MiamiMD (collectively, “MiamiMD,” “our,” “we,” or “us”) values and respects the privacy of its customers and visitors. While operating our business and interacting with you, we collect, use, and share personal information as disclosed in this Privacy and Security Statement.
This Privacy and Security Statement provides you with detailed information about how MiamiMD and its subsidiaries, divisions, affiliates, brands and other companies that link to this Privacy and Security Statement collect, use, share, and protect personal information, and describes your choices and rights available. This Statement also applies to personal information we receive from business partners and other third parties. We encourage you to read this Statement carefully and if you have any questions to contact us using the methods listed below.
We reserve the right to make changes to this Privacy Policy at any time and for any reason. Any changes will be reflected in a revised policy posted on the Site and we will alert you that there has been a change by updating the “Revised” date displayed on the Privacy Policy. If MiamiMD determines that such changes materially affect your privacy rights, we will provide additional notice to you. Additionally, we strive to send you notice of our privacy policy at least once every twelve months.
Collecting Your Information We may collect information about you in a variety of ways but generally speaking it is done either through (1) your use of our product or (2) you visiting our websites. The types of information we may collect include, but are not limited to:
Information You Provide To Us This is personal information you choose to provide in connection with completing your account online, providing content on the Site, or other activities in which you participate on the Site, such as your name, age, physical address, phone number, location, and bank account information. It may also include inferences drawn from the Personal Information that you provide to us. For example, if you provide a female name, we may categorize you as a female.
Information We Collect About You Information our servers automatically collect when you make a purchase, contact us or, visit, use, or browse the Site, such as your IP address, your operating system, browser version, the address of a referring website, the pages you visit on the Site, the dates and times you visit the Site, device and usage information, such as language preferences, referring URLs, country, location, information about how and when you use our services and other technical information. If you access the Site from a mobile device, information about the type of mobile device you use. In order to collect this information, the Site may use cookies, web beacons, and other tracking technology, depending on the features offered. Tracking technology is useful for gathering information such as browser type and operating system, tracking the number of visitors to the Site, and understanding how visitors use the Site. Cookies can also help us customize the Site and improve your experience. If you previously provided personally identifiable information to us, a unique identifier in the cookie may tie the information collected via the cookie to such information. Aggregate cookie and tracking information that does not directly identify you may be shared with third parties. Also, some content on the Site may be provided by third parties that may use cookies in conjunction with other tracking technologies to collect information about you when you use the Site, which enables them to provide targeted advertising to you. We do not control these third parties’ tracking technologies or how they may be used. We may display certain advertising offers on the Site or allow service providers, advertisers, ad networks, or other third parties to advertise on the Site. Additionally, we may use third party software to serve ads on the Site, implement email marketing campaigns, and manage other interactive marketing initiatives. This third party software may use cookies, web beacons, or similar tracking technology to help manage and optimize your online experience with us. For example, we use cookies to help keep track of items you put into shopping carts including when you have abandoned your cart. We use this information to determine when to send cart reminder messages via SMS. Most web browsers are set to accept cookies by default. You can usually choose to set your browser to disable or reject cookies. Be aware that disabling or rejecting cookies could affect the availability and functionality of the Site or certain portions of the Site. Also, please note that we may still use information we’ve collected from cookies prior to your disabling them; however, we will not collect any further information from the disabled cookies.
MiamiMD maintains a presence on a variety of social media platforms. When you “like” or “follow” us on Facebook, Instagram, Twitter, or other social media platforms, we may collect some information about you. This information includes your name, email address, any comments or content you post that is relevant to MiamiMD. We also collect your information if you sign up for a promotion and submit information to us through one of our social media accounts.
MiamiMD also may maintain blogs as a part of its Services. When you comment or post content to any of our blogs, we will collect your name and email address.
Additional Information MiamiMD does not collect any sensitive personal data on its users.
Using Your Information Any information collected about you via the Site may be used to: help increase the efficiency and operation of the Site; deliver and improve our products and services; manage our business; monitor and analyze usage and trends to improve the Site and the user experience; generate a personal profile of you to make future visits to the Site more personalized; perform the functions and services you request; send you confirmations, updates, alerts, administrative messages, and otherwise facilitate your use of the Site; request feedback and contact you about your use of the Site; respond to your emails; compile anonymous statistical information and analyses, which we may use internally and/or provide to third parties; to support our customers and their interactions with you through our Services; market our services (and those of third parties) to you that we believe may be of interest to you; and deliver information to you that you request or that we think may be of interest to you, such as articles, news, or information about various promotions.
Providing Your Information We may share your information with third parties that perform services for or on our behalf this includes: (A) when you provide authorization for us to share it, (B) to perform analytics on website and/or web form engagement, (C) when it is shared as part of a transfer of assets, (E) when it is shared as part of targeted advertising or cross-contextual advertising, (F) for security and fraud purposes, and (G) when we are required by law to share it.
Analytics We may allow selected service providers or processors, such as Google Analytics, to use tracking technology on the Site, which will enable them to collect information about how you use the Site over time. This information may be used to, among other things, analyze and track data, determine the popularity of certain content, and better understand your online activity.
