Envista Forensics, AREPA, and its subsidiaries (“We”, “Us” and “Our”) are committed to protecting and respecting your privacy.
What information about you is collected?
- Information you give us.
We may process information that you have provided through your own explicit actions. These include filling out forms on any of our website, correspondence (through email, phone, or other channel), and any other information provided directly and explicitly to us by you. This includes information provided when registering for events, searching one of our websites, inquiring about services, applying for employment, declaring your interests, or reporting technical issues with the website. This information may include your name, address, e-mail address, phone number, business interests, educational information, and employment information.
- Information we collect about you when you visit one of our websites.
Whenever you visit one of our sites, we collect the following information:
- Technical information, including the Internet protocol (IP) address used to connect your computer to the internet, your login information, browser type and version, time zone setting, browser plug-in types; and
- Information about your visit, including: the full Uniform Resource Locators (URL) clickstream to, through, and from our site (including date and time); products viewed or searched for; page response times; download errors; lengths of visits to certain pages; page interaction (such as scrolling, clicks and mouse-overs); methods used to browse away from the page; and any phone number used to call us.
- Information we receive from other sources.
We obtain information about you from others we work with. For example, information may be obtained from other businesses we work with, our sub-contractors, information provided publicly on social networks, internet search providers and other lawful analytics providers. In order to protect the privacy of others, you should avoid providing the personal data of other people unless you are specifically requested to provide this information.
How will we use your information?
We only use information in full compliance with applicable laws and regulations, as well as standard best practices. The following are common ways your information may get used:
- When necessary for our legitimate business purposes (or those of an appropriate third party). In particular, these purposes include providing information for requested services, managing the day-to-day operations of the business, and providing marketing materials requested, but only where your interests and fundamental rights do not override those business interests.
- When you have consented and you have not withdrawn that consent.
Your information may be used for the following uncommon reasons:
- When we need to protect your vital interests (or someone’s vital interests).
- When it is needed in the public interest.
More specifically, we may use information in the following ways based on how it was provided to us.
Information you give us.
We use this information:
- to provide you services and information that you have requested from us;
- to send you information about events or seminars that could be of interest to you;
- to provide you with industry updates and information that could be of interest to you;
- for marketing and advertising;
- to make sure our website works well for you, your computer, and your browser; and
- for quality control, including storage, for internal development and testing for internal software development. This information carries the same level of security protection afforded to our production environments.
Information we collect about you.
We use this information:
- to run our websites and internal operations. This could include testing, surveys, use statistics, website security, and troubleshooting;
- to make sure our website works well for you, your computer, and your browser;
- to enable interactive features when you to engage them; and
- to ensure the security of the website and the data it is connected to.
Information we receive from other sources.
This information may be used in ways referenced above depending on the type of information and how and where it was obtained.
Disclosure of your information
We may share your personal information throughout our corporate structure which includes subsidiaries, our ultimate holding company and its subsidiaries. Your information may be shared with third parties when necessary, for the purposes set forth here, including:
- Business partners, suppliers, and sub-contractors for the execution of services you have requested.
- SEO and analytics companies to optimize and improve our site.
Additionally, your personal information may be disclosed to third parties by us:
- During the sale or purchase of a business or other business assets. Your data may be shared with prospective the seller or buyer of the business or specific business assets.
- If we have all or substantially all of our assets acquired by a third party. This data will be transferred along with the liability associated with its protection.
- If we are compelled by legitimate governmental or judicial orders or must comply with other legal contractual obligations. Additionally, we may disclose to protect the rights, property or safety of us, our customers, or other parties. This includes disclosures due to fraud prevention and credit protection.
Transfer and storage of data for those in the European Economic Area (“EEA”)
If you reside in the European Economic Area (“EEA”), your data may be transferred outside of the EEA for reasons such as administrative and financial tasks, data protection, and executing services requested. Data transferred will be protected in compliance with the EU’s General Data Protection Regulation (GDPR). Any transfer will primarily be within our organization. If a third party processes your personal data, it will only be done under specific instruction and with the obligation of the party to maintain the required levels of security and confidentiality. If data is transferred to countries outside of the EEA where the European Commission has not determined adequacy in terms of those countries’ safeguards for data protection we will ensure safeguards are in place to protect your data before any transfer occurs. These can include agreements and controls consistent with GDPR or based on the EU-US Privacy Shield arrangement or equivalent program.
Data Subject Rights
In certain jurisdictions (such as the EEA) and under certain circumstances, the law gives you the right to:
- Access your information.
You are entitled to request access to the information we hold about you (known as a ‘data subject access request’). You are entitled to receive a copy of the personal information we hold about you and to check that it is being lawfully processed.
- Correct your information.
If your information we possess on you is determined to be incorrect, you have the right to request it be corrected.
- Request removal or your information
When continued processing of your personal information is no longer needed, you have the right to request the removal of your personal information. We may maintain minimal information such as your name and city to assure your request to not have data gathered into the future is honored.
- Object to processing.
When the organization is processing your data for legitimate interest or direct marketing, you have the right to object to that processing.
- Ask processing be restricted.
You are entitled to request that processing of your personal information be paused. This may be due to time waiting for a request for how information is processed or time to review the accuracy of your data.
- Transfer your personal information.
You may request we transfer your data to another party.
It is important that the personal information we hold for you is accurate and up to date. If you wish to exercise any of the rights listed above, please contact:
Exercising Rights without Cost
You may exercise your rights at no cost. If the requested is found to be unfounded or excessive, then we reserve the right to charge a reasonable fee or refuse the request.
When is my data removed?
Your personal information will be kept no longer than the time needed to fulfill the legitimate purposes the information was gathered for. You may not be able to specify the retention period for your information. Legal requirements, business relationship reason, information sensitivity, and the reason for the use of the data may be reasons that require longer retention periods when are other means are not available to achieve the express goal of the retention. Additionally, information may be retained to protect the vital interests of you or others.
We believe maintaining the security of your data is very important. We have protections in place to protect your data in accordance with governing laws and regulations of the jurisdictions our customers and users reside in. Process and technical controls have been implemented to ensure your data is not misused, illegitimately accessed, improperly disclosed, or lost. Only individuals with a business need to know are given access to your data. Any third party disclosure of data will take place under our supervision and will be in accordance with all rights granted to you by applicable laws and regulations. We have procedures for data breaches that ensure data subjects and appropriate authorities are notified when a breach occurs and a legal duty for disclosure exists.
Our website may include links to external resources outside of our own website. Any website not controlled by COR Partners or its holdings are subject to the policies of the operator of that website. COR Partners or its holdings cannot guarantee protection of any data you transmit or that is collected on any website not within our control.
If you believe our personal information processing infringes on applicable laws, you have the right to file a complaint to the appropriate supervisory authority, such as the United States Federal Trade Commission, Office of the Privacy Commissioner of Canada, State Data Protection Authority of an EU Member State, the UK Information Commissioner’s Office, or other appropriate governmental entity with jurisdiction.
How to contact us
By email at DPO@envistaforensics.com.
We reserve the right to revise this policy or any part of it from time to time and will provide you with a new policy notice when any substantial updates are made. We may also notify you through other means, about the processing of your information.