Introduction and Scope
Remote Medicine Inc., doing business as RMI, and our subsidiaries Remote Medical International Limited; Remote Medical International UK Ltd.; Remote Medical Canada Ltd; Remote Medicine Inc. (DMCC Branch); Remote Medical International Ghana Limited; Occupational Medical Services Ghana Ltd; Remote Medical International Kenya Limited; Remote Medical International Mozambique LDA; Remote Medical International Nigeria Limited; Remote Medical International Oman LLC; Remote Medical International Tanzania Limited; Remote Medical International Malaysia Limited; Remote Medical International Sarl U; Remote Medical International Uganda Limited; Ship Security International Limited; SSI Energy Ltd; Health Pioneers Int. SPC; and Investment License Remote Medicine Inc., (collectively, “RMI”, “we”, “us”, “our”) take the protection of personally identifiable information (“Personal Data”) very seriously. This Privacy Shield Statement (the “Statement”) addresses data subjects whose Personal Data we may receive in reliance on the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks (the “Privacy Shield”). RMI processes a variety of Personal Data through our internal software applications and other information systems in the course of fulfilling our obligations as an employer and in the course of providing medical staffing and support services to our clients (collectively, the “Systems”).

This Statement describes how we comply with the Privacy Shield Principles with respect to our Systems, and is intended to complement our other privacy notices, including the RMI Human Resources Privacy Notice (the “HR Notice”) and the RMI Services Privacy Notice (the “Services Notice”) (each, a “Notice” and together, the “Notices”).

This Statement does not address our processing activities related to our website or our sales and marketing activities.

Privacy Shield
For Personal Data processed in the scope of the Notices, RMI complies with the Principles of the EU-S. and Swiss-U.S. Privacy Shield Frameworks, as adopted and set forth by the U.S. Department of Commerce regarding the processing of Personal Data transferred from the European Union, the European Economic Area, the United Kingdom, or Switzerland to the United States, or otherwise received in reliance on the Privacy Shield. We commit to adhere to the Privacy Shield Principles and have certified our adherence to the Department of Commerce. If there is any conflict between the terms of the Notices and the Privacy Shield Principles, the Privacy Shield Principles shall govern.

To learn more about the Privacy Shield, and to view our certification, please visit https://www.privacyshield.gov and https://www.privacyshield.gov/list, respectively.

Privacy Shield Principles
For more specific information about how RMI complies with the Privacy Shield Principles of Notice, Choice, Accountability for Onward Transfer, Security, Data Integrity and Purpose Limitation, Access, and Recourse, Enforcement, and Liability, please see the relevant sections of the Notices, which describe what Personal Data we process, how and why we process it, whom we share it with, and how we ensure your rights as a data subject are upheld.

Onward Transfer
In the course of business, RMI may transfer Personal Data to third parties located in other countries, some of which may have different standards for privacy and data security. However, before transferring your Personal Data to these third parties, we will either ask for your explicit consent or require the third party to maintain at least the same level of privacy and security for your Personal Data that we do. We remain liable for the protection of your Personal Data within the scope of our self-certification to the Privacy Shield Principles that we transfer to third parties, except to the extent that we are not responsible for the event that leads to any unauthorized or improper processing.

Dispute Resolution
In compliance with the Privacy Shield Principles, Remote Medicine Inc. commits to resolve complaints related to our collection or use of your Personal Data. EU and Swiss individuals with inquiries or complaints regarding this Privacy Shield Statement should first contact us using the contact information listed in the “Contact Us” section.

With respect to Personal Data processed within the scope of the Services Notice, where a privacy complaint or dispute cannot be resolved through our internal processes, we have agreed to participate in the VeraSafe Privacy Shield Dispute Resolution Procedure. VeraSafe is an alternative dispute resolution provider located in the United States. Subject to the terms of the VeraSafe Privacy Shield Dispute Resolution Procedure, VeraSafe will provide appropriate recourse free of charge to you. If you do not receive timely acknowledgment of your complaint from us, or if we have not addressed your complaint to your satisfaction, please file a complaint with VeraSafe and participate in the VeraSafe Privacy Shield Dispute Resolution Procedure by submitting the required information here: https://www.verasafe.com/privacy-services/dispute-resolution/submit-dispute/

With respect to Personal Data processed within the scope of the HR Notice and to complaints or disputes that cannot be resolved through our internal process or VeraSafe’s Privacy Shield Dispute Resolution Procedure, we have also agreed to cooperate with the EU data protection authorities and the Swiss Federal Data Protection and Information Commissioner and to participate in the dispute resolution procedures of the panel established by such data protection authorities.

Binding Arbitration
If your dispute or complaint can not be resolved by us, nor through the dispute resolution program established by VeraSafe, you may have the right to require that we enter into binding arbitration with you under the Privacy Shield’s “Recourse, Enforcement and Liability Principle” and Annex I of the Privacy Shield.

U.S. Regulatory Oversight
Remote Medicine Inc. is subject to the investigatory and enforcement powers of the United States Federal Trade Commission.

Changes to this Statement
If we make any material change to this Statement, we will post the revised Statement to this web page. We will also update the “Effective” date. By continuing to use our Services after we post any of these changes, you accept the modified Statement.

Contact Us
If you have any questions about this Statement or our processing of your Personal Data, please write to our DPO or CISO by email at experts@verasafe.com or by postal mail at:

VeraSafe
22 Essex Way #8203
Essex, VT 05451 USA

Please allow up to four weeks for us to reply.

Previous Versions
March 8, 2021