Mobius Medical Pty Ltd (“Mobius Medical”) (ABN 70 054 967 646) is committed to complying with obligations under the Australian Privacy Act 1988 (Cth) (the ‘Privacy Act’) (including the Australian Privacy Principles set out in the Privacy Act (the ‘APPs’)), respectively, and all other applicable global data privacy laws, including the General Data Protection Regulation (‘GDPR’), the Canadian Personal Information Protection and Electronic Documents Act (PIPEDA) (and any provincial substantially similar law as applicable), and the New Zealand Privacy Act 2020.
In this policy, ‘Personal Information’ means information or an opinion about an identified individual, or an individual who is reasonably identifiable, directly or indirectly, and any other information that is deemed personal information under applicable law.
For individuals residing in the European Union (‘EU’) or United Kingdom (‘UK’), please refer to “Section for Individuals Located in the EU or the UK” below of this policy which provides additional information in accordance with EU and UK privacy law.
How Personal Information is collected by Mobius Medical
Mobius Medical collects Personal Information so that we can provide our goods and services, and information about those goods and services, to customers, end users and other interested parties.
We collect most Personal Information directly from you. For example, we will collect your Personal Information from you when you:
Sometimes we may collect Personal Information about you from other people or organisations. This may happen without your direct involvement. For example, we may collect Personal Information about you from:
What kinds of Personal Information does Mobius Medical collect and hold?
The kinds of Personal Information we collect will depend on the purpose(s) for which we are collecting it. For example, in each of the instances above, we may collect:
Personal Information relating to our customers
If you are our customer, we may collect the following types of Personal Information in connection with the provision of our services:
Personal Information relating to employees, applicants and contractors
In addition, when you apply for a job or position with us or become a contractor or vendor, we may collect certain Personal Information from you (including your name, address, contact details, country of residence, working history, education history, qualifications, employer identification number, tax information, banking information and relevant records checks) as part of the application or onboarding process.
Personal Information relating to regulatory background checks and compliance obligations
Mobius Medical operates in a heavily regulated industry. We may be required to conduct extensive background checks on our directors, officers and employees in order to comply with applicable laws and regulations. We may also be required to collect Personal Information from our vendors and/or customers in connection with our compliance obligations. We may collect the following types of Personal Information in such circumstances, some of which may be considered sensitive Personal Information in some countries:
Personal Information collected to conduct such regulatory and compliance checks may be collected directly from the relevant individual, or from third parties. Mobius Medical may also use third party services to assist in conducting background checks.
The purposes for which information is collected, used and disclosed
Mobius Medical may use and disclose your Personal Information for the following purposes:
We and/or our business partners may send you direct marketing communications, information and offers about services and products that we think may interest you. This may take the form of emails, SMS, mail or other forms of communication. You may opt-out of receiving marketing communications from us by contacting our Privacy Office using the details set out below or by using the opt-out facilities provided in our communications (e.g. an unsubscribe link).
Where required by applicable law, we will only send you email or SMS marketing emails with your consent.
Disclosure of Personal Information
Disclosure of Personal Information outside of your jurisdiction
We may disclose your Personal Information outside of your jurisdiction. This includes to:
Disclosures of Personal Information outside of the country where the Information was collected will be carried out in compliance with applicable laws which may include obtaining consent or requiring compliance with applicable laws through contractual obligations. As a result of these disclosures the Personal Information may be subject to the laws of jurisdictions other than your own country.
We may hold your Personal Information in either electronic or hard copy form. We take reasonable steps to protect and secure your Personal Information from misuse, interference and loss, as well as from unauthorised modification, access or disclosure. We use a number of appropriate physical, administrative, personnel and technical measures for such protection of your Personal Information. For example, we may implement data encryption for data at rest and in transit, multi-factor encryption, access restrictions, as well as other controls necessary to secure such data. However, we cannot guarantee the security of your Personal Information.
