Data Request & Protection

Lawful Basis for Data Processing

Meds by Design SC processes personal data solely on lawful grounds as stipulated by applicable data protection regulations in the United States of America. All data collection activities are conducted to provide high-quality information about pharmaceuticals, medications, diseases, and supplements. Personal data may be collected when users interact with our website, submit inquiries, or subscribe to updates. The processing of such data is strictly limited to the purposes outlined at the time of collection, and data is never used for unauthorized or undisclosed purposes. The lawful basis for processing may include user consent, performance of a contract, legal obligations, or legitimate interests, each rigorously documented and regularly reviewed for compliance. Meds by Design SC prioritizes transparency and accountability in all its data practices and maintains meticulous records for auditing and regulatory purposes. Where user consent is required, particularly in relation to marketing or newsletters, users are clearly informed and given the ability to withdraw consent at any time without prejudice.

User Rights and Data Access

Visitors to Meds by Design SC are entitled to exercise a range of rights concerning their personal data as provided under applicable United States laws. These rights include, but are not limited to, the right to access, rectify, or erase personal data, the right to data portability, the right to restrict processing, and the right to object to certain forms of processing. Users may submit formal data requests by contacting the Data Controller, Fiona Halbrook, at [email protected], or via postal mail to UCD Michael Smurfit Graduate Business School, Carysfort Ave, Blackrock, Co. Dublin, A94 XF34, Ireland. All requests will be processed in accordance with legal obligations, and responses will be provided in a timely manner as set forth by regulatory requirements. Identification may be required to ensure data security.

Data Collection and Use

During user interactions with Meds by Design SC, personal data may be collected through various means such as online forms, email communication, cookies, analytics tools, newsletter subscriptions, and user account creation. The data collected may include names, email addresses, device information, IP addresses, and relevant inquiry details. These details are used exclusively to deliver, personalize, and improve user experience while navigating pharmaceutical and healthcare information on the website. Data may also be utilized for research, analytics, and statistical purposes, ensuring that all outcomes are anonymized and cannot be traced back to individual users. The website does not sell, rent, or lease user data to third parties. Any data shared with affiliates or service providers is strictly governed by legally binding agreements ensuring confidentiality and security.

International Data Transfers

To facilitate the efficient operation of Meds by Design SC, user data may be processed or stored outside of the user's home jurisdiction, including transfer to international locations where necessary. All such transfers are executed with the utmost care and in full compliance with relevant legal standards. Data sent across borders is protected using robust security measures, contractual safeguards, and privacy-enhancing technologies. International data transfers, particularly involving the owner Fiona Halbrook based in Ireland, are handled transparently, with users informed of the nature and purpose of such transfers. When necessary, standard contractual clauses and data protection agreements are employed to safeguard transferred data.

Security Measures and Data Integrity

Meds by Design SC implements advanced technical and organizational measures to ensure the confidentiality, integrity, and availability of all personal data processed on or through the website. Security protocols include encryption of both data in transit and at rest, secure access controls, regular vulnerability assessments, and strict data minimization policies. Continuous monitoring and regular audits are performed to detect and mitigate any risks to user data. Only authorized personnel with a legitimate business need have access to personal information, and regular training ensures they remain well-informed about their obligations under data protection law. In the event of any breach, rapid response procedures are enacted, and users affected will be notified promptly in accordance with legal requirements.

Data Retention Policy

Personal data collected by Meds by Design SC is retained only for as long as necessary to fulfill the purposes for which it was collected, or as required by law. Retention periods are defined and documented for each data processing activity, with all data securely deleted or anonymized at the end of the applicable period. Where user consent is the basis for processing, users have the right to request the erasure of their data at any time. Routine data purges and quality controls are conducted to ensure only relevant and up-to-date data is held by the organization.

Children’s Privacy Protection

Meds by Design SC is committed to protecting the privacy of minors. The website does not knowingly collect, store, or process personal data from children under the age defined by local law without verifiable parental consent. Any data found to have been inadvertently submitted by minors will be promptly deleted upon discovery. Educational materials on the website are intended for general informational purposes and are not specifically directed toward children. The organization provides contact information for parents or guardians to request the removal or review of their child’s data via [email protected].

Automated Decision Making and Profiling

Meds by Design SC does not employ automated decision-making or profiling techniques that could significantly impact user rights, freedoms, or interests. All processing decisions relating to user data are made by authorized individuals based on clear, documented policies. Should this practice ever change, detailed information, clear justifications, and accessible mechanisms for user challenge and review will be provided as part of compliance obligations.

Contact and Complaints Procedures

For all inquiries, requests, or complaints regarding data protection practices or the exercise of data subject rights, users are encouraged to contact the Data Controller, Fiona Halbrook, via email at [email protected], or by postal mail to UCD Michael Smurfit Graduate Business School, Carysfort Ave, Blackrock, Co. Dublin, A94 XF34, Ireland. Complaints will be investigated thoroughly with a formal response provided in accordance with regulatory timelines and obligations. Should users remain dissatisfied with our response, information on how to escalate a complaint to relevant regulatory authorities will be readily provided upon request.