top of page

Privacy Statement

Vasculator is committed to protecting the privacy rights of individuals with whom we interact, including those who utilize our websites. It sets forth the information we collect about you as you interact with us, how we use that information, and the rights you have regarding the way we use such information. Our Privacy Policy also describes the measures we take to protect your personal data, and how to contact us should you wish to update or remove your data from our records. This Privacy Policy has been revised effective October 5, 2022, to coincide with the effective date of the Vasculator website. We may further revise it from time to time as the functionalities and abilities of the Vasculator Suite expand and develop, so please remember to revisit this page regularly for any policy updates. In case of any substantial change to this Privacy Policy, we will post a notice on the home page of, and the change will be effective beginning only on the date stated in the notice.


We only use your personal data, such as your name and contact details, qualifications, funding or conflict-of-interest disclosures, areas of practice/interest, references and any payment details, and, when required, your age, in our legitimate risk prediction analysis. We do not sell your data to any third parties. 

Please read this full Privacy Policy carefully. By accessing any of our websites, you consent to the collection and use of any information you provide in accordance with this policy.


We are a not-for-profit organization dedicated to providing a risk prediction model for vascular patients. Our vision is “to improve the availability of risk for patients undergoing vascular surgery;” our mission is to “provide accessible tools based on data and research to help patients and doctors determine the best route of action to address vascular pathologies.” However, it is important to understand that Vasculator is only a risk prediction and should not be used solely to make medical decisions; other clinical/nonclinical data should be considered in addition to Vasculator to make final diagnoses and treatment. In pursuing our vision and mission, it is necessary for us to collect relevant personal data from a wide variety of individuals, including physicians, patients, and those related to the cycle of care for vascular diseases.

We operate websites at, among other URLs,,, and


In order to carry out the important work of Vasculator described above, we collect your personal data. The reasons we do so are for research and to help ensure that our interactions with you are timely, relevant, and tailored for you.


We collect personal data during your visits to,, and and other Vasculator Suite websites. If we ask you for personal data while you are visiting our websites, the data we process is provided directly by you on a voluntary basis. To the extent you visit our websites anonymously, we collect certain types of data automatically. We detect and use the IP addresses of visitors to our websites in order to assist in diagnosis and solving problems with the server, to assist with the administration of the websites, and to make available enhanced features of such websites.

Like many organizations, we use cookies and log files to enhance your visit to our websites and to better understand how our websites are used. Cookies are small text files that are placed on your device to help us give you a better experience of using our websites. Cookies do lots of different things, such as:

  • Helping us understand how visitors use our websites so that we can enhance their experience


Browsers typically permit you to configure settings so that your device accepts all cookies, to notify you when a cookie is issued, or to not accept cookies at any time. If you disable cookies, this will prevent us from being able to provide some personalized services we deliver through our websites. You should read the information that came with your browser software to learn how to configure its treatment of cookies.

From time to time, we use Facebook, Twitter, LinkedIn, YouTube, and other social media platforms to promote educational offerings to visitors to our site. To opt out of receiving their cookies, please visit those social media platforms and configure the settings accordingly.

Further information about cookies is available from these third party sites: and (these provide information tailored to users in European Union countries).


We also collect information that you voluntarily provide to us through the use of webforms on our websites. Some webforms ask for identifying information or are used in connection with websites that require you to log in and thereby identify you, and in those cases we collect personal data about you. We use that personal data for the specific purposes identified as the webforms are presented. For example, we use webforms for submission of certain types of applications, and use the personal data provided thereby for purposes of administering and tracking the applications received.


You may choose not to provide us with any or all of the personal data that we request. However, if you choose not to provide some data, it may affect the way you navigate our websites or receive the services that we provide. Depending on the information you choose to withhold, we may not be able to, for example, complete an accurate prediction for vascular surgery risk based on the inputs you provide. 


We do not sell, rent, trade or otherwise disclose your personal data except as described below. When you provide us with personal data that we request from you or that you provide on your own initiative, you consent to us using that personal data for our lawful reasons as set out below.


As described above, we collect and use personal data that you provide to us so that we may perform our obligations under contracts with you, provide you the information, product or service that you have requested, or interact with you at your request. We also collect data from website visitors automatically as described above, and use it for the internal reasons and in the manner described above. Furthermore, we also collect, use and share non-personal, aggregated data such as statistical or demographic data for business purposes. Such aggregated data may be derived from your personal data but is not legally considered personal data as it does not directly or indirectly reveal your identity. For example, we may aggregate your usage data to calculate the percentage of users accessing a specific website feature. However, if we combine or connect aggregated data with your personal data so that it can directly or indirectly identify you, we treat the combined data as personal data that will be used in accordance with this Privacy Policy.


