Privacy Policy

Rebar Interactive has an unwavering dedication to improving the clinical trial process for prospective clinical trial participants, individuals enrolled in clinical trials, researchers in academia, and study teams at medical device, biotechnology and pharmaceutical companies. We do this through providing technology-enabled solutions and professional services to identify, educate, screen, refer, enroll, and/or retain patients.

Clinical trials are the cornerstone for validating the efficacy, safety and clinical outcomes of investigational drugs, therapies and devices prior to market availability. The process for obtaining the required regulatory approval to bring products to market is extremely rigorous. Rebar Interactive specializes in providing services to reach, screen and process clinical trial participants. We also provide technology-enabled solutions to collect patient reported outcomes and clinical outcome assessments, deliver retention messaging to clinical trial participants, collect wearable and other sensor data, and deploy eHealth interventions for disease management and behavior modification programs. As part of these processes, individuals are requested to provide and entrust Rebar Interactive with confidential and/or personal information (“Personal Information”). Rebar Interactive has adopted the following privacy and security policy (“Policy”) to ensure participants that their Personal Information will be protected by fair trade practices and in accordance with all applicable laws, including requirements under the EU-US Privacy Shield, as well as the applicable patient and consumer data privacy laws of other countries within which we provide services.

Rebar Interactive is committed to protecting your Personal Information. We use secure, encrypted computer systems to store your information using best-practice standards to keep your information from being seen by anyone that should not see it. This Policy explains what information we may gather, and for what purpose. You may contact us with questions about this Policy or to place restrictions on the use of your Personal Information outside of the scope of this Policy.

As used in this Policy, “Rebar Interactive”, “Rebar”, “us” or “we” refers to Rebar Interactive, LLC, a limited liability company formed under the laws of the State of Louisiana, USA. As used in this Policy, “you”, “your”, or “participant” refers to an individual who has elected to provide Personal Information to Rebar Interactive as part of the individual’s participation in a clinical trial recruitment program, other direct-to-patient outreach or market research program, clinical trial retention or engagement program, or program related to clinical trial data collection. This Policy covers our website at RebarInteractive.com as well as any website, mobile application, or other technology-enabled solution designed, programmed, hosted and managed by Rebar Interactive on behalf of our clients.

OUR COMMITMENT

Rebar Interactive is committed to the following on your behalf:

  1. We will not disclose, share or distribute your Personal Information to any third party without your express permission. In cases of onward transfer of your Personal Information, Rebar Interactive will proactively work with third parties to ensure your information is only processed for the limited and specified purposes to which you have consented and that third-party agents provide the same level of protection as specified by the EU-US Privacy Shield Principles.
  2. We will abide by the regulations established in the EU-US Privacy Shield as set forth by the European Commission and U.S. Department of Commerce.
  3. We will maintain the integrity of your Personal Information in a private and secure system requiring strict permissions and layered access.
  4. Participant and Personal Information may be disclosed to third parties if required of Rebar Interactive in connection with a legal proceeding such as a court order; subpoena; or a matter of law enforcement or national defense. In such cases we will attempt to inform you prior to disclosure so that you may exercise any legal rights you may have to prevent it.
  5. We will collect, affirm and honor your communication preferences whenever a preference capability is offered by Rebar Interactive.
  6. All participants will be provided with the reasonable ability to access, update, correct, or delete their Personal Information, as appropriate.
  7. We will only use your Personal Information for identifying you within a given clinical trial or marketing program and/or for inclusion opportunities in future clinical trials or marketing programs for which you may be eligible, in all cases only with your consent and within the confines of regulatory and industry standards.

PERSONAL INFORMATION

This Policy applies only to “Personal Information”, which is any information that can be used to identify you. Under HIPAA, some types of this information may be referred to as Personal Health Information, or PHI, which may be information describing your health, including symptoms, diagnoses, testing or test results, and medical care services and procedures including medications. It may also include information that could be used to identify you if used in conjunction with other types of information. Our Policy does not apply to situations where we may gather information from third party sources that do not identify you specifically.

Generally, we obtain Personal Information about you by virtue of you providing us with such information. The only Personal Information about you that we collect from third parties is information that you have provided through an “opt-in” process. For example, we do not have access to your medical records except in cases where we are providing services to or through a medical professional from whom you have obtained services and with whom we have an appropriate data privacy agreement in place.

We may ask you for Personal Information in various locations on our website, via email requests or other means. In some situations, you will be required to provide Personal Information because of the clinical trial or marketing program for which you are being screened or in which you are participating. For example, we will need your real name to enroll you in a clinical trial. In other cases, the information you are being asked to provide is optional. We designate which information is optional throughout our website and other study processes.

