Intuitive Surgical, with principal locations including Intuitive Surgical, Inc., 1020 Kifer Road, Sunnyvale, CA 94086, and Intuitive Surgical Sàrl, 1, Chemin des Mûriers, 1170 Aubonne, Switzerland and their affiliates (hereinafter also referred as: “Intuitive”, or “We” or “Us”) conducting business within the European Economic Area (EEA) or processing the personal data of data subjects within EEA understands the importance of privacy to Our customers, visitors and suppliers, business partners, employees and other individuals (hereinafter also referred as: “You” or the “User” or the “Data Subject”). We are committed to safeguarding Your privacy. We collect and store information (non-personal information and personal information or personal data) so that We can efficiently provide Our products and services and support Your interest in Our products.
Please contact Us at Data.Privacy@intusurg.com with any questions.
We are committed to conduct Our business in accordance with all applicable Data Protection legislation/regulations of all relevant jurisdictions, including the European Union’s General Data Protection Regulation 2016/679 (GDPR) of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.
The information We collect and how We handle it depends on the data type and what You do when You use Our services and products. We only use the information required to successfully provide the products and services requested and only for the purposes You agreed with. Therefore, to protect Your safety, You should not provide Intuitive Surgical with any personal information that is not specifically requested.
BY USING THE INTUITIVE WEBSITE, YOU AGREE NOT TO DISRUPT OR INTERCEPT OUR ELECTRONIC INFORMATION POSTED ON THIS WEBSITE OR ON ANY OF OUR SERVERS. YOU ALSO AGREE NOT TO ATTEMPT TO CIRCUMVENT ANY SECURITY FEATURES OF OUR WEBSITE, AND TO ABIDE BY ALL APPLICABLE, LOCAL, STATE, FEDERAL AND INTERNATIONAL LAWS.
Information provided to Intuitive Surgical by You is not subject to the privacy rule promulgated under the US Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) but may be subject to the requirements of privacy laws or regulations adopted by Your state of residence.
We do not sell or rent Your personal identifying information or medical information to any third party. We may contract with reputable vendors to assist Us in processing information or delivering the items that Our customers order. These vendors are restricted from using or selling the information for any purpose, other than helping Us to provide the products and services.
Non-personal data is information that does not identify You directly or indirectly as an individual person that We collect to help Us understand how You use Our services and products, as well as to protect and enhance them. It includes essentially the following:
Personal data is any information that identifies You directly or indirectly as an individual. It includes, but is not limited to: name, address, email address, phone number, identification number, location data, online identifier or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
Definition of “personal data” may differ across jurisdictions and applicable laws and regulations. Intuitive Surgical’s management of personal data may also vary depending on the country.
We collect certain personal information, such as:
All Intuitive Surgical’s processing operations on Personal Data are performed in line with the following processing principles:
We use different types of cookies.
We use third-party web beacons from Piwik, Google and GetClicky to help analyze where visitors go and what they do while visiting Our website. Piwik, Google and GetClicky may also use anonymous information about Your visits to this and other websites to improve its products and services and provide advertisements about goods and services of interest to You.
If You would like more information about this practice and to know Your choices about not having this information used, please visit the individual sites: Piwik, Google and GetClicky.
Links to Our LinkedIn page and Twitter account are provided on some websites.
You may also configure Your own browser settings to manage cookies. Please refer to Your browser's help function.
Intuitive Surgical may collect, process, and use personal data obtained through its services, websites and products.
Processing of Personal Information is lawful and based on at least one of the following grounds:
If You are not sure which lawful ground is relevant in a particular case You shall start by eliminating the grounds that cannot be relied upon and seek the advice and guidance of Our Data Privacy Officer at Data.Privacy@intusurg.com.
Where there is a need to request and receive Your Consent prior to collection, processing and transfer, Intuitive Surgical is committed to seeking such Consent and obtaining it in line with the conditions set by the applicable Data Protection legislation/regulations.
Under the applicable data protection legislation/regulations, You have various rights in connection with the processing of Your personal information. Intuitive Surgical shall strictly uphold Your rights and is responsible for implementing adequate procedures and policies to effectively protect Your rights and monitoring compliance with applicable data protection laws and regulations. We will respond and provide information upon request without undue delay and in any event within 30 days of receipt of the request. That period may be extended by two further months where necessary, taking into account the complexity and number of the requests.
Please note that We will have to identify You in order to fulfill Your request; this requires identification documents that can prove Your identify. We will retain archival copies of the information You have requested. Until Our backups are overwritten, We will retain the information, but make no further use of Your Personal Information. You can submit Your requests via email to Our Data Protection Officer at Data.Privacy@intusurg.com.
As Data Subjects, Your rights are the following:
Where Personal Information is collected from You directly, Intuitive Surgical will ensure that You will receive all the information required at the time Your Personal information is obtained.
We ensure that upon request, access to Your personal information will be granted and all the appropriate information will be provided:
Your have the right to ask for rectification of any inaccurate Personal Data that concerns You and We will ensure that any inaccurate or incomplete information is erased, amended or rectified.
You have the right to have Your Personal Data erased if any of the following apply:
We will communicate any erasure of Personal Data to each Recipient to whom the data has been disclosed, unless this proves impossible or involves a disproportionate effort.
As a Data Subject, You have the right to request the restriction of processing of Your Personal Data if:
The right to data portability allows You to receive the Personal Data Your have provided to a Us, in a structured, commonly used and machine – readable format, and to transmit those data to another Controller Company.
Where processing is justified on the basis of legitimate interests, You may object to such processing, including profiling, unless Intuitive Surgical is in a position to demonstrate that compelling legitimate grounds, which override Your interests, rights and freedoms, exist for the processing or for the establishment, exercise or defense of legal claims.
Where decision – making, including profiling, is based solely on automated processing and produces legal effects that concern You or similarly You are significantly affected by it, You have the right to object not to be subject to such a decision.
We do not base decision making or profiling solely on automated processing; human involvement ensures that the collaborators have the authority and competence to change the decision that concerns Your Personal Information.
Intuitive Surgical may transfer Personal Information to other entities.
Any transfer of Personal Information which is undergoing processing or is intended for processing after it is transferred to a third country or international organization requires special consideration and shall be carried out in compliance with data protection legislation/regulations.
As a general rule, Personal Information shall be transferred outside the EU only if adequate safeguards are in place ensuring the same level of data protection as guaranteed under the GDPR. In addition, member states are, unless the transfer is based on an adequacy decision (see below), entitled to restrict the transfer of specific categories of Personal Data under their national laws.
Pursuant to the GDPR, each Intuitive Surgical entity which is subject to the GDPR shall, amongst other things, ensure that one of the following safeguards are in place when transferring data to a recipient in a third country (i.e. Non – EU country):
Currently, Intuitive Surgical entities perform intragroup transfers of Personal Data on the basis of an adequacy decision or on the basis of standard contractual clauses (SCCs).
Intuitive Surgical has implemented technical and organizational security measures to protect Your Personal Data from loss, misuse or unauthorized access, disclosure, deletion or modification. It includes, among other mechanisms, secured back-up and archiving servers, access control, firewalls or encryption.
Unfortunately, however, no data transmission over the Internet is certain to be 100% secure. As a result, while We strive to protect this information, We cannot guarantee its security.
We understand the need to protect children's privacy online (We define "children" as minors Younger than 13 years of age). We do not knowingly collect or use any personal information from children. We do not knowingly allow children to register with us, order Our products, communicate with us, or to use any of Our online services. If You are a parent or guardian of a child and You become aware that he or she has provided Us with personally identifying information without Your consent, You should contact Us at Data.Privacy@intusurg.com. If We become aware that a child has provided Us with personally identifying information, We will delete this information from Our records.
Intuitive Surgical, Inc.
Attn: Data Privacy Officer
1020 Kifer Rd
Sunnyvale, CA 94086
This Data Privacy Officer is located in the USAData.Privacy@intusurg.com
Intuitive Surgical, Sarl
Attn: Data Privacy Officer
Ch. Des Mûriers 1
This Data Privacy Officer is located in SwitzerlandData.Privacy@intusurg.com
If We fail to respond to Your request within the deadline, or if You are dissatisfied with Our response, You may lodge a complaint with Your data protection authority.
In principle, We will retain Your personal data for as long as reasonably necessary for Our legitimate business purposes. Personal Information must be kept to be available for legal or regulatory compliance. Retention deadlines vary depending on the type of data and the need to delete obsolete data is assessed on a case-by-case basis.
We are responsible for the secure destruction of Personal Information once the necessary period that was required to achieve the processing purpose ends. Such destruction must be done through a specific procedure and in order to be secure and avoid potential unlawful data processing, for instance any disclosure to Third Parties, appropriate control mechanisms to monitor the data destruction procedure are in place.