Data Privacy Policy

Effective Date: January 5 2025.

1. Purpose of the Policy

This Data Policy outlines how EPSIMED LLC, a medical devices distribution company operating in the healthcare industry, collects, uses, stores, and protects data in compliance with ISO 13485 standards.

2. Data Collection

  • Types of Data Collected: We collect customer data, including phone numbers and email addresses.
  • Methods of Collection: Data is collected through websites and lead forms.

3. Data Usage

  • Purpose of Use:
    • Service delivery
    • Marketing communications
    • Customer service and support
  • Data Sharing:
    • We do not share customer data with third parties.

4. Data Storage and Retention

  • Storage Locations:
    • Data is stored on-premises servers and in secure cloud services.
  • Retention Period:
    • Data is retained indefinitely or until it is no longer needed for its intended purpose.

5. Data Security

  • Security Measures:
    • Regular internal audits are conducted to safeguard data.
    • Access to data is limited to authorized personnel only.
  • Incident Response:
    • EPSIMED LLC does not currently have a formal plan for responding to data breaches but will take all necessary steps to mitigate risks and notify affected individuals promptly if a breach occurs.

6. User Rights

  • Access, Correction, and Deletion:
    • Customers do not currently have the right to access, correct, or delete their data.
  • Contact for Data Inquiries:
    • Customers can reach us regarding their data via phone, email, or by visiting our offices.

7. Compliance

  • Regulatory Compliance:
    • This policy is designed to align with the requirements of ISO 13485 for data security and quality management in the healthcare industry.

8. Updates to the Policy

EPSIMED LLC reserves the right to update this policy as needed. Any significant changes will be communicated to customers through appropriate channels.

For inquiries regarding this Data Policy, please contact us: