US-EU Safe Harbor

Protocol Driven Healthcare, Inc. (“PDHI”)
SELF-CERTIFYING AN ORGANIZATION’S ADHERENCE TO THE SAFE HARBOR
DESCRIPTION OF THE ORGANIZATION’S PRIVACY POLICY FOR PERSONAL INFORMATION

PDHI is a SaaS (Software-as-a-Service) provider and supplies its technology and services to its clients; typically, a company that is in the business of selling and delivering comprehensive workplace health management programs (a “wellness program”) to employers (the “end-client”). The program participants are the employees of the end-client to which the program is being delivered.

PDHI does not have a typical privacy policy due to the manner in which it delivers its services. PDHI does not supply its services to nor have any direct relationship with the individuals who are the program participants (end-client employees) and who supply the personal information which in the case of a wellness program is health related information.

PDHI’s client, whether US or EU based, will supply the privacy policy and is responsible to apply and meet the requirements of the Safe Harbor Principals for the EU or Swiss personal data that is used to deliver and manage the wellness program to the end-client’s employees.

PDHI complies with the US-EU Safe Harbor Framework and US-Swiss Safe Harbor Framework as set forth by the US Department of Commerce regarding the collection, use, and retention of personal information from European Union member countries and Switzerland. PDHI has certified that it adheres to the Safe Harbor Privacy Principles of notice, choice, onward transfer, security, data integrity, access, and enforcement. To learn more about the Safe Harbor program, and to view our certification page, please visit www.export.gov/safeharbor/.

In the case of a PDHI client wishing to provide a wellness program to an EU or Swiss based employer or an employer with EU or Swiss employees, PDHI recognizes and commits that it will not handle EU or Swiss personal data unless its client is certified under one of the Safe Harbor Frameworks or is directly compliant with the EU Directive on Data Protection.

In compliance with the US-EU and US-Swiss Safe Harbor Principles, PDHI commits to resolve complaints about your privacy and our collection or use of your personal information. European Union or Swiss citizens with inquiries or complaints regarding this privacy policy should first contact PDHI at:

Privacy Officer
Protocol Driven Healthcare, Inc.
150 Morristown Road, Suite 200
Bernardsville, New Jersey 07924-2626
USA
 

privacy@pdhi.com
(p) 515-440-8390
(f) 515-440-8399

PDHI has further committed to refer unresolved privacy complaints under the US-EU and US-Swiss Safe Harbor Principles to an independent dispute resolution mechanism, the BBB EU SAFE HARBOR, operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed by PDHI, please visit the BBB EU SAFE HARBOR web site at www.bbb.org/us/safe-harbor-complaints for more information and to file a complaint.