UV Partners, Inc. (“UV Partners”, “we”, or “us”) has adopted this Privacy Policy to inform our customers of our policies and practices with respect to information we collect as a result of their use of UVA monitoring and disinfecting devices (“Device”) along with our UVA desktop client software (“Software”) and the UVA web administration cloud software (“Portal”). Collectively, the Devices, Software (if any), and Portal are referred to as the “System.”
Your use of the System constitutes your acceptance of this Privacy Policy and your consent to the practices it describes. Please review this Privacy Policy periodically as we may update it from time to time. Each time you utilize our System or provide us with information you are, by doing so, accepting the practices described in this Privacy Policy at that time.
Summary
We value your privacy and, unless otherwise stated in this Privacy Policy, will not sell or share your identifiable information with third parties without your consent. This section gives a brief overview of our data collection and use policies. Please see below for a more detailed discussion of each topic.
We collect the following information:
- Organizational information, including the name of your organization, the number of Devices you use, and the location of those Devices.
- Personal information of Portal users consisting of your name, organization, email, and password.
- Information related to the Device, including functionality, diagnostics, and interactions with users.
- Information related to the machine on which you run any Software.
We collect information from the following sources:
- The information a user provides when registering with and using the Portal.
- The information that the Device automatically collects and shares.
- The information that the Software shares.
We use and disclose the information we collect for the following purposes:
- To create and maintain your account.
- To provide you with our services.
- To help us improve the System.
- For our own business purposes (but only using anonymous information).
We Do Not Sell Your Information
We will never sell information that could identify you or your organization to a third party without your express consent. We reserve the right to license or sell information about the users of our System, including anonymous information related to the use of our System and analytic information related to the Devices; however, this information will always be shared on an anonymous basis and never in a way that can identify you individually or as an organization.
Categories of Information We Collect
Through your use of the System, we may collect the following information:
- Identifiable Information. Identifiable information is made up of the information a user will need to provide to use the Portal, including first name, last name, email address, user name, and password, as well as information related to your organization, such as entity name and location of Devices within your organization. In addition, we collect information related to a user’s use of the Portal such as number of log-ins, pages viewed and data points viewed.
- Device Information. This consists of the Device serial number and the software version it is using, cleaning data (such as when a air treatment cycle starts and ends as well as how much was completed), motion data (such as when motion under the device starts and ends), bulb life data, and the location you assign the Device at your facility (building, floor, room, department, etc.).
- Computer Information. This is the information that is shared by the machine on which you run any Software or access the Portal, and consists of the machine’s name, serial number, operating system, MAC address, and last known IP address.
How We Collect the Information
The information described above is collected from the four sources described below:
- Through the Device. Each Device collects and stores information related to how users interact with it, its air treatment activities, and diagnostic information. If your Device is enabled through an appropriate network connection, such as your organization’s wireless network, information that is stored on the Device is automatically transmitted to the Portal. This is true even if you do not create a Portal account.
- Through the Software. If you connect your Device to a machine that operates the Software, the Software will automatically collect information stored on the Device and transmit that information to the Portal.
- Through the Portal. The Portal collects the information that the Device or Software transmits as well as information about the machine that is running any Software. It also collects the information you input, such as Device location, and your personal and organizational information. Finally, the Portal collects information related to your use of the Portal.
- Through Amazon Web Services. Our Portal is hosted by Amazon Web Services (“AWS”). AWS collects your username and password through its tool, Cognito. We never have access to your password.
How the Information is Used and Disclosed
If you set up a Portal account and subscribe to the Portal services, you can use the information uploaded and stored in the Portal to generate reports about Device use and effectiveness. In addition, we or our business partners may use your information for the following purposes:
- To authenticate your credentials and grant you access to the Portal (currently, this is done by AWS Cognito).
- To provide you with System support.
- To communicate with you about replacement System components and services.
- For System improvement purposes and our business purposes or other legally permissible purposes (such as research and marketing), but only after any identifiable information about you and your organization is removed.
- To protect our business interests or the rights of others.
- As required by law, such as to cooperate with law enforcement.
- In connection with the sale or merger of all or part of our business.
Data Retention
We typically retain your identifiable information for no longer than for the period necessary to fulfill the purposes outlined in this Privacy Policy and as otherwise specified in applicable record retention policies and procedures. We may retain your identifiable information even after you have closed your Portal account if reasonably necessary to comply with our legal obligations (including law enforcement requests), meet regulatory requirements, resolve disputes, maintain security, prevent fraud and abuse, enforce our terms and conditions, or fulfill your request to “unsubscribe” from further messages from us. We will retain de-identified information after your Portal account has been closed or we have otherwise deleted your identifiable information.
How We Protect Your Information
We maintain technical and organizational measures to protect the integrity of the Portal and the identifiable information we collect from loss, misuse, alteration, or unintentional destruction. However, we cannot provide absolute assurances against, and will not be liable for, any breaches of data security or confidentiality due to system failures or unauthorized access by third parties, or other causes beyond our reasonable control. You also have an important role in protecting your information. You should not share your Portal username or password with anyone, and you should not re-use passwords from other websites or devices. If you have any reason to believe that your username or password has been compromised, please contact us as detailed below.
Verifying, Changing, and Deleting Your Information
You can access, review, and manage the information that is contained in your Portal account via the Portal itself, including updating user information and changing communication preferences. If the information you are seeking is not available within your Portal account, you can contact us as detailed below and ask us to change, update, or fix your information in certain cases, particularly if it is inaccurate. You can also request that we erase or delete all or some of your identifiable information or otherwise object to, limit, or restrict the use of such information (if we have no legal right or legitimate business interest in retaining such information).
Changes to This Policy
We reserve the right to change this Privacy Policy. If we do change this Privacy Policy, we will post the revised version on the Portal or otherwise make it available to you, and if we are going to change this Privacy Policy in a way that would permit us to make additional uses or disclosures of your personal or organizational information that we have already collected, we will obtain your affirmative, express consent before using your information in a materially different way.
Contact Us
If you have any questions or comments about our policies and practices, please contact us at info@uvangel.com. You may also file a complaint or ask to review any of the information that we have retained about you, how we have used it, or to whom we have disclosed it at any time by contacting us.
Last updated: October 18, 2023
Dr. Jeffrey A. Gelfand, MD
Tianhong Dai, Ph.D.
Jacqueline Schultz, RN, MSN CNAA
Bob Rothstein, MD
Yingying Haung, MD – Ph.D.
Dave Skelly
Bryson Despain
Mike Herbert
Jennifer Brant
Hal Monson
Paul Byrne
Tom Byrne
Dave Baarman
Bret Lewis
Dr. Linda Lee, MBA, CIC
Ted Cole
Andrew Gostine, MD