Privacy Policy

1 - General

 To enable the use of the HIDUP MEDICAL website, it is not necessary to be a registered user of it, this notice informs of the company's privacy policy with respect to the data provided to it.

To comply with the duty of information required by the regulations, the user who provides us with personal data must be previously informed that their data will be treated in accordance with Regulation 2016/679 of April 27 and the Organic Law on Protection of Personal Data and Guarantees of Digital Rights 3/2018 of December 5, which has the rights that it grants. 

In order to comply with this duty of information, each and every one of the points reported below must be attended to.

By using this website you agree that: Hidup Medical SL with Nif: B16734972 and registered office at Calle Torrijiano nº 23, CP 41009 in Seville, Spain, email: support@hidup.io (hereinafter HIDUP MEDICAL) as the owner of the web store, and treat the personal data that you provide us for the purposes of using the platform. Being the company indicated responsible for the data. In any case, the USER is informed that the following treatments are carried out based on the information provided, without prejudice to what is established in the different legal notices on the web where specific consent is required.

2. Who is responsible for your data?

HIDUP MEDICAL SL (HIDUP hereinafter) with registered office at Calle Torrijiano nº 23 - 41009 Sevilla Sevilla, CIF: B16734972 is responsible for the data. In any case, the USER is informed, in application of current regulations on the protection of personal data, informs that the personal data collected through the forms on the Website are included in the specific automated files of users of the company's services. 

If you are a patient at any of the centers we work with, the person responsible for the processing of your data is the entity that owns the center that provides you with health care..

3. What do we do with your data?

The treatments, and therefore, the use of personal data that are carried out are the following:

  • Customer service, for the management of doubts, queries and complaints from users.
  • Commercial communications and advertising, for the realization of commercial communications and advertising campaigns through different channels such as social networks or television, as well as the management of social networks itself.
  • Web analytics, to review the correct use of the web, its use and correction of possible errors.
  • Money Laundering, to comply with the legal obligation imposed by Law 10/2010 of April 28, on the prevention of Money Laundering and the financing of terrorism. 

Given the existence of specially protected data, express consent will be required when obtaining said data to be processed.

4. What personal data do we process about our users?

The data that is processed, depending on the treatments carried out with them, are the following:

Identification of Hidup Medical treatments

TreatmentAssociated dataSecurity measuresTransfer to third partiesLegitimationPurpose
Customers Identification:
Name and surname

Postal address

phones

E-mail

Professional data

Bank and economic data

Tax and financial information
 
Internet Protocol (IP) address
Encryption

Backups

Access control
YesContractualProfessional use of the Patient Portal, intended for medical and veterinary centers in general, aimed at improving communication and access to information between the professional and the patient, providing the contracted services.
Social mediaIP
RRSS user
Mail
Backups

Access control
YesContractual
Legitimate interest
Communications via:
Mail
Social networks
Commercial communicationsName surname 

Telephone

E-mail
Backups

Access control

Encryption
Do notLegitimate interest
Express consent
Sending relevant information about products or services
Human ResourcesName surname
 
DNI

 Age

E-mail

Health

CC No.

Marital status

Training
Encryption
Backups

Access control
YesContractual Staff management

High and low Social Security

tax authorities
Payroll
Web analyticsUser ID

cookies
Encryption

Backups

Access control
YesContractualAnalysis of the use of the application and web space
ProvidersName and surname

E-mail

CC number

DNI

Fiscal address
Backups

Access control

Encryption
YesContractualVendor management

Billing and cost
Potential customersIdentification:
Name and surname
 
Postal address

phones

E-mail

Internet Protocol (IP) address
Encryption
Backups

Access control
YesExpress consent

First contact: legitimate interest
Information, demonstration and request of possible
future services.
Web consultationIdentification:

Name and surname, 
RRSS
phones
E-mail
Internet Protocol (IP) address
Encryption

Backup copy

Access control

Do not
Express consent via formSolve the queries that occur through it

In any case, HIDUP MEDICAL provides the Patient Portal service to third parties for whom it is in charge of the treatment, and for what it will be determined with each of said merchants. Those responsible for your data are the medical centers that have their own privacy policy that you must access to claim your rights.