At Mobius Medical, privacy and data security are important. Below are the guidelines we use for protecting the Personal Information you provide to us during a visit to our Website or when you use our online support offerings.
New technologies are emerging that help us deliver customized experiences. When you look at our websites, Mobius Medical may make a record of your visit and log the following internet or other electronic network activity information for statistical or advertising purposes:
If you do not want us to collect this information, please do not access our websites.
We may also use ‘cookies’ or other similar tracking technologies on our websites that help us track your website usage and remember your preferences. A cookie is a small data file that can be used to track internet use. They enable the entity that put the cookie on your device to recognise you across different websites, services, devices and/or browsing sessions. More information about cookies can generally be found in the “help” (or similar) section of your computer’s internet browser.
When you first access our websites you will be given the choice to enable or disable cookies through our cookie banner. You can revisit your choice at any time by going to the cookie tool bar which you can access on our website by clicking on the wheel symbol at the bottom left of your screen. You can also disable cookies on your web browser. For instructions on how to block or delete cookies please consult your browser’s privacy or help documentation. Disabling cookies may interfere with your use and enjoyment of our websites.
Do-Not-Track Signals and Similar Mechanisms
Some web browsers transmit “do-not-track” signals to websites. Because of differences in how web browsers incorporate and activate this feature, it is not always clear whether users intend for these signals to be transmitted, or whether they even are aware of them. We currently do not take action in response to these signals.
Secrecy of passwords and account information
You are solely responsible for maintaining the secrecy of your passwords or any account information. Please be careful and responsible whenever you’re online. If you post Personal Information online that is accessible to the public, you may receive unsolicited messages from other parties in return. While we strive to protect your Personal Information, Mobius Medical cannot ensure or warrant the security of any information you transmit to us, and you do so at your own risk.
You may be entitled to request that Mobius Medical confirm whether it holds any Personal Information about you and, where applicable, request that Mobius Medical provide you with a copy of your Personal Information. Sometimes, we may not be able to provide you with access to all of your Personal Information and, where this is the case, we will tell you why. We may also need to verify your identity when you request your Personal Information.
If you think that any of the Personal Information we hold about you is inaccurate, please contact us and we will take reasonable steps to ensure that it is corrected.
Subject to applicable law, you may also have rights to request that we delete Personal Information that Mobius Medical holds about you, to request that we provide such information to you in a portable format, or to request additional information about how we collect or disclose your Personal Information. You may also have the right to withdraw the consent that you previously provided.
If you or an authorized agent wants to exercise any of these rights, please contact us using the information provided in the section on “Contacting Mobius Medical & Local Data Controllers” below. We will not charge you different prices or provide different quality of services unless those differences are related to your information or otherwise permitted by law. Once we receive your request from you, we may verify it through your account or by requesting information sufficient to confirm your identity.
How to make a complaint
If you think we have breached applicable privacy law, or you wish to make a complaint about the way we have handled your Personal Information, you can contact us using the details set out below. You should include your name, email address and/or telephone number and clearly describe your complaint. We will acknowledge your complaint and respond to you regarding your complaint within a reasonable period of time. If you are unhappy with our response to your complaint, please let us know and we will provide you with information about the further steps you can take. You may also file a complaint with your local data protection authority.
Contacting Mobius Medical & Local Data Controllers
If you have any questions about Mobius Medical’s handling of Personal Information, or if you wish to make an access, deletion, or correction request or complaint, you should contact the Mobius Medical Privacy Officer by one of the following methods:
Contacting Mobius Medical & Local Data Controllers
If you have any questions about Mobius Medical’s handling of Personal Information, or if you wish to make an access, deletion, or correction request or complaint, you should contact the Mobius Medical Privacy Office by one of the following methods:
1. Controller and Contact Details
If you are located in the EU or UK, Mobius Medical Pty Ltd (‘Mobius Medical’) is the controller of Personal Information that it collects and processes about you.
Mobius Medical is committed to complying with our obligations under applicable EU and UK privacy laws.
