PRIVACY NOTICE & COOKIE POLICY

who we are

MultiOmic Health Limited, a private limited company registered in England and Wales (CRN: 13246608). Our registered office is located at Epworth House, 25 City Road, Shoreditch, London, EC1Y 1AA.

We are a computational systems biology company working towards improving the lives of patients with metabolic syndrome-related conditions.

PURPOSE OF THIS PRIVACY POLICY

MultiOmic Health respects your privacy and is committed to protecting your personal data. This privacy notice will inform you as to how MultiOmic Health treat the personal data that we collect and the suite of rights you can exercise over your data.

This privacy policy does not create any contractual rights and obligations. There may also be circumstances from time to time where we provide you with a separate privacy notice or other communication applicable to you that may clarify, update, add to or change the information set out in this policy.

If you have any concerns or require further information regarding this privacy notice, please contact our Data Protection Officer at dpo.multiomichealth@kdpc.uk.

What personal data do we collect about you and how?

We may collect and process some or all of the following types of Personal Data:

Data Type

How do we acquire this data?

Technical and usage data, which may include:

Information from your visits to our website, such as:

  • Your IP address and general location
  • Details of your visits to our website and the resources that you access, including, but not limited to, traffic data, location data, weblogs and other communication data
  • Details of the hardware and software that you are using to access the site
  • Activity data, such as when you completed a form on this website
  • MultiOmic Health website contact form

Identity and contact data, which may include:

Name, date of birth, gender, postal address, email address, social media handle(s), telephone numbers and correspondence history

  • Direct email and phone communication
  • Recruitment channels (LinkedIn, recruitment agencies, etc.)
  • Information from analytics providers such as Google Analytics, publicly-available information on social media platforms or publicly-available information contained in research publications

Pseudonymised patient data, which in some cases may include genetic data (a type of special category data)

We will keep this data in line with the requirements of the EU Clinical Trial Regulations which are currently 25 years.

A separate, study-specific privacy notice is available upon request for patients whose pseudonymised data we have received. Such a notice may be requested by patients directly from our Data Partners.

Data Partners, which may include:

  • Biobanks
  • Other types of scientific collaborators

Research service providers, which may include:

  • CROs
  • Academic labs

How do we use your personal data?

MultiOmic Health Limited is the independent controller responsible for your personal data (collectively referred to as “we”, “us” or “our” in this privacy policy) as per the Data Protection Act 1998 and the EU General Data Protection Regulation.

Under the terms of GDPR, we must have a valid lawful basis in order to process personal data. We generally rely upon legitimate interest (Article 6(f)), legal obligation (Article 6(c)), and, in the case of special category data, scientific research purposes (Article 9 (j)) as our lawful basis for processing. Generally, we do not rely on consent as a legal basis for processing your personal data. Where we do rely on consent, we will ask for it before we process the information.

As required by GDPR Article 30, MultiOmic shall maintain a record of processing activities under its responsibility.

How long do we retain your personal data?

We will only store your personal information for as long as we need it for the purposes for which it was collected. We may store your Technical and usage data and Identity and Contact Data for up to 24 months after we receive it.

In the case of Pseudonymised patient data, we will only store personal data for as long as we are contractually permitted to do so by the organisation that provided the data (our ”Data Partner”). Where access is restricted to a specific timeframe, we will ensure that your personal data is returned to the relevant Data Partner and/or deleted from MultiOmic’s servers prior to the access expiry date.

Exceptions are:

  • Where you receive or have received a separate privacy notice or other communication from us which gives any contrary indication
  • We may keep certain limited information about you for our historical records, on the basis that there is a public interest in doing so

Who do we share your personal data with?

We generally do not share your personal data with third parties for purposes that lie outside of the original scope under which the data was provided to us. In the case of pseudonymised patient data, we may work with third party processors, such as research service providers (Austrian Institute of Technology GmbH (AIT)) and cloud service providers (AWS),    who will be subject to the same confidentiality and data protection requirements as MultiOmic Health.

If there is a need to disclose your personal data to third parties for a purpose that lies outside the original scope, we will ensure that your rights and freedom are not undermined, and where appropriate, provide you with the opportunity to opt out of your data being processed in such a manner.

