MEDIK, Inc.
Privacy Policy
Effective Date: February 17, 2025
Protecting your privacy is fundamental to the way MEDIK, Inc. (“MEDIK,” “we,” “us,” or “our”) conducts business. This Privacy Policy explains how we collect, use, and disclose your Personal Information when you access and use our products and services, including our website (www.teamapollo.com) and the Apollo platform (collectively, the “Services”).
This Privacy Policy may change from time to time. Any updates will be posted on this page, and your continued access to the Services constitutes your acceptance of the changes. We encourage you to review this policy periodically to stay informed about how we are protecting your data.
You can jump to particular topics by going to the headings below:
- What is Personal Information?
- Personal Information We Collect
- How We Use Personal Information
- Google Analytics and Cookies Policy
- Disclosure of Personal Information
- Your Choices
- Information Security
- Children’s Privacy
- Privacy Rights
- International Data Transfers
- Retention of Personal Information
- Contact Us
- Supplemental California Privacy Rights Notice
What is Personal Information?
Personal Information refers to any information that identifies, relates to, or is reasonably capable of being associated with an identifiable individual or household. This includes, but is not limited to, names, addresses, geolocation data, online identifiers, and other unique characteristics. Personal Information can also include indirect identifiers such as device identifiers and aggregated data if it can reasonably be linked to an individual.
Personal Information We Collect
| Context | Types of Information | Primary Purpose for Collection and Use |
|---|---|---|
| Account Information | Name and email address provided during account creation. | Facilitate access to the Services, user authentication, and account management. |
| Emergency Response Data | Audio, video, and geolocation data transmitted during emergency response activities. | Provide real-time situational awareness and support emergency response operations. |
| Payment Information | Billing details and other financial data submitted for transactions. | Process payments, fulfil contractual obligations, and ensure accurate billing. |
| Employment-related Information | If you apply for a job or become an employee, we collect information necessary to process your application or retain you (e.g., SSN, date of birth, address, phone, banking information). | Employment requirements; fulfilling contract of employment; legal obligations for staffing and workforce operations. |
| Feedback and Support | Information provided through inquiries or support requests. | Respond to customer questions, improve service offerings, and address technical issues. |
| Usage Data | IP address, browser type, and device information. | Analyze platform performance, optimize user experience, and improve system reliability. |
| Cookies and Tracking Data | Data from cookies and similar tracking technologies. | Enhance website functionality, support analytics, and enable marketing activities. |
| Device and Log Data | Device information, error reports, and interaction metrics. | Monitor system performance, detect fraud, and improve operational efficiency. |
How We Use Personal Information
We process your Personal Information for the following purposes:
- To Engage Clients: Communicate with clients and prospective clients about our Services.
- To Provide Services: Facilitate real-time emergency communications and situational awareness via the Apollo platform.
- To Improve User Experience: Analyze usage data and feedback to enhance the performance of our Services and tailor content to meet user needs.
- To Comply with Legal Obligations: Meet regulatory requirements, client and employee obligations, respond to lawful requests, and protect against legal liabilities.
- To Communicate: Send service updates, notifications, marketing materials, and account-related correspondence where permitted.
- To Prevent Fraud and Abuse: Monitor and prevent suspicious or unauthorized activity, ensuring the safety and security of our systems and users.
Google Analytics and Cookies Policy
MEDIK uses Google Analytics to help analyze how visitors use our website. Google Analytics collects information such as how often users visit our site, what pages they visit, and other actions they take while interacting with the site. This data helps us improve the performance and user experience of our website.
Google Analytics may collect information about your device and browsing activities, including: IP Address, Browser Type, Operating System, Pages Visited, Time Spent on Pages, and Geolocation Data (Approximate Location).
Please note that Google Analytics operates through cookies, small text files placed on your device to track activity. These cookies may remain on your device after your session has ended. To opt-in or opt-out of the use of Google Analytics, you can manage your cookie consent preferences in the cookie consent manager via our website’s cookie banner. Additionally, you can manage your preferences through your browser settings, including blocking or deleting cookies.
You can also opt out of Google Analytics tracking entirely by installing the Google Analytics Opt-out Browser Add-on, which prevents Google Analytics from collecting information on websites you visit.
For more information on how Google collects and processes data through Google Analytics, please visit Google's Privacy Policy.
If you prefer not to be tracked by Google Analytics, you may: adjust your browser settings to block or delete cookies; or use the Google Analytics Opt-out Browser Add-on as mentioned above. While disabling cookies or opting out of Google Analytics may limit certain functionalities on the MEDIK website, it will not prevent you from using the site.
If you have further questions about the use of Google Analytics on our site, please contact us at privacy@teamapollo.com.
Disclosure of Personal Information
We may share Personal Information:
- With Service Providers: For hosting, payment processing, website analytics, and customer support (e.g., Amazon Web Services for storage, and Google Analytics for website analytics).
- With Business Partners: To provide integrated services or co-branded offerings, where applicable.
