UPDATED DATE: April 1, 2022
Data controller (or HCP, healthcare professional including supporting staff) means the natural or legal person who determines the purpose and the means of the processing of the Personal data;
Data processor (or Healtharc including subcontractors) means the natural or legal person processing the Personal data on behalf of the Data Controller;
Data subject (or User) means the physical person of which the Personal data has been collected pursuant to the Services;
Health data means data related to the physical and/or mental health of a natural person, including the provision of health care services, which reveal information about that natural subject;
Personal data means any information (including Health data) related to an identifiable natural individual and collected pursuant to the Services;
We collect, use, disclose and process Personal data to provide you with the Services and to improve your user experience and technical support. Healtharc may use your Personal data to contact and correspond with you, to respond to your inquiries; to track communications with you; to perform safety backups of your Personal data; to assist you or your healthcare professional in tracking your Health Data; to generate global statistics (anonymized data will be used for this purpose); to help the Company develop new services and software features that meet your needs and to improve the Software.
We collect Personal data from you in several different ways when you interact with our Services such as:
Healtharc shall collect and use your Personal data only to the extent that is necessary to provide the Services and will not use your Personal data for purposes other than those why your Personal data was initially collected. We keep your Personal data secured, encrypted and confidential and we do not disclose it, but note the following clarifications and exceptions:
Except for non-identifiable and anonymized information which Healtharc may store in perpetuity and in any reasonable location, Healtharc shall host and store your Personal data for a maximum of 12 months after you delete your account, ask for the deletion of your account or have your account deleted by your healthcare professional. After such period, Healtharc may delete your stored Personal data, with respect to the applicable laws.
Your Personal data may be stored in locations outside of your state or country with respect to the applicable regional laws, such as, but not limited to, the General Data Protection Regulation of the European Union, the HIPAA of the United States of America and the Personal Information Protection and Electronic Documents Act of Canada.
You have the right to access and obtain copies of your Personal data. You also have the right to update, rectify and correct any Personal data that you believe is inaccurate or incomplete. To do so, please contact our Privacy officer at
Healtharc Services are not intended for children under the age of 13. We do not knowingly collect Personal data via the Services from users in this age group. We do, however, collect information about children and babies provided by the parents or legal guardians of such children or babies. We ask our Services’ users not to provide information about any baby or child without first getting their parents’ or legal guardians’ consent. By providing Personal data regarding any baby or child, you are affirming that you are legally authorized to do so. We encourage parents and legal guardians to talk to their children about their use of the Internet and the information they disclose pursuant to the Services.
Healtharc uses commercially reasonable and appropriate physical, electronic, and managerial procedures to safeguard and secure the Personal data we collect. However, Healtharc can’t fully eliminate security and/or privacy risks associated with Personal data created, stored or transferred using the internet and internet technologies.
Healtharc, as the Data processor, shall not be liable for any breach, unauthorized disclosure or unlawful use of your Personal data or Health data that was, at the time of the breach, under the control of your healthcare professional.