This Privacy Notice for Heidi ("
we," "
us," or "
our"), describes how and why we might access, collect, store, use, and/or share ("
process") your personal information when you use our services ("
Services").
Reading this Privacy Notice will help you understand your privacy rights and choices. We are responsible for making decisions about how your personal information is processed. If you do not agree with our policies and practices, please do not use our Services.
1. WHAT INFORMATION DO WE COLLECT?
Personal information you disclose to us: When you visit, use, or navigate our Services, we may process personal information depending on how you interact with us and the Services, the choices you make, and the products and features you use. Some of the information may be considered "special" or "sensitive" in certain jurisdictions, for example your health data. We process sensitive personal information required to use our features. We process your information to provide, improve, and administer our Services, communicate with you, for security and fraud prevention, and to comply with law. We may also process your information for other purposes with your consent. We process your information only when we have a valid legal reason to do so.
2. HOW DO WE PROCESS YOUR INFORMATION?
We process your information to provide, improve, and administer our Services, communicate with you, for security and fraud prevention, and to comply with law. We may also process your information for other purposes with your consent.
WhatsApp Cloud API Security: https://developers.facebook.com/docs/whatsapp/cloud-api/overview/data-privacy-and-security/
We use WhatsApp Cloud API to provide our service via WhatsApp. The WhatsApp Cloud API offers robust security features that make it a viable communication solution for healthcare businesses. It provides end-to-end encryption for all messages, ensuring patient information remains protected during transmission. WhatsApp acts as the transport service. It provides the message forwarding software: both client and server. It has no visibility into the message content being sent.
Amazon Web Services: We use Amazon Web Services Cloud Provider with servers in Frankfurt region to run our services. We use Amazon Bedrock to implement AI features with Zero Data Retention. No customer data is used to train the AI.
3. WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?
We may share your personal data with:
- our suppliers and service providers;
- our professional advisors such as our lawyers, banks, auditors or insurers;
- law enforcement, government and regulatory agencies or other third parties as required by, and in accordance with, applicable law or regulation.
- We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.
4. DO WE USE COOKIES AND OTHER TRACKING TECHNOLOGIES?
On our website, we may use cookies and other tracking technologies to collect and store your information. We may use cookies and similar tracking technologies (like web beacons and pixels) to gather information when you interact with our Services. Some online tracking technologies help us maintain the security of our Services, prevent crashes, fix bugs, save your preferences, and assist with basic site functions.
5. IS YOUR INFORMATION TRANSFERRED INTERNATIONALLY?
We may transfer, store, and process your information in countries other than your own. Our servers are located in Germany. If you are accessing our Services from outside, please be aware that your information may be transferred to, stored by, and processed by us in our facilities and in the facilities of our service providers
6. HOW LONG DO WE KEEP YOUR INFORMATION?
We keep your information for as long as necessary to fulfill the purposes outlined in this Privacy Notice unless otherwise required by law. We will only keep your personal information for as long as it is necessary for the purposes set out in this Privacy Notice, unless a longer retention period is required or permitted by law (such as tax, accounting, or other legal requirements). When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize such information.
7. WHAT ARE YOUR PRIVACY RIGHTS?
You may review, change, or terminate your account at any time.
Withdrawing your consent: You have the right to withdraw your consent at any time. You can withdraw your consent at any time by contacting us at info@heidimed.com. However, please note that this will not affect the lawfulness of the processing before its withdrawal nor, when applicable law allows, will it affect the processing of your personal information conducted in reliance on lawful processing grounds other than consent.
Account Information: If you would at any time like to review or change the information in your account or terminate your account, you can: Upon your request to terminate your account, we will deactivate or delete your account and information from our active databases. However, we may retain some information in our files to prevent fraud, troubleshoot problems, assist with any investigations, enforce our legal terms and/or comply with applicable legal requirements.
8. DO WE MAKE UPDATES TO THIS NOTICE?
Yes, we will update this notice as necessary to stay compliant with relevant laws. We may update this Privacy Notice from time to time. The updated version will be indicated by an updated "Last Updated" date at the top of this PrivacyNotice. If we make material changes to this Privacy Notice, we may notify you either by prominently posting a notice of such changes or by directly sending you a notification. We encourage you to review this Privacy Notice frequently to be informed of how we are protecting your information.
.png){kind=small}
.png){kind=small}