- As Required by Law: To comply with legal obligations, protect against fraud, and ensure compliance with law enforcement and regulatory mandates.
- In Business Transactions: In connection with mergers, acquisitions, or sales of business assets, where Personal Information may be considered a transferrable asset.
- With Consent: Where you explicitly permit the sharing of your information, ensuring transparency and choice.
Your Choices
- Access and Correction: Request access to or correction of your personal data to ensure accuracy and completeness.
- Deletion: Request deletion of your data where applicable and legally permissible.
- Opt-Out: Manage preferences for marketing and analytics cookies via our cookie consent manager.
- Control Data Sharing: Limit the sharing of your Personal Information with third parties where applicable, especially for non-essential purposes.
- Review Cookie Settings: Adjust your cookie preferences through your browser or our website's cookie consent manager to ensure alignment with your privacy preferences.
Opt-Out Choices
MEDIK respects your rights to limit the use and disclosure of your personal data. In accordance with the Data Privacy Framework (DPF) Principles, we offer these options. You have the right to choose (opt out) whether your personal information is: disclosed to third parties for purposes other than those described in this policy or for materially different purposes from those for which it was originally collected or subsequently authorized by you; or used for purposes materially different from those for which it was originally collected or subsequently authorized by you. To exercise your opt-out rights, you may contact us via email at privacy@teamapollo.com.
Opt-In Requirements for Sensitive Information
For sensitive personal information, MEDIK requires your affirmative express consent (opt-in) before: disclosing such information to third parties; or using such information for purposes other than those originally collected or authorized by you. If you have any questions or need assistance with managing your sensitive information, please contact us at privacy@teamapollo.com.
Third-Party Agents
Disclosure of personal data to third parties acting as agents on MEDIK’s behalf does not require an opt-out mechanism. These agents are bound by contractual agreements to process personal information only under our instructions and in compliance with applicable privacy laws and the DPF Principles.
Clear and Conspicuous Mechanisms
MEDIK provides clear, conspicuous, and readily available mechanisms to exercise your choices regarding the use and disclosure of your personal data. You may update your preferences at any time by contacting us via email at privacy@teamapollo.com or by mail at MEDIK, Inc. 8 The Green, Suite 20278, Dover, DE 19901.
Information Security
We implement reasonable security measures, including encryption, access controls, and regular audits, to protect your Personal Information. Measures include: role-based access control to limit data access to authorized personnel; encryption protocols for sensitive data during storage and transmission; and regular vulnerability assessments and penetration testing to ensure system resilience.
However, no method of transmission or storage is entirely secure. In the event of a data breach, we will notify affected individuals and relevant regulators within 72 hours of becoming aware of it and take immediate steps to remediate any vulnerabilities.
Children’s Privacy
Our Services are not intended for individuals under the age of 16, and we do not knowingly collect information from minors. To ensure compliance, we take steps to verify the age of our users, such as requiring date of birth during account creation and implementing parental consent mechanisms where necessary. If we become aware that Personal Information has been collected from a child under the age of 16 without parental consent, we will take steps to delete it immediately.
Privacy Rights
Depending on your location, you may have the following rights regarding your personal information:
- Right to Access: You have the right to access your personal data. You may request access by contacting us at privacy@teamapollo.com. If required by law, upon request, we will grant you reasonable access to the personal information that we have about you.
- Right to Rectification: You have the right to correct inaccurate or incomplete data.
- Right to Erasure: You have the right to request the deletion of your data under certain conditions.
- Right to Restrict Processing: You have the right to limit the use of your data in specific scenarios.
- Right to Data Portability: You have the right to receive your data in a machine-readable format to enable transfer to another service provider.
- Right to Object: You have the right to object to the processing of your data for specific purposes, such as direct marketing or automated decision-making. To exercise these rights, please email privacy@teamapollo.com. Verification of identity may be required to process requests.
International Data Transfers
We transfer and store data locally in the following locations: The United States, Europe, and Israel. Where required, we implement appropriate safeguards for international data transfers, such as Standard Contractual Clauses (SCCs), Binding Corporate Rules (BCRs), industry best practices, and compliance with applicable regulations. These measures ensure that personal data remains protected even when transferred outside these jurisdictions.
MEDIK complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. MEDIK has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. DPF Principles with regard to the processing of personal data received from the European Union and the United Kingdom in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF. MEDIK has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. DPF Principles with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) program, and to view our certification, please visit https://www.dataprivacyframework.gov/.
In compliance with the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF, MEDIK commits to resolve DPF Principles-related complaints about our collection and use of your personal information. EU, UK, and Swiss individuals with inquiries or complaints regarding our handling of personal data received in reliance on these frameworks should first contact MEDIK at privacy@teamapollo.com, or at MEDIK, Inc. 8 The Green, Suite 20278, Dover, DE 19901.
MEDIK commits to cooperate and comply respectively with the advice of the panel established by the EU data protection authorities (DPAs), the UK Information Commissioner’s Office (ICO), and the Swiss Federal Data Protection and Information Commissioner (FDPIC) with regard to unresolved complaints concerning our handling of personal data received in reliance on the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF.
