personal data are any information relating to an identified or identifiable individual person.
An identifiable person is one who can be identified, directly or indirectly, by reference to an identification number or one or more factors specific to their physical, physiological, mental, economic, cultural, or social identity.
Some examples of the personal data that HMR collect are “e-mail address”, when you contact us, or your “IP address”, when you visit us.
Your personal data that is collected and processed by HMR in line with the applicable legislation and industry best practices.
HMR will use your personal data for the following purposes:
a. To analyse, respond and manage your messages, information requests and contact details;
b. To manage and operate HMR website;
c. To secure information systems and prevent fraud;
d. To adapt, improve, and modify services, namely through the identification of trends, data analysis and audits; and
e. To develop HMR commercial activities.
HMR will not use your personal data for other processing purposes or others that don’t have any relation with these.
HMR collects and processes your personal data with different legal basis, depending on the processing purposes.
|Processing purposes||Legal Basis|
|To analyse, respond and manage your messages, information requests and contact details||HMR legitimate interests|
|To manage and operate HMR website||HMR legitimate interestsConsent (for cookies)|
|To secure information systems and prevent fraud||HMR legitimate interests|
|To adapt, improve, and modify services, namely through the identification of trends, data analysis and audits||HMR legitimate interests Consent (for cookies)|
|To develop HMR commercial activities||HMR legitimate interests|
HMR collects and processes different categories of personal data, depending on the purpose for which it is intended.
|Processing purposes||Personal data|
|To analyse, respond and manage your messages, information requests and contact details||Name, E-mail|
|To manage and operate HMR website||Cookie data|
|To secure information systems and prevent fraud||IP address
|To adapt, improve, and modify services, namely through the identification of trends, data analysis and audits||Cookie data|
|To develop HMR commercial activities||Name, E-mail|
HMR collects your personal data through the forms on website, through the communication and interaction that website makes with your equipment and also through the messages you send us.
Your personal data are collected through your equipment as follows:
a. Through the contact detail of your messages and information requests
b. Through your browser
c. Through any existent cookies, pixel tags and other similar technologies
d. Through IP address
HMR undertakes to collect and process your personal data lawfully, fairly and in a transparent manner.
The use of this website and the services provided by HMR are not directed to minors and the personal data of minores will not be intentionally processed.
Cookies, by definition, are small pieces of information, that collect and storage information on your equipment through your browser.
There are cookies that are strictly necessary for the website operation, for example, to:
a. Identify and authenticate the user; or
b. Remember your habitual preferences; or
c. Allow the user to complete tasks without having to re-enter information (e.g., when changing pages or returning, as in the case of form data, shopping cart, etc); or
d. Effect, enable, facilitate, or support communications from/through the website; or
e. Provide certain functionalities requested by the user; or
f. Information systems security and/or fraud prevention
These cookies will be stored on your device and do not require your consent.
Cookies may also be used to collect information, for example:
a. Measure and obtain statistics of the use of the website, for example, number of unique visitors, detect search engine keywords, detect specific aspects of navigation such as duration of visit, most visited pages, or most accessed contents (analytics cookies); or
b. Adapt advertising and marketing based on your behaviour and profile by adapting the advertisements to be displayed (tracking cookies, advertising, analytics); or
c. Third parties other than HMR, which collect your browsing information across different websites to create such profiles (third party cookies)
The storage of these tracking, advertising, analytics, and third-party cookies will always depend on your previous acceptance and consent, that can be withdrawn at any time through specific tools and/or your browser.
Like cookies, pixels tags, web beacons and other similar technologies are images and/or pieces of code that are loaded when a user visits a webpage or opens an email.
These technologies contain an external link to a tool server and allows to track the user behaviour, to obtain data for online marketing, analysis, and re-routing marketing.
When the user visits the destination website, this operation is registered in the log files on the tool server and may include several information about the user, namely, the operating system, session duration or IP address.
The storage of this tools will always depend on your previous acceptance and consent, that can be withdrawn at any time through specific tools and/or your browser.
The following table describes and explains how these tools are used:
|#||Type of Cookies||Cookies||Duration||Purpose|
|hmr.co.com and subsites||Strickly necessary||moove_gdpr_popup||90 days||Save cookie settings|
|hmr.co.com and subsites||Tracking, Advertising, Analytics and Third-Party cookies||_gat
|1 minute||Used to speed up the speed of server requests. This cookie does not store any user information.|
|hmr.co.com and subsites||Tracking, Advertising, Analytics and Third-Party cookies||_gid
|24 hours||Used to distinguish users, it allows to group the user behaviour for each user, permitting Google Analytics analysis.|
|hmr.co.com and subsites||Tracking, Advertising, Analytics and Third-Party cookies||_ga
|90 days||Used to distinguish users, ensures Google Analytics pageview measurement functionalities.|
The following table describes and explains how these tools are used:
a. The cookie management tool by adjusting and defining your preferences or to disable these cookies; or
b. Using a blocking tool that can be used as an extension to your browser; or
c. Your browser configurations, disabling cookies and other tools, according to the instructions defined on the following table:
|Microsoft Edge (EN)||https://support.microsoft.com/en-us/help/17442/windows-internet-explorer-delete-manage-cookies
To guarantee the appropriate security and maximum confidentiality of your personal data, HMR processes the personal information in a confidential way, in accordance with its information security and privacy policies and procedures, which are updated periodically according to the necessities and to the terms and conditions legally established.
