If you are in the European Union the MMRF will be the data controller responsible for the collection and use of your Personal Data.
If you have any questions about these Disclosures or our data practices, please contact us using the options provided below.
Please read these Disclosures carefully. By using our Website, you consent to the data practices and other terms set forth in these Disclosures.
How We Collect and Use Personal Data
When we use the term “Personal Data,” we mean data that can be used to identify you as an individual person. We collect several categories of Personal Data through our Website, including data you provide, data collected automatically from your device, and data we obtain from third party sources. We use and share this Personal Data for the purposes described below, including as described under Additional Uses of Personal Data.
We rely on separate and overlapping bases to process your Personal Data lawfully. By way of example only, it may be necessary for us to process your Personal Data in certain ways in order to process a transaction you have requested or otherwise in accordance with a contract between us, or in certain cases we may process your Personal Data when necessary to further our legitimate interests, when those legitimate interests are not overridden by your rights and interests.
Information You Provide
We collect Personal Data you provide, for example when you enter the data into form fields on our Website. For example, we may collect:
|Category of Personal Data||Purposes of Processing|
(see also Additional Uses of Personal Data below)
|Legal Bases for Processing|
|Contact Information name (individual and/or organization/company), physical address, telephone number, email address, and other electronic contact information (such as Twitter, Facebook, Tumblr, and Myspace accounts)||To administer your account and the Website, authenticate you as a user, and communicate with youTo help you find a research study as a research subjectTo notify you of events that may be of interest to you and to provide you with event resources||To process transactions requested by you and meet our contractual obligationsLegitimate interestsYour consent, when applicable|
|Demographic Information including your age, occupation/employer information, donation information/history, educational history and participation at MMRF events||To notify you of events that may be of interest to you, to target and deliver relevant offers and ads, to support our operations, and to improve our products and services including the WebsiteTo register you for professional education||Legitimate interestsYour consent, when applicable|
To improve our donations and investments platforms, to personalize your customer experience and to contribute to our marketing efforts, for example, by analyzing information about what products are viewed, when you browse items but do not make a donation or investment.
|To process transactions requested by you and meet our contractual obligationsLegitimate interestsCompliance with legal obligationsYour consent, when applicable|
|Health Status of you and your Family including your interest in participation in studies related to multiple myeloma||To help you identify research studies that may be of interest to youTo help identify treatments and resources that may be able to assist youTo connect you with advice from nurses]To help you identify treatment centers||Your explicit consent, when applicable|
|Investment Interests Including your interest in investing in potential treatments||To identify your interests in investing in research carried about by MMRF||Legitimate interests|
Information Collected Automatically
As is true of most digital platforms, we gather certain data automatically when you use our Website. This data may include browser, device, cookie and similar data that we collect as follows:
|Category of Personal Data||Purposes of Processing (see also Additional Uses of Personal Data below)||Legal Bases for Processing|
|Log Files including IP addresses, browser type, internet service provider, referring/exit pages, operating system, date/time stamp and/or clickstream data||To maintain the security of our Website, for fraud detection, and to protect our rightsTo administer webinars and events||Legitimate interests|
|Location Information including latitude, longitude, date and time (the precision of this data varies greatly and is determined by factors controlled by your device or mobile service provider)||To offer you certain location-based services, such as delivering advertisements that are relevant to your particular location, and to conduct analytics to improve the Website||Legitimate interestsYour consent, when applicable|
Information We Obtain from Third Party Sources
We may obtain certain Personal Data about you from third party sources, which we may use to serve our legitimate interests, comply with legal obligations, perform a contract, or in some cases, conduct activities pursuant to your consent.
Research Studies: We sponsor and conduct research studies. When you enroll in a research study that we sponsor or conduct, you will typically be provided with a consent form that contains notice provisions regarding the uses of your personal data. Those notices supersede the terms found in these Disclosures. Please refer to the consent form that you sign when enrolling in one of our research studies to understand how your personal data collected in the study are processed.
Business Partners and Service Providers: We use business partners and service providers, such as payment processors and analytics providers, to perform services on our behalf. Some of these partners have access to Personal Data about you that we may not otherwise have (for example, when you sign up directly with that provider) and may share some or all this data with us. We use this data to administer the Website and conduct marketing and advertising campaigns as well as to process transactions that you request.
