EUROPEAN ECONOMIC AREA
PRIVACY POLICY

Version Française

Last modified: March 16, 2020

INTRODUCTION

BioFire Diagnostics, LLC ( “BioFire,” “we,” “our,” or “us”) is committed to protecting your privacy. References in this policy to “BioFire”, “we”, “us”, and “our” are references to the entity responsible for the processing of your personal data, which generally is the entity that obtains your personal data in the respective case. This entity is also referred to as the data controller.

This policy describes the types of information BioFire may collect from you or that you may provide when you visit the website https://biofiredx.com/, or any other of our websites where this policy is posted, and our practices for collecting, using, maintaining, protecting, and disclosing that information. This policy does not apply to information collected by us offline or through any other means, including on any other website operated by BioFire or a third party or through any application or content (including advertising) that may link to or be accessible from the Website. This policy is separate from our Terms of Use, located here.

BioFire provides this policy to explain the type of information we collect and to inform you of the specific practices and guidelines that protect the security and confidentiality of your personal data. Please read this policy carefully. If any term in this policy is unacceptable to you, please do not use the Website or provide any personal data. This policy may change from time to time (see Revisions to Our Privacy Policy).

HOW WE USE YOUR INFORMATION

Below please find information about how we process information collected about you (including personal data) as well as the corresponding legal basis. We may process your information where the processing is:

  • Necessary for entering into or the performance of a contract with you. For example:
    • To carry out our obligations arising from any contracts entered into between you and us and to provide you with the information, products, and services that you request from us.
  • Necessary for us to comply with a legal obligation.
  • Necessary for the purposes of the legitimate interests pursued by a third party or us (to the extent it does not infringe on any data subject’s fundamental rights and freedoms). For example:
    • To ensure that content from our site is presented in the most effective manner for you and for your computer.
    • To allow you to participate in interactive features of our service (when you choose to do so).
    • To keep our site safe and secure.
    • To provide you with technical support and to improve our Website and services.
    • To provide you with information that you have requested and respond to your inquiries.
    • To notify you about changes to our service or our Website.
    • If you are an existing customer, to communicate (including by email and SMS) with you to provide information about goods and services similar to those that were the subject of a previous sale or negotiations of a sale to you.
    • Subject to applicable law and regulations, in the event of a sale, merger, consolidation, change in control, transfer of substantial assets, reorganization, or liquidation, to transfer, sell, or assign to third parties information concerning your relationship with us, including, without limitation, personal data that you provide and other information concerning your relationship with us.
  • Pursuant to valid consent provided by you, in order to provide you with information about goods or services we feel may interest you. If you do not want us to use your data in this way, simply do not opt-in when we ask for your consent on the relevant forms where we collect your data. For any other purpose where you have provided valid consent where it is legally required.

DISCLOSURE OF YOUR INFORMATION

We may disclose aggregated information about our users, and information that does not identify any individual, without restriction. Subject to applicable law and regulations, we may disclose personal data that we collect or you provide as described in this policy:

  • To contractors, service providers, and other third parties we use to support our business or in connection with the administration and support of the activities noted above and who are bound by contractual obligations to keep personal data confidential and use it only for the purposes for which we disclose it to them (e.g., database hosting providers, managed services providers, developers, consultants).
  • To a buyer or other successor in the event of a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of BioFire’s assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which personal data held by BioFire about our Website users is among the assets transferred.
  • To fulfill the purpose for which you provide it. For example, if you ask us to communicate information to a third party dealer or installer who is installing or serving your product.
  • For any other purpose disclosed by us when you provide your information or with your consent when required by applicable law and regulations.
  • If we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply our terms of use and other agreements, including for billing and collection purposes; or to protect the rights, property, or safety of BioFire, our customers, or others. This may include exchanging information with other companies and organizations for the purposes of fraud protection and credit risk reduction.

CROSS-BORDER TRANSFERS OF PERSONAL DATA

The data that we collect from you will be transferred to, and stored at, a destination outside the European Economic Area (“EEA”).  It may also be processed by staff operating outside the EEA who work for us or other entities acting as data processors processing data on behalf of us. This includes staff engaged in, among other things, the fulfillment of your request or order and the provision of support services.

BioFire has implemented Standard Contractual Clauses in order to provide appropriate and suitable safeguards for personal data being transferred to countries outside the EEA where an adequate level of protection is not already guaranteed. Copies can be obtained by contacting legal.diagnostics@biofiredx.com.  We take reasonable and appropriate steps to ensure that our third-party agents and service providers process Personal Data transferred in a manner consistent with applicable requirements and to stop and remediate unauthorized processing. Under certain circumstances, we may remain liable under the Privacy Shield Principles if our agents process your EU, U.K., and/or Swiss Personal Data that we transfer to them in a manner inconsistent with the Privacy Shield Principles.

