Privacy policy
PRIVACY POLICY EGYPT
Welcome to myoncare, the digital health portal for efficient and needs-oriented patient care. For us at Oncare GmbH (hereinafter referred to as “Oncare” or “we”, “us”, “our”), the protection of your privacy and any personal data relating to you while using the myoncare Portal is of major relevance and importance. We are aware of the responsibilities to provide and save your personal data in the myoncare Portal. Therefore, our technology systems used for myoncare Services are set up according to the highest standards and the lawful processing of personal data is core to our business ethics.
We process your personal data in accordance with the applicable legal provisions for the protection of personal data, in particular the Egyptian Personal Data Protection Law no. 151/2020 (the “PDPL”). Furthermore European Data Protection rules apply, for more information please check our Privacy Notice (Europe). This Privacy Notice tells you why and how Oncare processes your personal data which we collect from you or which you provide to us, when you decide to use myoncare Portal. In particular, you will find a description of the personal data, which we collect and process as well as the purpose and on which basis we are processing the personal data and the rights to which you are entitled.
Please read this Privacy Notice carefully to ensure that you understand each provision. After reading the Privacy Notice, you will have the option to consent to the Privacy Notice and the processing of your personal data as described in this Privacy Note. If you give consent, the Privacy Notice will be part of the contract between you and Oncare.
DEFINITIONS
“App User” means any user of the myoncare App (your patient).
“Blockchain” in the myoncare system is an additional database that stores data from all the installations.
“Careplan Provider” means any Health Care Professional or other third-party (e.g., medical device manufacturer, pharmaceutical company) offering Careplans to Portal Users through the myoncare Store or through any other data transfer method (e.g., email).
“Careplan User” means any Health Care Professional (Portal User), using a Careplan for treatment of their Registered Patients.
“Health Care Provider” means you or any other doctor, clinic, health care institution or other health care professional acting on its own or on behalf of you or any other doctor, clinic or health care institutions (intended user).
“myoncare App” means the myoncare mobile app intended for the use by patients who want to use the services provided by Oncare.
“myoncare Store” means the platform run by Oncare that provides digital care concepts (Careplans) to be used for the treatment of your registered patients through the myoncare Portal.
“myoncare Portal” means the myoncare web-portal intended for professional use by Portal Users and functioning as interface between such Portal Users and patients as App Users.
“myoncare Tools” means both, myoncare App and myoncare Portal, together.
“myoncare Services” means the services, functionalities and other offerings which are or may be offered to Portal Users via the myoncare Portal and/or to App Users via the myoncare App, as applicable.
“Oncare“ means ONCARE GmbH, Germany.
“Portal User” means you or any other Health Care Provider using the web-based myoncare Portal.
“Patient Privacy Notice” means the privacy statement that describes the collection, use and retention of the personal (health) information of patients using myoncare App.
“Privacy Notice” means this statement made to you as user of the myoncare Portal that describes how we collect, use and retain your personal information, and provides you with information on your comprehensive rights.
“Standard Terms” means the Standard Terms and Conditions for using the myoncare Portal.
RESPONSIBLE ENTITY
Oncare GmbH, a company registered with the Munich Local Court with the Register number 219909 with its office located at Balanstraße 71a, 81541 Munich, Germany offers and operates the interactive web portal myoncare Portal (for Health Care Professionals) and the mobile application myoncare App (for patients) giving access to myoncare Services. This Privacy Notice applies to all personal data processing by Oncare related to the use of myoncare Portal. For the use of myoncare App by patients, you can find a separate Patient Privacy Notice here.
Myoncare PWA
A progressive web app (PWA) is a website that looks and behaves as if it is a mobile app. PWAs are built to take advantage of native mobile device features, without requiring the user to visit an app store. The goal of PWAs is to combine the difference between apps and the traditional web by bringing most of the benefits of native mobile apps to the mobile browser. The PWA is based on the technology of “React Native for Web”. “React Native for Web” is an open source software for PWA applications.
Before patients can use the myoncare PWA, they need a computer or smartphone and an active internet connection. An app does not need to be downloaded.
Some of the myoncare app services cannot be used within the myoncare PWA as described below. These are the following services or specifications:
- -Chat with a care team;
- -Video calls;
- -Security PIN codes;
- -Activity data tracking (e.g. AppleHealth, GoogleFit).
The following information regarding the myoncare app also apply to the myoncare PWA, unless otherwise stated in this section.
WHAT IS PERSONAL DATA
“Personal data” is all information that makes it possible to identify a natural person. In particular, this includes your name, date of birth, address, telephone number, e-mail address and IP address. “Health data” is personal data that relates to the physical or mental health of a natural person, including the provision of health care services, which reveal information about his or her health status.
Data is considered “anonymous” if no personal reference to the person/user can be made. In contrast, “pseudonymized” data is data from which personal reference or personal identifiable information is replaced by one or more artificial identifiers, or pseudonyms, but which can, in general, be re-identified by the identifier key.
WHICH PERSONAL DATA WILL BE PROCESSED WHILE USING MYONCARE APP
We may process the following data categories about you while using the myoncare App:
Operational Data: Personal data provided to us when you register and log in to our myoncare Portal, contact us regarding any problems with the Portal or otherwise interact with us with the purpose of using the Portal (“Operational Data”);
Treatment Data: You will enter personal data of your patients, such as name, age, height, weight, indication, disease symptoms and further information in connection with the treatment of your patients (e.g. in a Careplan) in myoncare Portal (“Treatment Data”). Treatment Data are personal data of your patients which are collected or processed, when you interact with your patient via myoncare Portal;
Store Business Data: Personal data which will be processed by us when you are using the myoncare Store either as author of Careplans or as buyer of Careplans. The use of the myoncare Store will require the processing of your name and contact information as well as your payment details (payment details only in case Careplan is subject to a fee) (“Store Business Data”).
Activity Data: Personal data which will be processed by us when any App User connects myoncare App to a Health App (e.g. AppleHealth, GoogleFit). Activity Data of your connected patients is available to you within the myoncare Portal.
Product Safety Data: Personal data which will be processed to fulfill our legal obligations as manufacturer of the myoncare App as medical device. In addition, your personal data as reporter of incidents may be processed to fulfill legal safety or vigilance purposes of medical device or pharmaceutical companies. (“Product Safety Data”).
Reimbursement Data: Personal Data which are required for the reimbursement process (“Reimbursement Data”).
BLOCKCHAIN TECHNOLOGY
Blockchain technology (“Blockchain“) is an optional offered service, it is not mandatory. It is on you, the Health Care Provider, to decide to use the Blockchain solution. The Blockchain is supported by Hyperledger Fabric. Hyperledger Fabric is an open source software for enterprise-grade blockchain deployments. It offers a scalable and secure platform that supports blockchain projects.
Blockchain in the myoncare system is an additional database that stores data from all the installations. All the data is stored in Germany. It is a Private Blockchain (“Private Blockchain“), it allows the entry of only selected verified participants, and it is possible to override, edit, or delete entries as required.
In general, the Blockchain is made up of digitally recorded data in a chain of packages called ‘blocks’ that store records of transactions. The manner in which these blocks are linked is chronological. The first block created is called a genesis block and each block added afterwards will have a cryptographic hash that refers to the previous block, allowing to trace transactions and changes to information going back to the Genesis block. All transactions within the blocks are validated and agreed upon by a consensus mechanism, ensuring that each transaction is true and correct.
Each block contains the list of transactions, its timestamp, its own hash, and the previous block’s hash. A hash is a function used to convert digital data to a fixed-sized alphanumeric string. If an unauthorzed person tries to update the data from a single block, the hash of the block would also change and the linking to this block would be lost. At this moment, the copy blockchain won’t be in sync with the other copies. When all nodes try to sync their copies they would realize that this one copy is different and then the network marks this node as illegitimate. This process makes it quite difficult for unauthorzed persons to tamper with the records in the blockchain.