This information may be shared with clinical study sites for the purposes of contacting and screening you for potential eligibility for a specific clinical study. For marketing programs, your Personal Information may be provided directly to the entity offering that particular medical device, therapeutic treatment, or service. The use of this information is limited to the immediate needs required to conduct our business activities and will never exceed the minimal threshold rule with the exception of instances where you give us explicit permission to contact you regarding future or applicable studies and products; or in cases where your information is requested as part of a law enforcement investigation or matter of national security.

The information we seek to collect via electronic mail, web outreach, and/or our Rebar Platform allows us to provide you (whether you are a participant, physician, or authorized caregiver) with information that is targeted specifically to you or the individual for whom you are seeking information.

WHAT TYPES OF DATA DO WE COLLECT?

The information we collect is useful in identifying when, where and how you may be eligible for clinical trials, marketing programs or other healthcare related benefits. We may seek Personal Information on our website or through other electronic means, through our Rebar Platform, or by mail, within the processes of a clinical trial or marketing program, or otherwise from recipients of Rebar Interactive corporate and program communications.

Typical data collection involves only information which you provide and may include:

  • Your name, email address, address and phone number.
  • Demographic information such as birth date, gender and ethnicity.
  • Information related to ailments, conditions or other relevant data used to identify fit to future clinical studies or marketing programs. This data is purely voluntary and is never distributed to third parties.
  • Additional information about yourself so that we can provide you with further information and follow-up.
  • Information we or a clinical trial or marketing program sponsor need to know to learn whether you satisfy the inclusion/exclusion requirements for a particular trial or marketing program. Typically, Rebar Interactive creates a brief questionnaire served as a web-form on our website, an interactive SMS program, and/or generated through our Rebar Platform Investigator Portal. This is likely to ask for basic medical information as well as information relevant to your candidacy for a given trial or product. If you meet the prequalification criteria, and grant Rebar Interactive express permission to do so, your information will be forwarded to a physician investigator or treating physician in your area for further evaluation.
  • Information we obtain from third parties to whom you have given your Personal Information and the consent to use it for authorized purposes.

US LEGAL COMPLIANCE

The government of the United States requires protections for your health information and sets rules about who can see and obtain your health information (“health information” includes any information about your mental or physical health, your health care, payment for your health care, and any demographic information). Rebar Interactive’s data practices and services comply with these standards.

What are your rights over your health information?

You have the right to:

  • See and obtain a copy of your health information. To see or obtain a copy of your health information, write or request this information from us at the address provided herein. You may have to pay for the cost of copying and mailing your records.
  • Ask for changes to your health information. If you feel that your health information is incorrect or incomplete, you can ask us to change it.
  • Know how your health information is shared with others. We use your health information to screen, enroll and process your participation in clinical trials or patient marketing programs. We may also include your information in a proprietary database so that we may identify your eligibility for future trial participation or a marketed product.

COMPLIANCE WITH THE DATA PRIVACY LAWS OF OTHER COUNTRIES

EU-US PRIVACY SHIELD

Rebar Interactive complies with the EU-US Privacy Shield Framework as set forth by the US Department of Commerce regarding the collection, use, and retention of Personal information from European Union member countries. Rebar Interactive has certified that is adheres to the Privacy Shield Principles of Notice, Choice, Accountability for Onward Transfer, Security, Data Integrity and Purpose Limitation, Access, Recourse, Enforcement and Liability. If there is any conflict between the policies in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification, please visit https://www.privacyshield.gov/

In compliance with the EU-US Privacy Shield Principles, Rebar Interactive commits to resolve complaints about your privacy and our collection or use of your Personal information. European Union individuals with inquires or complaints regarding this policy should first contact Rebar Interactive at:

privacy@rebarinteractive.com

or via postal mail at:

2508 N Rampart Street, New Orleans, Louisiana, USA 70117

Please address your correspondence to our Privacy Officer and include the following information: your specific question related to this policy, perceived breach or other concern; your contact information; and whether you would like us to contact you regarding your complaint.

Rebar Interactive has further committed to cooperate with EU data protection authorities (DPAs). Individuals in the European Union with inquiries or complaints regarding our Privacy Shield policy should contact a local EU Data Protection Authority at http://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.htm. The services of EU DPAs are provided at no cost to you.

Rebar Interactive is subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC). In certain limited cases, individuals may invoke binding arbitration before the Privacy Shield Panel to be created by the US Department of Commerce and the European Commission.