Supplemental Information: We may receive additional Personal Data from third-party sources, such as credit reference agencies and public databases, which we may append to existing consumer data, such as email address verification. We may use this supplemental information to process transactions that you request and to prevent fraud, deliver relevant offers and advertising to you and to improve our operations, Website and our advertising and marketing campaigns.
Additional Uses of Personal Data
In addition to the uses described above, we may use your Personal Data for the following purposes, which uses may under certain circumstances be based on your consent, may be necessary to fulfill our contractual commitments to you, and are necessary to serve our legitimate interest in the following business operations:
- Operating our business, administering the Website and managing your accounts;
- Contacting you to respond to your requests or inquiries;
- Processing and completing your transactions including, as applicable, donations that you make online;
- Providing you with newsletters, articles, product or service alerts or announcements, event invitations, and other information that we believe may be of interest to you;
- Preventing, investigating, or providing notice of fraud, unlawful or criminal activity, or unauthorized access to or use of Personal Data, our website or data systems, or to meet legal obligations;
We rely on several legitimate interests in using and sharing your Personal Data. These interests include:
- improving and customizing the Website for you;
- understanding how the Website are being used;
- obtaining insights into usage patterns of the Website;
- exploring ways to develop and grow our business;
- ensuring the safety and security of the Website; and
- enhancing protection against fraud, spam, harassment, intellectual property infringement, crime and security risks
We will retain your Personal Data only for as long as is necessary for the purposes set out in these Disclosures (for example, if you have an account, for as long as your account is active), subject to your right, under certain circumstances, to have certain of your Personal Data erased (see Your Rights below), unless a longer period is required under applicable law or is needed to resolve disputes or protect our legal rights
How We Share and Disclose Personal Data
We share your Personal Data with third parties only in the ways described in these Disclosures. We may share your Personal Data within our family of companies, with service providers and business partners, in connection with business transfers and to comply with the law, protect health and safety and enforce our legal rights.
International Data Transfers
MMRF may transfer your Personal Data within our family of companies and/or to the third parties discussed above. Your Personal Data may be transferred to, stored, and processed in a country other than the one in which it was collected. We may transfer your Personal Data outside the European Economic Area (“EEA”) and when we do so, we rely on appropriate or suitable safeguards recognized under data protection laws.
Adequacy Decision: We may transfer your Personal Data to Switzerland and other countries which the European Commission has approved as providing adequate protection to personal data. A list of these countries can be found here:
Standard Contractual Clauses: The European Commission has adopted standard data protection clauses, which provide safeguards for personal data transferred outside of the EEA. We sometimes use Standard Contractual Clauses when transferring Personal Data from a country in the EEA to a country outside the EEA. You can request a copy of our Standard Contractual Clauses by contacting us as set forth in the Contact Us section below.
With your consent: In respect of certain cross-border personal data transfers, such as in research studies that you provide consent to enter, we will obtain your consent to transfer your Personal Data outside the EEA after first informing you about the possible risks of such a transfer.
By contract: We will transfer your Personal Data outside the EEA if the transfer is necessary to the performance of a contract between you and MMRF, or if the transfer is necessary to the performance of a contract between MMRF and a third party, and the contract was entered into in your interest.
In addition, we may transfer your Personal Data outside the EEA if the transfer is necessary to establish, exercise or defend legal claims or to protect your vital interests.
Certain websites, mobile applications or other digital properties included in the Website may contain additional disclosures related to your privacy. For example, if you choose to submit a testimonial through one of our websites, the content of your submission will be used according to the terms set out on the submission webpage as well as in the ways described in these Disclosures.
We are committed to protecting the privacy of children. Our Website are not directed to, and we do not intend to or knowingly collect or solicit Personal Data online from children under the age of 18. If you are under the age of 18, do not provide us with any Personal Data.
We process all personal data in line with your rights, in each case to the extent required by and in accordance with applicable law (including in accordance with any applicable time limits and fee requirements).