Our Blockchain is a Private Blockchain. A Private Blockchain is decentralized. It is a distributed ledger that operates as a closed database. Unlike Public Blockchains, which are “permissionless,” Private Blockchains are “permissioned,” because approval is required to become a user. In contrast to Public Blockchains that are open for everyone, Private Blockchains require some form of authorization. This allows to take advantage of the security and immutability of blockchain technology while also complying with privacy regulations, most notably the General Data Protection Regulation (GDPR). Private Blockchain records can be edited, overridden or deleted; deleted means in this context to erase the reference to the UUID (Universally Unique Identifier) in the customer´s database. The result is that the hash is anonymized in the Blockchain database, with the consequence that this process is compliant with the General Data Protection Regulation and it guarantees the rights of a data subject (Right to erasure ‘right to be forgotten’, Art. 2 PDPL).
Types of data that are stored and processed on the Blockchain:
- -Patient UUID
- -Site/Institution UUID
- -Asset UUID
- -Hash of Caretask & Asset Data.
(UUID: Universally Unique Identifier).
The data stored in the Blockchain is pseudo-anonymous.
Our Blockchain intends to provide services that help prove the integrity of the data related to the privacy policy, patient profile, assets, and the assigned caretasks and medications. To communicate with the blockchain, the user needs to enroll a set of public-private keys. The enrollment process generates certificates that are stored in a separate database for Health Care Providers and on the phone for the patients. A backup of the patient’s keys is encrypted and stored in the Health Care Provider database which can be accessed only by the patient.
For the privacy policy consent verification, whenever the Health Care Provider intends to communicate with the patient, the system checks if the patient has valid consent to the privacy policy of the health care institution. The blockchain is used to guarantee the integrity and accountability of the record that stores that the patient has accepted the privacy policy.
When the Health Care Provider uploads the new version of the privacy policy, the hash of the file is stored in the blockchain, and after the patient consents to the privacy policy, this interaction is stored on the blockchain. For each communication with the patient, the blockchain returns a flag if the patient’s consent is still valid for the recent privacy policy by comparing the hash.
Similarly, for the patient sync feature, the integrity of the patient profile is assured by the blockchain. The Health Care Provider knows if the patient profile is out of sync with the profile on the phone by comparing the hash of the patient profile on the blockchain. This enables the Health Care Provider to have the most recent patient profile information.
myoncare Portal:
If the Health Care Provider decides to use the Blockchain solution, ONCARE will add an extra service called adapter service that will be used to communicate with the Blockchain. The Blockchain instance is hosted by ONCARE.
myoncare App:
The patients can connect to the same Blockchain instance, and it is done with the help of the phone manager service. This service is also hosted by ONCARE.
Justification of Processing: The processing of data by Oncare for the Health Care Provider is based on Art. 6 PDPL (data processor’s obligations).
PROCESSING OF OPERATIONAL DATA
In case you are a contact person to run the Portal at your site/practice (e.g. IT administrator, appointed Health Care Professional), you might provide us with certain personal data in case you are contacting us to understand or discuss the functions and usage of the Portal or in case of a service request.
In the event of a service request, the following personal data may also be viewed by authorized Oncare employees:
The personal data that you have provided to register and/or log in to our Portal (e.g. name, date of birth, profile picture, contact details)
Authorized Oncare employees who have access to your database for the purpose of processing a service request are contractually required to keep all personal information strictly confidential.
For the processing of Operational Data, Oncare acts as data controller responsible for the legitimate processing of your personal data.
Types of Data: E-mail-address, date of birth, registration date, your IP address, pseudo keys generated by the Portal .
The app uses Google Maps API to use geographical information. When using Google Maps, Google also collects, processes and uses data about the use of the map functions. For more information about the scope, legal basis and purpose of data processing by Google as well as the storage period, please refer to Google’s privacy policy.
Purposes of processing of Operational Data: We use the Operational Data to maintain the functionalities of myoncare Portal and to get in direct contact with you if required or initiated by you (e.g. in case of change of Standard Terms, necessary support, technical problems etc.). In addition, personal data (e-mail-address) is needed and processed for the 2-factor-identification in each case of your log-in to myoncare Portal.
Justification of Processing: The processing of Operational Data is justified based on Article 6 Paragraph 1 lit. b EU GDPR to fulfill the contract you conclude with Oncare for the purpose of the use of myoncare Portal.
PROCESSING OF TREATMENT DATA
During the use of myoncare Portal, you will enter personal (health) data of your patients to myoncare Portal (e.g. provision of individual Careplan, reminder for intake of medicines etc.). In addition, you and your patients will be able to upload patient related documents and files to myoncare Portal and share the files with each other. Additionally, location functions can be generated and implemented.
- the addition of a location;
- uploading the logo of the location;
- to add the details of the location;
- to upload a privacy policy; and
- it is possible to create further consent requirements for the patient, for which the patient must give consent to connect to the site.
An uploaded privacy policy is displayed to any patient who connects to the site. All consent statements must be defined in the uploaded privacy policy. Once a privacy policy has been uploaded, it can only be replaced with a new version, but not deleted.
The files will be stored in a cloud database hosted in Germany. You can allow sharing such files with other Portal Users of your own institution for medical reasons. Other Portal Users will not be able to access these files.
You (not Oncare) will be responsible for a legitimate processing of the personal data.
We process such personal data, including the patients’ health data, under an agreement with you and in accordance with your instructions. For the purposes of using myoncare Services with patients’ health data, you will, therefore, be the responsible data controller. Please process your patients’ data only, if you have obtained the required data consent of such patients. Oncare will act as data processor in compliance with the separate data processing contract we have concluded with you based on Art. 28 EU GDPR.
PROCESSING OF STORE BUSINESS DATA
– Only applicable if you are using myoncare Store either as Careplan Provider or as Careplan User –
myoncare Store is integrated in myoncare Portal and offers the exchange of Careplans and after registering to the myoncare Portal, you will be able to connect to myoncare Store with your log-in information of myoncare Portal. You will be able to use myoncare Store for own Careplans as Careplan Provider or for purchasing a Careplan as Careplan User.
Data of Careplan Provider:
Types of Data: Name, contact details, bank account information
Processing of Store Business Data: If you want to offer an own Careplan to other Portal Users, you will have to provide your name and contact details with the Careplan. These details will be visible to other Careplan Providers and Careplan Users using myoncare Store, in case you decide to “publish”. If you decide for “internal use”, your personal data related to your Careplan will only be visible to Careplan Providers and Careplan Users of your own institution.
In case of a purchase of your Careplan by a Careplan User, your personal data (name and contact details) will be processed to agree on a Careplan licence agreement between you and the Careplan User. If your Careplan is offered for a fee, you will also need to provide your bank account details, as the Careplan Users will have to be able to pay the fee for your Careplan. In addition, we as Oncare will process the information on the use of the Careplan, the fee schedule and your personal data related to the Careplan to track the commission fee.
In the case of the tracking of commission fee, Oncare will act as data controller. For all other cases (data exchange between Careplan Provider and Careplan User, licence agreement, payment etc.), Oncare acts as data processor for the Careplan Provider in compliance with the separate data processing contract we have concluded with you based on Art. 6 PDPL. Justification of processing of Store Business Data: Legal basis for the processing of personal data of Careplan Provider by Oncare as data controller is Article 6 PDPL.
Data of Careplan User:
The Careplan User data processed by using the myoncare Store will be used for entering into a license agreement with the Careplan Provider and, if Careplan offered for a fee, for processing and control of the payment process between the Careplan Provider and the Careplan User.
Types of Data: Name, contact details, bank account information.
Processing of Store Business Data: When purchasing a Careplan in myoncare Store (either for free or based on a purchase price offered by the Careplan Provider), the Careplan User will have to enter his/her personal data and contact details with the aim to conclude a licence agreement with the Careplan Provider. In addition, payment details will be processed (if there is a usage fee) to the Careplan Provider.
Justification of processing of Store Business Data: Legal basis for the processing of personal data is the separate data processing contract we have concluded with the Careplan Provider based on Art. 6 PDPL.
PROCESSING OF ACTIVITY DATA
– Only applicable if your connected App Users agree to and activate the data transfer –
myoncare Tools offer the possibility to App Users to connect the myoncare App to certain health apps (e.g. AppleHealth, GoogleFit) (“Health App”), if those are used by the App User and if the connection is desired by the App User. If the connection is established, Activity Data collected by the Health App is transferred to you with the purpose of providing additional, contextual information about the App Users activity to you. Please note that Activity Data are not validated by myoncare Tools and shall not be used for diagnostic purposes or as basis for medical decision making.
The processing of Activity Data to you falls within the own data responsibility of your patients.
