Privacy Policy
EVIDATA HEALTH PRIVACY POLICY
version 1.0 Aug 2018
​
​
General
​
EVIDATA HEALTH Inc. (Evidata) is committed to personal data protection. Evidata continually strives to protect personal data in accordance with applicable data privacy laws, including Republic Act 10173 of the Data Privacy Act of the Republic of the Philippines 2012, and accepted best industry practices. By dealing with Evidata in any capacity, you agree to this Privacy Policy. Personal data includes any information that specifically identifies an individual or is capable of doing so.
​
​
Use of Personal Data
The main types of personal data that EVIDATA HEALTH deals with are names, email addresses, contact numbers, government issued ID numbers, medical information, benefits information, credit card information and delivery addresses. Evidata does not store medical personal information or credit card information.
​
Evidata legitimately obtains and uses personal data in the conduct of its primary purposes including: i.) designing, developing and selling health benefits and wellness products, services and solutions, ii.) owning, operating and providing online services, online marketplaces, support services related to its core services, iii.) obtaining and analyzing data and other information, and iv.) providing advisory services on population health and employee productivity.
​
Evidata may use personal information to supervise, administer, assist with or otherwise manage the transactions on its online service initiatives.
​
Evidata stores personal data securely, with security protocols matching the sensitivity of the personal data stored. Evidata retains personal data for the duration that is set out in its prevailing data storage policy that conforms with governmental specifications including guidelines specified by the Data Privacy Commission and the Department of Health, as well as reasonable data privacy best-practice requirements.
​
​
Disclosures
​
EVIDATA HEALTH does not sell, rent, license or otherwise deal with personal data for cash consideration or as inventory or stock-in-trade.
​
EVIDATA HEALTH discloses personal data to third parties where the disclosure is required for EVIDATA HEALTH's ordinary course of business, mainly:
​
EVIDATA HEALTH discloses personal data where Evidata online services and online marketplaces are used, and where applicable Evidata discloses personal data to credit card processors, payment, delivery services and other service providers that perform, facilitate or support the applicable payment, delivery or other service, and for purposes that are related to the relevant transactions, including delivery, client inquiries, orders, payments and return activities.
​
EVIDATA HEALTH discloses anonymized, aggregated, non-identifiable personal data to strategic partners for the purposes of analysis, processing, computation and other similar activities, for Evidata core services, including product development and research.
​
EVIDATA HEALTH discloses personal data to third-parties as specified in the foregoing disclosures, and as such, the third-party recipients are required to protect personal data with substantially similar or higher standards as those stated in this policy.
EVIDATA HEALTH may provide personal data in emergencies or legal processes, including where requested by authorized governmental agencies, subpoenas or court orders, and where necessary to ensure health and safety.
​
​
Contact Us
​
For (a) questions or feedback, (b) withdrawal of consents, or (c) accessing or correction of personal data, please contact:
​
EVIDATA HEALTH Inc, Clock-In, Penthouse Floor,
Makati Stock Exchange Building 6767 Ayala Avenue,
Makati City Philippines1225
​
​
Responsibilities
​
EVIDATA HEALTH management is responsible for ensuring the compliance with all applicable data protection laws. This responsibility is shared with EVIDATA HEALTH's Data Privacy Officer (DPO), and its Information Technology and Human Resources departments.
​
All Evidata employees are responsible for following data privacy and protection laws and complying with this policy. Evidata employees are required to report to its management breaches of applicable data protection laws, of which they are aware.