Transfer of Assets If we reorganize or otherwise transfer some or all of the Site or our assets to another organization (such as in the course of a merger, dissolution, or liquidation), your information may be shared with the transferee; however, we will ask the transferee to honor commitments we made in this Privacy Policy.
Security and Fraud We allow third parties such as Paypal to receive personal information from our users to provide both security and fraud protection to MiamiMD. We do not control these third parties or how it is used. For more information on how Paypal uses your personal information, please visit their privacy policy here: https://www.paypal.com/myaccount/privacy/privacyhub
Public Forums Certain features of our Services make it possible for you to share comments publicly with other users. Any information that you submit through such features is not confidential, and we may use it for any purpose (including in testimonials or other marketing materials). For example, if you submit a product review on one of our Websites or blogs, we may display your review (along with the name provided, if any) on other MiamiMD websites and on third-party websites. Any information you post openly in these ways will be available to the public at large and potentially accessible through third-party search engines. Accordingly, please take care when using these features.
Required By Law We may share your information as permitted or required by any applicable law in response to a subpoena or other legal process or as we deem necessary to investigate or remedy any actual or potential violation of our policies or to protect the rights, property, and safety of MiamiMD or others, as we deem appropriate.
Sharing Your Information MiamiMD does not sell your data in exchange for monetary consideration. In order to support tailored advertisements, offers, or content that you may find interesting when you browse the internet, MiamiMD may share the personal information that you provide to us or that we collect about you with our trusted third party partners that support online advertising, data co-operatives, mobile advertising, data analytics, social media engagement, data brokers advertising networks or any other activity that may be considered cross-behavioral advertising. This transfer could be defined as a sale, sharing for cross-context behavioral advertising or targeted advertising. MiamiMD shares the following categories of personal data for this processing activity: (A) persistent identifiers such as unique device identifiers, email addresses, IP addresses, information related to your browser and operation system, and (B) user activity data such as website engagement information and click data.
The above excludes text messaging originator opt-in data and consent; this information will not be shared with any third parties.
You can may opt-out of this at any time by going to the following page: support@miamimd.coSecurity of Your Information While we take reasonable steps to protect any personally identifiable information you choose to provide via the Site from unauthorized access, please be aware that, despite our efforts, no security measures are perfect or impenetrable, and no method of data transmission can be guaranteed against any interception or other type of misuse. Any information disclosed online can potentially be intercepted and used by unauthorized parties, so please keep this in mind when disclosing any personal or personally identifiable information via the Site. To help ensure security via the Internet, we recommend you keep your browser up to date with automatic security updates enabled.
Policy for Children We do not use the Site to solicit information from or market to children under the age of 18. By using the Site, you represent that you are at least 18 years of age. We encourage parents and legal guardians to monitor their children’s internet usage and to instruct their children never to provide personal information through the Site or any other website without parental consent. If you believe a child has provided personal information to us via the Site, please contact us and we will use reasonable efforts to locate and delete the information.
Links to Other Websites and Third Party Practices The Site may contain links to third party websites. It is our intent to provide links only to other quality websites. However, we have no control over these linked websites or, for that matter, any third parties. Any information collected by websites, other than the Site, is not covered by this Privacy Policy. We are not responsible for the content or privacy and security practices and policies of any third parties, including other websites that may be linked to or from the Site. We encourage you to read the provisions of privacy policies on other websites before providing them with your personal information.
Do Not Track Signals Do Not Track (“DNT”) is a privacy preference that users can set to have their Internet browser automatically send a signal to our online and mobile resources to request we not track browsing activity across different sites. There is, however, currently no universal standard for sending and receiving DNT signals. As such, we cannot promise that we respond to all DNT signals, but do recognize and respond when required by applicable privacy laws, such as when HTTP header fields or Java objects are used.
Submitting Information From Outside The United States We control and operate the online and mobile resources from within the United States of America (the “U.S.”). Information collected through the Website and Services may be stored and processed in the United States or any other country in which our vendors or we maintain facilities. Although we do not actively block or monitor visitors from other countries, the Website is directed only at visitors from the U.S. As such, this Privacy Policy is consistent with U.S. law and practice and is not adapted to other laws (including European data security and privacy laws). MiamiMD will apply the applicable laws of the U.S., including as embodied in this Privacy Policy in place of data protections under your home country's law. That is, you freely and unambiguously acknowledge that this Privacy Policy, not your home country's laws, controls how we will collect, store, process, and transfer your personal information. Similarly, the English language version of this Privacy Policy is the controlling version regardless of any translation you may attempt.
Exercise Your Privacy Rights MiamiMD takes privacy seriously. Where applicable, data subjects have certain rights which they can request for MiamiMD to fulfill. These requests can be made by either the data subject or an authorized agent. These rights include:
In order to exercise any of the rights detailed above, or to request a disclosure under Shine the Light, send your requests to support@miamimd.co. We will use your email as proof of verification unless otherwise prohibited. Exercising your rights under this section will not result in any discrimination by MiamiMD. We will treat you the same as any other user. If you disagree or dispute a decision that has been made on the scope or application of the rights described in this clause, you may appeal this decision by contacting support@miamimd.co.