Types of data: The type and extent of data transferred depend on the decision of the App User. Data can include, inter alia, weight, height, taken steps, burned calories, hours of sleep, heart rate and blood pressure.
Purposes of processing of Activity Data: Activity Data of the App User is transferred to you with the purpose of providing additional, contextual information about the App Users’ activity to you. Please note that Activity Data are not validated by myoncare Tools and shall not be used for diagnostic purposes or as basis for medical decision making.
Justification of Processing of Activity Data: Data Controller is the patient him-/herself who grants you access to his/her Activity Data just for review of the shared information. Therefore, no further justification is needed.
PROCESSING OF PRODUCT SAFETY DATA
As manufacturer of the myoncare Tools, we have to fulfill certain legal obligations (e.g. surveillance of functionality of the Tools, evaluation of incident reports which might be connected to the use of the Tools, tracking of users etc.). In addition, you might collect personal data in myoncare Tools regarding specific medical devices or pharmaceuticals used in the treatment of your patients. The manufacturers of such medical devices or pharmaceuticals also have legal obligations regarding the surveillance of the market (e.g. collection and assessment of side effect reports).
Oncare is data controller for Product Safety Data.
Types of Data: Case reports, personal data provided in an incident report and results of evaluation, reporter details.
Processing of Product Safety Data: We will store and assess any personal data related to our legal obligations as manufacturer of a medical device and transfer such personal data (if possible after pseudonymization) to competent authorities, notified bodies or other data controllers with supervisory responsibilities. In addition, we will store and transfer personal data related to medical devices and/or pharmaceuticals, if we receive any notices by you as reporter of such information, by your patient or any third person (e.g. our distributors or importers of the myoncare Tools in your country) that has to be reported to the manufacturer of the product to enable the manufacturer to fulfill its legal product safety obligations.
Justification of processing of Product Safety Data: Legal basis for the processing of personal data to fulfill legal obligations is Art. 6 and 12 PDPL.
PROCESSING OF REIMBURSEMENT DATA
– Only applicable if you are using myoncare Tools for reimbursement –
myoncare Portal will assist you to start your standard reimbursement processes for the health services provided to your patients via myoncare App. To enable the reimbursement process, myoncare Portal will support the collection of your patient’s personal (health) data from myoncare Portal to facilitate the standard reimbursement processes you might want to transfer to the patient’s cost payer (either your Association of Statutory Health Insurances and/or the patient’s health insurer). You will be the data controller for Reimbursement Data and responsible for the compliance with data protection regulations for your patients’ data processed in the reimbursement process. Oncare is acting as data processor based on the data processing agreement with you.
Types of Data: Patient’s name, diagnosis, indications, treatment, period of treatment, other data required for reimbursement administration.
Processing of Reimbursement Data: You as responsible data controller will transfer the patient’s Treatment Data required to receive reimbursement to the cost payer (either your Association of Statutory Health Insurances and/or the patient’s health insurer) and the cost payer will process the Reimbursement Data to provide reimbursement to you.
WHAT TECHNOLOGY IS USED BY MYONCARE PORTAL AND MYONCARE APP?
myoncare Portal works as web based tool for which you need a working internet connection and any current version of the internet browser Chrome, Firefox or Safari.
SECURE TRANSFER OF PERSONAL DATA
We implement the appropriate technical and organizational security measures to ensure the optimal protection of the personal data stored by us against accidental or intentional manipulation, loss, destruction or access by unauthorized persons. The security levels are continuously reviewed in collaboration with security experts and adapted to new security standards.
The data exchange to and from the Portal and App is encrypted. We use TLS and SSL as encryption protocols for secure data transmission. In addition, data exchange is end-to-end encrypted and takes place using pseudo-keys.
DATA TRANSFERS / DISCLOSURE TO THIRD PARTIES
We will only transmit your personal data to third parties within the scope of given statutory provisions or based on your consent. In all other cases, information will not be transferred to third parties unless we are obliged to do so owing to mandatory legal regulations (disclosure to external bodies, including the supervisory authorities or law enforcement authorities).
All transfer of personal data is encrypted during transfer.
The information how we handle the personal (health) data of your patients acting with myoncare App is summarized in a separate Privacy Notice for the myoncare Patient App. You can find this Patient Privacy Notice here. Please also read this Patient Privacy Notice carefully. For some processing of patient data, you will be the data controller and responsible for the compliance with data protection (e.g. transfer of treatment data to the patient).
SendGrid
We use Sendgrid for sending emails. The provider is Sendgrid Inc., 1801 California Street Suite 500, Denver, CO 80202, USA. Sendgrid is a service with which the sending of emails can be organized. Sendgrid is used to send confirmation emails, transaction confirmations and emails with important information regarding existing requests. The data you enter for the purpose of receiving emails is stored on Sendgrid’s servers. When we send email on your behalf through SendGrid, we use an SSL secured connection.
The emails are related to the following tasks:
- -First login to the Web Application;
- -Password reset workflow for the Web Application;
- -Account creation for the Patient Application;
- -Password reset for the Patient Application;
- -Replacing push notifications by emails for PWA (Progressive Web App) in the following cases:
- When a Caretask is set to expire in one day;
- When a Caretask is set to expire in one hour;
- Medication has been assigned;
- When the privacy policy has been updated.
For the purpose of analysis, the e-mails sent with SendGrid contain a so-called “tracking pixel”, which connects to Sendgrid’s servers when the e-mail is opened. By this, it is possible to determine whether an email message has been opened.
Legal basis
The data processing is based on your consent (Art. 6 para. 1 PDPL). You can revoke this consent at any time. The legality of the data processing operations already carried out remains unaffected by the revocation.
Storage period
The data you provide us for the purpose of receiving emails will be stored by us until you unsubscribe from our services and will be deleted from our servers as well as from the servers of Sendgrid after you unsubscribe.
Please note that your data is usually transmitted by us to a SendGrid server in the USA and stored there. We have concluded a contract with Sendgrid incorporating the EU standard contractual clauses. This ensures that a level of protection comparable to that in the EU exists.
SendGrid (Privacy Policy): https://sendgrid.com/resource/general-data-protection-regulation-2/
Matomo
This is an open source web analysis tool. Matomo (provided by InnoCraft Ltd., New Zealand) does not transfer any data to servers outside the control of ONCARE. Matomo is deactivated when you use our services. Only after you have actively allowed it, your user behaviour will be recorded anonymously. By deactivating, a “permanent cookie” will be stored, if your browser settings allow this. This cookie serves the purpose of signaling Matomo not to capture your browser.
The information on usage collected by the cookie is transferred to our servers and saved there so that we can analyse user behaviour.
The information generated by the cookie about your use is:
- User role
- User geolocation
- User browser
- User OS
- IP Address
- Pages/screens visited in Web and PWA (see section about PWA in this Privacy Statement)
- Buttons the user clicks in Web and PWA
- Time user spent.
The information generated by the cookie on how you use our services will not be passed on to third parties.
You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality. For more information visit: https://matomo.org/privacy-policy/.
The legal basis for the processing of the users’ personal data is Art. 6 para. 1 of the PDPL. The processing of the users’ personal data enables us to analyse the surfing behavior of our users. By evaluating the data obtained, we are able to compile information about the use of the individual components of our services. This helps us to continuously improve our services and its user-friendliness.
We process and store personal data only for as long as this is necessary for the fulfilment of the intended purpose.
GENERAL INFORMATION ON CONSENT TO DATA PROCESSING
Your consent also constitutes permission to data processing under data privacy law. Before granting your consent, we will inform you about the purpose of the data processing and your right of objection.
If the consent also relates to the processing of special categories of personal data, myoncare Portal will explicitly notify you in the consent process. Processing of special categories of personal data according to Art. 9, 12 & 13 PDPL may only take place where necessary on the grounds of legal regulations and there is no reason to assume that your legitimate interests should prevail to the exclusion of processing such personal data or you have given consent to the processing of this personal data according to Art. 12 Paragraph 2 PDPL.
For the data processing for which your consent is required (as explained in this Privacy Notice), the consent will be requested during registration process. After successful registration, the consents can be managed in the account settings of myoncare Portal. In addition, Oncare will ask you to agree on a data processing agreement for the data processed by Oncare under your responsibility as data controller.
DATA RECIPIENTS / CATEGORIES OF RECIPIENTS
In our organization, we ensure that only those persons are entitled to process personal data who are required to do so in order to fulfil their contractual and statutory duties.
In certain cases, service providers support our specialist departments in fulfilling their tasks. The necessary data protection contracts have been concluded with all service providers which are data processor for the personal data. These service providers are Hetzner Online and Google (Google Firebase). Google Firebase is a “NoSQL database” that enables synchronization between the myoncare Portal and the myoncare App used by your patients. NoSQL defines a mechanism of storing data which is modeled in means other than just tabular relations by allowing for easier “horizontal” scaling compared to tabular/ relational database management systems in a cluster of machines.
For this purpose, a pseudo key of the myoncare Portal and the myoncare App is stored in Google Firebase along with the corresponding Careplan. The data transfer is pseudonymized to Oncare and its service providers which means that Oncare and its service providers cannot relate to you or your patient as a data subject. This is achieved by encryption of the data during transfer and the use of pseudo-keys instead of personal identifiers such as names or e-mail addresses to track these transfers. Re-identification happens once the personal data has reached the patient account in myoncare App or your account in myoncare Portal after verification via specific tokens.
Hetzner Online provides cloud storage in which the Firebase Manager, which manages the Firebase URLs for the myoncare Portal, is stored. In addition, Hetzner Online provides the isolated server domain of myoncare Portal in which your and your patients’ personal data are stored. Hetzner Online also hosts myoncare’s video and file management services, which enable encrypted video conferencing and exchange of files between you and your patient, respectively. Access to all personal data by you and your patient is ensured by sending specific tokens. This personal data is encrypted during transfer and pseudonymized during transfer and at rest to Oncare and its service providers. Service providers of Oncare do not have access to this personal data at any time.
TRANSFERS OF PERSONAL DATA TO THIRD COUNTRIES
No personal data collected by myoncare Portal or myoncare App will be stored in the app stores. Personal Data will only be transferred to third countries (outside of Egypt) if this is necessary for the performance of the contractual obligation, is required by law or you have given us your consent.
Synchronization of myoncare Portal with myoncare App takes place via Google Firebase. The Google Firebase servers are hosted in the EU. However, according to the Google Firebase Terms of Service, transient data transfers in countries where Google and its’ service providers have establishments are possible. In the case of certain Google Firebase services, data is only transferred to the USA if no processing takes place in the European Union or the European Economic Area. Unauthorized access to your data is prevented by end-to-end encryption and secure access tokens. Hetzner Online is hosted in Nuremberg, Germany. In order to process Activity Data, interfaces to Google cloud services (in case of GoogleFit) or to AppleHealth within the mobile device of the App User are used. myoncare Tools use these interfaces which are provided by Google and Apple, to request Activity Data from connected Health Apps. The request sent by myoncare Tools does not contain personal data but personal data is provided to myoncare Tools via these interfaces.
PERIOD OF PERSONAL DATA STORAGE
We store your personal data as long as they are needed for the respective processing purpose. Please note that numerous retention periods dictate that personal data must continue to be stored. This applies in particular to commercial law or tax law storage obligations (e.g. Commercial Code, Tax Code, etc.).
Please note that Oncare is also subject to storage obligations which are contractually agreed with you on the basis of legal provisions. In addition, based on the classification and your use of myoncare Portal and App as medical device, certain storage periods arising from medical device law are applicable to the Portal. If there are no further storage obligations, the personal data is routinely deleted once the purpose has been achieved.
In addition, we can store personal data if you have given us your permission to do so or if legal disputes arise and we use evidence within the framework of statutory limitation periods, which can be up to thirty years; the regular limitation period is three years.
OBLIGATION TO PROVIDE PERSONAL DATA
Various personal data are necessary for the establishment, performance and termination of the contractual relationship and the fulfillment of the associated contractual and legal obligations. The same applies to the use of our myoncare Portal and the various functions it provides.
We have summarized the details for you in the above point. In certain cases, personal data must also be collected or made available in accordance with statutory provisions. Please note that it is not possible to process your inquiry or to execute the underlying contractual obligation without providing this personal data.
AUTOMATED DECISIONS IN INDIVIDUAL CASES
We do not use purely automated processing to make decisions.
YOUR RIGHTS AS DATA SUBJECT
We would like to inform you of your rights as a data subject. These rights are set out in article 1 PDPL and include:
- Right of access (Art. 1, (1.) PDPL): You have the right to access and be provided with a copy of any personal data that we hold about you;
- Right to rectification (Art. 1, (3.) PDPL): You can require us to correct or amend, or erase or complete your personal data;
- Right to restriction of data processing (Art. 1, (4.) PDPL): You can require us to “restrict” our use of your information, so that we can continue the use your information only subject to restrictions;
- Right to be informed of any personal data breach (Art. 1 (5.) PDPL): You have the right to be informed of any personal data breach in relation to your personal data;
- Right to object and/or revoke consent to data processing (Art. 1 (2) and (6) PDPL): You have the right to revoke your consent at any time, if we process your personal data based on your consent. You, further, have the right to object to our use of your personal data whenever it contradicts with your fundamental rights. We will continue to provide our services if they do not depend on the consent that has been revoked and/or objected.
To exercise these rights, please contact us at: privacy@myoncare.com. We will require you to provide satisfactory proof of your identity to ensure that your rights are protected and that your personal data is disclosed only to you and not to any third person.
Please also contact us at any time on privacy@myoncare.com, if you have questions about data processing in our company or if you wish to revoke your consent. You also have the right to contact the relevant data protection supervisory authority.
DATA PROTECTION OFFICER
You can contact our data protection officer to answer all data protection questions at privacy@myoncare.com.
CHANGES TO PRIVACY NOTICE
We explicitly reserve our right to modify this Privacy Notice in future at our own discretion. Modifications or additions may, for instance, be necessary to meet statutory requirements, correspond with technical and economic developments or to meet the interests of the App or Portal Users.
Any modifications are possible at any time and will be published in an appropriate manner and in an appropriate time frame to you before they take effect (e.g. by posting revised Privacy Notice at login or by providing advance notice to you of material changes).
ONCARE GmbH
Postal address
Balanstraße 71a
81541 Munich, Germany
T | +49 (0) 89 4445 1156
F | +49 (0) 89 4445 1157
E | info@myoncare.com
Contact info of the data protection officer:
privacy@myoncare.com
Last Updated on 10 January 2023.
* * * *
PRIVACY POLICY EGYPT
Welcome to myoncare, the digital health portal and mobile app (“App”) for efficient and needs-oriented patient care and support for corporate health management programs.
For us at Oncare GmbH (hereinafter referred to as “Oncare” or “we”, “us”, “our”), the protection of your privacy and any personal data relating to you while using the myoncare App is of major relevance and importance. We are aware of the responsibilities arising from your trust to provide and save your personal (health) data in the myoncare App. Therefore, our technology systems used for myoncare Services are set up according to the highest standards and the lawful processing of personal data is core to our business ethics.
We process your personal data in accordance with the applicable legal provisions for the protection of personal data, in particular the Egyptian Personal Data Protection Law (the “PDPL”). Furthermore European Data Protection rules apply, for more information please check our Privacx Notice (Europe). This Privacy Notice tells you why and how Oncare processes your personal (health) data which we collect from you or which you provide to us, when you decide to use myoncare App. In particular, you will find a description of the personal data, which we collect and process as well as the purpose and on which basis we are processing the personal data and the rights to which you are entitled.
Please read this Privacy Notice carefully to ensure that you understand each provision. After reading the Privacy Notice, you will have the option to consent to the Privacy Notice and the processing of your personal (health) data as described in this Privacy Note. If you give consent, the Privacy Notice will be part of the contract between you and Oncare.
DEFINITIONS
“App User” means any user of the myoncare App (Patient and/or employee).
“Blockchain” in the myoncare system is an additional database that stores data from all the installations.
“Company” means your employer, if you and your employer are using myoncare Tools for the employer’s corporate health management program.
“Data Service Provider” means any agent engaged and instructed by Company for collection, screening and interpretation of pseudonymized or anonymized employee data in corporate health management programs based on a separate service agreement with the Company (e.g. data analyst, general health prevention services, data evaluation services etc.) and as identified by a separate information sheet to the employees.