- Upon request, we will provide you with information about whether we hold any of your Personal Data along with any details required to be provided to you under applicable law. In certain cases, you may also have a right to:
- rectify any of your Personal Data that is inaccurate;
- to restrict or limit the ways in which we use your Personal Data;
- to object to the processing of your Personal Data;
- to request the deletion of your Personal Data, and
- to obtain a copy of your Personal Data in an easily accessible format.
To submit a request, please contact us as set forth in the Contact Us section below. We will respond to your request within a reasonable time frame.
You also have the right to withdraw your consent to our processing of your Personal Data, when our processing is solely based on your consent. You can do this by discontinuing use of the Website, including by closing all of your online accounts with us and contacting us as set forth in the Contact Us section below to request that your Personal Data be deleted. If you withdraw your consent to the use or sharing of your Personal Data for the purposes set out in these Disclosures, you may not have access to all (or any) of the Website, and we might not be able to provide you all (or any) of the Website. Please note that, in certain cases, we may continue to process your Personal Data after you have withdrawn consent and requested that we delete your Personal Data, if we have a legal basis to do so. For example, we may retain certain information if we need to do so to comply with an independent legal obligation, or if it is necessary to do so to pursue our legitimate interest in keeping the Website safe and secure.
If you have any complaints regarding our privacy practices, you have the right to lodge a complaint with your national data protection authority (i.e., supervisory authority).
Links to Third Party Sites [and Social Media]
The Website may include links to websites and digital services operated by third parties. These Disclosures do not apply to, and we are not responsible for the content, privacy policies or data practices of third parties that collect your data. We encourage you to review the privacy policies for those third parties to learn about their data practices.
Some of our Website may enable users to submit their own content for contests, blogs, videos, and other functions. Please remember that any data you submit or post as user-generated content to the Website become public data. You should exercise caution when deciding to disclose your personal, financial or other data in such submissions or posts. We cannot prevent others from using such data in a manner that may violate these Disclosures, the law, or your personal privacy and safety. We are not responsible for the results of such postings.
Updates to the Disclosures
These Disclosures are subject to occasional revision, and if we make any material changes in the way we use your Personal Data, we will notify you by sending you an email to the last email address you provided to us and/or by prominently posting notice of the changes on the Website and updating the effective date above.
Any changes to these Disclosures will be effective upon the earlier of thirty (30) calendar days following our dispatch of an email notice to you or thirty (30) calendar days following our posting of notice of the changes on the Website. These changes will be effective immediately for new users of our Website.
Please note that at all times you are responsible for updating your Personal Data to provide us with your most current email address. In the event that the last email address that you have provided us is not valid, or for any reason is not capable of delivering to you the notice described above, our dispatch of the email containing such notice will nonetheless constitute effective notice of the changes described in the notice.
If you do not wish to permit changes in our use of your Personal Data, you must so notify us prior to the effective date of the changes and discontinue using the Website. Continued use of our Website, following notice of such changes shall indicate your acknowledgement of such changes and agreement to be bound by the terms and conditions of such changes.
Managing Communication Preferences
If you have opted in to our marketing communications (or when permitted by law, if you have provided us with your contact information), we may send you email messages, direct mail offers, push notifications or other communications regarding products or services depending on the method of communication selected. You may ask us not to do so when you access our websites or mobile applications, or change your preferences by updating any accounts you have with us. At any time, you may elect to discontinue receiving commercial messages from us by submitting an opt-out request to the contact information below or by following the unsubscribe instructions in the form of the communication you received, as described below.
Printed Materials: To opt out of receiving printed marketing materials at your postal address, such as advertisements, flyers or postcards, please write to us at the address below. Please be sure to include your name and mailing address exactly as they appear on the printed marketing materials you received.
Emails: To opt out of receiving marketing communications via email, please send an unsubscribe request to the email address below or click on the unsubscribe link at the bottom of the email that was sent to you and follow the directions on the resulting web page. Please note that you may continue to receive certain transactional or account-related electronic messages from us.
Text Messages: If you have consented to receive text messages, you may opt out of receiving them by using the method provided in the text message or by contacting us as set forth in the Contact Us section below.
Push Notifications: To opt out of receiving push notifications, please set your preferences within your device setting menu.
If you have any questions, comments, requests or concerns about these Disclosures or other privacy-related matters, you may contact us in the following ways: