Privacy Policy

1. Introduction

MDDPRO ("we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our B2B medical device marketplace platform ("Platform").

This policy applies to all users of the Platform, including healthcare providers, medical device manufacturers, distributors, and service providers. By using the Platform, you consent to the data practices described in this policy.

2. Information We Collect

2.1 Information You Provide

We collect information that you voluntarily provide when using the Platform:

• Account Information: Name, email address, phone number, job title, company name, business address
• Business Information: Business licenses, certifications, tax identification numbers, regulatory approvals
• Profile Data: Company description, product catalogs, service offerings, business capabilities
• Transaction Information: Purchase orders, quotes, RFQ submissions, payment information
• Communication Data: Messages, inquiries, customer support requests, feedback
• Verification Documents: Identity verification, business registration documents, quality certifications

2.2 Automatically Collected Information

We automatically collect certain information when you access or use the Platform:

• Device Information: IP address, browser type, operating system, device identifiers
• Usage Data: Pages viewed, time spent on pages, navigation patterns, search queries
• Location Data: General geographic location based on IP address
• Cookies and Tracking: Session information, preferences, analytics data

2.3 Information from Third Parties

We may receive information from third-party sources:

• Business verification services and databases
• Regulatory authorities and certification bodies
• Payment processors and financial institutions
• Analytics and marketing service providers

3. How We Use Your Information

We use your information for the following purposes:

3.1 Platform Operations

• Create and manage your account
• Process transactions and facilitate business connections
• Provide customer support and respond to inquiries
• Verify business credentials and maintain platform integrity
• Detect and prevent fraud, abuse, and security threats

3.2 Business Services

• Match buyers with appropriate sellers and products
• Process and manage RFQs and procurement requests
• Facilitate communication between business parties
• Provide regulatory compliance information and resources
• Generate business insights and analytics

3.3 Marketing and Communications

• Send transactional emails and notifications
• Provide marketing communications about relevant products and services
• Announce platform updates, new features, and events
• Conduct surveys and gather feedback

3.4 Legal and Compliance

• Comply with legal obligations and regulatory requirements
• Enforce our Terms and Conditions
• Respond to legal requests and prevent illegal activities
• Protect our rights, property, and safety

4. Information Sharing and Disclosure

4.1 Business Connections

We share your business information with other platform users to facilitate connections and transactions:

• Your company profile, products, and services are visible to other users
• Contact information is shared when you respond to inquiries or RFQs
• Transaction details are shared between buyers and sellers involved in deals

4.2 Service Providers

We share information with third-party service providers who perform services on our behalf:

• Cloud hosting and infrastructure providers
• Payment processing and financial services
• Customer support and communication tools
• Analytics and marketing platforms
• Business verification and fraud prevention services

4.3 Legal Requirements

We may disclose your information when required by law or to:

• Comply with legal processes, court orders, or government requests
• Enforce our Terms and Conditions
• Protect against fraud, security threats, or illegal activities
• Respond to regulatory authorities and healthcare compliance inquiries

4.4 Business Transfers

If MDDPRO is involved in a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

5. Data Security

We implement robust security measures to protect your information:

• Encryption: Data is encrypted in transit using SSL/TLS and at rest using industry-standard encryption
• Access Controls: Strict access controls and authentication mechanisms limit data access
• Security Monitoring: Continuous monitoring for security threats and vulnerabilities
• Regular Audits: Periodic security audits and penetration testing
• Incident Response: Established procedures for detecting and responding to security incidents
• Employee Training: Regular security training for all personnel with data access

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security.

6. Data Retention

We retain your information for as long as necessary to:

• Provide the Platform services and maintain your account
• Comply with legal and regulatory obligations
• Resolve disputes and enforce our agreements
• Maintain business records for accounting and tax purposes

When you close your account, we will delete or anonymize your personal information within 90 days, except where we are required to retain it for legal, regulatory, or legitimate business purposes.

7. Your Rights and Choices

7.1 Access and Correction

You have the right to:

• Access and review your personal information
• Update or correct inaccurate information
• Request a copy of your data in a portable format
• Update your profile and account settings

7.2 Data Deletion

You can request deletion of your personal information, subject to:

• Legal obligations requiring data retention
• Ongoing transactions or business relationships
• Fraud prevention and security purposes
• Accounting and regulatory compliance requirements

7.3 Marketing Communications

You can opt out of marketing communications by:

• Clicking the "unsubscribe" link in marketing emails
• Updating your communication preferences in account settings
• Contacting us directly at privacy@mddpro.com

Note: You cannot opt out of transactional emails related to your account or business activities.

7.4 Cookies and Tracking

You can control cookies through your browser settings. However, disabling cookies may affect your ability to use certain Platform features.

8. International Data Transfers

MDDPRO operates globally, and your information may be transferred to and processed in countries other than your country of residence. We implement appropriate safeguards for international data transfers, including:

• Standard Contractual Clauses approved by relevant authorities
• Privacy Shield frameworks where applicable
• Data processing agreements with service providers
• Compliance with GDPR and other data protection regulations

9. GDPR Compliance (European Users)

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR):

• Right to Access: Request access to your personal data
• Right to Rectification: Request correction of inaccurate data
• Right to Erasure: Request deletion of your data ("right to be forgotten")
• Right to Restriction: Request limitation of data processing
• Right to Portability: Receive your data in a structured format
• Right to Object: Object to certain types of processing
• Right to Withdraw Consent: Withdraw consent for data processing

To exercise these rights, contact us at gdpr@mddpro.com. We will respond within 30 days of receiving your request.

10. CCPA Rights (California Users)

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA):

• Right to Know: Request information about data collected, used, and shared
• Right to Delete: Request deletion of personal information
• Right to Opt-Out: Opt out of the sale of personal information
• Right to Non-Discrimination: Not be discriminated against for exercising rights

Note: MDDPRO does not sell personal information to third parties.

11. Children's Privacy

The Platform is intended for business use only and is not directed to individuals under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected information from a child, we will take steps to delete it immediately.

12. Third-Party Links

The Platform may contain links to third-party websites and services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any information.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of material changes by:

• Posting the updated policy on the Platform with a new "Last Updated" date
• Sending email notifications to registered users
• Displaying prominent notices on the Platform

Your continued use of the Platform after changes are posted constitutes acceptance of the updated Privacy Policy.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

15. Data Protection Officer

For EU/EEA residents, you can contact our Data Protection Officer: