Updated: September 20, 2021
Istari Oncology, Inc. (collectively with any subsidiaries or affiliates “We,” “Us,” or the “Company”) is strongly committed to protecting the privacy of your personal information. This privacy policy explains the Company’s data collection and use practices with respect to its website at istarioncology.com (the “Site”). Except as specifically provided below, this Privacy Policy references other information collected by Istari by or through any other means, such as information collected offline. By using the pages in the Site, you agree to the information collection and use practices described in this Privacy Policy. If you do not agree to the terms set forth herein, do not use the Site.
We may ask you on this site for information that personally identifies you or provides information about yourself (“personal information”) or allows us to contact you to provide a service or a product or carry out a transaction that you have requested (such as requesting information about our company). The personal information we collect may include your name, your address, your telephone number, your email address and other contact information, and other information about services requested through the Site. You are not required to provide the personal information that we have requested, but, if you choose not to do so, in many cases we will not be able to provide you with our services or respond to questions you may have.
The Site may also collect information about your visit, such as the name of the Internet service provider and the Internet Protocol (IP) address through which you access the Internet; the date and time you access the Site; the pages that you access while at the Site and the Internet address of the website from which you linked directly to the Site. This information is used, among other reasons, to help improve the Site, analyze use trends, and administer the Site.
In addition to the website, Istari collects information about healthcare professionals when they interact with us or our representatives. Istari also collects personal data from a number of third-party data sources, in particular from publicly available sources such as public registers of healthcare professionals, published journals and event materials and from websites of healthcare professionals or their employers. Istari collects and processes such publicly available data only to the extent where the purposes for such collection and processing are compatible with and correspond to the initial purposes for which the respective data are made publicly available. Istari also makes use of third-party data providers to enhance its own knowledge of the healthcare sector. This data will include information about health care providers’ role(s), qualifications, specialty, employer, experience, publications, and other information related to their professions.
Except as otherwise required by law, the personal information collected on the Site will be used solely to:
From our website, you may use third party social media widgets/tools/buttons. If you use that functionality, your use is subject to the third party’s privacy policy and terms. As with all links to non-Istari websites/content/services, we recommend that you read the privacy policies and terms associated with third party properties carefully.
We may use your personal data collected in the following ways:
We may use information we collect directly from you and from outside sources to validate your licensure and eligibility to view such information:
For GDPR data subjects: To respond to your requests or inquiries, it is our legitimate interest to retain your information.
We will keep you informed about our trials or other activities that we believe may be of interest to you. Processing is based on your consent, and we will rely on your consent. You have the right to withdraw it anytime in the manner indicated when we requested the consent or by emailing [email protected].
To operate our websites and to create anonymous, aggregated or de-identified data: These processing activities constitute our legitimate interests.
To comply with regulatory monitoring and reporting obligations and to comply with law: Processing is necessary to comply with our legal obligations.
The Company may occasionally hire other companies to provide limited services on our behalf, such as website hosting, website design or technical support, mailing/shipping, answering customer questions about products and services, and sending information about our products, special offers, and other services. We will only provide those companies the personal information they need to deliver the service. They are required to maintain the confidentiality of the information and are prohibited from using that information for any other purpose. For example, the Company may share data:
We may aggregate and/or de-identify data about visitors to our Site or other collection activities and use it for any purpose, including product and service development and improvement activities.
Except as otherwise described in this Privacy Policy, your personal information will not be shared outside of the Company without your permission.
For persons over the age of 13, providing information about yourself through the Site is free and completely voluntary. No information should be submitted to or posted to the Site by any person under the age of 13 years. The Company does not knowingly collect information from children under 13. If you are under 13 years old, you may not attempt to provide your information through the Site. If the Company determines that contact information has been submitted by a person under age 13, such information will be removed. If you are between the ages of 13 and 17, you may use the Site only with your parent or guardian’s consent; the Company reserves the right to request verification of such parent or guardian’s consent. Personal information of persons between ages 13 and 17 will be collected as described in this Privacy Policy. By submitting your contact information through the Site, you represent that you are age 13 or over.
We will only retain your personal data for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying legal, accounting, or reporting requirements. We are a United States-based company, and as such you expressly consent to the transfer and storage of your personal data collected through the website to anywhere in the United States where we maintain facilities. In some circumstances we may anonymize your personal data (so that it can no longer be associated with you) in which case we may use this information indefinitely without further notice to you.
The Company is strongly committed to protecting the security of your personal information. When you submit personal information on the Site, the Company will take all reasonable efforts in order to protect your personal information. The Company uses certain security technologies and procedures to help protect your personal information from unauthorized access, use, or disclosure once it is received. Although we implement reasonable administrative, physical, and electronic security measures designed to protect your personal data from unauthorized access, we cannot ensure the security of any information you transmit to us or guarantee that this information will not be accessed, disclosed, altered, or destroyed. We will make any legally required disclosures of any breach of the security, confidentiality, or integrity of your unencrypted electronically stored personal data.