2. Personal Information We Collect and Use
In addition to the Personal Information described in the sections above (i.e., “How Personal Information is collected by Mobius Medical” and “What kinds of Personal Information does Mobius Medical collect and hold?”), in some cases we may also collect Personal Information that is classified as “Sensitive Information” under EU or UK privacy laws, including police checks. Where this is the case, we only collect such Sensitive Information in compliance with applicable privacy laws. This Sensitive Information is only accessible by restricted staff within Mobius Medical and is only disclosed to an entity (generally the relevant regulatory or government authority or agency) when we have a legal or regulatory obligation to do so or to third parties with whom we have implemented appropriate contractual protections such as service providers.
3. Purposes and Legal Basis for Collection and Use of Personal Information
To understand the purposes for which we collect and use Personal Information, please refer to the section above titled “The purposes for which information is collected, used and disclosed”. With regards to those purposes, we may collect, use and disclose Personal Information per the following legal basis:
With regards to direct marketing, please note that we will only use your e-mail address or mobile phone number for advertising purposes if you provide us with your prior consent, which you can withdraw at any time.
4. Privacy of EU and/or UK Job Applicants
If you are a job applicant in the EU or UK and would like to know how we process your Personal If you are a job applicant in the EU or UK and would like to know how we process your Personal Information, please request a copy from the Human Resources Department:
5. Parties With Whom We Share Personal Information
The categories of recipients with whom we may share your Personal Information include those described in the sub-section above titled “Disclosure of Your Personal Information”.
6. International Transfers of Personal Information Outside the EU or UK
6.1 International Transfers to Third-Party Service Providers
Mobius Medical engages third parties to provide services and perform business support functions for us, which may at times require access to Personal Information. Where we share your Personal Information with third-party service providers, they will be contractually bound to use the information only for the purposes of providing the services, or performing the functions required by Mobius Medical, and to store the information securely.
Some third parties providing services to Mobius Medical may be located outside of the EU or UK. Where required by law, Mobius Medical will take steps to implement mechanisms (such as appropriate contractual safeguards) to protect your Personal Information. You have the right to receive information about these transfer mechanisms, including (where applicable) a copy of the contractual safeguards.
7. Retention of Personal Information
Mobius Medical takes reasonable steps to destroy or permanently de-identify any Personal Information where:
8. Personal Information Rights
Under EU and UK law, individuals have the right to access, rectify, erase, object to and/or restrict processing and the right to portability of Personal Information. Under EU and UK law, individuals also have the right not to be subject to automated individual decision-making. You may, for example, request that Mobius Medical confirm whether it holds any Personal Information about you and, where applicable, request that Mobius Medical provide you with a copy of your Personal Information.
Our response to your request is provided to you on a free-of-charge basis. We will only charge you if your request is manifestly unfounded or excessive.
In certain circumstances and subject to applicable law, there may be grounds to deny your request, such as where:
If you notify Mobius Medical that your Personal Information is not accurate, complete or up to date, Mobius Medical will take reasonable steps to correct such Personal Information.
9. Security of Personal Information
Mobius Medical takes reasonable steps to help protect and secure your Personal Information. Please refer to the section above titled “Security of Personal Information” for additional details.
Cookies can be either “persistent” or “session” based. Persistent cookies are stored on your computer, contain an expiration date, and may be used to track your browsing behaviour upon return to the issuing website. Session cookies are short-lived, are used only during a browsing session, and expire when you quit your browser.
When you first access our websites you will be given the choice to enable or disable cookies through our cookie banner. You can revisit your choice at any time by going to the cookie tool bar, which you can access on our website by clicking on the wheel symbol at the bottom left of your screen. You can also disable cookies on your web browser. For instructions on how to block or delete cookies please consult your browser’s privacy or help documentation. Disabling cookies may interfere with your use and enjoyment of our websites.
10. Complaints to Us or to a Regulator
You have the right to make a complaint to the supervisory authority for data protection in your EU country or in the UK.
This policy was issued in June 2022.