GDPR REGULATION HEYDOCTOR

GDPR Compliance Statement

At HeyDoctor, safeguarding your personal data and privacy is paramount. We are fully committed to complying with the General Data Protection Regulation (GDPR) to ensure the protection and confidentiality of your information. By using our platform and services, you implicitly consent to the collection, processing, and storage of your personal data as outlined in this policy.

​

1. Collection and Use of Personal Data
- We collect personal data when you book appointments, use our services, and register with HeyDoctor.
- Your consent is obtained by booking appointments, using our services and doctors, and registering with HeyDoctor. You have the right to withdraw consent at any time.
- Please note that any medical information shared during consultations is the responsibility of the respective doctor to protect and maintain confidentiality. HeyDoctor does not assume responsibility for the protection of medical information shared during consultations.

​

2. Data Protection Officer
- The Head of Software Development at HeyDoctor serves as the Data Protection Officer (DPO).
- Additionally, the Board of Directors shares the responsibility for ensuring GDPR compliance.

​

3. Security Measures
- We employ industry-standard security measures to protect your personal data against unauthorized access, disclosure, alteration, or destruction.
- Your data is securely stored on our servers and is accessible only to authorized personnel.

​

4. Data Retention
- We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy or as required by law.
- You have the right to request access to, rectification, or erasure of your personal data held by HeyDoctor.

​

5. Transparency and Consent
- We provide clear and transparent information about our data processing activities, including purposes and your rights as a data subject.

​

6. Data Minimization and Accuracy
- We collect only the data necessary for the intended purposes and ensure its accuracy and relevance.
- The Head of Software Development and the Board of Directors oversee data minimization efforts and implement measures to maintain data accuracy.

 

7. Data Security and Integrity
- We implement appropriate technical and organizational measures to ensure the security, confidentiality, and integrity of personal data.
- Regular assessments and audits are conducted to identify and address potential security risks.

​

8. Data Subject Rights
- You have the right to access, rectify, erase, or restrict the processing of your personal data. The Head of Software Development and the Board of Directors address data subject requests and ensure compliance with data protection rights.

​

9. International Data Transfers
- Personal data may be transferred outside the European Economic Area (EEA) to countries with adequate data protection measures or under appropriate safeguards.
- The Head of Software Development and the Board of Directors oversee international data transfer processes to ensure GDPR compliance.

​

10. Data Breach Notification
- In the event of a data breach involving personal data, HeyDoctor promptly notifies the relevant supervisory authority and affected data subjects as required by GDPR regulations.

​

Contact Us
For any questions or concerns regarding our GDPR compliance or the protection of your personal data, please contact us at support@heyydoctor.com.

​