Medline Industries, L.P.

Application Privacy Policy and BAA (US Only)

For Canada (scroll down)

Last Updated: January 2022

This Privacy Notice (“Notice”) sets forth Medline Industries, LP. (“Medline,” “we” and “our”) practices regarding the collection, use and disclosure of protected health information (“PHI”) that you may provide through your use of this website and any other Medline websites that display this Notice, or when you use this application, Skin Health, and any Medline mobile applications that link to this Notice (collectively, our “Site(s)”). Medline collects, uses and discloses all such PHI in our capacity as a Business Associate (as defined by 45 C.F.R. § 160.103), on behalf of our customers, which are considered Covered Entities (as defined by 45 C.F.R. § 160.103), subject to the terms of our Business Associate Agreements (“BAA”) with those customers.

Please read this entire Notice before using the Site or submitting information to Medline through the Site. By using the Site and submitting information through the Site, you acknowledge receipt of this Notice and, to the extent permitted under applicable law, you consent to our collection, use and disclosure of PHI detailed herein. To obtain a copy of the Notice of Privacy Practices, as required by the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”), please reach out to your referring healthcare provider, which is the Covered Entity.

Collection of PHI: Medline collects certain categories of PHI on behalf of our customers, including: identifiers (i.e. name, address, telephone number, email address, age, date of birth, username, password) commercial information (i.e. services purchased, obtained or considered, other purchasing or consuming histories or tendencies, transaction history); internet or other electronic network activity information (i.e. computer and connection information, statistics on page views, traffic to and from the websites, ad data and other standard weblog information) and geolocation ( i.e. physical location information through the use of our services)  for our websites, IP address when you voluntarily submit it to Medline via the Site, or otherwise consent to its collection via the Site.

To the extent you provide information to us about an individual other than yourself (e.g., a patient of yours or another health care provider) or provide additional information about yourself pursuant to your query, you agree that you are legally permitted to submit such information to us for the purposes described in this paragraph and have obtained any and all legally required consents for our processing of such information as described herein.

Uses and Disclosures of PHI: Medline collects, uses, and discloses PHI on behalf of, or in order to provide services to our customers (the Covered Entities), for the purposes of fulfilling our services and other contractual obligations to them, if such uses and disclosures are permitted or required by the applicable BAA and do not otherwise violate the HIPAA Privacy Rule.

We also use and disclose PHI to operate, maintain and administer the Site, as well as for data aggregation, and to meet our own legal obligations (including to report violations of law to federal and state authorities and in response to court orders or other legally-binding requests), to the extent such use is permitted or required by the applicable BAA and not prohibited by HIPAA or other applicable law.

In the event that we disclose PHI to subcontractors or agents, we will ensure that our agreements with such subcontractors or agents include restrictions and conditions that are materially the same as those that apply to us under the BAA, including with respect to the implementation of reasonable and appropriate safeguards, as required by the HIPAA Security Rule.

Cross-border Transfers: This Site is intended solely for use in the United States. If you are not located in the United States, please note that your information will be transferred to the United States and other third countries, which may not provide an equivalent level of protection to that of your country, to facilitate the use of the Site and its functionality. Your continued use of the Site constitutes your consent to such transfers.

Retention: Medline will store and maintain PHI collected via the Site for as long as necessary (i) for the purposes for which it was collected, (ii) to meet its current and future legal obligations, including compliance with Medline’s records retention policy, as well as federal or state medical record retention requirements, and (iii) as permitted by applicable law.

Safeguards: We use appropriate safeguards to prevent the unauthorized use and disclosure of PHI, as required by the HIPAA Security Rule and the BAA. We have implemented administrative, physical, and technical safeguards that reasonable protect the confidentiality, integrity, and availability of the PHI we collect, maintain, and use, and disclose on behalf of Covered Entities.

Notifications of breaches involving PHI will be handled as required under the applicable BAA and the HIPAA Breach Notification Rule.

Links to Third Party Websites: As a convenience to our users, our Site may contain links to a number of other non-Medline websites that we believe may offer useful information. Those websites have their own privacy policies, and this Notice does not apply to those websites. You should contact those websites directly for information on their privacy policies, confidentiality agreements and data collection/distribution procedures.