“Health Care Provider” means your doctor, clinic, health care institutions or other health care professional acting on its own or on behalf of your doctor, clinic or health care institutions.
“myoncare App” means the myoncare mobile app intended for the use by patients or employees who want to use the services provided by Oncare.
“myoncare Portal” means the myoncare web-portal intended for professional use by Portal Users and functioning as interface between such Portal Users and App Users.
“myoncare Services” means the services, functionalities and other offerings which are or may be offered to Portal Users via the myoncare Portal and/or to App users via the myoncare App, as applicable.
“myoncare Tools” means both, myoncare App and myoncare Portal, together.
“Oncare” means ONCARE GmbH, Germany.
“Portal User” means any Health Care Provider, Company or Data Service Provider using the web-based myoncare Portal.
“Privacy Notice” means this statement made to you as patient or employee and user of the myoncare App that describes how we collect, use and retain your personal information, and provides you with information on your comprehensive rights.
“myoncare PWA app” means the myoncare Progressive Web App application for patients who wish to use the services offered by Oncare by the PWA app and not by the myoncare app.
“Standard Terms” means the Standard Terms and Conditions for using the myoncare App.
RESPONSIBLE ENTITY
Oncare , a company registered with the Munich Local Court with the Register number 219909 with its office located Balanstraße 71a, 81541 Munich, Germany, offers and operates the mobile application myoncare App giving access to myoncare Services. This Privacy Notice applies to all personal data processing by Oncare related to the use of myoncare App.
myoncare PWA app
A progressive web app (PWA) is a website that looks and behaves as if it is a mobile app. PWAs are built to take advantage of native mobile device features, without requiring the user to visit an app store. The goal of PWAs is to combine the difference between apps and the traditional web by bringing most of the benefits of native mobile apps to the mobile browser. The PWA is based on the technology of “React Native for Web”. “React Native for Web” is an open source software for progressive web app applications.
Before patients can use the myoncare PWA app, they need a computer or smartphone and an active internet connection. An app does not need to be downloaded.
Some of the myoncare app services cannot be used within the myoncare PWA app as described below. These are the following services or specifications:
- -Chat with a care team;
- -Video calls;
- -Security PIN codes;
- -Activity data tracking (e.g. AppleHealth, GoogleFit).
The following information regarding the myoncare app also apply to the myoncare PWA app, unless otherwise stated in this section.
WHAT IS PERSONAL DATA
“Personal data” is all information that makes it possible to identify a natural person. In particular, this includes your name, date of birth, address, telephone number, e-mail address and IP address. “Health data” is personal data that relates to the physical or mental health of a natural person, including the provision of health care services, which reveal information about his or her health status.
Data is considered “anonymous” if no personal reference to the person/user can be made. In contrast, “pseudonymized” data is data from which personal reference or personal identifiable information is replaced by one or more artificial identifiers, or pseudonyms, but which can, in general, be re-identified by the identifier key.
WHICH PERSONAL DATA WILL BE PROCESSED WHILE USING MYONCARE APP
We may process the following data categories about you while using the myoncare App:
- Operational Data: Personal data provided to us when you register to our myoncare App, contact us regarding any problems with the App or otherwise interact with us with the purpose of using the App (“Operational Data”);
- Treatment Data: You or your Health Care Provider will enter personal data, such as name, age, height, weight, indication, disease symptoms and further information in connection with your treatment (e.g. in a care plan) with the support of myoncare App (“Treatment Data”). Treatment Data are, therefore, personal data which are collected or processed, when you interact with your Health Care Provider via myoncare App;
- Activity Data: Personal data which will be processed by us when you connect myoncare App to a Health App (e.g. AppleHealth, GoogleFit). Your Activity Data is transferred to your connected Health Care Provider as Portal User.
- Product Safety Data: Personal data which will be processed to fulfill our legal obligations as manufacturer of the myoncare App as medical device. In addition, your personal data may be processed to fulfill legal safety or vigilance purposes of medical device or pharmaceutical companies. (“Product Safety Data”).
- Reimbursement Data: Personal data which are required for the reimbursement process between your Healh Care Provider and your heath insurer (“Reimbursement Data”).
- Corporate Health Management Data: Personal or aggregated data which will be collected in concrete projects and questionnaires as asked by your employer (either directly or by Data Service Provider engaged by your Company). The data may relate to certain health information, your opinion regarding your personal well-being, your opinion as employee to a specific internal or external situation or data regarding the care or health situation in general (“Corporate Health Management Data”).
BLOCKCHAIN TECHNOLOGY
Blockchain technology (“Blockchain“) is an optional offered service, it is not mandatory. It is your Health Care Provider who decides to use the Blockchain solution. The Blockchain is supported by Hyperledger Fabric. Hyperledger Fabric is an open source software for enterprise-grade blockchain deployments. It offers a scalable and secure platform that supports blockchain projects.
Blockchain in the myoncare system is an additional database that stores data from all the installations. All the data is stored in Germany. It is a Private Blockchain (“Private Blockchain“), it allows the entry of only selected verified participants, and it is possible to override, edit, or delete entries as required.
In general, the Blockchain is made up of digitally recorded data in a chain of packages called ‘blocks’ that store records of transactions. The manner in which these blocks are linked is chronological. The first block created is called a genesis block and each block added afterwards will have a cryptographic hash that refers to the previous block, allowing to trace transactions and changes to information going back to the Genesis block. All transactions within the blocks are validated and agreed upon by a consensus mechanism, ensuring that each transaction is true and correct.
Each block contains the list of transactions, its timestamp, its own hash, and the previous block’s hash. A hash is a function used to convert digital data to a fixed-sized alphanumeric string. If an unauthorized person tries to update the data from a single block, the hash of the block would also change and the linking to this block would be lost. At this moment, the copy blockchain won’t be in sync with the other copies. When all nodes try to sync their copies they would realize that this one copy is different and then the network marks this node as illegitimate. This process makes it quite difficult for unauthorized persons to tamper with the records in the blockchain.
Our Blockchain is a Private Blockchain. A Private Blockchain is decentralized. It is a distributed ledger that operates as a closed database. Unlike Public Blockchains, which are “permissionless,” Private Blockchains are “permissioned,” because approval is required to become a user. In contrast to Public Blockchains that are open for everyone, Private Blockchains require some form of authorization. This allows to take advantage of the security and immutability of blockchain technology while also complying with privacy regulations, most notably the General Data Protection Regulation (PDPL). Private Blockchain records can be edited, orverrirden or deleted; deleted means in this context to erase the reference to the UUID (Universally Unique Identifier) in the customer´s database. The result is that the hash is anonymized in the Blockchain database, with the consequence that this process is compliant with the Personal Data Protection Law and it guarantees the rights of a data subject as stipulated in Art. 2 PDPL.
Types of data that are stored and processed on the Blockchain:
- -Patient UUID
- -Site/Institution UUID
- -Asset UUID
- -Hash of Caretask & Asset Data.
(UUID: Universally Unique Identifier).
The data stored in the Blockchain is pseudo-anonymous.
Our Blockchain intends to provide services that help prove the integrity of the data related to the privacy policy, patient profile, assets, and the assigned caretasks and medications. To communicate with the blockchain, the user needs to enroll a set of public-private keys. The enrollment process generates certificates that are stored in a separate database for Health Care Providers and on the phone for the patients. A backup of the patient’s keys is encrypted and stored in the Health Care Provider database which can be accessed only by the patient.
For the privacy policy consent verification, whenever the Health Care Provider intends to communicate with the patient, the system checks if the patient has valid consent to the privacy policy of the health care institution. The blockchain is used to guarantee the integrity and accountability of the record that stores that the patient has accepted the privacy policy.
When the Health Care Provider uploads the new version of the privacy policy, the hash of the file is stored in the blockchain, and after the patient consents to the privacy policy, this interaction is stored on the blockchain. For each communication with the patient, the blockchain returns a flag if the patient’s consent is still valid for the recent privacy policy by comparing the hash.
Similarly, for the patient sync feature, the integrity of the patient profile is assured by the blockchain. The Health Care Provider knows if the patient profile is out of sync with the profile on the phone by comparing the hash of the patient profile on the blockchain. This enables the Health Care Provider to have the most recent patient profile information.
myoncare Portal:
If the Health Care Provider decides to use the Blockchain solution, ONCARE will add an extra service called adapter service that will be used to communicate with the Blockchain. The Blockchain instance is hosted by ONCARE.
myoncare App:
The patients can connect to the same Blockchain instance, and it is done with the help of the phone manager service. This service is also hosted by ONCARE.
