MEDIK, Inc.
Privacy Policy
Effective Date: March 10, 2025
Protecting your privacy is fundamental to the way MEDIK, Inc. (“MEDIK,” “we,” “us,” or “our”) conducts business. This Privacy Policy explains how we collect, use, and disclose your Personal Information when you access and use our products and services, including our website (www.teamapollo.com) and the Apollo platform (collectively, the “Services”).
This Privacy Policy may change from time to time. Any updates will be posted on this page, and your continued access to the Services constitutes your acceptance of the changes. We encourage you to review this policy periodically to stay informed about how we are protecting your data.
You can jump to particular topics by going to the headings below:
Privacy Policy
What is Personal Information?
Personal Information We Collect
How We Use Personal Information
Google Analytics and Cookies Policy
Disclosure of Personal Information
Your Choices
Information Security
Children’s Privacy
Privacy Rights
International Data Transfers
Retention of Personal Information
Contact Us
Supplemental California Privacy Rights Notice
What is Personal Information?
Personal Information refers to any information that identifies, relates to, or is reasonably capable of being associated with an identifiable individual or household. This includes, but is not limited to, names, addresses, geolocation data, online identifiers, and other unique characteristics. Personal Information can also include indirect identifiers such as device identifiers and aggregated data if it can reasonably be linked to an individual.
Personal Information We Collect
Context Types of Information Primary Purpose for Collection and Use
Account
Information Name and email address provided during account creation. Facilitate access to the Services, user authentication, and account management.
Emergency Response Data Audio, video, and geolocation data transmitted during emergency response activities. Provide real-time situational awareness and support emergency response operations.
Payment
Information Billing details and other financial data submitted for transactions. Process payments, fulfil contractual obligations, and ensure accurate billing.
Employment- related Information
If you apply for a job posting or become an employee of MEDIK, we collect the information necessary to process your application or to retain you as an employee. This may include, among other things, your Social Security Number, date of birth, address, phone number, and banking information. Providing this information is required for employment. We use information about current employees to fulfil our contract of employment or the anticipation of a contract. In some cases, we are required by law to collect employee data to ensure efficient staffing and workforce operations.
Feedback and Support Information provided through inquiries or support requests. Respond to customer questions, improve service offerings, and address technical issues.
Usage Data
IP address, browser type, and device information. Analyze platform performance, optimize user experience, and improve system reliability.
Cookies and Tracking Data
Data from cookies and similar tracking technologies. Enhance website functionality, support analytics, and enable marketing activities
Device and Log
Data Device information, error reports, and interaction metrics. Monitor system performance, detect fraud, and improve operational efficiency.
How We Use Personal Information
We process your Personal Information for the following purposes:
· To Engage Clients: Communicate with clients and prospective clients about our Services.
· To Provide Services: Facilitate real-time emergency communications and situational awareness via the Apollo platform.
· To Improve User Experience: Analyze usage data and feedback to enhance the performance of our Services and tailor content to meet user needs.
· To Comply with Legal Obligations: Meet regulatory requirements, client and employee obligations, respond to lawful requests, and protect against legal liabilities.
· To Communicate: Send service updates, notifications, marketing materials, and account-related correspondence where permitted.
· To Prevent Fraud and Abuse: Monitor and prevent suspicious or unauthorized activity, ensuring the safety and security of our systems and users.
Google Analytics and Cookies Policy
MEDIK uses Google Analytics to help analyze how visitors use our website. Google Analytics collects information such as how often users visit our site, what pages they visit, and other actions they take while interacting with the site. This data helps us improve the performance and user experience of our website.
Google Analytics may collect information about your device and browsing activities, including:
IP Address
Browser Type
Operating System
Pages Visited
Time Spent on Pages
Geolocation Data (Approximate Location)
Please note that Google Analytics operates through cookies, small text files placed on your device to track activity. These cookies may remain on your device after your session has ended. To opt-in or opt-out of the use of Google Analytics, you can manage your cookie consent preferences in the cookie consent manager via our website’s cookie banner. Additionally, you can manage your preferences through your browser settings, including blocking or deleting cookies.
