TrialMatch ("Company," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and services (the "Services").
Please read this Privacy Policy carefully. If you do not agree with our policies and practices, please do not use our Services.
2. Information We Collect
2.1 Information You Provide Directly
Account Registration:
Name, email address, password
Date of birth (optional)
Phone number (optional)
Medical history or cancer type information
Healthcare provider information
Profile Information:
Demographic information (age, gender, location)
Medical conditions and treatment history
Trial preferences and interests
Communication preferences
Communication:
Messages sent through our contact forms
Emails and support tickets
Feedback and survey responses
2.2 Information Collected Automatically
Device Information:
IP address
Browser type and version
Operating system
Device identifiers
Mobile device information
Usage Information:
Pages visited and time spent
Search queries
Clicks and interactions
Referral sources
Browsing patterns
Cookies and Similar Technologies:
Session cookies
Persistent cookies
Web beacons and pixels
Local storage data
3. How We Use Your Information
3.1 Service Provision
Creating and managing your account
Matching you with clinical trials
Providing personalized recommendations
Responding to inquiries and support requests
3.2 Communication
Sending account notifications
Updates about new trials matching your profile
Educational content and resources
Service announcements
Marketing communications (with your consent)
3.3 Improvement and Analytics
Analyzing usage patterns to improve Services
Conducting research and analytics
Testing new features
Troubleshooting and debugging
Personalizing user experience
3.4 Legal and Compliance
Complying with legal obligations
Enforcing our Terms of Service
Protecting against fraud and security threats
Protecting our legal rights and safety
4. How We Share Your Information
4.1 We Do NOT Share With Third Parties
We do not sell your personal information to third parties for marketing purposes.
4.2 Information Shared With Service Providers
We may share information with trusted service providers who:
Process payments (payment processors)
Send emails (email service providers)
Host our servers (cloud providers)
Analyze data (analytics providers)
Provide customer support tools
All service providers are contractually obligated to use information only for specified purposes, maintain confidentiality and security, and comply with applicable privacy laws.
4.3 Clinical Trial Sponsors (With Your Explicit Consent)
When you express interest in a specific trial, we may:
Share your contact information with the trial sponsor or research coordinator
Only with your explicit written consent
Allow you to control what information is shared
4.4 Legal Requirements
We may disclose information when required by law or to:
Comply with court orders or subpoenas
Enforce our Terms of Service
Protect against illegal activity
Protect the safety, rights, and property of our users
4.5 Business Transfers
If we are involved in a merger, acquisition, bankruptcy, or sale of assets:
Your information may be transferred as part of that transaction
We will notify you of any such change
You will have the opportunity to opt-out
5. Data Security
5.1 Security Measures
We implement comprehensive security measures including:
HTTPS encryption for data in transit
Encryption for sensitive data at rest
Secure authentication and access controls
Regular security audits and assessments
Firewalls and intrusion detection systems
Employee training on data protection
5.2 Data Retention
Account data is retained while your account is active
After account deletion, we retain data for legal/compliance purposes (up to 1 year)
Usage logs are typically retained for 90 days
You can request data deletion subject to legal requirements
5.3 Limitations
While we use industry-standard security measures, no system is 100% secure. We cannot guarantee absolute security of your information.
6. Your Privacy Rights and Choices
6.1 Access and Correction
You have the right to:
Access your personal information
Correct inaccurate data
Update your profile at any time
6.2 Data Portability
You can request your data in a portable format for transfer to another service.
6.3 Deletion
You can request deletion of your account and associated data, subject to:
Legal retention requirements
Contractual obligations
Legitimate business interests
6.4 Marketing Communications
You can:
Opt-out of promotional emails using the unsubscribe link
Manage preferences in your account settings
Contact us to modify communication preferences
Continue to receive service notifications
6.5 Cookie Preferences
You can control cookies through:
Browser settings
Cookie management tools
Our preference center
7. Children's Privacy
Our Services are not intended for users under 18 years of age. We do not knowingly collect information from children under 18.
If we become aware that we have collected information from a child under 18:
We will delete such information promptly
We will notify parents/guardians as required by law
Parents who believe their child has provided information should contact us immediately.
8. International Data Transfers
If you are located outside the United States:
Your information may be transferred to and processed in the United States
The United States may have different privacy protections
By using our Services, you consent to such transfers
We will implement safeguards for international transfers
9. Third-Party Links and Services
Our website may contain links to third-party websites and services. We are not responsible for:
Privacy practices of third-party sites
Information collected by third parties
Content on external sites
Please review third-party privacy policies before providing information.
10. California Privacy Rights (CCPA)
If you are a California resident, you have the right to:
10.1 Right to Know
What personal information we collect, use, and share
The purposes for collection and use
10.2 Right to Delete
Request deletion of personal information collected from you
Subject to legal exceptions
10.3 Right to Opt-Out
Opt-out of the "sale" of personal information
Opt-out of targeted advertising and profiling
10.4 Right to Non-Discrimination
We will not discriminate against you for exercising your privacy rights
No price or service differences for exercising rights
To Submit a Request: Contact us using the information in Section 11.
11. European Privacy Rights (GDPR)
If you are in the European Union, United Kingdom, or EEA, you have the right to:
11.1 Right of Access
Obtain confirmation of whether we process your data
Access your personal information
11.2 Right to Rectification
Correct inaccurate information
Complete incomplete data
11.3 Right to Erasure
Request deletion of your data ("right to be forgotten")
Subject to legal exceptions
11.4 Right to Restrict Processing
Limit how we use your information
Prevent certain processing activities
11.5 Right to Data Portability
Receive your data in a structured, portable format
Transfer data to another service
11.6 Right to Object
Object to processing for direct marketing
Object to processing based on legitimate interests
11.7 Right to Lodge a Complaint
File a complaint with your local data protection authority
Legal Basis for Processing:
Consent (for marketing and optional services)
Contract performance (for account and service provision)
Legal obligation (for compliance)
Legitimate interests (for service improvement and security)
12. Contact Us
For questions or requests regarding this Privacy Policy, contact:
TrialMatch Privacy Team
Email: privacy@trialmatch.com
Mailing Address:
TrialMatch
[Your Company Address]
[City, State, ZIP Code]
United States
Response Time: We aim to respond within 30 days
For GDPR-related inquiries, you may also contact our Data Protection Officer.
13. Changes to This Privacy Policy
We may update this Privacy Policy periodically.
When we update:
We will notify you via email or prominent notice on our website
Changes become effective upon posting (or as specified in the notice)
Continued use of Services constitutes acceptance of changes
For significant changes, we may require explicit consent