Votre vie privée est d'une importance capitale pour nous

Noze Inc. ("Noze", "we", "us") is committed to protecting the privacy and security of the personal information we collect. This policy provides a transparent framework for how we manage data across our website and research activities in compliance with Quebec’s Law 25, Canada’s PIPEDA, and international data protection standards.

This policy applies to all personal information collected by Noze, whether through our digital platforms or during the course of our scientific research and development activities.

Governance and Accountability

In accordance with Quebec’s Law 25, Noze has established a robust governance framework to ensure personal information is protected throughout its entire lifecycle:

Privacy Officer: We have appointed a dedicated Privacy Officer responsible for overseeing compliance, conducting Privacy Impact Assessments (PIAs), and managing our privacy practices.

Data Access: Access to personal information is strictly controlled. Only authorized employees with a documented "need-to-know" (e.g., clinical sudy managers or security administrators) are granted access to sensitive data.

Approval: Our privacy policies and practices are reviewed and approved by the Privacy Officer to ensure they remain proportionate to the nature and scope of our activities.

Information We Collect

We collect information only as necessary to achieve our business and research objectives.

Digital Interaction: Information such as IP addresses, browser types, and cookies to optimize our website performance.

Contact Information: Name and email address provided when you reach out to us for inquiries or updates.

Research & Clinical Data: Sensitive health-related information collected through our research programs. This information is collected only with express, informed consent and is subject to rigorous technical safeguards.

Handling of Sensitive Research Data

When we process health or clinical information, we adhere to high-level security standards.

Pseudonymization: To ensure privacy, we replace direct identifiers with unique codes. The link between these codes and your identity is stored in a separate, highly secure environment accessible only to authorized personnel, usually at the clinical site where the data was collected.

Consent Framework: Participation in any research activity is voluntary and governed by a specific Informed Consent Form (ICF). The ICF provides the granular details of how your data is handled for that specific project.

Technical Safeguards: We use Cloud Provider Managed encryption and Secrets Management System for data at rest and secure encrypted channels (SSL/TLS 1.2) for data in transit.

Clinical Research Partners

When we work with clinical research organizations (CROs) or medical institutions, we enter into written agreements that require them to:

Protect the confidentiality of the information.

Use the information only for the specific study purposes.

Notify Noze Inc. immediately of any privacy incidents.

Storage and International Transfers

Your data may be stored or processed on secure servers located outside of your home province or country.

Quebec Residents: We conduct a Privacy Impact Assessment before any personal data is transferred outside of Quebec to ensure that the destination jurisdiction provides an equivalent level of protection.

Service Providers: We ensure our third-party providers are contractually bound to maintain high standards of confidentiality and security.

Retention and Secure Destruction

Noze does not keep personal information longer than is necessary or required by law.

Inquiry Data: Retained for 3 years following our last interaction.

Research Data: Retained according to global regulatory and scientific standards, which often require retention periods of up to 25 years.

Destruction: Once the purpose for collection is fulfilled, data is either securely destroyed or anonymized (irreversibly altered so that the individual cannot be identified) for long-term statistical use. Any personal health information will be retained by the clinical site that collected the data, not by Noze.

Your Privacy Rights

Depending on your jurisdiction, you have the following rights regarding your data:

Access: You may request a copy of the personal information we hold about you.

Rectification: You may request that we correct inaccurate or incomplete information.

Portability: You have the right to receive your data in a structured, commonly used technological format.

De-indexing: You may request that we stop disseminating your personal information or de-link it from our public digital assets.

Note: For participants in scientific research, the right to deletion may be limited by law to preserve the integrity and accuracy of the study results.

Noze Inc. uses cookies to enhance your website experience. You can set your browser to refuse cookies, though some features may not function properly. By continuing to use our site, you acknowledge our use of these technologies.

Complaints and Contact Information

If you have questions about this policy or wish to file a formal complaint regarding our privacy practices:

Contact our Privacy Officer at the email address below.

We will acknowledge your request and provide a formal response within 30 days.

Privacy Officer: Director of Regulatory & Quality

Email: privacy@noze.ca

Address: 4920 Place Olivia, Saint-Laurent, QC, Canada

Noze Inc. may update this policy periodically. We encourage you to check this page frequently for changes.