Privacy Policy

Welcome to inVita intelligence Limited’s privacy policy. inVita intelligence Limited ("We" or “inVita intelligence”) are committed to protecting and respecting your privacy.

This privacy policy (together with, where applicable, our Terms and Conditions of Trading, Location End User Licence Agreement and Patient Licence Agreement) applies to:

your use of our website www.invitaintelligence.com (“our Site”);
your use of:
- our software, such as our online software component known as INRstar and/or any other software (including software applications) owned or licensed by InVita intelligence (“Software”);
- our mobile applications, such as our mobile application for patient use, which owned or licensed by InVita intelligence (“Patient Software”);
- third party software licenced to inVita intelligence;
- equipment, such as patient self-care equipment and/or any other components or goods (“Equipment”);
- our services, patient self-care services (“Services”); and
your purchase (or, in the case of devices, hire) of Software, Services or Equipment,

and sets out the basis on which any personal data we collect from you or that you provide to us (whether as an individual or an individual acting on behalf of an organisation/location), will be processed by us. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it. This privacy policy also tells you about your privacy rights and how the law protects you.

Our Site, Software and Patient Software is not intended for children and we do not knowingly collect data relating to children.

Your acceptance of this privacy policy is deemed to occur upon your first use of our Site and/or Software, by downloading the Patient Software or on placing an order with us. If you do not accept and agree with this privacy policy, you must stop using our Site, Software, Services or stop downloading the Patient Software immediately.

Personal Data

You may be asked to provide personal data whilst you are in contact with us. Personal data is information that can be used to identify or contact you. You do not have to provide the personal data that we request, however, if you choose not to, we may not be able to provide you with the services that you have requested.

If we combine personal data with non-personal data, the combined information will be treated as personal data for as long as it remains combined. Personal data does not include data where the identity has been removed (anonymous data).

Controller

For the purpose of the retained EU law version of the General Data Protection Regulations ((EU) 2016/679) and the Data Protection Act 2018 (“Data Protection Legislation”) the controller of your personal data is inVita intelligence Limited a company registered in England and Wales with company registration number 14882920 whose registered office is at The Old Cattle Market, Porthleven Road, Helston, England, TR13 0SR. Our Data Protection Registration Number is ZB575862.

inVita intelligence Limited is part of a group of companies. This privacy policy is issued on behalf of the inVita intelligence Group so when we mention "inVita intelligence", "we", "us" or "our" in this privacy policy, we are referring to the relevant company in the inVita intelligence Group responsible for processing your data. inVita intelligence Limited is the controller and responsible for this site.

This privacy policy does not apply to clinical or other associated data relating to patients, collected in the course of treating patients, which is inputted by you (or us on your behalf) onto the Software or Patient Software for the purpose of using the Software, Patient Software, Services (“Patient Data”). For the purposes of Data Protection Legislation, inVita intelligence Limited is the processor of Patient Data which is processed in accordance with our Terms and Conditions of Trading and End User Licence Agreement on behalf of your clinician (the controller of the Patient Data).

Information we may collect from you and how we use it

We may collect, use, store and transfer different kinds of personal data about you which we have grouped together as follows:

