NIH Sales Privacy Policy



In compliance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), NIHSALES commits to resolve complaints about our collection or use of your personal information.  EU and Swiss individuals with inquiries or complaints regarding our EU-U.S. DPFpolicy should first contact NIH SALES at: 
  
  Bruce Perry 301-467-2876 bruce@nihsales.com 
  
  NIH SALES has further committed to refer unresolved EU-U.S. DPFcomplaints to __JAMS__________________, an alternative dispute resolution provider located in the United States. If you do not receive timely acknowledgment of your complaint from us, or if we have not addressed your complaint to your satisfaction, please visit _____ https://www.jamsadr.com/DPF-Dispute-Resolution _______________ for more information or to file a complaint.  The services of ___JAMS_____________ are provided at no cost to you.

 

NIH SALES commits to the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) and to the rights of EU individuals and Swiss individuals, as your organization’s DPF submission covers all of the following: EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF).

 

In the context of an onward transfer NIH SALES has responsibility for the processing of personal information it receives under the EU-U.S. DPF and Swiss-U.S. DPF subsequently transfers to a third party acting as an agent on its behalf, unless the organization proves that it is not responsible for the event giving rise to the damage.

 

This privacy policy provides our clients with information on how we use, disclose, and protect your information. It describes your rights and choices with respect to any information our company employs for our services, and our commitment to the principles set forth by EU-U.S. DPFregarding Swiss and European Union (EU) General Data Protection Regulation (GDPR) requirements. It also explains how you can reach us for inquiries related to this policy.

Investigation and Enforcement

NIH Sales is subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC).


Information We Collect 

Information Provided byIndividuals

The personal information we collect is limited to information you voluntarily provide to us. The information provided to NIH sales is limited to information necessary to provide our services. This includes contact information and any information provided by individuals we work with that is necessary for financial transactions and communication, and other information voluntarily provided. This information is only kept on file for the duration our business relationship.

Company Information

In order for NIH Sales to provide services, we may ask you to provide baseline information about your company, which includes: company name and address, information necessary for financial transactions, and information you provide voluntarily that is necessary for our business relationship. This information is only kept on file for the duration our business relationship.

GDPR Compliance

 

NIH SALES complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce.  NIH SALES has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union in reliance on the EU-U.S. DPF.  NIH SALES has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF.  If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern.  To learn more about the Data Privacy Framework (DPF) program, and to view our certification, please visit https://www.dataprivacyframework.gov/

 

 

EU-U.S. DPF Principles

NIH Sales is committed to subject to the principles of EU-U.S. DPFfor all personal data received from the EU in reliance on the EU-U.S. DPFunder the EU-U.S. and Swiss-US  framework:

  1. Righttobeinformed.Ourorganizationisobligatedtobetransparentabouthowweusepersonal data. Any information a client requests from us will be provided tothem.
  2. Right of Access. NIH clients have the right to access their personal information without a specific reason as to why they wish to access thatdata.
  3. Right of rectification. Individuals will be entitled to have personal data rectified if it is inaccurateor incomplete.
  4. Righttoerasure. Anyclienthastherighttohavetheirpersonaldatatobedeletedorremovedfrom our system without a specific reason as to why they wish todiscontinue.
  5. Right to restrict processing. Any client has a right to block or suppress processing of personaldata.
  6. Right to data portability. Individuals can retain and reuse their personal information for their own purposes.
  7. Right to object. Individuals are entitled to object to their personal data beingused.
  8. Rights of automated decision making and profiling. The GDPR has put in place safeguards to protect individuals against the risk that a potentially damaging decision is made without human intervention. For example, individuals can choose not to be the subject of a decision where the consequence has a legal bearing on them, or is based on automatedprocessing.

Onward Transfer to Third Parties & Legal Authorities

NIH Sales does not transfer information about our clients to third parties in the course of our business. If a situation arises where a third party transfer is necessary for a business transaction, we will provide complete disclosure and will obtain your full consent for onward transfer. If a third party processes transferred data in a manner not in compliance with GDPR and EU-U.S. DPFPrinciples. Pursuant to EU-U.S. DPFguidelines, we may be required to disclose personal Information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

Recourse Mechanisms

In the event that any issues or conflicts occur pertaining to these policies and all other methods of resolution are exhausted, under limited circumstances described in detail on the EU-U.S. DPFwebsite, you make invoke binding arbitration. [https://www.dataprivacyframework.gov/)