Effective Date: February 13, 2015
What personal data we collect about you, including sensitive data,
How we obtain your personal data including sensitive data,
How we use your personal data, including sensitive data,
How we protect your personal data, including sensitive data,
Who we share your personal data with, including sensitive data,
Where your personal data is hosted, including sensitive data,
How you can access your personal data, including sensitive data,
Cookies, web beacons, and other technical information,
Collection and use of non-personal information,
Personal information from Children,
Updates to this Policy,
What personal data we collect about you, including sensitive data
The myAir web application is intended to provide encouragement and coaching to users of our products. This web application will contain sensitive personal information about you, specifically health data about your sleep. The web application will also contain contact details about you, some personal characteristics, and your preferences. Some of the specific items about you that this site will host include:
Your given and surname
Your date of birth and your gender
Your contact email address and your country of residence
What products you use for treatment, both your device and your mask
Where you took your sleep test and when therapy started
Your baseline AHI (Apnoea Hypopnea Index), the number of apnoea events per hour
Your usage times
Mask on and mask off sessions
Leak information, max, mean, median, 95% percentile, 70% percentile
Sleep score components and total sleep score
Others than the sensitive data described in this section ResMed will not intentionally collect or maintain, and do not want you to provide, any information regarding, race or ethnic origin, political opinions, religious or philosophical beliefs or other sensitive information.
How we obtain your personal data, including sensitive data
There are two sources of the data we collect in this web application, you and your device. When you register for this web application you will enter the personal data about you.
When you enter your serial number and device number, the nightly treatment data for your device will be connected to your account.
How we use your personal data, including sensitive data
The treatment data provided by your device will be used to determine the suitable coaching email message that will best assist you. For example, if you're experiencing a lot of mask on and mask off sessions, messages about mask fit will be sent to you.
Your treatment data will also be used to calculate a sleep score so you can track your progress.
Your treatment data may suggest that replacing your mask may be useful and we may inform you of that.
How we protect your personal data, including sensitive data
Your personal data is encrypted, both during transit when you use the web application, and also at rest in the server. We use the AES encryption algorithm with a 256 bit key length.
ResMed has defined strict security and privacy controls to protect your data and to comply with the applicable data protection law. Despite the security measures employed by ResMed, you should be aware that it is impossible to guarantee absolute security with respect to information sent through the Internet. If ResMed is aware that your personal data has been subject to a data breach, you will be notified by ResMed in a timely fashion.
Who we share your personal data with, including sensitive data
ResMed does not sell your personal data.
ResMed uses service providers to perform some of the processing required for this web application. A European division of a United States hosting company is used to provide the infrastructure we use for this web application. A European division of a United States technology company is used to send emails to you.
ResMed may wish to perform surveys and user experience questionnaires. In those cases we use marketing survey companies to contact you under our instruction.
Disclosure to Third Parties
Personal information will only be shared with third party providers to the extent reasonably necessary to perform their functions and they will not be authorized to use it for any other function, unless you have consented to such disclosure.
Where your personal data is hosted and processed, including sensitive data
The servers that host this web application, and that are used to communicate with you via email, are located in the European Union, and any personal details you provide to us will be processed by ResMed in Europe or Canada.
When you register for this web application, therapy data is transmitted from your device to this web application each night. Your therapy data is evaluated and suitable coaching emails are sent to you if you want to receive emails. This web application also presents your therapy data to you in an easy to understand format, so you can be more engaged with your therapy.
If you require assistance, your ResMed Healthcare Provider may access your personal data, including your sensitive data, to better serve you.
Aggregate data from all users of this web application will be de-identified and used for analytics purposes. This data set no longer contains identifiable attributes about you and you will never be contacted from our use of de-identified data.
Technical maintenance and computer operations of this web application are remotely performed by a team of ResMed technicians based in Canada. Your personal data remains in the Europe but could be accessed by Canadians if that was required to solve a problem.
How you can access your personal data, including sensitive data
You can access and correct the personal information about you when you log onto the web application.
If you feel the device data about you is incorrect you should immediately contact your health care professional/provider.
ResMed does honour the "right to be forgotten" and you can have your personal data completely removed by contacting email@example.com instructing us to do so.
Cookies, web beacons, and technical information
A session cookie enables certain features of the web application and our service and is deleted from your computer when you disconnect from or leave the web application. If a portion of this web application requires a password, you are giving us explicit permission to use a persistent cookie, which is a small data file that is generated when, as a registered user of this web application, you enter your assigned user ID and password to access the password-protected area of the web application. This file is stored on your computer and enables your browser to access each page that is in the password-protected area. Our web application does not use "flash" cookies.
You may adjust your browser to refuse to accept cookies, remove cookies or notify you when a cookie is set by editing your web browser preferences or options. (Each browser is different, so check the "Help" menu on your browser to learn how to change your cookie preferences.) You do not have to accept all cookies sent to you by this web application; however, depending on the particular cookie you reject, you may not be able to use some features of this web application.
We may also employ software technology known as "web beacons" or "clear GIFs," which helps us keep track of what content on our web application is effective. Web beacons are small graphics with a unique identifier that are used to track the online movements of Internet users. Web beacons are embedded in the web pages you review, so they are not stored on your hard drive. The web beacons we use do not track or collect any personally identifiable information about you and they are in no way linked to your personally identifiable information.
Personalized URL Links
On occasion, we may personalize and customize web applications for certain users. Invitations to visit these customized web applications will generally be sent to you via an email containing a personalized URL, a notice on a registration page, or in response to you logging on to a certain portion of this web application. If you are invited to visit one of these sites, you may find it customized with references to products and/or services that we believe may be of interest to you based on your previous interactions with ResMed and on information you have provided to us. While you are visiting these web applications, we may collect tracking or other non-personally identifiable information about your visit to better tailor the site to your interests. If you do not want your information to be collected in this way, please do not accept the invitation to visit these sites.
Collection and use of non-personal information
ResMed also collects non-personal information based on your activities. Non-personal information is data that describes the activity of a person without possible of identifying that person. It is also called "anonymous" data.
ResMed collects web site statistics that honours the anonymity of the site visitor. This data is used to improve the usability of the web site for future visitors.
ResMed uses anonymous treatment data to improve our devices.
Links to Other Sites
For your convenience, this web application may from time to time include links to third-party sites whose information practices may be different than ours. Visitors should consult the other sites' privacy policies, as we have no control over information that is submitted to, or collected by, these third parties.
Opting Out Of Communication
You may withdraw your consent to our use of your personal information for future marketing mailings, at any time by emailing us at firstname.lastname@example.org. For other ways to contact us please see our Contact Us page at https://myAir.resmed.eu/support.aspx. We will use all reasonable endeavours to remove your personal information from our marketing mailing list within 5 business days of receipt of your withdrawal of consent.
Personal information from Children
We do not knowingly collect personal information from children. The content of our web application is not intended for, or directed to, children. If you are under 14 years of age, then please do not use or access our web application at any time or in any manner.
Updates to this policy