Identity Data includes your name, username, password, date of birth, postal address, email address, telephone number, address associated with your order, you NHS number, your professional registration number and your employment status. The identity data may be processed for the purpose of setting up your user account within the Software or Patient Software, processing and delivering your order for Software, Patient Software, Equipment, training and documentation, for the installation and servicing of Products, for training purposes, to provide you with information from your clinician covering your treatment, medication, appointments or other data your clinician needs to provide to you that relates to your health and medical condition, managing our relationship with you (including notifying you about changes to our privacy policy and to our Services and Software, to provide you with feedback as to your use of our Software or Patient Software and how to improve performance, for support, maintenance and patient safety (including the investigation of faults) and to provide training), enabling you to complete a survey, administer and protect our business, Site, Software or Patient Software (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data). The legal basis for this processing is the performance of a contract and/or taking steps, at your request, to enter into such a contract and our legitimate interests (namely to keep our records updated, to study how our Site, Software, Patient Software and Products are used, for the running of our business, provision of administration and IT services, network security).
Contact Data includes your name, email address, telephone number and postal address associated with your account or order. The contact data may be processed for the purpose of contacting you directly in relation to the Software, Patient Software, Services or Products, processing and delivering your order for our Products, for the installation and servicing of Products, managing our relationship with you (including notifying you about changes to our privacy policy and to our Services and Software, to provide you with feedback as to your use of our Software or Patient Software and how to improve performance, for support, maintenance and patient safety (including the investigation of faults) and to provide training), enabling you to complete a survey, administer and protect our business, Site and Software or Patient Software (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data). The legal basis for this processing is the performance of a contract and/or taking steps, at your request, to enter into such a contract and our legitimate interests (namely to keep our records updated, to study how our Site, Software and Patient Software is used, for the running of our business, provision of administration and IT services, network security).
Financial Data includes bank account, direct debit and payment card details (type, number, name on card, expiry date and CCV code). The financial data may be processed for the purposes of processing and delivering your order for our Software, Patient Software, Equipment, training and documentation (namely managing payments and charges and collecting monies). The legal basis for this processing is the performance of a contract and our legitimate interests (namely to recover debts due).
Transaction Data includes details about any Products, Services, Software or Patient Software you have ordered from us. The transaction data may be processed for the purpose of processing and delivering your order. The legal basis for this processing is the performance of a contract and our legitimate interests (namely our interest in the proper administration of our Site, Software, Patient Software and business).
Technical Data includes internet protocol (IP) address, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the computer, smartphone, mobile telephone or other electronic device you use to access our Site, Software or Patient Software. The technical data may be processed for the purpose of administering and protecting our business, Site, Software or Patient Software (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data), to ensure that content from our Site, Software or Patient Software is presented in the most effective manner for you and for your computer, smartphone, mobile telephone or other electronic device to improve the performance and features of our Software or Patient Software, to maintain our Software or Patient Software and ensure you are using the correct version of our Software or Patient Software, to keep our Site, Software and Patient Software safe and secure. The legal basis for this processing is our legitimate interests (namely to grow our business and protect our Site, Software and Patient Software).
Profile Data includes your email, username and password, details of orders made for our Services and Software, your interests, preferences, feedback and survey responses. The profile data may be processed for the purpose of managing our relationship with you (including notifying you about changes to our privacy policy and to our Products, Services, Software or Patient Software and asking you to leave a review), enabling you to complete a survey, to make suggestions and recommendations to you about other Services and Software that may be of interest to you. The legal basis for this processing is the performance of a contract and our legitimate interests (namely to keep our records updated, to study how our Software or Patient Software is used and to grow our business and to inform our marketing strategy).
Usage Data includes information about how you use our Site, Software or Patient Software (including the pages you look at and how you use them). This usage data may be processed for the purposes of support, maintenance and patient safety (including the investigation of faults), to maintain and protect our Software or Patient Software and ensure you are using the correct version of our Software or Patient Software, to improve the performance and features of our Services and Software, to provide you with feedback as to your use of our Software or Patient Software and how to improve performance, to provide training, enabling you to complete a survey, to deliver relevant website contents and use data analytics to improve our Site, marketing, customer relationships and experiences and to make suggestions and recommendations to you about Products, Services, Software or Patient Software that may be of interest to you. The legal basis for this processing is the performance of a contract and our legitimate interests (namely to study how our Site, Software or Patient Software is used and to grow our business and to keep our Site, Software and Patient Software updated and relevant).
Installation and Service history Data includes records relating to the installation of our Software and Patient Software at your home or business and information relating to the servicing of that Software Installation and Service history Data may be processed for the purposes of improving the performance and features of our Services and Software, to maintain and protect our Software or Patient Software and ensure you are using the correct version of our Software or Patient Software. The legal basis for this processing is the performance of a contract and our legitimate interests (namely to keep our Software or Patient Software updated and relevant and improve the performance of our Software or Patient Software).
Marketing and Communications Data includes your preferences in receiving marketing from us and our third parties and your communication preferences. The marketing and communications data may be processed for the purposes of sending you the relevant notifications. The legal basis for this processing is our legitimate interests and consent.

In addition to the specific purposes for which we may process your personal data set above, we may also process any of your personal data where such processing is necessary for compliance with a legal obligation and to ensure regulatory compliance to which we are subject, or in order to protect your vital interests or the vital interests of another natural person.

We also collect, use and share anonymised Aggregated Data such as statistical or demographic data for any purpose. Aggregated Data may be derived from your personal data but is not considered personal data in law as this data will not directly or indirectly reveal your identity. For example, we may aggregate your Usage Data to calculate the percentage of users accessing a specific website feature. However, if we combine or connect Aggregated Data with your personal data so that it can directly or indirectly identify you, we treat the combined data as personal data which will be used in accordance with this privacy policy.

We may also provide you with information about offers and services that are similar to those that you have already received or we feel may interest you. If you:

have already concluded a contract with us, (e.g. if you have purchased Software, Services from us or have downloaded Patient Software) we will only contact you by electronic means (e-mail, text or Software notifications) with information about offers and services similar to those which were the subject of a previous contract. If you do not want to be on our mailing list, you can opt out at any time by contacting us or unsubscribing by using the links provided in our electronic communications and at the point of providing your details.
are a potential new customer (e.g. enquiring about Software, Products or Services), we will contact you by electronic means only if you have provided your explicit consent to this. If you are happy for us to use your personal data in this way, please tick the relevant box situated on the website page/form on which we collect your details. Again, if you do not want us to use your data in this way, you can opt out at any time by contacting us or unsubscribing by using the links provided in our electronic communications.

How is your Personal Data collected

We use different methods to collect data from and about you including through:

Direct interactions. You may give us your Identity, Contact, Financial Data and Marketing and Communication Data by filling in forms or by corresponding with us by post, phone, email or otherwise. This includes personal data you provide when you:
- order Software, Patient Software, Equipment, training and documentation from us (which will generate the Transactional Data);
- create a user account in our Software or Patient Software;
- request the installation and servicing of Software or Patient Software you have ordered form us (which will generate the Installation and Service history Data);
- request marketing materials to be sent to you;
- enter a survey;
- report a problem with our Site, Software or Patient Software;
- leave a review or complete a contact form for customer service queries; or
- give us some feedback or contact us.
Automated technologies or interactions. As you interact with our Site, Software or Patient Software we may automatically collect Technical and Usage Data about your Equipment, browsing actions and patterns. We collect this personal data by using cookies, server logs and other similar technologies. When you interact with our Software or Patient Software, we may also automatically collect Profile Data.
Third parties or publicly available sources. We may receive personal data about you from various third parties which include:
- Identity and Contact Data from companies within the inVita intelligence Group;
- Identity and Contact Data from approved third party software providers;
- Contact, Financial and Transaction Data from providers of technical, payment and delivery services.
- Marketing and Communication Data from advertising networks;
- Technical Data from analytics providers (such as Google) based outside the UK and search engine providers based outside the UK; and
- Identity and Contact Data from publicly available sources, such as social media accounts, Companies House and the Electoral Register.

International transfers

We may share your personal data with other companies in the inVita intelligence Group. Some of the third parties which we work closely with are based outside of the UK so their processing of your personal data will involve a transfer of data outside of the UK.

Whenever we transfer your personal data out of the UK, we will take additional steps in order to ensure that your personal data is treated just as safely and securely as it would be within the UK and under the Data Protection Legislation. Please contact us if you want further information on the specific mechanism used by us when transferring your personal data out of the UK.

Where we have given you (or where you have chosen) a password which enables you to access certain parts of our Site or Software, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.

Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our Site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.

Cookies

Our Site, Software or Patient Software uses cookies to distinguish you from other users of our Site. This helps us to provide you with a good experience when you browse our Site and also allows us to improve our Site.

Cookies are small data files which are stored on the hard drive of your computer. Cookies contain certain personal information about you, which help us to deliver a better and more personalised service.

You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of our Site, Software or Patient Software may become inaccessible or not function properly.

See below for a list of cookies on our Site.

Please note that third parties may also use cookies, over which we have no control. These cookies are likely to be analytical/performance cookies or targeting cookies.

Change of purpose

We will ask for your consent before using personal data for a purpose other than those set out in this privacy policy, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. If you would like further information on purpose compatibility, please contact us.

Disclosure of your data

You agree that we may disclose your data (including personal data) to the following categories of third parties:

companies within the inVita intelligence Group for the provision of parts of our Services or Software, including data storage and software hosting services;
suppliers and sub-contractors for the performance of any contract we enter into with them or you;
courier services providers for the purpose of providing you with our Products;
clinicians and healthcare professionals for the purpose of providing them with information relating to your use of the Patient Software and Services to assist with your continuing treatment and to improve the performance of the service that they provide to you;
approved third party software providers to provide other healthcare software/applications, devices, training and services;
analytics and search engine providers that assist us in the improvement and optimisation of our Site;
marketing service providers to assist us with our electronic marketing; and
other service providers and advisors such as companies that support our IT, to help us analyse the data we hold, process payments, send communications to you, provide us with legal or financial advice in helping us deliver our services to you.

Your personal data will not be shared with third parties for third party marketing purposes unless you have provided your express consent. If you do not want to be contacted with third party marketing information, you can opt out at any time by contacting us.

We may disclose your personal data to third parties:

where we have your consent to do so;
to provide and/or improve our Products, Services, Software and Patient Software;
in the event that we sell or buy any business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business or assets;
if inVita intelligence Limited or substantially all of its assets are acquired by a third party, in which case personal data held by us about you will be one of the transferred assets; and
if we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or to protect the rights of the inVita intelligence Group, our customers, suppliers, contractors or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.

We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow third parties to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.

Your rights

Under Data Protection Legislation, in certain circumstances you have the following rights in relation to your personal data:

(a) Right to access. You have the right to request access to information held about you. We will provide you with a copy of your personal data held by us free of charge (providing your request is not excessive or for multiple copies, in which case we may charge a reasonable fee to cover our costs) and certain information about the processing of your personal data and the source of such data (if not directly collected from you by us). You also have the right to request that your personal data is transferred to a third party.
(b) Right to object to data processing. You may withdraw your consent to the processing of your personal data at any time by contacting us. Upon receipt of your notification, we shall promptly stop any processing of your personal data and (if requested by you) erase such information if we are not required to retain it for legitimate business or legal purposes.
(c) Right to restrict processing. You may ask us to suspend the processing of your personal data in the following circumstances:
- if you do not think your personal data is accurate;
- where we are found to be processing unlawfully but you do not want us to erase your personal data;
- where you need us to continue holding your personal data to establish, exercise or defend legal claims; or
- where you have objected to our use of your personal data but we need to verify whether we have overriding legitimate grounds to use it.
(d) Right of rectification and right of erasure. You have the right to request that we correct or erase any inaccuracies in your personal data if such information would be incomplete, inaccurate or processed unlawfully.

Where we are relying on consent to process your personal data, you may withdraw consent at any time. However, this will not affect the lawfulness of any processing carried out before you withdraw your consent. If you withdraw your consent, we may not be able to provide certain services to you. We will advise you if this is the case at the time you withdraw your consent.

You can also exercise these rights at any time by contacting us at dpo@invitaintelligence.com. We may reject requests that are unreasonable or require disproportionate effort (for example, such a request would result in a fundamental change to our existing practice) or risk the privacy of others.

Our Site, Software and Patient Software may contain links to and from third party websites or software. If you follow a link to any of these websites or software, please note that these websites and software have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites or software.

Data Security

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.

We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

Personal data retention

We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting, or reporting requirements. We may retain your personal data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect to our relationship with you.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting or other requirements. When personal data is no longer needed, we will securely delete or destroy it.

In some circumstances we may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes in which case we may use this information indefinitely without further notice to you.

Changes to our privacy policy and your duty to inform us of changes

Any changes we may make to our privacy policy in the future will be posted on this page. Please check back frequently to see any updates or changes to our privacy policy.

It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes during your relationship with us.

Contacting us

If you have any questions, comments or requests regarding this privacy policy or data processing or you would like to make a complaint, please contact us via email at dpo@invitaintelligence.com, by telephone on 01326 536977 or by post to:

FAO: Data Protection Officer

inVita intelligence Limited

The Old Cattle Market

Porthleven Road

Helston

Cornwall

TR13 0SR

If you have any cause for complaint about our use of your personal data, please contact us using the details provided above and we will do our best to solve the problem for you. If we are unable to help, you also have the right to lodge a complaint with the Information Commissioner’s Office (www.ico.org.uk).

Cookies on our Site

  
      Cookie
      Purpose
      Site or Software
      Duration
    

  
      ci_id
      To optimize performance, preferences, usage & statistics
      INRstar Helpsite
      Persistent
    

      persistantCookie
      Used to implement the “Keep Me Logged in” functionality
      Learn Platform
      Session
    

      remember_me
      
      Learn Platform
      Session
    

      docebo_session
      Used to track session-related information
      Learn Platform
      Session
    

      mprtcid_*
      Used to save course rating attempts by users
      Learn Platform
      Session
    

      reseller_cookie
      Used to track login by LMS provider resellers
      Learn Platform
      Persistent
    

      cookie_privacy_policy
      Used to hide the Privacy Policy banner when the user has accepted it
      Learn Platform
      Persistent
    

      BlocksPosition
      Used by an Internal service (theme) to store the items’ order when manually repositioning dashboard list items
      Learn Platform
      Persistent
    

      _pendo_accountId.*
      Unique platform account identifier used by Pendo to provide statistical data aggregation for the purpose of analyzing the platform usage and improving its design
      Learn Platform
      Persistent
    

      _pendo_meta.*
      Anonymized statistical cookie used by Pendo to provide statistical data aggregation for the purpose of analyzing platform usage and improving its design
      Learn Platform
      Persistent
    

      _pendo_visitorId.*
      Anonymized statistical cookie used by Pendo to provide statistical data aggregation for the purpose of analyzing platform usage and improving its design
      Learn Platform
      Persistent
    

      isBenchmarkEnabled
      Used in the Docebo Impact reporting tools to save the enablement status of the benchmark for the user
      Learn Platform
      Persistent
    

      dontAskForTimezoneUpdate
      Associated to the user timezone prompts. Used to store the "Don't ask me again" checkbox status for this prompt
      Learn Platform
      Persistent
    

      timezone_update_dialog_snooze
      Used to save the "Remind me later" checkbox status and postpone the appearance of the timezone prompt for at least 12 hours
      Learn Platform
      Persistent
    

      ss_cvr
      Identifies unique visitors and tracks a visitor’s sessions on a site
      Site
      Persistent
    

      ss_cvt
      Identifies unique visitors and tracks a visitor’s sessions on a site
      Site
      Persistent
    