Personal data storage and security

MultiOmic Health Limited stores your Personal Data on servers located within the EEA and the UK. We take appropriate technical, organisational, and administrative measures to ensure all Personal Data is kept secure and the rights of data subjects are protected, as per Article 28 of GDPR.

In assessing the appropriate level of security and implementing safeguards, we have taken into account the risks that are presented by processing, including accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to personal data. In cases where processing of personal data is likely to be high risk, such as processing the special category data, we will typically also carry out a data protection impact assessment (DPIA) and apply additional risk mitigation strategies.

We limit access to your Personal Data to those who have genuine business needs and are duly trained for such processing. Those processing your information will do so only in an authorised manner that ensures confidentiality and accountability. We also have procedures in place to deal with any suspected data security breach. We will notify you and all applicable regulators of a suspected data security breach where we are legally required to do so within 72 hours.

Please note that while we do try to ensure that all information you provide to us via our website is transferred securely, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted through any online means outside the scope of this Policy; any such transmission is at your own risk.

Your rights and controlling your personal information

Where our processing of your personal data is based on your consent, you have the right to withdraw your consent at any time. If you do decide to withdraw your consent, we will stop processing your personal data for that purpose, unless there is another lawful basis we can rely on.

Where our processing of your personal data is based on lawful basis of legitimate interest and/or scientific research purposes, you can object to this processing at any time. If you do this, we will need to show either a compelling reason why our processing should continue, which overrides your interests, rights and freedoms or that the processing is necessary for us to establish, exercise or defend a legal claim.

Depending on the circumstances, GDPR provides the following rights for individuals:

  • The right to be informed – you have the right to be informed about the collection and use of your personal data (GDPR Article 13 and 14);
  • The right of access – you have the right to access and receive a copy of your personal data, and other supplementary information. This is commonly referred to as a subject access request or ‘SAR’ (GDPR Article 15).
  • The right to rectification – you have the right to require a controller to correct any inaccuracies in your personal data without undue delay (GDPR Article 16);
  • The right to erasure – you have the right to require a controller to erase your personal data (GDPR Article 17);
  • The right to restrict processing – you have the right to require a controller to restrict the processing of your personal data (GDPR Article 18);
  • The right to data portability – you have the right to obtain and reuse your personal data, in a machine-readable format on the basis of your consent or because it is necessary for your contract with a controller and where the processing is automated (GDPR Article 20)
  • The right to object – you have the right to object to the processing of your personal data in certain circumstances. Note you have an absolute right to stop your data being used for direct marketing (GDPR Article 21)
  • Rights related to automated decision making including profiling – you have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you (GDPR Article 22)

Complaints

If you wish to make a complaint about our collection or use of your personal data, please contact us at privacy@multiomic.health  in the first instance so that we may seek to resolve your complaint.

You have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the statutory body which oversees data protection law in the UK. Please visit the ICO website if you wish to lodge a complaint with the ICO.

Cookie policy

What are cookies?

Cookies are small text files that are stored on your device when you visit our website. They enable us to recognise your device each subsequent time you visit our website and they perform functions such as storing your user settings, tracking your browsing history and providing information on our website performance.

Types of cookies we use

Necessary

Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data.

Functional

Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.

Analytics

Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.

Performance

Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.

Advertisement

Advertisement cookies are used to provide visitors with customized advertisements based on the pages you visited previously and to analyze the effectiveness of the ad campaigns. 

Managing your cookie settings

You have the option to accept or deny cookies when you first enter the MultiOmic Health website. You may also view and change your cookie permissions at any time via the CookieYes tool on our website.

Please note that if you browse our website across multiple devices, you may need to update your settings on each individual device. If you choose to deny cookies from our website, it may impact your experience of certain features and content.

 

We keep our privacy policy under regular review. This version was last updated on 16th Aug 2023.

Contact.

Want to be a part of our team?

Got a partnership in mind?

Get in touch with us and know more about how we are changing the face of healthcare.

THE COMPANY

Multiomic Health Limited is a registered UK company 

Company #13246608

EMAIL US

info@multiomic.health

Connect
Linkedin