We may disclose data about you: (1) if we are required to do so by law or pursuant to court order, or (2) in response to a legitimate request from law enforcement authorities.

If it applies to you, please be aware that the GDPR states that we only are allowed to process your personal information if we have a proper reason to do so. This includes sharing it with third parties. We must be clear about why we process your data and what our lawful basis is for processing such data. The six lawful bases for processing are set out in the GDPR, and at least one of them must apply whenever we process the personal data of individuals to whom the GDPR applies. Further information is available at this third-party website: These lawful bases are:

  1. Contract: The processing is necessary for a contract we have with you, or because you have asked us to take specific steps before entering into a contract.

  2. Legal obligation: The processing is necessary for us to comply with the law (not including contractual obligations).

  3. Vital interests: The processing is necessary to protect someone’s life.

  4. Public task: The processing is necessary for us to perform a task in the public interest or for our official functions, and the task or function has a clear basis in law.

  5. Legitimate interests: The processing is necessary for our legitimate interests or the legitimate interests of a third party unless there is a good reason to protect your personal data which overrides those legitimate interests.

  6. Consent: You have given clear consent for us to process your personal data for a specific purpose.


Contractually, in order to provide our services to you, we need to process your data to accomplish various objectives, including to:

  • Deliver our services


We may disclose personal information if required to do so by law or if we believe that such action is necessary to protect and defend the rights, property, or personal safety of our websites or our visitors and for other lawful purposes.


We may provide links on our websites to non-Vasculator websites for your convenience and information. These websites operate independently and are neither affiliated with us nor under our control. These websites may have their own privacy policies in place, which we strongly suggest you review, if you choose to visit such websites. We cannot be responsible for the privacy policies and practices of other websites even if you access them using links from our websites.


We maintain appropriate administrative, technical and physical safeguards to protect your personal data against accidental or unlawful destruction, accidental loss, unauthorized alteration, unauthorized disclosure or access, misuse, and all other unlawful forms of processing of the personal data in our possession.

However, the transmission of information over the internet is never completely secure and, as a result, while we strive to protect your personal information, we cannot guarantee the security of any information you transmit to us, and you do so at your own risk. Once we receive your data, we make reasonable efforts to ensure its security, both on our systems and while in transit between our systems and third parties who work on our behalf.

If you are a resident of the European Economic Area (EEA), you should be aware that the personal data we collect from you is collected and stored in the United States, which may not have the same level of data protection as your home country.


We will hold your personal information on our systems for as short a time as is necessary or appropriate for the relevant activity and meet any legal or regulatory requirement. This is so that we can provide the services, products, or information that you have requested, administer your relationship with us, ensure that we don’t communicate with you if you have asked us not to, and comply with the law.


If you are a person to whom the GDPR applies, you have the right to:

  • Request access to your personal data

  • Request correction of your personal data

  • Request erasure of your personal data

  • Object to processing of your personal data

  • Request restriction of processing your personal data

  • Request that we transfer your personal data to someone you designate

  • Withdraw any consent you have granted to us regarding your personal data


You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive, or excessive. Alternatively, we may refuse to comply with your request under such circumstances.

We try to respond to all legitimate requests within 1 month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.

If you would like to know more about the personal data we process about you; access a copy of the personal data we have collected from you; correct, update, erase, or transfer the data we hold about you; revoke your consent for us to use your data; or ask any other questions you may have about our privacy practices, we offer one option:

  1. Privacy related queries may be emailed to Dr. Maham Rahimi,


Lastly, if you are a citizen of the European Union, you also have the right to lodge a complaint about the way we manage your data with the applicable European Union Data Protection Authority (“DPA”). We would, however, appreciate the chance to hear your concerns and resolve any problems before you approach the DPA, so please contact us in the first instance as set out above.


Your use of any of our websites or conduct of other interactions with us as described above constitute your unconditional acceptance of the practices described in this Privacy Policy and the other terms and conditions of the terms of use. If you do not agree with and accept all of the practices described in this Privacy Policy, do not use our websites or conduct any of the other interactions with us that are described above, and refrain from voluntarily submitting any personal data to us.

bottom of page