Privacy Policy

Translation Index

This Privacy Policy (this “Policy”) applies to the Personal Data (as defined below) and other information collected by Greenphire, LLC and its affiliates (the “Company”, “we“, “us“, or “our“) while: (1) using our websites, including www.greenphire.com (the “Websites”) and/or (2) using our products and services, including, without limitation the services known as ClinCard, ConneX, eClinicalGPS, EnvisiX and GreenSpace (the “Services”). The Services are typically accessed by you through a proprietary platform (each a “Platform”, collectively, the “Platforms”) available for you to access on a personal computer, smartphone, tablet or other electronic device. To the extent applicable, this Policy also applies to our general online and offline collection of information.

This Policy generally applies regardless of whether you are: (1) a participant in a clinical trial; (2) a payee; (3) a health care provider; (4) a clinical trial site administrator; or (5) a clinical trial sponsor (each a “User”, “you” or “your”). However, certain aspects of the Policy may not apply to each type of User in all circumstances.

By accessing or using the Websites or the Platforms, you agree that you have read, understand, and are bound by this Policy and our Terms of Use [greenphire.com/terms-of-use] (the “Terms of Use”). IF YOU ARE UNDER 18, PLEASE DO NOT USE OR ACCESS THE WEBSITES OR THE PLATFORMS. If you do not agree to be bound by this Privacy Policy or our Terms of Use, please do not use the Websites or the Platforms.

1. Collection of Personal Data

a. Personal Data is information that identifies you, or could be used to identify or contact you. Personal Data includes, without limitation, information such as your name, email address, mailing address, phone number, date of birth, or internet protocol (“IP”) address. We may need to collect and process Personal Data in order: to (i) provide requested information; (ii) provide Services to you; (iii) allow you to access the Website or the Platforms; and/or (iv) because we are legally required to do so. Personal Data may be collected directly from you, from your employer and/or from third parties.

b. Generally, to use and access the Website, you are not required to provide Personal Data. However, to access certain parts of the Website and to use the Platforms you will be required to create an account (each an “Account”). Personal Data will be requested from you as part of the Account registration process. The registration process for an individual User, such as a clinical trial participant, typically requests that you provide your name, email address, mailing address, date of birth and phone number. For Users who are accessing the Website or the Platforms on behalf of their employer, registration typically requires that you supply your name, your job title, your business email address and your business phone number.

c. We also may collect Personal Data when you respond to a survey, inquire about our Services and/or contact us for customer service or technical support.

d. If you inquire about an employment opportunity at Company, you will need to send us a resume or similar document containing Personal Data, that will be used solely for employment evaluation purposes. Providing this information is completely voluntary.

e. The Company occasionally collects Personal Data through various other means, including participation at conferences, tradeshows and events, and from select third-party business partners. From time to time, we may also acquire from third-parties certain lists containing Personal Data of individuals who may be interested in the Websites or our Services.

f. For those Users who receive payments through the Platforms for your participation in clinical trials, we also collect social security numbers as well as information related to your financial institutions and bank accounts such as payment card information.

g. Certain aspects of the Platform may allow you to upload images and documents, such as receipts, which also may contain Personal Data.

2. Grounds for Use of Personal Data. We use Personal Data for legitimate business purposes, including, without limitation, the following:

a. Consent. Personal Data may be used by collecting your consent, such as when you sign a consent in connection with a clinical trial. To withdraw your consent, please contact us at privacy@greenphire.com. Note that if you withdraw your consent, you may not be able to use or access the Websites or the Services. If your consent is obtained via a clinical trial consent, your Personal Data will only be used in connection with the trial or as otherwise permitted by law.

b. Your Account; Delivery of Services. We may use Personal Data about you to: (a) establish and manage your Account; (b) deliver Services to you; (c) allow you to access the Websites or the Platforms; (d) provide you with customer service or technical support; (e) manage our relationship with you, your employer or a clinical trial site; or (f) comply with a legal obligation.

