SiSU Health is committed to protecting your data and privacy.
Customer Trust is at the heart of everything we do.
We value the trust you place in SiSU Health to measure, track and improve your health and well-being. We allow you to decide what information you share with us and we have strict controls to ensure your privacy and data is not compromised.
How we safeguard your privacy
The choice is in your hands
We give you the power to decide what information is used and how it is shared. We respect that your personal data is private and not to be abused. All information is given voluntarily by the user and we will make all your data choices clear and open. We provide you with choices to help support your health needs.
Our SiSU Health Stations, online Health Risk Assessment and online SiSU Portal are all designed to support you in understanding and improving your health. We need to collect some health information and demographics to achieve this.
We treat this data with utmost importance, developing our service with privacy by design, and storing personal information separately from health data. We provide you with full data rights under the EU’s GDPR legislation.
Whilst we have agreements in place with third parties you may choose to share your data with, you should review their data privacy policies for how they manage data you voluntarily share.
Our analytics platform does not include personally identifiable information and is separate from our central database.
Data Minimisation SiSU Health Group will only collect minimum data items that are necessary to provide our services, therefore ensuring data minimisation principles are met.
3rd Party Visibility We do not sell, lease, trade or rent your personally identifiable data to any third parties without your explicit consent.
We may provide reporting and analytics to corporate clients and other partners as part of a commissioned deployment. These reports provide an aggregated summary of participant activity and health metrics generated on of the SiSU Health Platform and contain no personally identifiable information.
However, we do share aggregated, de-identified information with third parties for them to gain health-related insights about large cohorts of users. This includes our research partners, with whom we are planning to develop more accurate, personalised and effective health prediction and prevention services for our users.
We lock down your data
Your health data deserves the highest level of security. We have achieved certification to the Information security management standard, ISO 27001:2013, as well as to the Quality management for medical devices standard, ISO 13485:2016.
We use hardware, software, and physical security measures to protect our SiSU Health Stations, SiSU Health App, SiSU Portal, and our database where information is stored. We use individual-record-level encryption on our data when stored. Data is encrypted in transit using compliant Transport Layer Security (TLS). SHA-256 SSL Certificates are used. Our system is only accessible over secure connections (HTTPS/TLS 1.2 or later).
If you have any questions about the ways in which we use or disclose your aggregate or personally identifiable information with your consent, please email us at [email protected]