What data do we collect?
Our company collects the following data:
How do we collect your data?
Our data is primarily collected from frontline clinicians contracted with our organization to use the DataPool application to assess children and families using one of our programmed assessment tools.
CDR may also, occasionally, receive validation information with personal data in it from one of our contracts, if they have this information separately. Such a file is not a part of the DataPool implementation in Italy.
How will we use your data?
CDR collects your data so that we can provide analytic and reporting functionality to our contracts who are using it as a part of their care provision services to you. CDR also uses your data, in a de-identified format, for analyses necessary for our public mission, and to gain insights on the nature of the population we serve with our software. When used in this way, it is impossible to trace back the data to you as an individual, because all identifying information is removed.
CDR is a 501(c)3 not for profit organization in the United States, Pennsylvania. Its public mission is to develop a data-driven human services system.
How do we store your data?
CDR securely stores your data in Google Cloud Services. All information is fully encrypted (256-bit encryption).
CDR will never directly reach out to any assessed person with marketing materials.
What are your data protection rights?
The right to access - You have the right to request CDR for copies of your personal data. We may charge you a small fee for this service.
The right to rectification - You have the right to request that CDR correct any information you believe is inaccurate. You also have the right to request CDR complete information you believe is incomplete.
The right to erasure - You have the right to request that CDR erase your personal data, as is dictated by the GDPR.
The right to restrict processing - You have the right to request that CDR restrict the processing of your personal data, as is dictated by the GDPR.
The right to object to processing - You have the right to object to CDR processing your personal data, as is dictated by the GDPR.
The right to data portability - You have the right to request that CDR transfer the data that we have collected to another organization, or directly to you, as is dictated by the GDPR.
If you make a request, we have 15 days to respond to you. If you would like to exercise any of these rights, please contact us at our email: email@example.com
What are cookies?
What types of cookies do we use?
CDR only uses functionality cookies, so that we can recognize users on our website and remember their previous selected preferences. These include what language a user prefers, and the location they are in. All cookies we use are developed by third parties, however none of the information leaves our application.
How to manage cookies
A user can set their browser to not accept cookies. This would result in a loss of functionality on the DataPool website.
Privacy Policies of other websites
The CDR DataPool web page does not link to other companys websites.
How to contact us
exercise any of your data protection rights, please do not hesitate to contact us at firstname.lastname@example.org
How to contact the appropriate authority
Should you wish to report a complaint or you feel that CDR has not addressed your concern in a satisfactory manner, you may contact the following agencies:
In Italy: Italian Data Protection Authority
Phone: +39-06-6967 71 / +39-06-6967 72917
In the United States:
Commerce Department Privacy Shield: https://www.privacyshield.gov/assistance