This Policy describes how theDoc, and any company which it owns or controls, manages personal information for which it is responsible, specifically personal information which is entered when using the website or platform.

Kind of Personal Information Collected by theDoc

theDoc’s website and services is a cloud-based network of digital health and wellness services. Personal information which may be accessible via theDoc embraces:

• contact details and other registration information provided by medical practitioners and other healthcare providers;
• medical histories and contact details of patients; and
• contact details for guardians and carers of some patients.
• Medical and health information about you prepared by the Healthcare Professional(s) who provide the Healthcare Services through the Site such as medical records, treatment and examination notes, and other health related information;
• Billing information that you provide us (e.g. credit card or online payment system account information);
• Information about the computer or mobile device you are using;
• Geographical location or address;
• Other information which you may input into the Site or related services

Personal information provided by our users is stored in a secure database and managed by theDoc. This information may be sourced in a number of ways. The information may be provided by:

• a medical practitioner or other healthcare provider registered in theDoc, or someone acting on their behalf; or
• directly by the patient, or a guardian acting on the patient’s behalf.

theDoc cannot verify and does not take responsibility for identifying persons entering information into theDoc website, App or platform, nor can it verify or take responsibility for the accuracy of such information.

Personal information stored in the by theDoc is handled in accordance with the Health Insurance Portability and Accountability Act (“HIPAA“), as well as any other local privacy, data protection or medical records legislation which may be applicable in particular circumstances.

We do not knowingly allow individuals under the age of 18 to create accounts that allow access to our Site.

Personal information is collected from medical practitioners and other healthcare providers when they register to use the service.

A patient is required to provide informed consent for the collection and sharing of their health information and for the creation and electronic storage of their record in theDoc.

Personal information may be accessed by a patient’s medical practitioner, at the time of consult. Personal Information can also be accessed by the patient. All information in the theDoc’s database is protected by logical, physical and operational security measures of high commercial standard and the data storage facility is professionally managed. theDoc has implemented appropriate technology and security policies, rules and other measures to protect personal information in the database from unauthorised access, improper use, alteration, unlawful or accidental destruction and accidental loss.

Purpose of Collection

Information held in theDocs database is used only for the following purposes:

• Provide you with the Healthcare Services;
• Arrange for the delivery of Products;;
• Improve the quality of Healthcare Services through the performance of quality reviews and similar activities;
• To analyse de-identified data for the purpose of conducting research and assisting in the management of health services generally, whether by theDoc or a third party.
• Notify you when platform updates are available;
• To market and promote the platform and its services to you;
• Fulfill any other purpose for which you provide us Personal Information; and/or
• For any other purpose for which you give us authorisation

A patient’s personal information will only be disclosed to the theDoc’s registered medical practitioner, other healthcare provider or to the individual patient, unless disclosure to someone else is mandated and in compliance with Privacy Principles including, for example, if:

• the disclosure is for a secondary purpose which is directly related to the primary purpose of collection;
• the disclosure is required or authorised under the local law or court order; or
• the disclosure is necessary to prevent the death or serious injury of any individual.

Access and Correction

Individuals may access their personal health information in the theDocs database at any time, subject to the exercise by theDoc of its statutory right to refuse access in certain circumstances.

An individual may, at any time, manually correct, update or delete any personal information contained in the Inca database. However, there may be some personal health information about a patient that can only be changed or updated by the healthcare professional who created it..

If theDoc discovers any misuse or unauthorised handling of personal information held in theDoc’s database, any individuals who are potentially affected will be notified and theDoc will take immediate steps to contain the problem and prevent further occurrences.

Cookies

We may use cookies on our website from time to time. Cookies are text files placed in your computer’s browser to store your preferences. Cookies, by themselves, do not tell us your email address or other personally identifiable information. However, they do allow third parties, such as Google and Facebook, to cause our advertisements to appear on your social media and online media feeds as part of our retargeting campaigns. If and when you choose to provide our website with personal information, this information may be linked to the data stored in the cookie. We may use web beacons on our website from time to time. Web beacons (also known as Clear GIFs) are small pieces of code placed on a web page to monitor the visitor’s behaviour and collect data about the visitor’s viewing of a web page. For example, web beacons can be used to count the users who visit a web page or to deliver a cookie to the browser of a visitor viewing that page.

Offshore Disclosure of Personal Information

De-identified data may be shared with international collaborators for quality improvement and research purposes for approved studies.

Disclosure of personal information to third parties

We may disclose personal information to:

• privacy-terms.policy.li221
• our employees, contractors and/or related entities;
• credit reporting agencies, courts, tribunals and regulatory authorities, in the event you fail to pay for goods or services we have provided to you; courts, tribunals, regulatory authorities and law enforcement officers, as required by law, in connection with any actual or prospective legal proceedings, or in order to establish, exercise or defend our legal rights;
• third parties, including agents or sub-contractors, who assist us in providing information, products, services or direct marketing to you. This may include parties located, or that store data, internationally.
• third parties to collect and process data, such as [Google Analytics, or other relevant businesses].

By providing us with personal information, you consent to the disclosure of your personal information to third parties who may reside internationally and acknowledge that we are not required to ensure that those third parties comply with local privacy laws.

Links to other websites

Our website may contain links to other websites. We do not have any control over those websites and we are not responsible for the protection and privacy of any personal information which you provide whilst visiting those websites. Those websites are not governed by this Privacy Policy.

Amendments

We may, at any time and at our discretion, vary this Privacy Policy by publishing the amended Privacy Policy on our website we recommend you check our website regularly to ensure you are aware of our current Privacy Policy.

For any questions or notices, please contact us at:

theDoc

info@theDochealth.com

Last update March 2020