c. Marketing Communications. From time to time, we may use Personal Data to inform you through targeted advertising of products, programs, services and promotions that we believe may be of interest to you as well as for general marketing purposes. We sometimes use a marketing automation tool to identify individuals who may be interested in receiving information about the Websites or our Services.

d. Other Business Purposes. We may use Personal Data for other business purposes, such as data analysis, editorial and feedback purposes, customizing or improving the content and layout of the Websites or the Platforms, completing business transactions, development of marketing and promotion plans and materials, statistical analysis of User behavior (for example, to understand what parts of the Websites and the Platforms are of most interest to Users), product development, market research, administering individual accounts, and meeting regulatory requirements. As appropriate, we, or our business partners, may use your Personal Data to contact you for the purposes of conducting surveys or market research.

e. Administrative Communications. We may use Personal Data to send you information regarding the Websites, the Platforms, your Account status, changes to this Policy or the Terms of Use, or any other policies, agreements or transactions relevant to your use of the Websites or the Platforms. Because this information may be important to your use of the Websites or the Platforms, you may not opt-out of receiving such administrative communications.

f. Employment. We may use Personal Data to consider you for employment when you apply for a position with us or submit a resume or an employment application to us.

g. Compliance with Legal Obligations. We may use Personal Data as necessary to comply with our legal obligations.

3. Web Analytics, Cookies and Similar Technologies.

a. When you visit or interact with the Websites, we, or our third-party service providers, may also use cookies and other types of web technologies to collect technical and usage information such as browsing history, domain name, IP address, browser type, date and time of each visit, and pages that your web browser has visited. As it relates to clinical trial participants, cookies and other types of web technologies will only be used as necessary to perform the requested services. We use cookies to understand and save your preferences for future visits and to compile aggregate data about the Websites’ traffic and your interaction with the Websites so that we can offer better experiences and tools in the future. Cookies are small files that a site or its service provider transfers to your computer’s hard drive through your web browser (if you allow) that enables the sites or service provider’s systems to recognize your browser and capture the above information.

b. Most web browsers permit you to set your web browser to block or delete all cookies, including cookies associated with our Websites, or to indicate when a cookie is being set by us. However, it is important to remember that the Websites may not function properly for you if you set your browser to reject our cookies.

c. We may also use other third-party service providers to track visitors to the Websites. Most browsers also allow you to turn on a feature commonly referred to as “Do Not Track” indicating your preference to not have your behavior tracked over time and across websites.

4. How We Share Information.

a. We do not sell Personal Data for monetary consideration or share your Personal Data for advertising purposes. However, we will provide Personal Data to our business partners such as third parties who: (i) assist us in operating the Websites or the Platforms, including information technology partners; (ii) conduct surveys or market research; (iii) manage or operate a clinical trial site; (iv) provide customer support or technical support services; and/or (v) provide general business services (e.g., marketing or analytics). If your use of the Platforms necessitates payments to you, such as if you are a clinical trial participant, we would also then provide Personal Data to financial institutions and related parties in order to provide these payments to you.

b. We may also share your Personal Data when we believe the disclosure is appropriate to comply with the law or legal process, enforce our policies, or protect ours or other’s rights, property, or safety.

c. We may share your Personal Data with our parents, subsidiaries and affiliates. We may also transfer your Personal Data to any successor company through a corporate transaction such as a merger, sale of assets, statutory consolidation and/or joint venture.

d. If you are a clinical trial participant, we will share your Personal Data with: (i) the site staff members (ii) the trial sponsor and those working on the sponsor’s behalf; and/or (iii) contract research organizations.

5. Choices, Rights and Disclosures.

a. We are committed to facilitate the exercise of the rights granted to you by the laws of your jurisdiction. We will do our best to honor your requests, subject to any legal and contractual obligations. If you no longer want to receive marketing-related emails from us on a going-forward basis, you may stop receiving these marketing-related emails by sending an e-mail to privacy@greenphire.com or by clicking the “unsubscribe” link in any email communication. Please note that administrative communications related to the Websites or the Platforms are not subject to a general opt-out or unsubscribe option.

b. We will try to comply with your request(s) as soon as reasonably practicable. Please note: (i) we may not be able to remove your Personal Data from the databases of third parties with which we have already shared your Personal Data (i.e., to which we have already provided your Personal Data as of the date that we implement your request); (ii) that requesting us not to share your Personal Data with unaffiliated third parties may result in you no longer receiving any marketing emails from us; and (iii) that if you choose not to receive marketing-related messages from us, we may still send you administrative communications, and you cannot elect to stop receiving such communications, unless you choose to stop using the Websites and the Platforms. Notwithstanding the foregoing, with respect to clinical trial participant Personal Data, we will be able to remove your Personal Data from the databases of third parties.

6. Retention and Security of Personal Data.

a. We retain the Personal Data for so long as reasonably necessary to fulfill the purposes for which the Personal Data was collected and to perform our contractual and legal obligations.

b. We believe that we have established reasonable organizational and technical measures designed to protect Personal Data from loss, misuse, or unauthorized access, disclosure, alteration or destruction. However, no electronic transmission, storage or processing of information can be entirely secure and you assume all risk of loss, unauthorized access to or misuse of your information. Please note that one of the most effective security measures is protecting your password. Do not use any common passwords (such as “password”, “1234” or your child’s name) for your Account. Do not share your Account password with others.

c. Most Personal Data is stored electronically on third-party servers located in either the USA or the European Union.

7. California Disclosures

a. California “Shine the Light” Information-Sharing Disclosure: California residents may request a list of all third parties with respect to which we have disclosed any of your Personal Data for direct marketing purposes and the categories of information disclosed. If you are a California resident and want such a list, please send us an email request by email to privacy@greenphire.com with “California Shine the Light Rights” in the subject line.

b. California Do Not Track Disclosure: At this time, there is no worldwide uniform or consistent industry standard or definition for responding to, processing, or communicating Do Not Track signals. Thus, our services are unable to respond to Do Not Track Signals.

c. California Consumer Privacy Act Disclosures: The California Consumer Privacy Act, as amended by the California Privacy Rights Act effective January 1, 2023 (“CCPA”), gives California residents the right to request: (i) the categories of Personal Data (including sensitive Personal Date if applicable) we have collected about you; (ii) the categories of sources from which the Personal Data is collected; (iii) the business or commercial purpose of collecting, selling or sharing Personal Data; (iv) the categories of third parties with whom we share or sell Personal Data; (v) the categories of Personal Data about you that we have disclosed; and (vi) the specific pieces of personal information we have collected about you.

Additionally, you have the right: (i) to know the length of time we retain your Personal Data; (ii) to request deletion of your Personal Data; (iii) to request the correction of any inaccurate Personal Data; (iv) to opt out of the sale or sharing of your Personal Data (as applicable); (v) to limit the use of sensitive Personal Data (if applicable); and (vi) to not be discriminated against for exercising any of your CCPA rights.

We will do our best to honor your requests subject to any legal, ethical, and contractual obligations.

d. Exercise of Rights. To exercise the rights described above, it may be necessary for us to verify your identity or authority to make the request and confirm the Personal Data relates to you. Only you, or a person registered with the California Secretary of State that you authorize to act on your behalf, may make a verifiable consumer request related to your Personal Data. We will not discriminate against you for exercising any of your privacy rights under CCPA or other applicable law.

Please see the chart below regarding the categories of data we may have collected or received in the 12 months preceding the effective date of this Policy from California residents and to whom we may have disclosed the information for business purposes.

We do not sell, and in the last 12 months have not sold, Personal Data for monetary consideration under CCPA. Personal Data may be provided to our service providers and to third parties under Section 1798.140(t)(2)(A) of the CCPA. In the event that the use of third party cookies constitutes a “sale” under CCPA, you may opt out of the use of such cookies using your browser settings.

8. Disclosures for Individual USA States.

a. If you are a resident of Colorado, Connecticut, Virginia or Utah, each of those states provides their residents with rights to: (i) confirm whether we process your Personal Data; (ii) access and delete certain Personal Data; (iii) Personal Data portability; and (iv) opt-out of Personal Data processing for targeted advertising and sales. However, please note that we do not conduct targeted advertising and sales.

b. Colorado, Connecticut and Virginia also provide their state residents with rights to: (i) correct inaccuracies in Personal Data, taking into account the information’s nature and processing purpose; and (ii) opt-out of profiling in furtherance of decisions that produce legal or similarly significant effects.

c. Nevada provides its residents with a limited right to opt-out of certain Personal Data sales. However, please know we do not currently sell data triggering that statute’s opt-out requirements.

d. To exercise any of these rights please send a request to privacy@greenphire.com.

9. European Union and United Kingdom Privacy Rights and Choices. If you are located in the European Union (“EU”), the United Kingdom or another jurisdiction that has adopted laws substantially similar to the EU’s General Data Protection Regulations (“GDPR”), your privacy rights include the following:

a. Transparency and the right to information. Through this Policy we explain how we use and share your information. However, if you have questions or need additional information you can contact us any time.

b. Right of access, restriction of processing, and erasure. You may contact us to request information about the Personal Data we have collected from you and to request the correction, modification or deletion of such Personal Data, which requests we will do our best to honor subject to any legal and contractual obligations. To make a request or to ask us a question about our data practices, please contact us via email at privacy@greenphire.com.

c. Right to withdraw your consent at any time. When we process your Personal Data based on your consent, you have the right to withdraw it at any time.

d. Right to object at any time. You have the right to object at any time to receiving marketing or promotional materials from us by either following the opt-out instructions in our e-mails or by contacting us, as well as the right to object to any processing of your Personal Data based on your specific situation. In the latter case, we will assess your request and provide a reply in a timely manner, according to our legal and contractual obligations. Some non-marketing communications are not subject to a general opt-out, such as communications about transactions and disclosures to comply with legal requirements or administrative communications.

e. Right to data portability. You have the right to data portability of your own Personal Data by contacting us.

f. Right not to be subject to an automated decision, including profiling. We do not make automated decisions using your Personal Data that may negatively impact you.

g. Right to lodge a complaint with a supervisory authority. If you consider that the processing of your Personal Data infringes your privacy rights under the GDPR, you have the right to lodge a complaint with a supervisory authority, in the member state of your habitual residence, place of work, or place of the alleged infringement.

h. If you are a clinical trial participant wishing to exercise any of the rights set forth in subsections (b) through (f) above, contact the clinical study site as described in your informed consent form.

10. Changes to our Privacy Policy. We reserve the right to change this Policy from time to time. You are encouraged to regularly review this Policy. If we decide to materially change this Policy, we will post a notice on the Websites and the Platforms.

11. Third-Party Websites. The Websites or the Platforms may contain links to other, unaffiliated websites (“Third-Party Sites”) for your convenience or information. We are not responsible for the content or privacy practices of Third-Party Sites. Third-Party Sites will have their own terms of use and privacy policies, and we encourage you to review those policies as appropriate.

12. Users Outside the United States. Although some Personal Data is stored in the EU, the Websites and the Platforms are controlled and operated from the United States. If you are an individual from the EU, Canada or any other jurisdiction with laws or regulations governing personal data collection, use, and disclosure that differ from United States laws, please be advised that the United States is not deemed an “adequate jurisdiction” by the EU regulatory authorities. Personal Data may also be transferred from the country of your residence to other countries, including the United States, using permitted transfer mechanisms, such as within the framework of the standard contractual clauses.

13. Contact Information. If there are any questions regarding this Policy or how we collect, use, store or handle Personal Data, you may contact us by sending an email to privacy@greenphire.com or by sending registered mail to:

Greenphire, LLC
1018 West 9th Ave., Suite 200
King of Prussia, PA 19406
USA
Attn: Privacy Department

Policy Last Updated: July 11, 2023

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.

Necessary

Always Enabled

Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.