Your Rights in Connection with Your PHI: In accordance with HIPAA, individuals have certain rights with respect to their PHI. As provided in the BAA, we make available to Covered Entities the information necessary for Covered Entities to administer such requests and fulfill individuals’ rights of access, amendment, and accounting in accordance with HIPAA regulations.

If you want to exercise any of these rights, please contact your referring healthcare provider.

Updates to this Notice: Medline may, at any time, update this Notice. Your PHI will be handled in accordance with the Notice in effect at the time the data is collected.

Contacting Us: If you have any questions, inquiries or complaints about this Notice, please contact Medline at: MedlinePrivacyOffice@Medline.com or by regular mail addressed to:

Medline Industries, LP

Attn: Global Privacy Office

Three Lakes Drive

Northfield, IL 60093

 

Medline Industries, L.P.

Application Privacy Policy and BAA (Canada Only)

Last Updated: November 2022

This Privacy and Cookies Statement (“Statement”) explains how Medline Industries, LP. (“Medline,” “we” and “our”) protect your privacy when you visit this website and any other Medline websites that display this Statement, or when you use any Medline mobile applications that link to this Statement (collectively, our “Site(s)”). This Statement describes what types of information we collect and track when you use our Sites, how this information is used and with whom it is shared. If you have any questions about this Statement, please contact us.

Please read this entire Statement before using the Site or submitting information to Medline through the Site. This Statement does not apply to the collection, use and disclosure of protected health or information, as defined by applicable provincial or territorial personal health information legislation.

1. Collection of Personal Information	We collect identifiers, registration information, transaction data, health-related information, device information, and other Personal Information related to our commercial relationships.
2. Use of Personal Information	We use Personal Information to provide our services and products, respond to inquiries, manage accounts and maintain business operations, provide relevant marketing, and fulfill other business and compliance purposes.
3. Sources of Personal Information	We collect Personal Information from a number of sources in connection with the day-to-day management of our business and our commercial relationships.
4. Sharing of Personal Information	We share Personal Information as necessary to provide our services and products and respond to requests, and to fulfil other business and compliance purposes.
5. Marketing Choices	You have control on how we use Personal Information for marketing.
6. Cookies	We use cookies on our Sites, and provide choices on use of cookies.
7. Data Security	We maintain technical and organizational measures to protect Personal Information from loss, misuse, alteration, or unintentional destruction.
8. Cross-Border Data Transfers	This Site is operated in Canada and intended solely for use in Canada.
9. Retention of Personal Information	We typically retain Personal Information as required or permitted by applicable law.
10. Note about Children	We do not knowingly collect or use any Personal Information directly from children under 18.
11. Changes to this Privacy Statement	We may update this Privacy Statement from time to time.
12. Links to Other Websites	Our Sites may contain links to other websites or services that are not owned or controlled by us.
13. Contact Us	Please contact us as detailed below with any questions.

 

1. Collection of Personal Information. We collect the following categories of personally identifiable information from you or about you when you visit or interact with any of our Sites (“Personal Information”):

• Direct identifiers and contact information, including your name, address, phone number, email address, or professional information;
• Registration information, such as your username and password;
• Transaction data, such as purchases and inquiries;
• Health-related information, such as information about a health condition, or safety and health information in relation to any of our products that is not covered by applicable health privacy laws;
• Device information, such as computer Internet Protocol (IP) address, unique device identifier (UDID), cookies and other information linked to a device, and information about your usage of our Site and your communications with Medline; and
• Other information you voluntarily provide.

To the extent you provide information to us about an individual other than yourself (e.g., a patient of yours or another health care provider) or provide additional information about yourself pursuant to your query, you agree that you are legally permitted to submit such information to us for the purposes described in this paragraph and have obtained any and all legally required consents for our processing of such information as described herein.

2. Use of Personal Information. We may use your Personal Information for business and commercial purposes relating to your interactions with Medline, communicating with you, improving Medline Sites and our products and services, and for other internal business purposes, as follows:

• Fulfill the orders you placed and allow you to track your orders, respond to your inquiries, and allow Medline to contact you;
• Manage your accounts, maintain our business operations, and allow you access to our proprietary systems;
• Send you reminders, updates, support, administrative messages, service bulletins, and requested information;
• Make our Site more personal, intuitive and easy to use;
• Protect the security and effective functioning of our Site and information technology systems;
• Provide relevant marketing about our or our affiliates' services, or promotions that we are developing, and opportunities that may be available to you; and
• Address our compliance and legal obligations and exercise our legal rights.