DATA RETENTION

Unless otherwise required by law, BioFire will also erase personal data when it is no longer necessary in relation to the purposes for which it was collected or otherwise processed; when you withdraw your consent (where lawfulness of processing was based on your consent) and there is no other legal ground for the processing; when you object to the processing and there are no overriding legitimate grounds for the processing; when your personal data has been unlawfully processed; and when it is necessary to comply with legal obligations.

For example, BioFire will maintain basic information about your account for as long as your account is active or warranty information for the life of the warranty.

CHOICES ABOUT HOW WE USE AND DISCLOSE YOUR INFORMATION

We strive to provide you with choices regarding the personal data you provide to us. We have created mechanisms to provide you with the following control over your information:

  • Cookie settings. You can set your browser to refuse all or some browser cookies, or to alert you when cookies are being sent. For more information, please see our Cookie Compliance Policy.
  • Do Not Track. Our system may not respond to Do Not Track requests or headers from some or all browsers.
  • Promotional Offers from BioFire. If you do not wish to have your contact information used by BioFire to promote our own products or services, you can check certain boxes on the forms we use to collect your data. You can also always exercise your right to ask us not to process your personal data for marketing purposes by contacting us at marcom@biofire.com. If we have sent you a promotional email, you may send us a return email asking to be omitted from future email distributions OR clicking on the “unsubscribe” link at the bottom of an e-mail marketing message or visit https://www.biofiredx.com/company/contact/. Please allow five business days for your request to take effect. Please note that this does not apply to information provided to BioFire as a result of a product purchase, warranty registration, product service experience, or other transactions.

YOUR RIGHTS WITH REGARD TO YOUR PERSONAL DATA

We remind you that you may at any time exercise certain rights you may have under applicable law and regulation, including the following rights:

  • The right to request access to your personal data, which includes the right to obtain confirmation from us as to whether or not personal data concerning you is being processed, and where that is the case, access to the personal data and information related to how it is processed.
  • The right to rectification or erasure of your personal data, which includes the right to have incomplete personal data completed, including by means of providing a supplementary statement, certain rights to request us to erase your personal data without undue delay.
  • The right to restrict or object to processing concerning your personal data, which includes restricting us from continuing to process your personal data under certain circumstances (e.g., where you contest the accuracy of your personal data, processing is unlawful, your personal data is no longer needed for the purposes of processing, or you have otherwise objected to processing related to automated individual decision-making).
  • The right to data portability, which includes certain rights to have your personal data transmitted from us to another controller.
  • Where data processing is based on your consent, the right to withdraw consent at any time.
  • The right to lodge a complaint with a supervisory authority.

Any requests related to the above rights may be made by sending an email to privacyofficer@biofiredx.com.

DATA SECURITY

We have taken reasonable and appropriate physical, administrative, and technical steps to safeguard the information we collect from and about our customers and Website visitors. While we make every reasonable effort to help ensure the integrity and security of our network and systems, we cannot guarantee our security measures.

THIRD-PARTY WEBSITE

Our Website may contain links or references to other websites outside of our control. Please be aware that this policy does not apply to these websites. BioFire encourages you to read the privacy statements and terms and conditions of linked or referenced websites you enter. These third-party websites may send their own cookies and other tracking devices to you, log your IP address, and otherwise collect data or solicit personal data. BIOFIRE DOES NOT CONTROL AND IS NOT RESPONSIBLE FOR WHAT THIRD PARTIES DO IN CONNECTION WITH THEIR WEBSITE, OR HOW THEY HANDLE YOUR PERSONAL DATA. PLEASE EXERCISE CAUTION AND CONSULT THE PRIVACY POLICIES POSTED ON EACH THIRD-PARTY WEBSITE FOR FURTHER INFORMATION.

CHILDREN UNDER THE AGE OF 16

Our Website is not intended for children under 16 years of age, and BioFire does not knowingly collect or use any personal data from children under the age of 16. No one under the age of 16 may provide any information to or on the Website. If we learn we have collected or received personal data from a child under the age of 16, we will delete that information. If you believe we might have any information from or about a child under the age of 16, please contact us at privacyofficer@biofiredx.com.

REVISIONS TO OUR PRIVACY POLICY

We reserve the right to change this policy at any time. Any changes we make will be posted on this page. If we make material changes to how we treat your personal data, the updated policy will include a link to the previous version of the privacy notice. The date this policy was last revised is identified at the top of the page. Your continued use of our Website after such amendments will be deemed your acknowledgement of these changes to this policy.

DATA CONTROLLER & CONTACT INFORMATION

BioFire Diagnostics, LLC
Data Privacy Officer
515 Colorow Drive
Salt Lake City, Utah 84108
801 736-6354
privacyofficer@biofiredx.com.

Should you have any questions or concerns about this policy and our privacy practices, you may also contact the Data Privacy Officer of BioFire at: 515 Colorow Drive, Salt Lake City, Utah 84108, 801 736-6354, privacyofficer@biofiredx.com.