Justification of Processing: The processing of data by Oncare for the Health Care Provider is based on Art. 6 PDPL (data processor’s obligations).
PROCESSING OF OPERATIONAL DATA
– Applicable to all App Users –
You might provide us with certain personal data in case you are contacting us to understand or discuss the functions and usage of the App or in case of a service request.
In the event of a service request, the following personal data may also be viewed by authorized Oncare employees:
- The personal data that you have provided to your Health Care Provider through our App (e.g. name, date of birth, profile picture, contact details)
- The health data you have provided to your Health Care Provider, the Data Service Provider or Company through our myoncare App (e.g., information about medications taken, responses to questionnaires including disease-related or condition-related information, diagnoses and therapies provided by health care professionals, planned and completed tasks)
- Authorized Oncare employees who have access to your Health Care Provider’s, Data Service Provider’s or Company’s database for the purpose of processing a service request are contractually required to keep all personal information strictly confidential.
When myoncare App is downloaded, the necessary information is transferred to the app store provider. We have no influence on this data collection and are not responsible for it. We process the personal data provided to us by the provider of the app store within the framework of our contractual relationship for the purpose of further developing our myoncare Apps and Services.
For the processing of Operational Data, Oncare acts as data controller responsible for the legitimate processing of your personal data.
Types of Data: Your name, e-mail-address, date of birth, registration date, pseudo keys generated by the app; device token to identify your device, your pseudo identification number, your IP address, type and version of the operating system used by your device.
The app uses Google Maps API to use geographical information. When using Google Maps, Google also collects, processes and uses data about the use of the map functions. For more information about the scope, legal basis and purpose of data processing by Google as well as the storage period, please refer to Google’s privacy policy.
Purposes of processing of Operational Data: We use the Operational Data to maintain the functionalities of myoncare App and to get in direct contact with you if required or initiated by you (e.g. in case of change of Standard Terms, necessary support, technical problems etc.).
Justification of Processing: The processing of Operational Data is justified based on Article 6 Paragraph 2 PDPL to fulfill the contract you conclude with Oncare for the purpose of the use of myoncare App.
IP GEOLOCATION
IP geolocation: We use a geolocation application for our services. We use ipapi (provided by apilayer Data Products GmbH, Elisabethstrasse 15/5, 1010 Vienna, Austria) to identify the location of the patient users. We use ipapi for the security of our applications and for the purpose to check the location of the patient user to ensure that the use of our services is legally compliant. We do not combine the information we collect with any other information about you that could identify you. Data processed by apilayer includes patient IP address and location details. Legal basis for the use of ipapi is Art. 6 para. 1 1 lit. f GDPR. The data will be deleted when the purpose for which it was collected no longer applies and there is no obligation to retain it. More information on the apilayer Privacy Policy can be found at “https://ipapi.com/privacy/.
PROCESSING OF TREATMENT DATA
– Applicable to App Users using the App with their Health Care Provider –
During the use of myoncare App, your doctor, a clinic or other health care provider treating you (“Health Care Provider”) will enter your personal data to myoncare Portal to start myoncare Services (e.g. provision of individual Careplan, reminder for intake of medicines etc.). In addition, you and your Health Care Provider will be able to upload documents and files related to you to myoncare App and myoncare Portal and can share the files with the other. Your Health Care Provider can upload a privacy policy for your information and define other consent requirements for you as a patient, for which your consent must be given. The files will be stored in a cloud database hosted in Germany. Your Health Care Professional can allow sharing such files with other Portal Users of his institution for medical reasons, but other Portal Users will not be able to access the files.
Your Health Care Provider will be responsible for a legitimate processing of the personal data.
We process such personal data, including your health data, under an agreement with and in accordance with the instructions of your Health Care Provider. For the purposes of this agreement, the Health Care Provider is responsible of processing your personal data and health data within the meaning of applicable data protection laws as data controller, and Oncare is the processor of such personal (health) data. This means that Oncare processes the Personal Data only according to the instructions of the Health Care Provider. If you have any questions or concerns regarding the processing of your personal data or health data, you should primarily contact your Health Care Provider.
Types of Data: Name, date of birth, profile information, contact details and also health data, such as symptoms, photos, information about medications taken, responses to questionnaires including disease-related or condition-related information, diagnoses and therapies provided by health care professionals, planned and completed tasks.
Purposes of Treatment Data processing: We process your Treatment Data to be able to provide our myoncare Services to your Health Care Provider and to you. Your health data, which you enter in our myoncare App, will be used by your Health Care Provider for consultation and support to you. We process this personal data as part of an agreement with and in accordance with the instructions of your Health Care Provider. The transmission of this Treatment Data is pseudonymized and encrypted. To exercise your rights as a data subject, please contact your Health Care Provider.
Justification of processing of Treatment Data: Your personal data will be processed by your Health Care Provider in accordance with the provisions of the PDPL and all other applicable data protection regulations. Legal basis for data processing in particular arise from Art. 12 PDPL for health data as sensitive data as well as your consent according to Art. 6 paragraph 2 PDPL. The processing of data by Oncare for your Health Care Provider is, in addition, based on Art. 6 PDPL.
Your doctor as data controller will be responsible to obtain your consent. Even if you can use myoncare App without such consent, most of the functions will not work anymore (e.g. sharing of data with your Health Care Provider). Therefore, denial or revocation of consent to process Treatment Data will lead to a heavy limitation of functionality of the App services and your doctor will not be able to support you via myoncare App anymore.
PROCESSING OF ACTIVITY DATAPROCESSING OF ACTIVITY DATA
– Only applicable if you agree to share Activity Data via myoncare Tools –
myoncare Tools offer you the possibility to connect the myoncare App to certain health apps (e.g. AppleHealth, GoogleFit), that you are using (“Health App”). To enable processing of Activity Data, we are asking you to consent to the processing beforehand. If the connection is established after you granted your consent, Activity Data collected by the Health App is transferred to your connected Portal Users with the purpose of providing additional, contextual information about your activity to them. Please note that Activity Data are not validated by myoncare Tools and shall not be used by your connected Portal Users for diagnostic purposes or the basis for medical decision making. Please also note, that your connected Portal Users are not required to monitor your Activity Data or provide any feedback to you regarding your Activity Data.
Activity Data is shared with your connected Portal Users each time you start myoncare App. At any time you can revoke your consent to share your Activity Data from within the settings in myoncare App. Please note that your Activity Data are not shared anymore from this time point onwards. Already shared Activity Data will not be deleted from the myoncare Portal of your connected Portal Users.
The processing of Activity Data by you falls within your own data responsibility.
Types of data: The type and extent of data transferred depend on your decision and the data available in your connected Health App. Data can include, inter alia, weight, height, taken steps, burned calories, hours of sleep, heart rate and blood pressure.
Purposes of processing of Activity Data: Your Activity Data is transferred to your connected Portal Users with the purpose of providing additional, contextual information about your activity to them.
Justification of Processing: The processing of the Activity Data is done under your own responsibility.
PROCESSING OF PRODUCT SAFETY DATA
As manufacturer of the App, we have to fulfill certain legal obligations (e.g. surveillance of functionality of the App, evaluation of incident reports which might be connected to the use of the App, tracking of users etc.). In addition, your Health Care Provider and you might communicate and collect personal data in myoncare App regarding specific medical devices or pharmaceuticals used in your treatment. The manufacturers of such medical devices or pharmaceuticals also have legal obligations regarding the surveillance of the market (e.g. collection and assessment of side effect reports).
Oncare is data controller for Product Safety Data.
Types of Data: Case reports, personal data provided in an incident report and results of evaluation.
Processing of Product Safety Data: We will store and assess any personal data related to our legal obligations as manufacturer of a medical device and transfer such personal data (if possible after pseudonymization) to competent authorities, notified bodies or other data controllers with supervisory responsibilities. In addition, we will store and transfer personal data related to medical devices and/or pharmaceuticals, if we receive any notices by your Health Care Provider, by you as patient or any third person (e.g. our distributors or importers of the myoncare Tools in your country) that has to be reported to the manufacturer of the product to enable the manufacturer to fulfill its legal product safety obligations.