3. Sources of Personal Information. We collect Personal Information from you or about you, as follows:

• When you provide it directly to us, or when provided by your Caregiver or Healthcare Provider to us;
• When you visit our Sites, automatically through the use of cookies and other similar technologies (as further described below);
• From clinical studies, and joint marketing partners as permitted by applicable law; and
• From third-party sources, such as business partners, data brokers, background check services, social media, or other sources.

4. Sharing of Personal Information. We generally share Personal Information as described below:

• Within the Medline group: Each of our affiliates and subsidiaries within the global Medline group may receive your Personal Information as necessary for the purposes set forth in this Privacy Policy. Such transfer may occur outside your jurisdiction.

• With third parties: In compliance with applicable data protection law, we may share your Personal Information with the following categories of recipients:
  • Service providers: We share Personal Information with service providers to enable such parties to perform functions on our behalf and under our instructions in order to carry out the purposes identified above.
  • Auditors and advisors: We share Personal Information with auditors for the performance of audit functions and advisors for the provision of legal and other advice.
  • Business reorganization: We share Personal Information with any corporate purchaser or prospect to the extent permitted by law as part of any merger, acquisition, sale of company assets, or transition of service to another provider, as well as in the event of insolvency, bankruptcy, or receivership in which Personal Information would be transferred as a Medline asset.
  • Mandatory disclosures and legal rights: We share Personal Information in order to comply with any subpoena, court order or other legal process, or other governmental request. We also share Personal Information to establish or protect our legal rights, property, or safety, or the rights, property, or safety of others, or to defend against legal claims.

We will not disclose your Personal Information to third parties for advertising or marketing purposes or for any other purposes without explicit permission.

5. Marketing Choices. You have control regarding our use of your Personal Information for direct marketing.If you no longer wish to receive any marketing communications, remain on a mailing list to which you previously subscribed, or receive any other marketing communication, you can choose to not receive such communications at any time. Please follow the unsubscribe link in the relevant communication, update your preferences in your account settings, or contact us as detailed below.

6. We use and allow certain trusted partners to use cookies, web beacons, and similar tracking technologies (collectively, "cookies") on our Site.

What are cookies?

Cookies are small amounts of data that are created when you visit a website and stored on your browser, device, communication, or the page you are viewing. Some cookies are deleted once you close your browser, while other cookies are retained even after you close your browser so that you can be recognized when you return to a websites. More information about cookies and how they work is available at www.allaboutcookies.org.
 

How do we use cookies?

We use cookies to provide the Site and our services, gather information about your usage patterns when you navigate this Site in order to enhance your personalized experience, and to understand usage patterns to improve our Site and services. We also allow certain trusted partners to place cookies on our Site in order to collect information about your online activities on our Site over time and across different websites you visit. This information is used to provide advertising tailored to your interests on websites you visit, also known as interest based advertising, and to analyze the effectiveness of such advertising.

Cookies can be owned and operated by different parties and referred to as the following: 

First-party cookies – A first-party cookie is created and stored by the website you are visiting directly. It allows site owners to collect customer analytics data, remember language settings, and carry out other useful functions that help provide a good user experience. The cookies set by Medline websites for example will be first-party cookies.

Third-party cookies – Third-party cookies are set and read by or on behalf of a party other than the webserver that is hosting the website. For example, cookies set by Facebook or Google on the computers of website visitors who visit Medline websites will be third-party cookies.

We use various Cookies on our Site including:

Strictly Necessary Cookies: These are required for the operation of our Site. They include, for example, cookies that enable you to log into secure areas. These cookies are session cookies that are erased when you close your browser.

Analytical/Performance Cookies: These allow us to recognize and count the number of users of our Site and understand how such users navigate through our Site. This helps to improve how our Site works, for example, by ensuring that users can find what they are looking for easily. These cookies are session cookies, which are erased when you close your browser. We use Google Analytics, and you can see below for how to control the use of cookies by Google Analytics.

Functional Cookies: These improve the functional performance of our Site and make it easier for you to use. For example, cookies are used to remember that you have previously visited the Site and asked to remain logged into it. These cookies qualify as persistent cookies, because they remain on your device for us to use during a next visit to our Site. You can delete these cookies via your browser settings.

