Client Privacy Policy

    This Business Associate Privacy Policy (the "Policy") describes how M3 Global Research uses Personal Data relating to the personnel or representatives ("Representatives") of our clients, suppliers and other entities with whom we have entered, or may enter, business transactions ("Business Associates"). This Policy describes how we may obtain Representatives' personal data, the types of personal data we may obtain, how we use, share and protect the personal data, the rights of Representatives with respect to their personal data, and how to contact us about our privacy practices.
    This Policy does not apply to personal data other than the personal data relating to Representatives. For the Privacy Policy for all other personal data, please see our market research Privacy Policy.

    This Policy was last revised on January 18, 2019.

    About M3 Global Research:
    M3 Global Research operates an ISO 26362 certified market research panel with the highest quality data collection and project management capabilities that cover the spectrum of quantitative and qualitative research techniques utilized today. M3 Global Research is the trading name for the market research activities provided by M3 USA Corporation and its affiliates, including M3 (EU) Ltd. and QQFS.

    About the M3 Group:
    The M3 Group, named to represent Medicine, Media, and Metamorphosis, was founded with the goal of changing the world of medicine through full use of the power of the Internet. The M3 Group operates in the US, Asia, and Europe with over 2 million physician members globally via its physician websites such as:,,,,,,,

    M3 Inc. is a publicly traded company on the Tokyo Stock Exchange (jp:2413) with subsidiaries in major markets including USA, UK, Sweden, Japan, S. Korea, and China. M3 Group provides services to healthcare and the life science industry. In addition to market research, these services include medical education, ethical drug promotion, clinical development, job recruitment, and clinic appointment services. M3 has offices in Tokyo, Fort Washington, PA, Oxford, London, Gothenburg, and Seoul.

    The Types of Personal Data We May Obtain
    M3 Global Research obtains personal data of Representatives that is disclosed or otherwise processed by M3 Global Research upon entering into and performing agreements, communicating with Business Associates in relation to agreements and making and receiving payments under agreements. We also may obtain Representatives' personal data from public sources in anticipation of a prospective business relationships.
    We use a variety of public sources to collate information about potential Business Associates we believe may be suitable for our services. We may also receive a referral from one of your colleagues and process that information in a similar way. Personal data is any information that allows an individual (in this case, the Representative) to be identified.
    We may process the following types of personal data about Representatives:
    • Names, postal or e-mail addresses, fax numbers, and phone numbers
    • Employment information (e.g., job titles) relating to Representatives
    • Communication preferences

    As a matter of practice, we will not collect any sensitive personal data relating to Representatives. To the extent that there is a need for us to process sensitive personal data, we will obtain the Representative's prior written consent.

    Purpose and legal basis for processing your personal data: These data are used to manage our contact with you, so that, for example, multiple attempts to contact you regarding the same services are eliminated or you are not re-contacted after informing us you are not interested in our services. We also use it as we generate lists of potential Business Associates to contact.

    We process personal data on the basis of our legitimate interest (i.e., we have a valid business reason) and we have carefully balanced your individual rights against this need. For more information on legitimate interests please click here.

    Sharing your personal data with others: Your personal data is not shared with third parties, except as set forth herein.

    Your rights: see "Your Rights" for more information.

    Data Retention: We retain personal data for 10 years after the relationship with the Business Associate ceases.

    How We Use the Personal Data We Obtain
    We may use the personal data we obtain about Representatives to:
    • Manage our existing and prospective Business Associates relationships
    • Communicate with Representatives for marketing, newsletters and company updates (for example, concerning services we offer or intend to offer in connection with our services)
    • Perform accounting, auditing, billing, and collection activities
    • Safeguard and defend M3 Global Research interests
    • Comply with applicable legal requirements, industry standards and our policies

    How We May Share Personal Data
    M3 Global Research does not sell, rent, or trade Representatives' personal data. We may share your personal data only with:
    • Entities within the M3 Group to whom it is reasonably necessary or desirable for M3 Global Research to disclose the personal data
    • Service providers that M3 Global Research has retained to perform services on its behalf, such as, but not limited to, IT service providers. Service providers are not permitted to use the personal data for their own purposes and are prohibited from onward transfer of the personal data without our written consent in each instance
    • Law enforcement and other government authorities if required by law or reasonably necessary to protect the rights, property, and safety of others or ourselves
    • Industry standards or guidelines that require disclosure about our Business Associate

    International Data Transfers

    Within M3 Global Research

    M3 Global Research endeavours to apply suitable safeguards to protect the privacy and security of your personal data and to use it only in ways that are consistent with your relationship with M3 Global Research and the practices described in this Privacy Policy.