5. How long is the data stored?

In general, we store the information for the time necessary to be able to carry out the different treatments, and a maximum period of 2 years from the withdrawal of the user, or one year from the last confirmation of commercial interest, with the exception of the data that by legal obligation have to be kept for a longer time.

6. Who do we give the data to?

Any data that is collected by HIDUP MEDICAL, under no circumstances, will be transferred to third companies, except in the cases detailed below:

The current Networks where HIDUP MEDICAL is located and to which data is transferred are the following, for which it is determined by them:

  • The analytical treatment is assigned to Google analytics for the analysis of the use of the website and the app / website of the different centers. The user can consult here Google's use of the service or its Privacy Policy.
  • Wordpress.org: Hidup Medical is a user of the supply and hosting platform of WordPress Blogs, owned by the North American company: Automattic, Inc. WordPress.org collects information such as Internet Protocol (IP) addresses. Nevertheless, WordPress.org does not use IP addresses to identify its visitors and does not disclose such information. All information that is collected on WordPress.org will be managed in accordance with the RGPD legislation; you can check it in his Privacy Policy.

The Service Data corresponds to the personal information that Google collects or generates during the provisioning and administration of the Cloud Services, and does not include Customer Data or Partner Data. L

  • Recaptcha from google 3: It is only used to combat spam and abuse at Hidup Medical. This service is not used for any other purpose. The reCAPTCHA API works by collecting information from hardware and software, such as device and application data, and submitting it to Google for analysis. The information collected about your use of the service will be used to improve reCAPTCHA and for general security purposes. It will not be used for purposes related to personalized advertising by Google. In accordance with Section 3 (d) of the Google APIs Terms of Service, we agree that if we use the APIs, we are responsible for providing the notifications and consents necessary for this data to be collected and shared with Google. By residing in the European Union, both we and API customers will comply with the European Union User Consent Policy. Our use of reCAPTCHA is subject to call limitations. Google may implement these limitations at its discretion by applying any of the means described in the section on call limitations or in these terms of service. This service is subject to the Privacy Policy and the Conditions of service of Google.
  • SparkPost (Message Systems, Inc.): SparkPost is an email management and message delivery service provided by Message Systems, Inc. Personal Data collected: email address and different types of Data, as specified in the Policy Privacy of the service.
  • SMSAPI (LINK Mobility Poland Sp. Z oo): is a Polish company with registered office in Gliwice (Poland). Privacy Policy. LINK Mobility Poland sp. z oo has implemented a Security Policy and keeps the data in protected level III data centers located in Poland. The administrator of the data collected is LINK Mobility Poland Sp. Z oo, with registered office in Gliwice, ul. Toszecka 101, POLAND, Tax Identification Number (NIF): PL9691566736.

7. Do we make automated decisions?

No, currently HIDUP does not carry out automated decisions.

8. Rights of access, rectification, deletion, limitation of the treatment, portability of the data and Opposition.

In accordance with the General Data Protection Regulation and the LOPD GDD, together with their right to oppose the automation of decisions, any user who has provided data to HIDUP has the following rights that they can exercise: 

  • Access
  • Rectification
  • Suppression
  • Limitation of processing
  • Data portability
  • Opposition

The exercise of these rights must be carried out by means of communication addressed to HIDUP, either to its postal address, indicated previously at the beginning of said policy, or to the electronic address provided for this purpose (support@hidup.io), without prejudice to the use of any other valid means in the law that allows to fulfill the requirements for it in a legally valid way.

To prove your identity we will need you to provide us with:

  • Name and surname of the interested party; Copy of your ID, passport or similar and, where appropriate, of the person who represents you.
  • Purpose of the request. 
  • Address for the purposes of notifications, date and signature of the applicant. 
  • Documents accrediting the request made in the event that they are deemed appropriate or necessary.

9. Information management

The data that you provide to the Web are included in our aforementioned treatments, as well as those that are transferred, they also do so in the relevant Transfer Registry.