Privacy Policy

 

Business Group on Health (the Business Group) is a nonprofit organization devoted exclusively to representing large employers’ perspective on national health policy issues and helping companies optimize business performance through health improvement, innovation, and health care management. The Business Group does not knowingly attempt to solicit or receive information from children.

This Privacy Policy describes the Business Group’s policies and practices regarding its collection and use of your personal data and sets forth your privacy rights. We recognize that information privacy is an ongoing responsibility; we will from time to time update this Privacy Policy as we undertake new personal data practices or adopt new privacy policies.

 

Data Protection Officer

The Business Group is headquartered in Washington, DC in the United States and has appointed an internal data protection officer. If you have any questions or concerns about the Business Group’s personal data policies or practices, please contact: privacy@businessgrouphealth.org. 

 

Collection and use of personal information

The Business Group collects personal information about its members, potential members, and other partners (members). With a few exceptions, this information is limited to the kinds of information that can be found on a business card: first name, last name, job title, employer name, work address, work email, and work phone number. We use this information to provide member services. We do not sell personal information to anyone and only share it with third parties who are facilitating the delivery of Business Group services.

 

Use of the Business Group’s website

The Business Group’s website collects certain information automatically and stores it in log files. The information may include internet protocol (IP) addresses, the region or general location where your computer or device is accessing the internet, browser type, operating system, and other usage information about the use of the Business Group’s website, including a history of the pages you view. We use this information to help us design our site to better suit our members’ needs. We may also use your IP address to help diagnose problems with our server and to administer our website, analyze trends, track visitor movements, and gather broad demographic information that assists us in identifying visitor preferences.

The Business Group has a legitimate interest in understanding how members, potential members, and partners use its website. This assists the Business Group with providing more relevant products and services, with communicating value to our members, and with providing appropriate staffing to meet member needs.

 

Information sharing

Information about your Business Group purchases are maintained in association with your membership or profile. The personal information the Business Group collects from you is stored in one or more databases hosted by third parties located in the United States. These third parties do not use or have access to your personal information for any purpose other than cloud storage and retrieval. On occasion, the Business Group engages third parties to mail information to you such as notices of Business Group events.

 

Transferring personal data from the EU to the US

The Business Group has its headquarters in the United States. Information we collect from you will be processed in the United States. The United States has not sought nor received a finding of “adequacy” from the European Union under Article 45 of the GDPR. The Business Group collects and transfers to the U.S. personal data only: with your consent; to perform a contract with you; or to fulfill a compelling legitimate interest of the Business Group in a manner that does not outweigh your rights and freedoms. The Business Group endeavors to apply suitable safeguards to protect the privacy and security of your personal data and to use it only consistent with your relationship with the Business Group and the practices described in this Privacy Policy.

 

Data subject rights

This Privacy Policy is intended to provide you with information about what personal data the Business Group collects about you and how it is used. If you have any questions, please contact us at privacy@businessgrouphealth.org.

If you wish to confirm that the Business Group is processing your personal data, or to have access to the personal data the Business Group may have about you, please contact us at privacy@businessgrouphealth.org.

 

Security of your information

To help protect the privacy of data and personally identifiable information you transmit through use of our website, we maintain physical, technical, and administrative safeguards. We update and test our security technology on an ongoing basis. We restrict access to your personal data to those employees who need to know that information to provide benefits or services to you. We commit to taking appropriate disciplinary measures to enforce our employees' privacy responsibilities.

 

Data storage and retention

Your personal data is stored by the Business Group on its servers and on the servers of the cloud-based database management services the Business Group engages, located in the United States. The Business Group retains data for the duration of the member’s relationship with the Business Group and for a period of time thereafter to allow members to recover accounts if they decide to renew, to analyze the data for Business Group’s own operations, and for historical and archiving purposes associated with Business Group’s history as a membership organization. For more information on where and how long your personal data is stored, and for more information on your rights of erasure and portability, please contact the Business Group’s data protection officer at privacy@businessgrouphealth.org.

 

Changes and updates to the Privacy Policy

As our organization, membership, and benefits change from time to time, this Privacy Policy and Terms of Use is expected to change as well. We reserve the right to amend the Privacy Policy and Terms of Use at any time, for any reason, without notice to you, other than the posting of the amended Privacy Policy and Terms of Use at this Site. We may e-mail periodic reminders of our notices and terms and conditions and will e-mail Business Group members of material changes thereto, but you should check our website frequently to see the current Privacy Policy and Terms of Use that is in effect and any changes that may have been made to it.

 

Questions, concerns, or complaints

Please contact the Business Group’s data protection officer: privacy@businessgrouphealth.org.