Introduction

Welcome to Dr. Hero, where your health and privacy are our top priorities. This Privacy Policy outlines how we handle your information and emphasizes transparency in our data practices. By using our services, you consent to the practices detailed in this policy.

This website is powered by a white-label service provided by DigitalRX.io. To ensure a comprehensive understanding of your data management, please refer to the sections below for information on how Dr. Hero and DigitalRX.io handle your data.

Your contact person

If you have any questions about this data protection declaration or how data protection is handled at Dr. Hero, our team will be happy to help you. Please contact us if you would like information about your data or if you would like your data to be deleted. You can reach our data protection team at drhero@yopmail.com. Your request will be forwarded immediately and processed by our data protection team.

Dr. Hero

526910273.

drhero@yopmail.com

What is personal data?

According to Art. 4 lit. 1 of the General Data Protection Regulation (GDPR), personal data is “Any information relating to an identified or identifiable natural person.” These are, for example, names, address data, telephone numbers, mobile numbers, bank details, or insurance numbers.

A subgroup of personal data is a special category of personal data according to Art. 9 of the GDPR. These include for eg. information about health, sex life, and sexual orientation. Health data that can be generated by an online clinic such as DigitalRx.IO also belongs to the special category of personal data.

2. What Personal Data Do We Collect?

At Dr. Hero, we collect various types of information to provide you with quality healthcare services. This includes:

• Personal Information: Upon registration, we gather basic personal details such as your name, address, contact number, email, date of birth, and insurance information. This is crucial for creating and maintaining your healthcare profile.
• Health Information: To offer personalized medical care, we collect relevant health details including medical history, symptoms, prescribed medications, and treatment records. This information aids in accurate diagnosis and treatment planning.
• Usage Information: We collect data about your interaction with our website, such as IP addresses, device information, browser types, and user patterns. This analysis helps us enhance our online services and improve your overall user experience.
• Cookies: Our website uses cookies to enhance your browsing experience. These small text files help us remember your preferences, customize content, and analyze site traffic. You can manage cookie preferences through your browser settings.

DigitalRX.io also collects certain information to ensure the smooth operation of this white-label website. Please refer to DigitalRX.io's privacy policy for more details on their data collection practices.

What is the personal data used for?

We process personal data in various areas to deliver efficient, personalized, and secure telehealth services, benefiting both patients and our healthcare providers. We work with specific service providers and use various analysis tools from different companies to improve our services.

You have the right to object to data processing and prevent your data from being collected. In some cases, we may not have control over data processed by third-party providers. In such cases, you may need to take action yourself or contact the respective provider. We've gathered all the information and addresses you may need in the respective chapter section.

Your information is used in the following ways:

• User Registration: When users sign up or register on our website, they provide personal information such as their name, email address, contact number, and date of birth. This data is used to create user accounts and to facilitate effective communication between healthcare providers and their patients. Legal basis: GDPR Article 6(1)(a) - Lawfulness of processing (consent)
• Telehealth Consultations: During telehealth consultations, we collect personal data from our patients, including their health history, symptoms, medical records, and other health-related information. This data is necessary for diagnosing conditions, providing medical advice, and offering appropriate treatment options. Legal Basis: GDPR Article 9(2)(h) - Processing of special categories of personal data for health care purposes
• Appointment Scheduling: Personal data, such as the patient's name, contact information, and preferred appointment time, is used to schedule telehealth appointments efficiently and ensure a seamless experience for patients. Legal basis: GDPR Article 6(1)(b) - Lawfulness of processing (contract performance)
• Payment Processing: For billing and payment purposes, personal data like credit card details or other payment information may be collected to process transactions securely and facilitate payments for healthcare services. Legal Basis: GDPR Article 6(1)(b) - Lawfulness of processing (contract performance)
• Health Records: We maintain health records for our patients. These health records contain comprehensive personal and health-related information, enabling healthcare providers to access patient history, monitor progress, and ensure continuity of care. Legal Basis: GDPR Article 9(2)(h) - Processing of special categories of personal data for health care purposes
• Communication and Notifications: Personal data, such as email addresses and phone numbers, may be used to send appointment reminders, follow-up messages, and other important notifications to patients and healthcare providers. Effective communication enhances the telehealth experience and improves patient engagement. Legal Basis: GDPR Article 6(1)(b) - Lawfulness of processing (contract performance)
• User Support: Personal data collected during user interactions with the platform can assist in providing better customer support to healthcare providers and their patients. Prompt resolution of any issues or inquiries ensures a positive telehealth experience. Legal Basis: GDPR Article 6(1)(f) - Lawfulness of processing (legitimate interests)
• Analytics and Improvements: Aggregated and anonymized personal data can be utilized by DigitalRX.io for internal analysis and data-driven improvements to enhance the overall user experience for both healthcare providers like us and our patients. Insights gained from analytics help optimize the telehealth platform's performance and usability. Legal basis: GDPR Article 6(1)(f) - Lawfulness of processing (legitimate interests)
• Compliance and Legal Obligations: Personal data may be used to fulfill legal requirements, such as compliance with healthcare regulations, privacy laws, and reporting obligations. We ensure that our telehealth platform adheres to relevant data protection laws, such as HIPAA (Health Insurance Portability and Accountability Act) in the United States or GDPR (General Data Protection Regulation) in the European Union, to safeguard patients' sensitive information and maintain trust with users. Legal Basis: GDPR Article 6(1)(c) - Lawfulness of processing (legal obligation)
• Marketing and Communications: With user consent, we may use personal data to provide relevant information, such as newsletters, product updates, or new service offerings to our patients. Consent-based marketing efforts ensure that users receive content of interest and relevance to them. Legal Basis: GDPR Article 6(1)(a) - Lawfulness of processing (consent)

DigitalRX.io may use the information collected on our white-label website to maintain and improve its functionality. Please refer to DigitalRX's privacy policy for more details on their use of collected data.