Upon your acceptance of a cookie from our websites, we may collect information about your visits to the Site without you actively re-submitting acceptance of cookies. In some jurisdictions, we are not permitted to send cookies to the browser of a user without the prior consent of the affected user. In this case, we will seek such consent. The remainder of this section assumes that either the use of cookies is not restricted by applicable law or if it is restricted the individual has explicitly consented to the use of cookies. A cookie is a small text file that is placed on your hard disk by a web page server and that helps the Site to recall your specific information on subsequent visits. The use of cookies simplifies the process of delivering relevant content, eases Site navigation, and provides other similar benefits to users of the Site. When you return to the Site, the information you previously provided can be retrieved, so you can easily use the Site’s features.
You have the ability to accept or decline the use of cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. If you choose to decline cookies, you may not be able to fully experience the features of the Site.
If you reside in the United Kingdom, EEA, or Switzerland, you may request that we take the following actions in relation to your personal data according to the GDPR:
You also have the right to lodge a complaint with your local Data Protection Authority or to the Data Protection Authority where the alleged infringement took place.
If you reside in California, you may see our California Consumer Privacy Act Notice, below here.
You may opt out of marketing-related emails by clicking on a link at the bottom of each such email, or by contacting us at [email protected]. You may continue to receive service-related and other non-marketing emails for which you have not opted out.
Istari Oncology, Inc.
430 Davis Drive, Suite 560
Morrisville, NC 27560
USA
Email: [email protected]
We will request specific information from you to help us confirm your identity and process your request. Applicable law may require or permit us to decline your request. If we decline your request, we will tell you why, subject to legal restrictions.
If you reside in the United Kingdom, EEA, or Switzerland and would like to submit a complaint about our use of your personal data or response to your requests regarding your personal data, you may contact our data protection officer Lucas Beal ([email protected]) or submit a complaint to the data protection regulatory authority in your country.
https://ec.europa.eu/justice/article-29/structure/data-protection-authorities/index_en.htm
The Site provides you with the opportunity to choose to receive updates about the Company and any information we may want you to know about. You may be added to the Company’s mailing lists and signed up for certain notifications from the Company when you submit your contact information through the Site. If you would like to be removed from this list and/or opt out of these notifications, please unsubscribe using the instructions in the email or call or write us at the physical address, email address or telephone number listed below. Please allow five (5) business days for processing of your opt-out request.
If you need to correct or update your contact information, or you no longer desire our services, you can do so by contacting us using the contact information set forth below.
The Site may contain links to other sites that are not affiliated with the Company. Any such link is not, and is not intended to be, an endorsement of such other website or its content and you should review the terms of use and privacy policy of such other website. These websites operate independently of the Company and the Company is not responsible for the privacy practices or the content of such websites.
We reserve the right to update this Privacy Policy from time to time and without notice to you. All such updates shall be effective immediately unless otherwise stated. We encourage you to periodically review this Privacy Policy to stay informed about how we are helping to protect the personal information we collect. Your continued use of the Site constitutes your agreement to this Privacy Policy, as amended from time to time.
This Privacy Policy is intended solely to clarify the Company’s practices with respect to personal information and shall not in any way modify or limit the legal effect of the Terms of Use of the Site. In the event of any conflict between this Privacy Policy and the Terms of Use, the Terms of Use shall control. In particular, the Company will not be liable for any damages or injury (including, without limitation, incidental and consequential damages, personal injury/wrongful death, lost profits, or damages resulting from lost data or business interruption) that result from your use of the Site or your submission of personal information through the Site, even if there is negligence on the part of the Company or its employees. In addition, you agree to defend, indemnify, and hold the Company, its officers, directors, employees, agents, licensors, and suppliers, harmless from and against any claims, actions or demands, liabilities and settlements including without limitation, reasonable attorneys’ fees, resulting from, or alleged to result from, your submission of personal information to the Site or your unlawful collection of personal information of others through use of the Site.
This Privacy Policy shall be governed by and interpreted in accordance with the laws of the State of Delaware. Any dispute relating to this Privacy Policy shall be resolved solely in the state or federal courts located in the State of Delaware.
This Privacy Policy explains data collection and use practices related to the Company’s website and activities specifically covered herein; it may reference other products or services of the Company. Please be aware that this Privacy Policy and any choices you make on the Site will not necessarily apply to personal information you may have provided to the Company in the context of other, separately provided, products or services.
The Company welcomes your comments regarding this Privacy Policy. If you believe that the Company has not adhered to this Privacy Policy, please contact us electronically or via postal mail at the following address, and we will use commercially reasonable efforts to promptly determine and remedy the problem, or if you need to contact us for any other reason, you may do so using the following information:
Istari Oncology, Inc.