You can also opt out of Google Analytics tracking entirely by installing the Google Analytics Opt-out Browser Add-on, which prevents Google Analytics from collecting information on websites you visit.
For more information on how Google collects and processes data through Google Analytics, please visit Google's Privacy Policy.
If you prefer not to be tracked by Google Analytics, you may:
· Adjust your browser settings to block or delete cookies.
· Use the Google Analytics Opt-out Browser Add-on as mentioned above.
While disabling cookies or opting out of Google Analytics may limit certain functionalities on the MEDIK website, it will not prevent you from using the site.
If you have further questions about the use of Google Analytics on our site, please contact us at privacy@teamapollo.com.
Disclosure of Personal Information
We may share Personal Information:
· With Service Providers: For hosting, payment processing, website analytics, and customer support (e.g., Amazon Web Services for storage, and Google Analytics for website analytics).
· With Business Partners: To provide integrated services or co-branded offerings, where applicable.
· As Required by Law: To comply with legal obligations, protect against fraud, and ensure compliance with law enforcement and regulatory mandates.
· In Business Transactions: In connection with mergers, acquisitions, or sales of business assets, where Personal Information may be considered a transferrable asset.
· With Consent: Where you explicitly permit the sharing of your information, ensuring transparency and choice.
Your Choices
Your choices are:
- Access and Correction: Request access to or correction of your personal data to ensure accuracy and completeness.
- Deletion: Request deletion of your data where applicable and legally permissible.
- Opt-Out: Manage preferences for marketing and analytics cookies via our cookie consent manager.
- Control Data Sharing: Limit the sharing of your Personal Information with third parties where applicable, especially for non-essential purposes.
- Review Cookie Settings: Adjust your cookie preferences through your browser or our website's cookie consent manager to ensure alignment with your privacy preferences.
Opt-Out Choices
If personal data covered by this Privacy Policy is to be used for a new purpose that is materially different from that for which the personal data was originally collected or subsequently authorized, or is to be disclosed to a non-agent third party in a manner not specified in this Policy, MEDIK will provide you with an opportunity to choose whether to have your personal data so used or disclosed. Requests to opt out of such uses or disclosures of Personal Data should be sent to us as specified in the “How to Contact Us” section below.
Certain personal data, such as information about medical or health conditions, racial or ethnic origin, political opinions, religious or philosophical beliefs, is considered “Sensitive Information.” MEDIK will not use Sensitive Personal for a purpose other than the purpose for which it was originally collected or subsequently authorized by the individual unless MEDIK has received your affirmative and explicit consent (opt-in).
Third-Party Agents
Disclosure of personal data to third parties acting as agents on MEDIK’s behalf does not require an opt-out mechanism. These agents are bound by contractual agreements to process personal information only under our instructions and in compliance with applicable privacy laws and the DPF Principles.
Clear and Conspicuous Mechanisms
MEDIK provides clear, conspicuous, and readily available mechanisms to exercise your choices regarding the use and disclosure of your personal data. You may update your preferences at any time by contacting us via:
· Email: privacy@teamapollo.com
· Mailing Address: MEDIK, Inc. 8 The Green, Suite 20278, Dover, DE 19901
Information Security
We implement reasonable security measures, including encryption, access controls, and regular audits, to protect your Personal Information.
Measures include:
· Role-based access control to limit data access to authorized personnel.
· Encryption protocols for sensitive data during storage and transmission.
· Regular vulnerability assessments and penetration testing to ensure system resilience.
However, no method of transmission or storage is entirely secure. In the event of a data breach, we will notify affected individuals and relevant regulators within 72 hours of becoming aware of it and take immediate steps to remediate any vulnerabilities.
Children’s Privacy
Our Services are not intended for individuals under the age of 16, and we do not knowingly collect information from minors. To ensure compliance, we take steps to verify the age of our users, such as requiring date of birth during account creation and implementing parental consent mechanisms where necessary. If we become aware that Personal Information has been collected from a child under the age of 16 without parental consent, we will take steps to delete it immediately.
Privacy Rights
Depending on your location, you may have the following rights regarding your personal information:
General Privacy Rights:
· Right to Access: You have the right to access your personal data. You may request access to your personal information by contacting us at privacy@teamapollo.com If required by law, upon request, we will grant you reasonable access to the personal information that we have about you.
· Right to Rectification: You have the right to correct inaccurate or incomplete data.
· Right to Erasure: You have the right to request the deletion of your data under certain conditions.
· Right to Restrict Processing: You have the right to limit the use of your data in specific scenarios.
· Right to Data Portability: You have the right to receive your data in a machine-readable format to enable transfer to another service provider.
· Right to Object: You have the right to object to the processing of your data for specific purposes, such as direct marketing or automated decision-making. To exercise these rights, please email privacy@teamapollo.com. Verification of identity may be required to process requests.
International Data Transfers
We transfer and store data locally in the following locations: The United States, Europe, and Israel. Where required, we implement appropriate safeguards for international data transfers, such as Standard Contractual Clauses (SCCs), Binding Corporate Rules (BCRs), industry best practices, and compliance with applicable regulations. These measures ensure that personal data remains protected even when transferred outside these jurisdictions.
MEDIK complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. MEDIK has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union and the United Kingdom in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF. MEDIK has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) program, and to view our certification, please visit https://www.dataprivacyframework.gov/.
In compliance with the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF, MEDIK commits to resolve DPF Principles-related complaints about our collection and use of your personal information. EU, UK, and Swiss individuals with inquiries or complaints regarding our handling of personal data received in reliance on the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF should first contact MEDIK at
Email: privacy@teamapollo.com
Address: MEDIK, Inc. 8 The Green, Suite 20278, Dover, DE 19901
In compliance with the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF, MEDIK commits to cooperate and comply respectively with the advice of the panel established by the EU data protection authorities (DPAs), the UK Information Commissioner’s Office (ICO), and the Swiss Federal Data Protection and Information Commissioner (FDPIC) with regard to unresolved complaints concerning our handling of personal data received in reliance on the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF.
We may disclose your personal information to third parties as follows:
Third-Party Recipient
Purpose of Disclosure
MEDIK/APOLLO Group Companies
To process data for the purposes outlined in the Privacy Policy.
Consent-Based Recipients
When we have the individual's consent or authorization to share their personal information.
Service Providers (IT Systems)
To maintain or service business contact databases and IT systems (e.g., IT suppliers and technology vendors).
Professional Advisors
To provide necessary services, such as auditing and legal advice.
Public Authorities
To comply with applicable laws, protect rights, safety, and property, and respond to lawful requests (e.g., national security or law enforcement).
Mergers, Sales, or Corporate Changes
To facilitate transactions such as mergers, acquisitions, or asset transfers, including pre-transaction reviews.
Anonymized/Aggregated Data Recipients
Personal data may be shared in anonymized or aggregated form, as it is no longer considered personal information.
The Federal Trade Commission has investigatory and enforcement power over MEDIK’s compliance with the EU-U.S. DPF, the UK Extension to the EU- U.S. DPF and the Swiss-U.S. Data Privacy Framework.
In certain situations, MEDIK may be required to disclose personal information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
Under certain conditions, individuals may invoke binding arbitration to resolve disputes regarding MEDIK’s compliance with the Data Privacy Framework (DPF) Principles. MEDIK is committed to arbitrating claims in accordance with Annex I of the DPF Principles, provided that the individual has delivered notice to MEDIK and followed the conditions set forth in Annex I of Principles.
MEDIK is committed to protecting personal information in accordance with the Data Privacy Framework (DPF) Principles. In cases where MEDIK transfers personal information to a third party, MEDIK remains liable under the DPF Principles if the third party processes such information in a manner inconsistent with the DPF Principles, unless MEDIK can demonstrate that it is not responsible for the event giving rise to the damage.
Retention of Personal Information
We retain personal data as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law. Aggregated or anonymized data may be retained indefinitely. Retention practices include:
· Regular audits to determine relevance and necessity of stored data.
· Secure disposal of data no longer needed for operational or legal purposes.
· Maintaining backups for a reasonable period to ensure business continuity.
How to Contact Us
If you have any questions about this Privacy Policy or your rights, please contact us at:
MEDIK, Inc. 8 The Green, Suite 20278, Dover, DE 19901
Email: privacy@teamapollo.com
Supplemental California Privacy Rights Notice
Effective Date: March 10, 2025
California Privacy Disclosures
The California Consumer Privacy Act (hereafter: 'CCPA') and the California Privacy Rights Act (hereafter: CPRA’) provide California consumer residents who reside in California with specific rights regarding their Personal Information (which we also refer to as personal data). In addition to the above this section describes your CCPA/CPRA rights and explains how to exercise those rights.
The following does not apply to de-identified or aggregated personal data or data publicly available, which are not considered Personal Information since they do not identify any individual.
Your Rights
· "Right to Know": You may have the right to request that we disclose to you what personal data of yours we collect, use, and/or disclose.
· "Right to Delete": You may have the right to request the deletion of your personal data collected or maintained by us. Depending on your Choices, certain offerings may be limited or unavailable. Upon verifying the validity of a deletion request, we will delete your personal data from our records and instruct any service providers or third parties to delete your information, when applicable.
· “Right to Control Use”: You may have the right to control or limit the use of your personal data, including:
Right to Opt-Out of Sales/Sharing/cross-context behavioral advertising.
Right to Object to or Opt-Out of automated decision-making/profiling.
Right to Opt-Out of processing/Limit Use of Sensitive personal data.
· “Right of Access”: You may have the right to access your personal data, and to transmit it to another entity.
· “Right of Correction”: You may have the right to request amendments to your personal data if it is inaccurate or outdated in any way. Upon verifying the validity of a verifiable correction request, we will use commercially reasonable efforts to correct your personal data as directed, considering the nature of the personal Data and the purposes of maintaining your personal data.
Non-Discrimination
We will not discriminate against you for exercising your rights under the CCPA/CPRA. Based on the complexity of the request and the applicable regulations, we may charge a fee for your request. We may offer a CCPA/CPRA-permitted financial incentive, participation in a financial incentive program requires your prior opt-in consent, which you may revoke at any time.
Exercising Your Rights
You may make a verifiable request to exercise your privacy rights by contacting us via email at privacy@teamapollo.com or by providing a written request by mail MEDIK, Inc. 8 The Green, Suite 20278, Dover, DE 19901. You may also contact us via our telephone number 917-826-7042.
Please note that the above rights depend on a few things, and we may refuse requests if there are exceptions under the applicable law.
If we cannot verify you (or your authority to act on behalf of another person) we have the right to deny the requests. While verifying your identity we generally avoid requesting additional information from you for verification purposes. If, however, we cannot verify your identity from the information already maintained by us, we may request additional information from you, which shall only be used to verify your identity while you are seeking to exercise your rights under applicable law, and for security or fraud-prevention purposes.
We delete any new Personal Information collected for verification as soon as practical after processing your request, except as required to comply with applicable legislation.
An "authorized agent" means a natural person, or a business entity registered with the Secretary of State that you have authorized to act on your behalf, conditioned you have:
1. Provided the authorized agent with written permission to do so, and we could verify this; and
2. Verified your own identity directly with the business.
Subsection 1 does not apply when you have provided the authorized agent with a valid power of attorney.
We do our utmost to timely respond to a verifiable Individual, and in a portable format unless it is excessive, repetitive, or materially unfounded. If we require more time, we will inform you of the reason thereof and the extension period in writing.
Do Not Sell or Share My Personal Information
We do not respond to “Do Not Sell” requests as we do not sell your Personal Information to third parties. In the twelve months before the effective date of this Privacy Notice, we have not sold any Personal Information of Clients, as per the definition of the CCPA/CPRA and similar laws.
After receiving your opt-in consent, we may disclose Personal Information collected via cookies for cross-contextual behavioral advertising purposes, which may qualify as sharing your Personal Information under the CCPA/CPRA. To opt-out of this use, you can adjust your cookie preferences on our website’s cookie banner to block our advertising cookies.
Additionally, you can change your device settings to block cookies or install a third-party plugin to control how cookies interact with your device.