    Privacy Shield Compliance

    M3 Global Research has its headquarters in the USA and personal data we collect from you may be processed in the USA. M3 Global Research complies with the EU-U.S. Privacy Shield and Swiss-EU Privacy Shield Frameworks (collectively, “Privacy Shield”) as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union to the United States.

    Privacy Shield became operational after the European Commission issued its formal decision that Privacy Shield provides adequate protection to allow personal data to be transferred to the United States. Privacy Shield obligates U.S. companies to protect Europeans’ personal data and requires the U.S. government to monitor Privacy Shield certified companies and to cooperate with European Data Protection Authorities.

    M3 Global Research has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. If there is any conflict between the terms in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification, please visit

    M3 Global Research is responsible for the processing of personal data it receives, under the Privacy Shield Framework, and subsequently transfers to a third party acting as an agent on its behalf. M3 Global Research complies with the Privacy Shield Principles for all onward transfers of personal data from the EU, including the onward transfer liability provisions.

    M3 Global Research submits to being subject to the investigatory and enforcement powers of the FTC, the Department of Transportation, or any other U.S. authorized statutory body with regards to our self-certification and implementation of the Principles, and acknowledges the right of the EU individual, under certain conditions, to invoke binding arbitration, at no cost to the individual, in filing a complaint disputing M3 Global Research’s adherence to these practices.

    To suppliers and contractors

    As laid out in this Privacy Policy, we may from time to time share limited information with carefully selected partners. This may involve transferring your personal data to countries outside the EU and is done within the legal restrictions of GDPR, and with M3 Global Research remaining in contractual control of the data including standard EU data protection clauses.

    How We Protect Personal Data
    We maintain appropriate technical and organizational security safeguards designed to protect Representatives' personal data against accidental, unlawful or unauthorized destruction, loss, alteration, access, disclosure, or use. We update and test our security technology on an ongoing basis. We limit access to your personal data to those employees who need access to provide benefits or services to you. In addition, we train our employees about the importance of confidentiality and maintaining the privacy and security of your personal data.

    How Long We Retain Personal Data
    We store Representatives' personal data for as long as necessary to fulfil the purposes for which we collect the data (see "How We Use the Personal Data We Obtain"), except if required otherwise by law. Your personal data may be kept for 10 years after the working relationship has ceased.

    Changes and updates to the Privacy Policy

    As our organization, membership and benefits change from time to time, this Privacy Policy and our Terms of Use is expected to change as well. We reserve the right to amend the Privacy Policy and Terms of Use at any time, for any reason, without notice to you, other than the posting of the amended Privacy Policy and Terms of Use at this Site. We may e-mail periodic reminders of our policy and terms and will e-mail M3 Global Research members of material changes to it, but you should check our Site frequently to see the current Privacy Policy and Terms of Use that are in effect and any changes that may have been made to them.

    Your Rights

    The European Union’s General Data Protection Regulation and some other countries’ privacy laws provide certain rights for EU data subjects. A good explanation of them (in English) is available on the website of the United Kingdom’s Information Commissioner’s Office.

    If you wish to confirm that M3 Global Research is processing your personal data, or to have access to the personal data M3 Global Research may have about you, please contact our Data Protection Officer.

    You may also request information about:

    You have a right of:

    • access, rectification, erasure, restriction, objection and data portability on your personal data. To exercise your rights, you can write the Data Protection Officer at You can also lodge a complaint with the Data protection authority (

    Reasonable access to your personal data will be provided at no cost to M3 Global Research members, and Activity participants and others upon request made to M3 Global Research via our Data Protection Officer. M3 Global Research will provide you the information within the legal time frame. If for some reason access is denied, M3 Global Research will provide an explanation as to why access has been denied.

    Independent Dispute Resolution Mechanism

    M3 Global Research commits to resolve complaints about our collection or use of your personal information. Individuals in the European Union with inquiries or complaints regarding our Privacy Shield policy should first contact M3, refer to our Contact Information section below.

    If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at .

    Under certain conditions, more fully described on the Privacy Shield website, you may invoke binding arbitration when other dispute resolution procedures have been exhausted.

    In addition, you may lodge a complaint to a supervisory authority if you consider that your personal data has been processed in breach of applicable legislation or this privacy policy; refer to the following link for a complete list of Data Protection Authorities (

    Contact Information
    If you have questions about this Privacy Policy, please email M3 Global Research’s Data Privacy Officer at

m3 is a proud member and supporter of