Targeting Cookies: These record your visit to our Site, the pages you have visited and the links you have followed to recognize you as a previous visitor and to track your activity on the Site and other websites you visit. These cookies qualify as persistent cookies, because they remain on your device for us to use during a next visit to our Site. You can delete these cookies via your browser settings. See below for further details on how you can control third party targeting cookies.
 

What are your options if you do not want cookies on your computer?

You can review your Internet browser settings, typically under the sections "Help" or "Internet Options," to exercise choices you have for certain Cookies. If you disable or delete certain Cookies in your Internet browser settings, you might not be able to access or use important functions or features of this Site, and you may be required to re-enter your log-in details.

To learn more about the use of cookies for Google analytics and to exercise choice regarding such cookies, please visit https://tools.google.com/dlpage/gaoptout.

To learn more about certain cookies used for interest based advertising by third parties, including through cross-device tracking, and to exercise certain choices regarding such cookies, please visit the Digital Advertising Alliance, Network Advertising Initiative, Digital Advertising Alliance-Canada, or your device settings.

Given the divergent practices of organizations that offer browsers and the lack of a standard in the marketplace, we do not respond to Do Not Track signals at this time.

7. Data Security. Medline maintains technical and organizational measures to protect Personal Information from loss, misuse, alteration, or unintentional destruction. However, no security measure can guarantee against compromise. You also have an important role in protecting your Personal Information. You should not share your username and password with anyone, and you should not re-use passwords across more than one website. If you have reason to believe that your password has been compromised or used without authorization, you must promptly change it using the functionality provided on the Site.

8. Cross-Border Data Transfers. This Site is operated in Canada and intended solely for use in Canada. Please note that your information will be transferred to locations outside of Canada, which may not provide an equivalent level of protection to that of your country, to facilitate the use of the Site and its functionality. Medline will handle your Personal Information as described in this Privacy Policy regardless of where your Personal Information is stored or accessed.  Your continued use of the Site constitutes your consent to such transfers.

9. Retention of Personal Information. Medline will store and maintain Personal Information collected via the Sites for as long as necessary (i) for the purposes for which it was collected, (ii) to meet its current and future legal obligations, including in compliance with Medline’s records retention policy, and (iii) as otherwise permitted by applicable law.

10. Note about Children. We do not knowingly collect or use any Personal Information directly from children under 18. If you are a parent and become aware that your child has provided us with information, please contact us using one of the methods specified below, and we will work with you to address this issue.

11. Changes to this Privacy Statement. We may update this Privacy Statement from time to time as our services and privacy practices change, or as required by law. The effective date of our Privacy Statement is posted above, and we encourage you to visit our Site periodically to stay informed about our privacy practices. We will post the updated version of the Privacy Statement on our Site, and where applicable ask for your consent to the changes if legally required.

12. Links to Other Websites. Our Sites may contain links to other websites or services that are not owned or controlled by us, including but not limited to links to websites of our advertisers, sponsors, and partners. This Privacy Statement only applies to information collected by our Sites. We have no control over these third-party websites, and your use of third party websites and features are subject to privacy policies posted on those websites. We are not responsible or liable for the privacy or business practices of any third-party websites linked to our Sites. Your use of third parties’ websites linked to our Sites is at your own risk, so we encourage you to read the privacy policies of any linked third-party websites when you leave our Sites.

13. For Residents of Quebec. If you are a resident of the Province of Quebec, you have the right to withdraw your consent to the communication or use of Personal Information we collect from you. You also have the right to access and rectify Personal Information that we have collected from you. To exercise any of these rights, please contact us using the contact information provided immediately below.
14. Contact Us. If you have questions or comments regarding this Statement or our privacy practices in general, our practices with respect to the use of service providers outside your jurisdiction, or questions about the collection, use, disclosure or storage of personal information by such service providers located outside your jurisdiction, please contact us at:

Medline Canada

C/O Dana Garbo, Chief Privacy Officer
5150 Spectrum Way, Suite 300
Mississauga, ON L4W 5G2

Submit a request here or email us at: MedlinePrivacyOffice@Medline.com

Call Toll-Free: (844) 249-1979