Who will my data be passed on to?

While we prioritize the confidentiality of your data, there are instances where we may share it:

• Healthcare Providers: Relevant information is shared with healthcare professionals directly involved in your care to ensure comprehensive and coordinated medical treatment.
• Service Providers: Third-party service providers may be engaged to assist in delivering services, such as appointment scheduling or data analysis. These providers are contractually bound to maintain the confidentiality and security of your information.
• Legal Obligations: We may disclose your information to comply with legal obligations, such as responding to court orders or government requests, or to protect our rights and safety.

DigitalRX.io may share certain data collected on our white-label website for maintenance, improvement, and troubleshooting purposes. Please refer to DigitalRX.io's privacy policy for details on information sharing.

How is my data protected?

At Dr. Hero, your safety and security are of utmost importance to us. That's why we have implemented a range of measures to ensure both legal compliance and the highest standards of data protection.

Technical and Organizational Measures 

Your safety online is our top concern. The technology behind our white-label website comes from DigitalRX.io, and they take extensive measures to secure the data collected on our website. DigitalRX.io employs comprehensive technical and organizational security measures (TOMs) to safeguard the data they manage from any accidental or intentional manipulation, loss, destruction, or unauthorized access. Their team members undergo regular training to stay vigilant about the latest IT security practices and ensure your data remains protected.

Cookies

We use cookies on our website to enhance your browsing experience. Cookies are small text files stored on your device by your browser. They enable smooth navigation, improve website effectiveness, and ensure security. Some cookies are temporary (session cookies), while others remain longer (persistent cookies) to remember your settings and preferences. These cookies also help us analyze website usage to provide better services. You have control over cookies through your browser settings. If you have any questions about cookies, feel free to contact us.

(Legal basis: GDPR Article 6(1)(f) - Legitimate interests)

Your Choices

You have control over your information:

• Access and Correct: You have the right to review and correct your personal information to ensure its accuracy. You can update your information through your patient portal or by contacting our clinic directly.
• Opt-Out: You have the option to opt out of receiving marketing communications from us. You can update your communication preferences through your account settings or by contacting our clinic.

Third-Party Links

Our website may contain links to third-party sites for additional resources or information. While we strive to link only to reputable websites, we are not responsible for their privacy practices. We recommend reviewing the privacy policies of these third-party sites for a comprehensive understanding.

Changes to the Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. We encourage you to review this policy regularly to stay informed about how we are protecting your privacy rights.

DigitalRX.io may also update its privacy policy independently to reflect changes in data handling practices on the white-label website. Please refer to their privacy policy for information on updates.

What data protection rights do I have?

You have the following statutory data protection rights:

Right to information (Article 15 GDPR)

You have the right to know what data is collected, how it is used, how long it is stored, and whether it is shared with third parties.

Right to erasure (Article 17 GDPR)

You can request that we delete your data in certain circumstances, e.g. if the data is no longer required, the data has been processed unlawfully or the data no longer correspond to the lawful reason for which they were collected. This also applies if you revoke your consent.

Right to rectification (Article 16 GDPR)

If you find that the information we hold about you is incorrect or incomplete, you can request an update of the data. As with the right to access, we will process the request within one month.

Right to restriction of processing (Article 18 GDPR)

You can request that we restrict the use of your personal information. This is possible if you contest the accuracy of your personal data or if we are currently unable to delete the data to establish, exercise, or defend a legal claim.

Right to data portability (Article 22 GDPR)

You have the right to receive and reuse your personal data for your own purposes or to request transmission to another service provider. This right only applies to personal data that you, as the data controller, have provided to us under a contract or consent.

Right of appeal to a data protection supervisory authority (Article 77 GDPR)

You have the right to complain to a data protection supervisory authority about alleged data protection violations. The competent authority of the Dr. Hero can be found in the "your contact person" section.

Right to revoke consent (Article 7 paragraph 3 GDPR)

You have the right to object to certain data processing measures (Article 21 GDPR): You can object to the processing of your personal data that is collected on the basis of legitimate interests or the performance of a task in the interest of exercising public authority.

If you want to assert your rights, you can get in touch with our contact person.

Contact Us

If you have any questions or concerns about this Privacy Policy, please do not hesitate to contact us. You can reach our privacy officer at CONTACT NO.. For questions related to the white-label website and data handled by DigitalRX.io, please refer to the contact information provided in DigitalRX.io's privacy policy.

Thank you for entrusting Dr. Hero with your healthcare needs and for using the services provided by DigitalRX.io. Your privacy is a priority for both entities, and we are committed to ensuring the security and confidentiality of your information.