We may disclose your personal information to third parties as described in the table above (e.g., MEDIK/APOLLO Group Companies, Consent-Based Recipients, Service Providers, Professional Advisors, Public Authorities, Mergers/Sales/Corporate Changes, Anonymized/Aggregated Data Recipients). The Federal Trade Commission has investigatory and enforcement power over MEDIK’s compliance with the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF and the Swiss-U.S. Data Privacy Framework. In certain situations, MEDIK may be required to disclose personal information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements. Under certain conditions, individuals may invoke binding arbitration to resolve disputes regarding MEDIK’s compliance with the DPF Principles. MEDIK is committed to arbitrating claims in accordance with Annex I of the DPF Principles, provided that the individual has delivered notice to MEDIK and followed the conditions set forth in Annex I. MEDIK remains responsible under the DPF Principles if a third party processes transferred personal information in a manner inconsistent with the DPF Principles, unless MEDIK can demonstrate that it is not responsible for the event giving rise to the damage.
Retention of Personal Information
We retain personal data as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law. Aggregated or anonymized data may be retained indefinitely. Retention practices include: regular audits to determine relevance and necessity of stored data; secure disposal of data no longer needed for operational or legal purposes; and maintaining backups for a reasonable period to ensure business continuity.
Contact Us
If you have any questions about this Privacy Policy or your rights, please contact us at:
MEDIK, Inc.
8 The Green, Suite 20278
Dover, DE 19901
Email: privacy@teamapollo.com
Supplemental California Privacy Rights Notice
Effective Date: February 17, 2025
California Privacy Disclosures
The California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA) provide California consumer residents with specific rights regarding their Personal Information. This section describes your CCPA/CPRA rights and explains how to exercise those rights. The following does not apply to de-identified or aggregated personal data or data publicly available, which are not considered Personal Information since they do not identify any individual.
Your Rights
- "Right to Know": You may have the right to request that we disclose to you what personal data of yours we collect, use, and/or disclose.
- "Right to Delete": You may have the right to request the deletion of your personal data collected or maintained by us. Upon verifying the validity of a deletion request, we will delete your personal data from our records and instruct any service providers or third parties to delete your information, when applicable.
- "Right to Control Use": You may have the right to control or limit the use of your personal data, including: Right to Opt-Out of Sales/Sharing/cross-context behavioral advertising; Right to Object to or Opt-Out of automated decision-making/profiling; Right to Opt-Out of processing/Limit Use of Sensitive personal data.
- "Right of Access": You may have the right to access your personal data, and to transmit it to another entity.
- "Right of Correction": You may have the right to request amendments to your personal data if it is inaccurate or outdated. Upon verifying the validity of a verifiable correction request, we will use commercially reasonable efforts to correct your personal data as directed.
Non-Discrimination
We will not discriminate against you for exercising your rights under the CCPA/CPRA. Based on the complexity of the request and the applicable regulations, we may charge a fee for your request. We may offer a CCPA/CPRA-permitted financial incentive; participation in a financial incentive program requires your prior opt-in consent, which you may revoke at any time.
Exercising Your Rights
You may make a verifiable request to exercise your privacy rights by contacting us via email at privacy@teamapollo.com or by mail at MEDIK, Inc. 8 The Green, Suite 20278, Dover, DE 19901. You may also contact us via our telephone number 917-826-7042.
Please note that the above rights depend on a few things, and we may refuse requests if there are exceptions under the applicable law. If we cannot verify you (or your authority to act on behalf of another person) we have the right to deny the requests. While verifying your identity we generally avoid requesting additional information from you. If we cannot verify your identity from the information already maintained by us, we may request additional information from you, which shall only be used to verify your identity and for security or fraud-prevention purposes. We delete any new Personal Information collected for verification as soon as practical after processing your request, except as required to comply with applicable legislation.
An "authorized agent" means a natural person, or a business entity registered with the Secretary of State that you have authorized to act on your behalf, provided you have: (1) provided the authorized agent with written permission to do so, and we could verify this; and (2) verified your own identity directly with the business. Subsection 1 does not apply when you have provided the authorized agent with a valid power of attorney. We do our utmost to respond to a verifiable request in a timely manner, and in a portable format unless it is excessive, repetitive, or materially unfounded. If we require more time, we will inform you of the reason and the extension period in writing.
Do Not Sell or Share My Personal Information
We do not respond to “Do Not Sell” requests as we do not sell your Personal Information to third parties. In the twelve months before the effective date of this Privacy Notice, we have not sold any Personal Information of Clients, as per the definition of the CCPA/CPRA and similar laws. After receiving your opt-in consent, we may disclose Personal Information collected via cookies for cross-contextual behavioral advertising purposes, which may qualify as sharing your Personal Information under the CCPA/CPRA. To opt-out of this use, you can adjust your cookie preferences on our website’s cookie banner to block our advertising cookies. Additionally, you can change your device settings to block cookies or install a third-party plugin to control how cookies interact with your device.