Cookie	Duration	Description
cookielawinfo-checkbox-advertisement	1 year	Set by the GDPR Cookie Consent plugin, this cookie records the user consent for the cookies in the "Advertisement" category.
cookielawinfo-checkbox-analytics	6 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	6 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	6 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	6 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	6 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
CookieLawInfoConsent	1 year	CookieYes sets this cookie to record the default button state of the corresponding category and the status of CCPA. It works only in coordination with the primary cookie.
viewed_cookie_policy	6 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Functional

Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.

Cookie	Duration	Description
__cf_bm	30 minutes	Cloudflare set the cookie to support Cloudflare Bot Management.
li_gc	5 months 27 days	Linkedin set this cookie for storing visitor's consent regarding using cookies for non-essential purposes.
lidc	1 day	LinkedIn sets the lidc cookie to facilitate data center selection.

Analytics

Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.

Cookie	Duration	Description
_ga	1 year 1 month 4 days	Google Analytics sets this cookie to calculate visitor, session and campaign data and track site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognise unique visitors.
_ga_*	1 year 1 month 4 days	Google Analytics sets this cookie to store and count page views.
_gat_gtag_UA_*	1 minute	Google Analytics sets this cookie to store a unique user ID.
_gcl_au	3 months	Google Tag Manager sets the cookie to experiment advertisement efficiency of websites using their services.
_gd_session	4 hours	This cookie is used for collecting information on users visit to the website. It collects data such as total number of visits, average time spent on the website and the pages loaded.
_gd_visitor	1 year 1 month 4 days	This cookie is used for collecting information on the users visit such as number of visits, average time spent on the website and the pages loaded for displaying targeted ads.
_gid	1 day	Google Analytics sets this cookie to store information on how visitors use a website while also creating an analytics report of the website's performance. Some of the collected data includes the number of visitors, their source, and the pages they visit anonymously.
demdex	5 months 27 days	The demdex cookie, set under the domain demdex.net, is used by Adobe Audience Manager to help identify a unique visitor across domains.
ln_or	1 day	Linkedin sets this cookie to registers statistical data on users' behaviour on the website for internal analytics.
pardot	past	The pardot cookie is set while the visitor is logged in as a Pardot user. The cookie indicates an active session and is not used for tracking.
u	session	This cookie is used by Bombora to collect information that is used either in aggregate form, to help understand how websites are being used or how effective marketing campaigns are, or to help customize the websites for visitors.

Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.

Cookie	Duration	Description
ab	1 year	Owned by agkn, this cookie is used for targeting and advertising purposes.
bcookie	1 year	LinkedIn sets this cookie from LinkedIn share buttons and ad tags to recognize browser IDs.
CMID	1 year	Casale Media sets this cookie to collect information on user behaviour for targeted advertising.
CMPRO	3 months	CasaleMedia sets CMPRO cookie for anonymous usage tracking and targeted advertising.
CMPS	3 months	CasaleMedia sets CMPS cookie for anonymous user tracking based on users' website visits to display targeted ads.
dpm	5 months 27 days	The dpm cookie, set under the Demdex domain, assigns a unique ID to each visiting user, hence allowing third-party advertisers to target these users with relevant ads.
IDE	1 year 24 days	Google DoubleClick IDE cookies store information about how the user uses the website to present them with relevant ads according to the user profile.
test_cookie	15 minutes	doubleclick.net sets this cookie to determine if the user's browser supports cookies.
tuuid	1 year 1 month 4 days	The tuuid cookie, set by BidSwitch, stores an unique ID to determine what adverts the users have seen if they have visited any of the advertiser's websites. The information is used to decide when and how often users will see a certain banner.
tuuid_lu	1 year 1 month 4 days	This cookie, set by BidSwitch, stores a unique ID to determine what adverts the users have seen while visiting an advertiser's website. This information is then used to understand when and how often users will see a certain banner.
visitor_id*	1 year 1 month 4 days	Pardot sets this cookie to store a unique user ID.
visitor_id*-hash	1 year 1 month 4 days	Pardot sets this cookie to store a unique user ID.