If you have questions or concerns about our policies, you can reach us at [email protected].
Applicable Data Protection Legislation means all data protection laws as now or as may become effective and/or amended, applicable to your personal information.
GDPR means the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.
Personal information/Personal data shall have the same meaning as in the Applicable Data Protection Legislation.
HumanFirst supports clinical researchers and care providers to identify connected sensor technologies that are high quality, effective, safe, and that can be used at home. Using our software, our customers gain access to resources, evaluation criteria, and key information on evidence, security, data rights, utility and usability, and cost as well as availability.
Your "personal information" is any information about you that could, alone or together with other information, personally identify you or otherwise be reasonably linked or connected with you. We collect the following categories of personal information about you:
We collect information about you through a few different channels, including:
Information You Give Us. For example, we ask you to tell us your name, email address, demographic information (such as your occupation), company affiliation, username and password through your direct interaction with us.
Information We Get From Others. Certain features of our site are facilitated by outside third parties. For example, if you register for an online event, you may be sent to a third party website to register, and we will obtain information from that website in order to process your registration. In addition, if your employer purchases a subscription for you to use our product, your employer may provide us with your contact information or employment information.
Information We Collect in the Background. As further described below, we automatically collect information from cookies (such as cookie ID and settings) to keep you logged in, to remember your preferences, to identify you and your device and to understand what works on our site and what doesn't work so you get the best experience.
HumanFirst does not purchase or receive your personal information from third-party data brokers.
Our website and Solutions are intended for users aged 18 or older. If you are the parent or guardian of an individual under age 18 and believe they have provided us with their personal information, please contact us to have it deleted.
The following are examples of how we may use your personal information; this is not an exhaustive list. In each example, the types of information we use are user data and usage data:
“Cookies” are small text files that websites often store on computer hard drives or mobile devices of visitors. We may use both “session cookies'' (which expire once you close your web browser) and “persistent cookies'' (which stay on your computer until you delete them). In addition, we use third-party cookies, like Google Analytics. We are selective in which third-party cookie providers we use, starting with reviewing their privacy policies like you are doing here. We disclose the names of third-party cookie providers we work with, the type of information they might receive, and the service they provide in this list of data processors and third-party cookie providers.
When you visit our main website on GoHumanFirst.com, essential cookies (which are necessary for our site to function on your browser or device) will always be placed. You will be prompted to consent to the use of all other cookies. To change your cookie settings after your first visit, you can do so by visiting our Cookie Preferences page.
By opting in via our cookies banner, you are agreeing that we can place non-essential cookies on your computer or device. You have the option to not accept these non-essential cookies, but doing so may reduce the quality of your experience by blocking valuable features of the HumanFirst product that are available to other users, some of which are described below.
Humanfirst does not respond to Do Not Track requests.
The following are examples of how we may share your personal information; this is not an exhaustive list.
This applies to users where accounts for HumanFirst are paid for by a related Organization (such as your employer). We share information about you with the Organization to facilitate collaboration between its authorized users and to maximize what you and your team get out of our product. We share information such as your name, team name and email address with other users from your Organization in performance of the applicable contract.
If required to do so, we will share your personal information for legal, protection, and safety purposes, such as:
Our service providers help us provide our Solutions effectively; for them to provide their service, we need to share your personal information. We disclose the names of vendors we work with, the type of information they might receive, and the service they provide in this list of data processors and third-party cookie providers.
Your personal information does not include aggregated or non-personally identifying information that does not identify you or cannot otherwise be reasonably linked or connected with you. We may use such aggregated, non-personally identifying information to operate, analyze, improve, and optimize our Solutions, or for any other legally-permitted purpose. We may also display on our website insights based on aggregated information, such as how our Solutions are used, or measures and products that are most commonly researched by our users.
We retain your personal information for as long as your account is active or as needed to provide you services; that duration can vary based on the context. How long we retain your information is determined by:
If you have a request regarding your personal information, please contact us at [email protected]. You also have additional options to opt-out of having your information used.
We or our service providers collect tracking information through cookies. When you visit our main website, you will be prompted to consent to the use of non-essential cookies.
To change your cookie settings after your first visit, you can do so by visiting our Cookie Preferences page.
We encourage you to use Intercom as an easy way to reach out to your HumanFirst customer rep. This is often the quickest and easiest way to reach us. Using Intercom to interact with us is your choice. If you prefer not to use Intercom, you may also reach your customer rep via email.
Intercom makes it possible for you to screen share with us so we can help you as if we were in the room with you. You choose when to share your screen with us; we do not use this without your permission.
We work hard to protect HumanFirst and our users from unauthorized access to or unauthorized alteration, disclosure or destruction of information we hold. We maintain industry-standard security measures to protect personal information, retain security experts on our advisory board, participate in security conferences, and routinely update our security program.
Nevertheless, we cannot anticipate every potential security issue so we have response plans in place and invite reports from individuals who believe they have found a security issue through our Coordinated Vulnerability Disclosure Policy. If you have questions or concerns regarding our security practices, contact us at [email protected].
We will maintain a Change Log to make it easier for you to see and understand changes we make to our policy.
If you sign up for an individual account, HumanFirst is a controller (as defined under the GDPR) for processing and using the personal data you provide.
If you are using an account through an Organization, HumanFirst may be a processor (as defined under the GDPR) for processing and using the personal data you provide. If we are acting as a processor, you may need to contact your Organization to exercise the rights described below. When allowed, HumanFirst may be considered a controller of some data (e.g., usage data) so that we may use it for controller purposes, such as improving our products and systems.
HumanFirst would like to make sure you are fully aware of all of your data protection rights under the GDPR, which include the following:
The right to access – You have the right to request copies of your personal data. We may charge you a small fee for this service.
The right to rectification – You have the right to request that HumanFirst correct any information you believe is inaccurate. You also have the right to request that we complete the information you believe is incomplete.
The right to erasure – You have the right to request that HumanFirst erase some or all of your personal data, under certain conditions.
The right to restrict processing – You have the right to request that HumanFirst restrict the processing of your personal data, under certain conditions.
The right to object to processing – You have the right to object to HumanFirst’s processing of your personal data, under certain conditions.
The right to data portability – You have the right to request that HumanFirst transfer the data that we have collected to another organization, or directly to you, under certain conditions.
The right to withdraw consent - If we are processing your personal information on your consent (as indicated at the time of collection of such data), you have the right to withdraw your consent at any time. Please note, however, that if you exercise this right, you may have to then provide express consent on a case-by-case basis for the use or disclosure of certain of your personal information, if such use or disclosure is necessary to enable you to utilize some or all of our Solutions.
Right to File a Complaint - As described in “Contacting the appropriate authority” below, you have the right to lodge a complaint about HumanFirst practices with respect to your personal information with the supervisory authority of your country or EU Member State.
If you make a request, we will respond in the time period required by applicable law. If you would like to exercise any of these rights, please email us at [email protected].
Or write to us at:
548 Market Street
San Francisco, CA 94104-5401
We will only process your personal data if we have a lawful basis for doing so. Lawful bases for processing include consent, contractual necessity and our “legitimate interests” or the legitimate interest of others, as described below.
Contractual Necessity: We process the following categories of Personal Data as a matter of “contractual necessity”, meaning that we need to process the data to perform under our Terms with you or the terms applicable to our contract with your Organization, which enables us to provide you with the Solutions. When we process data due to contractual necessity, failure to provide such Personal Data will result in your inability to use some or all portions of the Services that require such data.
Legitimate Interest: We process the following categories of Personal Data when we believe it furthers the legitimate interest of us or third parties.
We may also de-identify or anonymize personal information to further our legitimate interests. Examples of these legitimate interests include improving our Solutions, marketing the Solutions, corresponding with you, meeting legal requirements and enforcing legal terms, and completing corporate transactions.
Consent: In some cases, we process personal data based on the consent you expressly grant to us at the time we collect such data. When we process personal information based on your consent, it will be expressly indicated to you at the point and time of collection.
Other Processing Grounds: From time to time we may also need to process personal information to comply with a legal obligation, if it is necessary to protect the vital interests of you or other data subjects, or if it is necessary for a task carried out in the public interest.
When transferring data across borders, we take steps to protect your personal information in accordance with applicable law, such as by entering into standard contractual clauses where required.
These steps are designed to help protect your personal information from unauthorized access and maintain the integrity, confidentiality, and availability of your personal information.
548 Market Street
San Francisco, CA 94104-5401
Our EU Representative pursuant to the GDPR:
Contact Name: Adam Brogden
Contact Email: [email protected]
Contact Tel: +353 (0) 1554 9700
Should you wish to report a complaint or if you feel that HumanFirst has not addressed your concern in a satisfactory manner, you may contact us at [email protected] or file a complaint with your national supervisory authority. If you reside in the EU, you can find a list of supervisory authorities here: https://edpb.europa.eu/about-edpb/board/members_en.