Privacy Policy.
This privacy policy describes how Pyrexia Ltd ("Pyrexia", "we", "us", "our") collects, uses, shares, and secures personal data from users of our website at www.pyrexia.io (the "Site"), mobile applications (the "Apps"), and related software services (collectively, the "Services"). Please read this policy carefully.
Information We Collect
We collect and process the following personal data:
- Registration Information: When you register for an account, we may collect your name, email address, phone number, healthcare credentials, employer details, and other information you provide.
- Order Information: When you place orders through our Services, we may collect your payment card details, billing address, and other related information.
- Usage Information: When you access our Services, we collect usage data such as your IP address, device ID, browser type, operating system details, login times, page views, referral URLs, and actions taken within the Services. We use log files and tracking technologies like cookies to gather this data.
- Communications: When you contact us directly, we collect information from emails, phone calls, contact forms, chats, or other communications.
- Background Checks: With your authorisation, we may collect employment history, qualifications, licences, certifications, health records, criminal checks, and other relevant background check information from you, employers, educational institutions, and third party screening services.
- Third Party Sources: We may receive information about you from third party sources such as identity verification services, recruiting platforms, insurance carriers, and partners if they are involved in your use of our Services.
- Website Analytics: We use tracking tools to collect and analyse usage statistics for our Site. This includes IP addresses, device IDs, cookie data, page views, traffic sources, and other analytics data. It may include personally identifiable information.
Cookie Usage
We use cookies and similar technologies on our Site and Apps to distinguish you from other users. This helps us improve your experience and our Services. For example, cookies can allow for better website functionality or save your preferences.
You can manage cookie settings in your browser or device. Restricting cookies may impact your ability to use all Services features. Please refer to your browser's help documentation for assistance in managing cookies.
How We Use Personal Data
We use your personal data only as permitted by applicable data protection laws. We process your information for the following purposes:
- Providing, operating, and improving our Services.
- Processing orders and payments.
- Verifying identity and preventing fraud.
- Communicating about our Services, new features, updates, offers, promotions, etc.
- Sending security alerts, notifications, and authentication messages.
- Responding to your requests, inquiries, complaints, or concerns.
- Improving user experience by personalising and customising content.
- Researching and analysing usage statistics to improve our Services.
- Complying with legal obligations for record keeping, accounting, tax reporting, etc.
- Enforcing our terms, policies, and contractual rights.
- Considering you for employment opportunities you apply for.
- Other business operations and activities reasonably required to provide our Services.
We only process personal data necessary for the relevant activity and retain it for as long as required to fulfil the intended purposes or as legally mandated.
How We Share Personal Data
We do not sell your personal data to any third parties. We only share it with the following entities under limited circumstances:
- Service Providers: Cloud hosting services, identity verification services, payment processors, communications providers, security and fraud prevention services, analytics providers, etc. These third parties assist us in operating the Services and conducting our business activities. We only provide them with the minimum data necessary and have contractual safeguards to prevent unauthorised use.
- Professional Advisors: Accountants, auditors, lawyers, insurers, and other outside professional advisors in order to facilitate the expert advice and counselling required to operate our business compliantly and successfully. These advisors are bound by confidentiality obligations.
- Law Enforcement and Public Authorities: To comply with valid legal process such as search warrants, subpoenas, or court summons. We may also share data when needed to protect our legal rights or during emergency situations to safeguard public safety.
- Business Transfers: If Pyrexia undertakes any merger, acquisition, reorganisation, bankruptcy, or sale of some or all of its assets, we may need to share your data with prospective or actual purchasers for due diligence purposes. In such cases, your data would be part of the transferred assets. The recipients would be bound by confidentiality requirements.
- Aggregated or Anonymised Data: We may share non-personally identifiable data with interested third parties for statistical analysis, demographic profiling, usage trends, and other market research purposes.
Data Security
We follow generally accepted industry standards to protect data. Our safeguards include:
- Encryption technologies such as TLS and HTTPS to protect data in transit.
- Encryption of data at rest using industry standard algorithms and key lengths.
- Access control mechanisms such as multi-factor authentication to control access to systems.
- Segmentation, sandboxing, and isolation techniques to restrict unauthorised access.
- Continuous security monitoring, testing, and audits to identify vulnerabilities.
- Compliance with applicable information security standards and frameworks.
- Mandatory security awareness training for our employees.
- Organisational and technical measures to restrict access to only authorised personnel.
However, no security measures can fully eliminate all risks. So while we strive to protect your personal data, we cannot guarantee the security of data transmission over the Internet or unauthorised access to our systems.
Data Retention
We retain your personal data only as long as required to achieve the purpose for which it was collected, or as legally mandated. Depending on the Service, data may be retained for periods such as:
- Users: User account data is retained as long as the account is active.
- Orders: Order data is retained for 7 years after the completion of an order for tax and accounting purposes.
- Marketing Data: Marketing data is retained until you unsubscribe or opt-out.
- Usage Data: Usage data may be retained for up to 2 years for analytics purposes.
- Legally Mandated Records: Certain data such as ID documentation, work credentials, claims records or background check results will be retained as required by applicable local laws such as employment laws.
Once an account is cancelled or deactivated, we may take steps to further anonymise or aggregate retained data. However, we may continue to retain de-identified or statistical data indefinitely.
Your Data Rights
If you access our Services within the European Union (EU) or United Kingdom (UK), you have specific rights under data protection laws such as the EU General Data Protection Regulation (GDPR) and UK GDPR. These rights may include:
- Right of Access: You have a right to request details about the personal data we process about you.
- Right to Rectification: You have the right to correct any inaccurate or incomplete personal data we process.
- Right to Erasure: You may request deletion of your personal data if there is no valid reason for us to keep processing it.
- Right to Restrict Processing - You can request us to restrict the processing of your data in certain cases.
- Right to Object - You can object to processing done under legitimate interest.
- Right to Data Portability - You can get your data provided to you in a structured, commonly used format.
You can submit a request related to your rights by emailing hello@pyrexia.io. We will acknowledge and respond to valid requests within 60 days unless exceptions apply. We reserve the right to limit or deny requests where lawful exemptions exist under applicable law.
In the event we cannot provide access or complete a request, we will provide a detailed explanation in our response. If you are not satisfied, you have the right to complain to the data protection regulator in your country.
Privacy Inquiries and Complaints
If you have any questions about our privacy practices or use of your personal data, please email us at hello@pyrexia.io. You have the right at any time to lodge a complaint with the data protection regulator in your jurisdiction.
For UK residents, you can contact the Information Commissioner's Office at:
Information Commissioner's Office- https://ico.org.uk/global/contact-us/
Changes to this Privacy Policy
As Pyrexia evolves its offerings and privacy practices, this policy may change. We will notify users of material changes via our Site, in the Apps, or through email. We encourage you to check back periodically to review the latest version. Continued usage of Services after any changes constitutes your acceptance.
Contact Us
Please direct any privacy-related questions or concerns to our Data Protection Officer at:
Pyrexia Ltd
Attention of: Data Protection Officer
hello@pyrexia.io