Privacy Policy

Privacy language

Veteranlogix Privacy Shield Principles Statement

Veteranlogix (“we,” us,” or “our”) complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce.  Veteranlogix has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union and the United Kingdom in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF.  veteranlogix has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF.  If there is any conflict between the terms in this privacy policy and the DPF Principles and/or the Swiss-U.S. DPF Principles (DPF Principles), the Principles shall govern.  To learn more about the Data Privacy Framework Program (DPF Program), and to view our certification, please visit https://www.dataprivacyframework.gov/. 

Address

Veteranlogix 42 J1 Valancia Town Lahore

i.NOTICE

Veteranlogix, its authorized personnel collect data from you through a variety of means including, but not necessarily limited to, online usage, online requests, online surveys, phone calls, emails, and voicemails. Information about your personal health, medical conditions, or care that you provide to us, is held in strictest confidence. Based upon valid business purposes (such as performance of service and customer service) at times, Veteranlogix may disclose this information on a need to know basis to appropriate third parties. Pursuant to the Data Privacy Framework, Veteranlogix remains liable for the transfer of personal data to third parties acting as our agents unless we can prove we were not a party to the events giving rise to the damages. Third Parties may include: Business Partners, Agents and Contractors: To provide you with the services on the Site and the programs we support, we may disclose your information to business partners, agents, and contractors who perform services on our behalf, such as fulfillment, web hosting, or data storage. These third parties may also collect information on our behalf. Veteranlogix. will enter into confidentiality agreements providing that any business partners, agents, and contractors to whom we share information agrees to the same restrictions and conditions that apply through this Privacy Policy to veteranlogix, Inc. with respect to such information. Company is a service provider to Corporate Clients, i.e., corporations in Life Science and/or Healthcare Industries. When Company processes Personal Information for or on behalf of a Corporate Client, the Company processes Personal information solely for the purpose of providing the Services, in a legal and compliant manner, in accordance with the Agreement and any Statement of Work (SOW) and not for any other purpose or in any other manner. In those cases, that Client is the sole owner or controller of all Personal Information made available to Company and Company only acts under the instruction of Client in connection with Company’s Processing of it and that any Personal Information processed by Company for or on behalf of Client is deemed to be the Confidential Information of Client. We do not give out, exchange, barter, and rent, sell, lend, or disseminate any information about users who download our mobile application or access our websites, or receive any other services that are considered patient confidential, which is restricted by law, or has been specifically restricted by a patient/client in a signed HIPAA consent form. Veteranlogix is subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC).

b. Inquiries or Complaints  Any inquiries and/or complaints can be directed to:
Email: info@veteranlogix.com
Address: 42 J1 Valancia Town Lahore PK
Contact: Privacy Officer

ii.CHOICE

a.Opt out:Veteranlogix, Inc. offers individuals the opportunity to choose (opt out) whether to disclose personal information. Veteranlogix, Inc. offers individuals the opportunity to opt out when information to be used for a purpose that is incompatible with the purpose(s) for which it was originally collected or subsequently authorized by the individual. Individuals are provided a clear and conspicuous, readily available, and affordable mechanism to exercise choice.

iii. ACCOUNTABILITY FOR ONWARD TRANSFER

To disclose information to a third party, Veteranlogix. will apply the Notice and Choice Principles.

What We Do Not Do With Your Information

iv. SECURITY

Information is only used as is reasonably necessary to provide you with health or educational services that may require communication between you (or your caregiver) and your provider

v. DATA INTEGRITY AND PURPOSE LIMITATION

It is the policy of Veteranlogix that information, as defined hereinafter, in all its forms – written, video, spoken, recorded electronically or printed – will be protected from accidental or intentional unauthorized modification, destruction or disclosure throughout its life cycle. This protection includes an appropriate level of security over the equipment and software used to process, store, and transmit that information. Information will only be used for valid business purposes (e.g., sales, marketing, order fulfillment, or research).
We may be required to disclose an individual’s personal information in response to a lawful request by public authorities, including to meet national security or law enforcement requirements.

vi. ACCESS

You have the right to access your personal data. Pursuant to the DPF Program, EU, UK, and Swiss individuals have the right to obtain our confirmation of whether we maintain personal information relating to you in the United States. Upon request, we will provide you with access to the personal information that we hold about you. You may also correct, amend, or delete the personal information we hold about you. An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data transferred to the United States in reliance on the DPF Program should direct their query to (contact us at: Privacy Officer, veteranlogix, Inc., 116 Research Drive, Bethlehem, PA 18015 USA). If requested to remove data, we will respond within a reasonable timeframe. 
All policies and procedures must be documented and made available to individuals responsible for their implementation and compliance. All activities identified by the policies and procedures must also be documented. All the documentation, which may be in electronic form, must be retained for at least 6 (six) years after initial creation, or, pertaining to policies and procedures, after changes are made. All documentation must be periodically reviewed for appropriateness and currency, a period of time to be determined by each entity within veteranlogix.
At each entity and/or department level, additional policies, standards and procedures will be developed detailing the implementation of this policy and set of standards, and addressing any additional information systems functionality in such entity and/or department. All departmental policies must be consistent with this policy. All systems implemented after the effective date of these policies are expected to comply with the provisions of this policy where possible. Existing systems are expected to be brought into compliance where possible and as soon as practical.

vii. RECOURSE, ENFORCEMENT AND LIABILITY

The Information Security Policy applies to all users of veteranlogix information including: employees, medical staff, students, volunteers, and outside affiliates. Failure to comply with Information Security Policies and Standards by employees, medical staff, volunteers, and outside affiliates may result in disciplinary action up to and including dismissal in accordance with applicable veteranlogix procedures, or, in the case of outside affiliates, termination of the affiliation. Failure to comply with Information Security Policies and Standards by students may constitute grounds for corrective action in accordance with veteranlogix procedures. Further, penalties associated with state and federal laws may apply.
Possible disciplinary/corrective action may be instituted for, but is not limited to, the following:

Unauthorized disclosure of PPI, PHI or confidential information as specified in Confidentiaulty Statement.
Unauthorized disclosure of a sign-on code (user id) or password.
Attempting to obtain a sign-on code or password that belongs to another person.
Using or attempting to use another person’s sign-on code or password.
Unauthorized use of an authorized password to invade patient privacy by examining records or information for which there has been no request for review.
Installing or using unlicensed software on Veteranlogix computers.
Attempting to get access to sign-on codes for purposes other than official business, including completing fraudulent documentation to gain access .

Independent Recourse Mechanism

In compliance with the DPF Principles, Veteranlogix commits to resolve DPF Principles-related complaints about your privacy and our collection or use of your personal information. European Union, United Kingdom, and Swiss individuals with inquiries or complaints regarding our handling of personal data in reliance on the DPF should first contact VIIHEALT at
Privacy Officer

Veteranlogix 42 J1 Valancia Town Lahore PK

[email protected]

Veteranlogix has further committed to refer unresolved DPF Principles-related complaints to a U.S.-based independent dispute resolution mechanism, BBB NATIONAL PROGRAMS. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed by us, please visit www.bbbprograms.org/dpf-complaints for more information and to file a complaint. This service is provided free of charge to you. 

If your DPF complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms. See  https://www.dataprivacyframework.gov/framework-article/ANNEX-I-introduction for more information on this process. 

The effective date of this policy is 1/21/2025