430 Davis Drive, Suite 560
Morrisville, NC 27560
USA
Email: [email protected]
California Residents Under Age 18: If you are a resident of California under age 18 and a registered user of the Services, you may ask us to remove content or data that you have posted to the Services by emailing: [email protected].
Please note that your request does not ensure complete or comprehensive removal of the content or data, if, for example, Istari is required by law to maintain the data.
California Consumer Privacy Act Notice
Updated: September 20, 2021
Pursuant to the California Consumer Privacy Act of 2018 (“CCPA”), we provide the following details regarding the categories of Personal Information about California residents (excluding business-to-business and employee data) that we have collected or disclosed within the preceding 12 months:
We collected the following categories of Personal Information:
We collect this Personal Information directly from California residents themselves, as well as from joint marketing partners, public databases, providers of demographic data, publications, professional organizations, social media platforms, people with whom you are connected on social media platforms, caregivers, companies and other third parties that help us screen and onboard individuals for hiring purposes, and other third parties. For more information on our social media practices, please see here.
We may use this Personal Information to operate, manage, and maintain our business, to provide our products and services, for our employment purposes, and to otherwise accomplish our business purposes and objectives. Our business purposes and objectives include, for example, developing, improving, repairing, and maintaining our products and services; personalizing, advertising, and marketing our products and services; conducting research, analytics, and data analysis; maintaining our facilities and infrastructure; undertaking quality and safety assurance measures; conducting risk and security controls and monitoring; detecting and preventing fraud; performing identity verification; performing accounting, audit, and other internal functions, such as internal investigations; complying with law, legal process, and internal policies; maintaining records; and exercising and defending legal claims.
We disclosed the following Personal Information to our affiliates and third parties, such as our service providers, for our operational business purposes:
We have not “sold” Personal Information for purposes of the CCPA.
For purposes of this CCPA Notice, “sold” or “sale” means the disclosure of Personal Information for monetary or other valuable consideration but does not include, for example, the transfer of Personal Information as an asset that is part of a merger, bankruptcy, or other disposition of all or any portion of our business.
If you are a California resident, you may request that we:
Disclose to you the following information covering the 12 months preceding your request:
To make a request for the disclosures or deletion described above, please contact us at [email protected]. In some instances, we may decline to honor your request where an exception applies, such as where the disclosure of Personal Information would adversely affect the rights and freedoms of another California resident.
You have the right to be free from unlawful discrimination for exercising your rights under the CCPA.
Nevada Residents as Covered by Nevada Privacy Law
We do not sell Covered Information as defined under Nevada law. If you would like to make a further inquiry regarding the selling of your Covered Information, as defined under Nevada law, please contact us at [email protected].
Texas Residents
Pursuant to the Texas Health and Safety Code, Sec. 181.154, please be advised that if we receive any data that identifies you and relates to your past, present or future physical or mental health, healthcare or payment for your healthcare, such data may be subject to electronic disclosure by such means as file transfers or email.
At Istari Oncology, we use social media as part of our commitment to transparency and to support and connect with patients, healthcare professionals, advocates, and other stakeholders. Our goals are to be accurate and authentic and to share information that is important to you. The content we post is for informational and educational purposes only and is not intended to be a substitute for professional medical advice.
We encourage you to interact by following us and discussing relevant topics. However, Istari expects that followers and interactions will be respectful of others. Please read through our Social Media Community Guidelines and check back from time to time because they may change.
If you believe you may have experienced an adverse event or other safety problem with an Istari product, please contact your doctor and call Istari at (919) 245-7662. To better understand your experience, Istari may follow up with you to gather more information. Except for regulatory reporting obligations, all information shared with Istari will be kept confidential. You may also report your experience directly to the FDA by visiting www.FDA.gov/medwatch or by calling 1-800-FDA-1088.
If you are participating in an Istari-sponsored clinical trial and believe you have experienced an adverse event or other safety-related problem, please consult with your personal physician and/or study-site healthcare professional immediately.
If you believe you may have experienced an adverse event or other safety problem with a product that is not manufactured by Istari, please contact your doctor, the product manufacturer, and/or the FDA by visiting www.FDA.gov/medwatch or by calling 1-800-FDA-1088.
Istari will not be able to reply to all tweets, replies or comments. Additionally, we cannot address and may delete comments that are:
By posting, you are promising that your post complies with these Social Media Community Guidelines. Users who violate these terms may be blocked. Please also be aware that when you publicly comment to Istari on social media, you give us the right to use your ideas and your name/handle or posts in any way including the media, so do not post anything private or confidential.
Istari reserves the right to delete any of our social media platforms and its contents at any time. While these Social Media Community Guidelines cover the most common situations, we cannot anticipate everything. We may take actions not outlined in these Social Media Community Guidelines as deemed necessary and appropriate.
In addition to the privacy policy and terms of use of the third-party social media platform, your use of our social channels is governed by these Social Media Community Guidelines.