ALLIANCE BUSINESS RELATIONSHIPS

We frequently provide our services by working in tandem with other businesses that we refer to as our business partners. We do not provide your Personal Information to any of our business partners without your prior permission, nor do we ever receive records or personal data from a doctor, trial investigator or any other third party without your prior permission. Our business partners have their own privacy policies, and in cases where you have given us consent to share your information with them, you should review their privacy policies, which are typically located on their websites.

OUR COMMUNICATION WITH YOU

When you register with Rebar Interactive you are indicating your consent to permit us to maintain your information in our database, to check your personal profile against eligibility criteria for marketed products or clinical trials that are currently seeking to enroll investigators and/or participants, and to permit Rebar Interactive to communicate relevant information you have identified as valuable. We may periodically contact you using the information you have provided. If you expressly request Rebar Interactive to keep you informed about a marketing program or trial in which you have enrolled, we will do so. If you agree, we will contact you by various means to facilitate your participation in a trial or marketing program. You may opt-out of select communications mediums at will on an individual instance basis.

At any time, you may indicate to Rebar Interactive that you wish to stop receiving communications from Rebar Interactive. You can achieve this by contacting us through our website (https://RebarInteractive.com) or providing your request in writing to:

Privacy Officer, 2508 N Rampart Street, New Orleans, Louisiana USA 70117.

ONCE YOU BECOME PART OF A CLINICAL TRIAL

Since we may have been your first point of contact related to a trial, we may be tasked with keeping you informed regarding the trial process even after you are enrolled. Depending on the clinical trial Investigator, and with your consent using only information you provide to us, we may be charged with providing communications related to the study.

DATABASE PRACTICES & SYSTEM SECURITY

We employ technology and procedures to protect the security of your Personal Information during its storage and use by us. In addition, Rebar Interactive, does not sell, share, rent or trade your Personal Information with third parties other than as disclosed within this Policy or with your express written consent.

FIREWALLS: We protect our servers from unauthorized access by using firewalls. Firewalls are controlled barriers that prevent network traffic from flowing between computers without specific permission. Data maintained on our servers, including all Personal Information and Personal Health Information, are on servers which are themselves only accessible from our proprietary software running on other servers on our network. All activity among our network servers is logged and reviewed periodically. All Rebar Interactive staff require passwords to access these servers and all internal activity is logged and reviewed on a periodic basis.

DATA ENCRYPTION: All Personal Information or Personal Health Information collected by us is encrypted during transmission between our servers as well as the computer from which you are accessing our web sites. We use the most current version of Transport Layer Security (TLS). TLS is an industry-standard encryption format supported by all web browsers. In most browsers, including Internet Explorer, Safari, Chrome, and Firefox, you can verify that you are viewing an encrypted and secure page by looking for a lock icon in the “location bar” or “address bar” (the area in which you typed or can see the URL of the website). The presence of an icon of closed padlock in either the left or right of the location bar (depending on your web browser) indicates the page is secure and encrypted. An unencrypted page would either display no lock icon, or the image of an open lock, depending on your browser. Furthermore, we employ application level encryption of user supplied information, as deemed necessary, before transmission to the database. These elements, when secured, are encrypted utilizing a symmetrical 1,024-bit encryption pattern. When encrypted, your information can only be used within the stored network, and is prevented from any external transmission. Atop application-level encryption, all databases utilized by the Rebar Platform are installed with a fully encrypted file system.

RESTRICTED ACCESS: In addition to the various techniques we use to protect your Personal Information online, we take additional measures to protect this Personal Information offline. We restrict access to all information we receive or maintain, including your Personal Information. Only those employees who require access to the information to perform a specific job function (such as certain members of our information technology staff) are granted access to your Personal Information, and such access is both password-controlled and logged. All of our employees have signed Confidentiality Agreements and are educated on our security and privacy policies when they join Rebar Interactive, as well as being required to review our policies on a regular and periodic basis and any time our policies change.

PHYSICAL SECURITY: The physical environment in which we store personal data is also protected and secured with several layers of physical security. Servers which store Personal Information are maintained in a secure environment, within locked, access-restricted and climate-controlled rooms.

QUESTIONS, COMMENTS, AND REQUESTS REGARDING PERSONAL INFORMATION

If you have any questions or comments about this privacy policy or if you would like to request an update, correction, deletion, or limitation of use and disclosure of your Personal Information; please contact the Rebar Interactive Privacy Officer via email at privacy@rebarinteractive.com or via postal mail at 2508 N Rampart Street, New Orleans, Louisiana, USA 70117.

Please address your correspondence to our Privacy Officer and include the following information: your specific question, comment, or request related to your Personal Information; your contact information and whether you would like us to contact you regarding your request.

By providing your Personal Information to us, you agree to be bound by all of the terms of this Privacy Policy as contained herein or as amended.