BOOST Privacy Policy

Effective date: March 01, 2019

The BOOST (Better Operative Outcomes Software Tool) Consortia ("us", "we", or "our") operates the https://boostcataract.org/ website and the mobile application BOOST Cataract.

1. Introduction

BOOST is a simple, free and easy-to-use app to help surgeons monitor and improve cataract surgical outcomes. BOOST enables hospital administrators and surgeons to record results the day after surgery, then analyse and benchmark their results against other users around the world. It also suggests strategies to improve surgical quality where results are poor. All data is 100% anonymous.

This Privacy Policy (“Policy”) explains how we collect, use, disclose, and safeguard your information when you visit our mobile application (the “Application”) or website and explains your choices in relation to your information. We use your data to provide and improve the functionality of BOOST. By using BOOST, you agree to the collection and use of information in accordance with this Policy. Unless otherwise defined in this Policy, terms used in this Policy have the same meanings as in our Terms and Conditions.

We reserve the right to make changes to this Policy at any time and for any reason. We will alert you about any changes by updating the “Last updated” date of this Policy. You are encouraged to periodically review this Policy to stay informed of updates. You will be deemed to have been made aware of, will be subject to, and will be deemed to have accepted the changes in any revised Privacy Policy by your continued use of the Application after the date such revised Privacy Policy is posted.

Please read this Policy carefully. IF YOU DO NOT AGREE WITH THE TERMS OF THIS POLICY, PLEASE DO NOT ACCESS THE APPLICATION.

This Policy does not apply to the third-party online/mobile store from which you install the Application. We are not responsible for any of the data collected by any such third party.

2. Scope

This Policy applies to all registered users of the BOOST application and website including, but not limited to, a surgeon or an individual (i.e. administrator, clerk, nurse) responsible for recording surgical outcome data. The BOOST Consortia also acknowledges that the BOOST software captures images of de-identified individual patient’s health condition. In as far as is appropriate, this Policy also applies to that health information.

3. Collection of personal information

‘Personal information’, is any information or opinion that can identify or be used to identify an individual. We collect several different types of information for various purposes to provide and improve the BOOST application and website.

3.1. Personal Data

While using BOOST, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you ("Personal Data"). Personally identifiable information may include, but is not limited to:

Processing this information is necessary for the legitimate interests of the BOOST Consortia for the administration, maintenance and provision of the BOOST application.

3.2. Usage Data

We may also collect information that your browser sends whenever you visit the BOOST website or when you access BOOST through a mobile or desktop device ("Usage Data").

This Usage Data may include information such as your computer's Internet Protocol address (e.g. IP address), browser type, browser version, the pages of the BOOST website that you visit, the results your record in BOOST, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data.

When you access BOOST by or through a mobile device, this Usage Data may include information such as the type of mobile device you use, your mobile device unique ID, the IP address of your mobile device, your mobile operating system, the type of mobile Internet browser you use, unique device identifiers and other diagnostic data.

3.3. Tracking & Cookies Data

When an individual visits the https://boostcataract.org website, personal information may be collected automatically through cookies including: IP address and/or domain name; operating system (type of browser and platform); and the date, time and length of the visit to the website. This information primarily is used for the compilation of statistical information about the use of the website.

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of BOOST.

3.4. Sensitive information

BOOST may collect health or other sensitive information about a patient’s eye health. To protect individual patients’ privacy such information will always be de-identified. We may share this de-identified health or other sensitive information with our health provider partners and suppliers, or for research purposes.

4. Use of Data

BOOST uses the collected data for various purposes:

5. Transfer Of Data

Your information, including Personal Data, may be transferred to — and maintained on — computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction.

The BOOST server is hosted and maintained by the Lions Aravind Institute of Community Ophthalmology, based in India. If you are located outside India and choose to provide information to us, please note that we transfer the data, including Personal Data, to India and process it there.

Your consent to this Policy followed by your submission of such information represents your agreement to that transfer.

The BOOST Consortia will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Policy and no transfer of your Personal Data will take place to an organisation or a country unless there are adequate controls in place including the security of your data and other personal information.

6. Disclosure of Data

7. Security of Data

The security of your data is important to us and all reasonable steps are taken to ensure the security of information by storing it in a secure environment. The BOOST electronic databases are secure by a firewall and anti-virus software to ensure, so far as practical, that it is not accessed by unauthorised parties. The BOOST website is protected by a 128-bit SSL certificate

While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security

8. Retention of Data  

We will retain your data for no longer than necessary. Any data recorded via the BOOST application or website will be stored for a maximum of 10 years. You are entitled to contact the nominated Data Protection Officer (see Section 12) at any time to request that your personal data should be erased.

Data may be stored for longer for the purposes of scientific research. Any data archived for this purpose will be anonymous and transferred via secure encryption.

9. Third Parties

We may engage third party companies and individuals to facilitate technical updates and maintenance of BOOST ("Service Providers"), to promote BOOST on our behalf, or to assist us in analysing how BOOST is used.

These third parties have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose, and must comply with this Policy and the privacy laws and regulations where they are located.

10. Analytics

We use Google Analytics and Google Analytics for Firebase to track visits to our website and downloads of the BOOST application. Google Analytics is a web analytics tool that helps website owners understand how visitors engage with their website. Google Analytics customers can view a variety of reports about how visitors interact with their website so they can improve it. Google Analytics collects information anonymously. It reports website trends without identifying individual visitors. This information is used to track the effectiveness of websites. Types of data collected include number of visits, viewed pages and the technical capabilities of our visitors. These statistics will not identify an individual. For more information please refer to Google's Privacy Policy.

11. Links to Other Sites

The BOOST website may contain links to third party websites, and third party websites may also have links to the BOOST website. This Privacy Policy does not apply to external links or other websites. These third party websites may collect your personal information. We encourage individuals to read the privacy policies of any website you link to from the BOOST website.

12. Children's Privacy

BOOST does not address anyone under the age of 18 ("Children"). We do not knowingly collect personally identifiable information from anyone under the age of 18. If you are a parent or guardian and you are aware that your child has provided us with Personal Data, please contact us.

13. Contact

The data controller responsible for your personal information for the purposes of the applicable European Union data protection law is:

ATTN: BOOST Project Manager (Data Protection Officer), Knowledge and Innovation division

The Fred Hollows Foundation
Locked Bag 5021,
Alexandria NSW
2015 Australia

Telephone: +61 2 8741 1900
Email: BOOSTcataract@gmail.com

If you have any questions about this Privacy Policy or our data collection practices, please contact us at the address, telephone number or email listed above and specify your country of residence and the nature of your question. You may also contact us by visiting this page on our website:https://boostcataract.org/Feedback.aspx

14. Your Rights

You have a number of rights in relation to your personal information under data protection law. In relation to certain rights, we may ask you for information to confirm your identity and, where applicable, to help us to search for your personal information. You can read more about your rights at:https://gdpr-info.eu/chapter-3 Except in rare cases where additional time may be required, we will respond to you within one month from either (i) the date that we have confirmed your identity, or (ii) where we do not need to do this because we already have this information, from the date we received your request.

If you are not happy with the way your information is being handled, or with the response received from us, you have the right to lodge a complaint with your data protection authority.