Retention Period MiamiMD shall only store personal information for as long as it is required. This is determined by considering the purposes for which it was obtained in accordance with applicable laws. Our retention period is based on (1) the nature of our relationship with the data subject and (2) any legal obligations we are bound to fulfill.
Contact Us If you have questions or comments about this Privacy Policy, please send us an email at support@miamimd.co. If you prefer, you may also contact us via phone at: 1-844-829-8772
THIS DATA SECURITY AND PRIVACY AGREEMENT (this “Agreement”) is entered into between BRAND BOLT ENTITY PASSING DATA or one of its affiliated entities, or an entity or business unit owned or controlled by BRAND BOLT ENTITY PASSING DATA or one of its affiliated entities (collectively, “Data Owner”), and BRAND BOLT ENTITY RECEIVING DATA (“Data Handler”). Words and phrases used in this Agreement, other than those capitalized only for grammatical purposes, have, in both their singular and plural forms, the meanings given to them Section 4 of this Agreement, or if not defined therein, in the Section in which they first appear as indicated by bold type.
1. DATA SECURITY. Data Handler has implemented, and will maintain so long as Data Handler accesses or stores Regulated Data, an independently audited enterprise-wide corporate information security and privacy program that includes fully implemented physical, technical, organizational, administrative and other security measures designed to protect, in accordance with applicable law and more generally in a manner consistent with accepted industry standards and best practices, against anticipated or actual threats or hazards to the confidentiality, security or integrity of Regulated Data, as well as destruction, loss, unauthorized access to or unauthorized use of, Regulated Data (the "Security Program"). The Security Program will on request include, at a minimum: (a) the obligation to promptly provide all security patches provided by third party software vendors; and (b), an obligation to perform, at least annual, penetration tests and other vulnerability assessments of all systems on which Regulated Data is stored. If Data Handler is not willing to provide, upon request: (i) evidence that such tests and scans have been performed; and/or (ii) for all Data Handler facilities at which Regulated Data is located, annual reports or certifications issued under recognized independent standards such as the ISO 270xx series, or AICAPA’s SOC2 Type 2, Data Owner or its designee may conduct, once per year, security audits, vulnerability scans and penetration tests of the applicable systems or facilities.
2. PERSONAL DATA. To the extent Data Handler collects, stores or otherwise has custody, care or control of the Personal Data of Data Owner’s workforce members, customers or third party business partners, Data Handler shall use and process such Personal Data in compliance with applicable laws. Data Handler is prohibited from selling or sharing the Personal Data. To the extent Data Handler meets the definition of a “processor”, “subprocessor” or “service provider” or alternatively, a “business” or “controller” under applicable data protection laws (such as the laws of California, Colorado, Connecticut, Virginia, Utah, the United Kingdom and the European Union) Data Handler shall comply with all applicable obligations thereunder including with respect to transfers of Personal Data from its Jurisdiction of Origin where “Jurisdiction of Origin” means the jurisdiction in which Personal Data was originally collected from data subjects. Data Handler must notify Data Owner after it makes a determination that it can no longer meet its obligations under applicable privacy laws. To the extent Data Handler uses an independent third party (“Subcontractor”) for the purpose of processing the Personal Data, the Data Handler shall ensure that it has an agreement in place with the Subcontractor that provides protections that are no less stringent than those within this Agreement.
3. ADVERSE EVENTS. Immediately upon becoming aware of a violation of the Security Program and/or any actual or reasonably likely Security Event Data Handler shall, at its sole cost and expense, take all commercially reasonable steps to contain and remediate such Security Event and prevent further adverse effects. If Data Handler confirms the occurrence of a Security Event, Data Handler shall further, at its sole cost and expense: (a) provide Data Owner with written notice (including, at a minimum, a reasonably detailed description of the event, the means through which it was discovered and the steps being taken contain and/or prevent further adverse effects) as soon as commercially practicable, but in any event, no less than 48 hours following detection thereof; (b) update Data Owner at an agreed frequency until the Security Event is contained and its root cause determined; and (c) preserve all information and evidence related to the Security Event (including by suspending routine overwriting or deletion of data or log files). In addition to such other indemnities as may be set forth in the Underlying Contract, Data Handler shall indemnify, defend and hold Data Owner harmless from all claims and damages resulting from a breach of the obligations herein and any Security Event and notwithstanding the Underlying Contract, such indemnity shall not be subject to limits on damages.
4. DEFINED TERMS. As used herein: (a) “Personal Data” has the meaning ascribed to it, and its variants (such as personal information, personally identifiable information, sensitive personal data, and protected health information) under applicable laws; (b) “Regulated Data” means Personal Data and any information or data designated by applicable law as requiring specific protections such as material non-public information under U.S. federal securities laws; and (c) “Security Event” means unauthorized access, acquisition, disclosure, or use of Regulated Data while it is or should have been in the custody, care or control of Data Handler.