HMR applies all the necessary and adequate technical and organizational measures for data protection and compliance with legal requirements, ensuring that your personal data is accessed only by HMR employees that need to have access to it to perform their functions.
To protect your personal data, HMR uses data center providers that offer adequate and documented security measures. For example, your personal data are kept on controlled environments with limited accesses.
In the same way, when you browse on HMR website, we protect your data with cryptographic keys (e.g Transport Layer Security – security protocol that protects communications through the internet).
Despite of these policies and procedures, no security system is 100% failsafe.
So, HMR need your help to keep your personal data safe, and in case of you have a user account, here are some tips you may apply:
a. You must keep your password secret;
b. You must log-off your account on public devices; and
c. If you suspect that your password has been compromised, you should tell us immediately.
Your personal data will be stored only for the time necessary to achieve the purpose defined.
|Processing purposes||Storage/ Retention period|
|To analyse, respond and manage your messages, information requests and contact details||Until 12 months|
|To manage and operate HMR website||See section 9|
|To secure information systems and prevent fraud||5 years (according to article 118 (1) (c) of the Portuguese Criminal Code)|
|To adapt, improve, and modify services, namely through the identification of trends, data analysis and audits||See section 9|
|To develop HMR commercial activities||Until 12 months|
After achieving the purpose defined, your personal data will be erased or anonymized.
If different criteria or retention period are published on guidelines, recommendations, or related law, those will be considered.
Without prejudice to the retention periods indicated, the storage of your personal beyond those periods shall not be affected in the following situations:
a. While the defined retention period to the purpose has not finished;
b. For declaration, exercise or defence of HMR legal claims;
c. For as long as a judicial decision has not become final and unappealable in any litigation related to that purpose.
d. For the fulfilment of new legal obligations to which HMR becomes subject;
e. For the fulfilment of orders of judicial authorities and/or criminal law enforcement agencies, within the scope of a legal process, in compliance with a reasoned order from the competent judicial authority; or
f. For the fulfilment of acts issued by administrative authorities and supervisory authorities, within their competences.
Considering GDPR, you have some rights regarding your personal data, listed below, which are exercised in accordance with and within the limits defined by legislation:
You have also the right to file a complaint with the supervisory authority.
RIGHT TO ACCESS INFORMATION
You can confirm if your personal data is being processed and, if applicable, the right to access your personal data.
RIGHT TO RETIFICATION
You have the right to request, at any time, the rectification of your personal data and also the right to have incomplete personal data completed.
RIGHT TO DATA ERASURE
You can request the erasure of your personal data when one of the reasons listed in the legislation applies.
RIGHT TO RESTRICT DATA PROCESSING
You have the right to limit the processing of your personal data by HMR, if the one of the reasons listed in the legislation applies.
RIGHT TO OBJECT DATA PROCESSING
You have the right to object, on grounds relating to their particular situation, at any time to the processing of personal data.
RIGHT TO DATA PORTABILITY
You have the right to receive the personal data concerning them and which they have provided to HMR in a structured, commonly used and machine-readable format and the right to transmit those data to another controller.
RIGHT TO WITHDRAW CONSENT
You have the right to withdraw consent previously provided for some processing activities.
You can exercise your rights by contacting HMR or, its Data Protection Officer through the following email firstname.lastname@example.org.
If your requests are unfounded or excessive, in particular, because of their repetitive character, HMR reserves the right to charge administrative costs or refuse to comply with the request.
HMR may use third parties (processors) to provide some services, such as management of data centers, marketing or maintenance and technical support.
HMR ensures that such third parties, that may have access to your personal data, offers high guarantees on privacy and data protection compliance. If your personal data is disclosed, it is also ensured that it is only for the provision of the service. In those cases, HMR still remains the controller of your personal data.
HMR may also communicate your personal information to the following entities:
a. Legal representatives and courts, for declaration, exercise or defence of HMR legal claims; and
b. Judicial authorities and/or criminal law enforcement agencies within the scope of a legal process, in compliance with a reasoned order from the competent judicial authority
The website www.hmr.co.com and its subsites may contain links to third party websites (e.g LinkedIn, when you click on the button “Follow Us”). HMR is not responsible for the privacy practices of such websites. Thus, HMR recommends that you read such third party websites privacy statements. HMR cannot be held responsible or liable for the content and activities of such websites.
HMR does not transfers your personal data to any third parties established outside the European Union.
If, in the future, any transfers take place, HMR undertakes to ensure that the transfer complies with the applicable legal provisions, regarding the determination of the adequacy of such countries in terms data protection and the requirements applicable to such transfers.
This website is not directed for children under thirteen (13) years old.
If you are under 13 years old, HMR requests that you do not send your personal data through this website (e-mails, website forms).
HMR requests that you do not send data regarding with:
a. Your physical or mental health;
b. Your racial or ethnic origin, your political opinion, your religion or philosophical beliefs or trade union membership;
c. Your genetic or biometric data; and
d. Your sex life or sexual orientation
If you send us this such information, it will be immediately erased.
Lisbon (Portugal), 14.09.2021