Justification of processing of Product Safety Data: Legal basis for the processing of personal data to fulfill legal obligations is Art. 6 and 12 PDPL.
PROCESSING OF REIMBURSEMENT DATA
– Applicable to App Users using the App with their Health Care Provider for reimbursement purposes –
myoncare App will support your Health Care Provider to start standard reimbursement processes for the health services provided to you via myoncare App. To enable the reimbursement process, myoncare App will support the collection of your personal (health) data by your Healh Care Provider for transfer of such data to your cost payer (either his/her Association of Statutory Health Insurances and/or your health insurer). This data processing is just an initial data transfer for the Health Care Provider to receive reimbursement by your health insurer. The kind and amount of personal data processed does not differ to other reimbursement routines of the Health Care Provider. Your Health Care Provider is data controller for Reimbursement Data. Oncare is acting as data processor based on the data processing agreement with your Health Care Provider.
Types of Data: Name, diagnosis, indications, treatment, period of treatment, other data required for reimbursement administration.
Processing of Reimbursement Data: Your Health Care Provider will transfer your Treatment Data required to receive reimbursement to the cost payer (either his/her Association of Statutory Health Insurances and/or your health insurer) and the cost payer will process the Reimbursement Data to provide reimbursement to your Health Care Provider.
PROCESSING OF CORPORATE HEALTH MANAGEMENT DATA
– Applicable to App Users using the App with the corporate health management program of their Company –
During the use of myoncare App in the corporate health management program of your Company, certain personal (health) data will be shared in an aggregated form as Corporate Health Management Data with your Company and any Data Service Providers (e.g. data analyst or research companies) engaged by your Company. Neither your Company nor any Data Service Provider will be able to allocate such data to your identity. Oncare recommends not to share personal information when using the myoncare Services in the context of corporate health management.
We process such Corporate Health Management Data, including your health data, under an agreement with and in accordance with the instructions of your Company and/or any Data Service Providers. For the purposes of this agreement, the Company is responsible for processing your Corporate Health Management Data as data controller, and Oncare as well as any Data Service Provider engaged by your Company, if any, are the processor of such data. This means that Oncare and any Data Service Provider process the Corporate Health Management Data only according to the instructions of the Company. If you have any questions or concerns regarding the processing of your Corporate Health Management Data , you should primarily contact your Company.
Purposes of Corporate Health Management Data processing: We process your Corporate Health Management Data to be able to provide our myoncare Services to your Company and to you. Your Corporate Health Management Data, which you enter in our myoncare App, will be used by your Company (either directly or via a Data Service Provider) in its corporate health management program. We process this Corporate Health Management Data as part of an agreement with and in accordance with the instructions of your Company and/or any Data Service Provider for its corporate health management program. The transmission of this Corporate Health Management Data is pseudonymized and encrypted. To exercise your rights as a data subject, please contact your Company.
Justification of processing of Corporate Health Management Data: Your Corporate Health Management Data will be processed by your Company in accordance with the provisions of the PDPL and all other applicable data protection regulations. Legal basis for data processing in particular arise from your consent according to Art. 6 Paragraph 1 of the PDPL or any other legal justification valid for your Company. The processing of data by Oncare to Company (either directly or via any service provider engaged by your Company) is, in addition, based on Art. 6 paragraph 2 PDPL.
Your Company as data controller will be responsible to obtain your consent if required due to data protection regulations and the Corporate Health Management Data according to applicable data protection legislation.
SECURE TRANSFER OF PERSONAL DATA
We implement the appropriate technical and organizational security measures to ensure the optimal protection of the personal data stored by us against accidental or intentional manipulation, loss, destruction or access by unauthorized persons. The security levels are continuously reviewed in collaboration with security experts and adapted to new security standards.
The data exchange to and from the App is encrypted. We use TLS and SSL as encryption protocols for secure data transmission. In addition, data exchange is end-to-end encrypted and takes place using pseudo-keys.
DATA TRANSFERS / DISCLOSURE TO THIRD PARTIES
We will only transmit your personal data to third parties within the scope of given statutory provisions or based on your consent. In all other cases, information will not be transferred to third parties unless we are obliged to do so owing to mandatory legal regulations (disclosure to external bodies, including the supervisory authorities or law enforcement authorities).
All transfer of personal data is encrypted during transfer.
SendGrid
We use Sendgrid for sending emails. The provider is Sendgrid Inc., 1801 California Street Suite 500, Denver, CO 80202, USA. Sendgrid is a service with which the sending of emails can be organized. Sendgrid is used to send confirmation emails, transaction confirmations and emails with important information regarding existing requests. The data you enter for the purpose of receiving emails is stored on Sendgrid’s servers. When we send email on your behalf through SendGrid, we use an SSL secured connection.
The emails are related to the following tasks:
- -First login to the Web Application;
- -Password reset workflow for the Web Application;
- -Account creation for the Patient Application;
- -Password reset for the Patient Application;
- -Replacing push notifications by emails for PWA (Progressive Web App) in the following cases:
- When a Caretask is set to expire in one day;
- When a Caretask is set to expire in one hour;
- Medication has been assigned;
- When the privacy policy has been updated.
For the purpose of analysis, the e-mails sent with SendGrid contain a so-called “tracking pixel”, which connects to Sendgrid’s servers when the e-mail is opened. By this, it is possible to determine whether an email message has been opened.
Legal basis
The data processing is based on your consent (Art. 6 para. 1 PDPL). You can revoke this consent at any time. The legality of the data processing operations already carried out remains unaffected by the revocation.
Storage period
The data you provide us for the purpose of receiving emails will be stored by us until you unsubscribe from our services and will be deleted from our servers as well as from the servers of Sendgrid after you unsubscribe.
Please note that your data is usually transmitted by us to a SendGrid server in the USA and stored there. We have concluded a contract with Sendgrid incorporating the EU standard contractual clauses. This ensures that a level of protection comparable to that in the EU exists.
SendGrid (Privacy Policy): https://sendgrid.com/resource/general-data-protection-regulation-2/
Matomo
This is an open source web analysis tool. Matomo (provided by InnoCraft Ltd., New Zealand) does not transfer any data to servers outside the control of ONCARE. Matomo is deactivated when you use our services. Only after you have actively allowed it, your user behaviour will be recorded anonymously. By deactivating, a “permanent cookie” will be stored, if your browser settings allow this. This cookie serves the purpose of signaling Matomo not to capture your browser.
The information on usage collected by the cookie is transferred to our servers and saved there so that we can analyse user behaviour.
The information generated by the cookie about your use is:
- User role
- User geolocation
- User browser
- User OS
- IP Address
- Pages/screens visited in Web and PWA (see section about PWA in this Privacy Statement)
- Buttons the user clicks in Web and PWA
- Time user spent.
The information generated by the cookie on how you use our services will not be passed on to third parties.
You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality. For more information visit: https://matomo.org/privacy-policy/.
The legal basis for the processing of the users’ personal data is Art. 6 para. 1 of the PDPL. The processing of the users’ personal data enables us to analyse the surfing behavior of our users. By evaluating the data obtained, we are able to compile information about the use of the individual components of our services. This helps us to continuously improve our services and its user-friendliness.
We process and store personal data only for as long as this is necessary for the fulfilment of the intended purpose.
GENERAL INFORMATION ON CONSENT TO DATA PROCESSING
Your consent also constitutes permission to data processing under data privacy law. Before granting your consent, we will inform you about the purpose of the data processing and your right of objection.
If the consent also relates to the processing of special categories of personal data, myoncare Portal will explicitly notify you in the consent process. Processing of special categories of personal data according to Art. 9, 12 & 13 PDPL may only take place where necessary on the grounds of legal regulations and there is no reason to assume that your legitimate interests should prevail to the exclusion of processing such personal data or you have given consent to the processing of this personal data according to Art. 12 Paragraph 2 PDPL.
For the data processing for which your consent is required (as explained in this Privacy Notice), the consent will be requested during registration process. After successful registration, the consents can be managed in the account settings of myoncare Portal. In addition, Oncare will ask you to agree on a data processing agreement for the data processed by Oncare under your responsibility as data controller.
DATA RECIPIENTS / CATEGORIES OF RECIPIENTS
In our organization, we ensure that only those persons are entitled to process personal data who are required to do so in order to fulfil their contractual and statutory duties.
In certain cases, service providers support our specialist departments in fulfilling their tasks. The necessary data protection contracts have been concluded with all service providers which are data processor for the personal data. These service providers are Hetzner Online and Google (Google Firebase). Google Firebase is a “NoSQL database” that enables synchronization between the myoncare Portal and the myoncare App used by your patients. NoSQL defines a mechanism of storing data which is modeled in means other than just tabular relations by allowing for easier “horizontal” scaling compared to tabular/ relational database management systems in a cluster of machines.
For this purpose, a pseudo key of the myoncare Portal and the myoncare App is stored in Google Firebase along with the corresponding Careplan. The data transfer is pseudonymized to Oncare and its service providers which means that Oncare and its service providers cannot relate to you or your patient as a data subject. This is achieved by encryption of the data during transfer and the use of pseudo-keys instead of personal identifiers such as names or e-mail addresses to track these transfers. Re-identification happens once the personal data has reached the patient account in myoncare App or your account in myoncare Portal after verification via specific tokens.
Hetzner Online provides cloud storage in which the Firebase Manager, which manages the Firebase URLs for the myoncare Portal, is stored. In addition, Hetzner Online provides the isolated server domain of myoncare Portal in which your and your patients’ personal data are stored. Hetzner Online also hosts myoncare’s video and file management services, which enable encrypted video conferencing and exchange of files between you and your patient, respectively. Access to all personal data by you and your patient is ensured by sending specific tokens. This personal data is encrypted during transfer and pseudonymized during transfer and at rest to Oncare and its service providers. Service providers of Oncare do not have access to this personal data at any time.
TRANSFERS OF PERSONAL DATA TO THIRD COUNTRIES
No personal data collected by myoncare Portal or myoncare App will be stored in the app stores. Personal Data will only be transferred to third countries (outside of Egypt) if this is necessary for the performance of the contractual obligation, is required by law or you have given us your consent.
Synchronization of myoncare Portal with myoncare App takes place via Google Firebase. The Google Firebase servers are hosted in the EU. However, according to the Google Firebase Terms of Service, transient data transfers in countries where Google and its’ service providers have establishments are possible. In the case of certain Google Firebase services, data is only transferred to the USA if no processing takes place in the European Union or the European Economic Area. Unauthorized access to your data is prevented by end-to-end encryption and secure access tokens. Hetzner Online is hosted in Nuremberg, Germany. In order to process Activity Data, interfaces to Google cloud services (in case of GoogleFit) or to AppleHealth within the mobile device of the App User are used. myoncare Tools use these interfaces which are provided by Google and Apple, to request Activity Data from connected Health Apps. The request sent by myoncare Tools does not contain personal data but personal data is provided to myoncare Tools via these interfaces.
PERIOD OF PERSONAL DATA STORAGE
We store your personal data as long as they are needed for the respective processing purpose. Please note that numerous retention periods dictate that personal data must continue to be stored. This applies in particular to commercial law or tax law storage obligations (e.g. Commercial Code, Tax Code, etc.).
Please note that Oncare is also subject to storage obligations which are contractually agreed with you on the basis of legal provisions. In addition, based on the classification and your use of myoncare Portal and App as medical device, certain storage periods arising from medical device law are applicable to the Portal. If there are no further storage obligations, the personal data is routinely deleted once the purpose has been achieved.
In addition, we can store personal data if you have given us your permission to do so or if legal disputes arise and we use evidence within the framework of statutory limitation periods, which can be up to thirty years; the regular limitation period is three years.
OBLIGATION TO PROVIDE PERSONAL DATA
Various personal data are necessary for the establishment, performance and termination of the contractual relationship and the fulfillment of the associated contractual and legal obligations. The same applies to the use of our myoncare Portal and the various functions it provides.
We have summarized the details for you in the above point. In certain cases, personal data must also be collected or made available in accordance with statutory provisions. Please note that it is not possible to process your inquiry or to execute the underlying contractual obligation without providing this personal data.
GRANTED ACCESS RIGHTS
In order for the myoncare App to work on your device, it is necessary for the App to be granted various permissions to access certain functions of the device. For all devices, independent from the operating system used, it is necessary to grant the App certain permissions, which we call “basic permissions”. Depending on the operating system of the device you are using, it may have additional features that require additional permissions to make the app work. If applicable, we will list them in order of operating system (Android or iOS) after the “basic conditions”.
The basic permissions (Android and iOS) are:
- Retrieve WLAN connections
- Required to ensure the functionality of the document download in connection with WLAN connections.
- Retrieve Network Connections
- Required to ensure document download functionality in connection with network connections that are not WLAN connections.
- Disable screen lock (prevent stand-by mode)
- Required so that the videos that are among the provided documents can be played directly in the app without being interrupted by screen lock.
- Access all networks
- Access to all networks is required to download documents.
- Disable sleep mode
- This is necessary so that the videos that are among the provided documents can be played directly in the app, without the playback being interrupted by the occurrence of sleep mode.
- Mobile data / access to mobile data
- If the user wishes to download documents exclusively via WLAN, he can make the appropriate setting in the menu of the app and deactivate the use of mobile data. Access to mobile data is necessary to ensure the functionality of deactivating document downloads via mobile data.
- Camera access
- Camera access is required for scanning of QR codes and for video consultations.
- Microphone access
- This is required for video consultations.
- Access to files and photos
- This is necessary for the exchange of files between you and your connected Portal Users.
- Access to web browsers
- This is necessary to view received files from your connected Portal Users.
We use push notifications, which are messages sent to your mobile device as a service of the myoncare App via services such as Apple Push Notification Service or Google Cloud Messaging Service. These services are standard features of mobile devices. The service provider’s privacy policy governs the access, use, and disclosure of personal information as a result of your use of these services.
AUTOMATED DECISIONS IN INDIVIDUAL CASES
We do not use purely automated processing to make decisions.
YOUR RIGHTS AS DATA SUBJECT
We would like to inform you of your rights as a data subject. These rights are set out in article 1 PDPL and include:
- Right of access (Art. 1, (1.) PDPL): You have the right to access and be provided with a copy of any personal data that we hold about you;
- Right to rectification (Art. 1, (3.) PDPL): You can require us to correct or amend, or erase or complete your personal data;
- Right to restriction of data processing (Art. 1, (4.) PDPL): You can require us to “restrict” our use of your information, so that we can continue the use your information only subject to restrictions;
- Right to be informed of any personal data breach (Art. 1 (5.) PDPL): You have the right to be informed of any personal data breach in relation to your personal data;
- Right to object and/or revoke consent to data processing (Art. 1 (2) and (6) PDPL): You have the right to revoke your consent at any time, if we process your personal data based on your consent. You, further, have the right to object to our use of your personal data whenever it contradicts with your fundamental rights. We will continue to provide our services if they do not depend on the consent that has been revoked and/or objected.
To exercise these rights, please contact us at: privacy@myoncare.com. We will require you to provide satisfactory proof of your identity to ensure that your rights are protected and that your personal data is disclosed only to you and not to any third person.
Please also contact us at any time on privacy@myoncare.com, if you have questions about data processing in our company or if you wish to revoke your consent. You also have the right to contact the relevant data protection supervisory authority.
DATA PROTECTION OFFICER
You can contact our data protection officer to answer all data protection questions at privacy@myoncare.com.
AGE RESTRICTION OF THE APPLICATION
A minimum age of 18 years is required to use myoncare App. If you are below 18 years old, your legal guardian will have to provide the privacy consent required to use the App.
CHANGES TO PRIVACY NOTICE
We explicitly reserve our right to modify this Privacy Notice in future at our own discretion. Modifications or additions may, for instance, be necessary to meet statutory requirements, correspond with technical and economic developments or to meet the interests of the App or Portal Users.
Any modifications are possible at any time and will be published in an appropriate manner and in an appropriate time frame to you before they take effect (e.g. by posting revised Privacy Notice at login or by providing advance notice to you of material changes).
ONCARE GmbH
Postal address
Balanstraße 71a
81541 Munich, Germany
T | +49 (0) 89 4445 1156
F | +49 (0) 89 4445 1157
E | info@myoncare.com
Contact info of the data protection officer:
privacy@myoncare.com
Last Updated on 10 January 2023.
* * * *