HIHFS-MobileApp is provided by MatrixTech LLC., NY, USA (“MatrixTech” or “we”). We are the data controller for the processing of your personal data via HIHFS-MobileApp.
1. Data collected to provide basic functionality
When you start using HIHFS-MobileApp, we ask for your consent pursuant to Article 6 para. 1a) GDPR, because HIHFS-MobileApp’s basic functionality requires the processing of your health data. You can no longer use HIHFS-MobileApp if you withdraw this consent.
a) Running HIHFS-MobileApp
When using HIHFS-MobileApp, your smartphone automatically transmits date and time of access, operating system, type of smartphone, quantity of data transmitted and IP address to us. Processing this data is a technical requirement for using HIHFS-MobileApp. Except the IP address, we analyze this data statistically to improve HIHFS-MobileApp [legal basis: Article 6 para. 1f) GDPR, legitimate interest: providing and improving HIHFS-MobileApp].
b) Registering user account
You can use HIHFS-MobileApp without a user account (“account”) and without entering personal data. However, without an account you can use HIHFS-MobileApp on one smartphone only and if you lose your smartphone, you will not be able to restore your data. To register an account, you must enter your email address and a password [legal basis: Article 6 para. 1b) GDPR].
c) Supporting your treatment
You can use HIHFS-MobileApp to manage and document your treatment by entering e.g.:
Treatment schedules for medication
Measurements like blood pressure
Well-being or symptoms
Age and gender
Doctor appointments and contact information [legal basis: Article 9 para. 2a) GDPR]
d) Selecting medication
You can add medications to your treatment using a medication database. HIHFS-MobileApp preselects the database using the region or language settings of your smartphone. If this fails, we use your IP address to determine your country [legal basis: Article 9 para. 2a) GDPR].
2. Additional functionalities
When activating additional functionalities, we ask for your explicit consent pursuant to Article 9 para. 2a) or Art. 6 para. 1a) GDPR for each single additional functionality:
a) Importing health data
You can import health data from other applications, such as step count from a fitness tracker via Apple HealthKit or Google Fit and add them to your treatment documentation. We use Apple HealthKit or Google Fit data only for this purpose.
Apple HealthKit: We never use your Apple HealthKit data for advertising and similar services or for use-based data mining. We do not disclose information gained through Apple HealthKit to any third party or sell it to advertising platforms, data brokers, or information resellers.
Google Fit: We do not use the content accessed from Google Fit in connection with any advertising, sponsorship or promotions, we do not share or sell that content to any data broker or information reseller, and we do not permit our users to do any of the above.
b) Connecting with friends, family or health care professionals
You can connect your account with other users so that they can view your health data, by generating and sharing a code with them. You can cancel this connection at any time.
c) Receiving personalized content
We use your health data to show you personalized content, e.g. instructions on how to handle or administer your treatment, e.g. a video on how to use an asthma inhaler.
d) Activating newsletter
Our newsletter informs you of new functionality, new products and general information about HIHFS-MobileApp or MatrixTech. We may use your health data (excluding data from Apple HealthKit) to personalize the content of the newsletter.
e) Participating in surveys and studies
We use your health data to identify you as participant for surveys and studies and contact you via HIHFS-MobileApp or email to invite you.
3. Storing your data – location
When your smartphone connects to the Internet, HIHFS-MobileApp transmits your data using data encryption to a centralized database located in the European Union provided by the technical service provider Amazon Web Services, Inc. The technical service provider may access the data for the maintenance, operation or administration of the technical infrastructure.
4. Storing your data – duration
We keep your personal data for no longer than is necessary for the purposes for which your personal data is processed. If you delete your account, we delete any personal data contained in this account. We also delete any personal data contained in this account if you have not logged in for 3 years. This cannot be reversed.
5. Analytics tools
We collect HIHFS-MobileApp usage data with analytics tools to improve HIHFS-MobileApp. You can activate and/or deactivate this in HIHFS-MobileApp settings [legal basis: Article 6 para. 1a) GDPR or para. 1f) GDPR; legitimate interest: improving HIHFS-MobileApp].
a) Google Analytics for Mobile Apps and for Firebase
With Google Analytics (Google LLC) we collect HIHFS-MobileApp usage data, e.g. time and duration of app use. The collected information is stored on a Google server in the United States. The “IP anonymize” function is activated for HIHFS-MobileApp. This means that your IP address will, within Member States of the European Union or other contracting states of the Agreement on the European Economic Area, first be shortened by Google. Only in exceptional cases does Google transfer the full IP address to a Google server in the United States and shortens it there. Google does not combine the IP address transferred by your smartphone with other data. For further information please refer to www.google.com/policies/privacy/partners/.
b) Other tools
Crashlytics, Inc. creates crash reports containing the part of the software that may have caused the crash, and your smartphone model.
New Relic, Inc. provides information on the technical performance and stability of HIHFS-MobileApp.
6. Non-EU service providers
We may rely on third-party service providers from outside the European Union, such as an analytics tool, but we take all reasonable steps to ensure that your data is adequately protected according to the requirements of the data protection laws of the European Union by means of Standard Data Protection Clauses approved by the EU Commission. You can request a copy of the contract with that provider that implements the appropriate protection of your personal data.
7. Your data protection rights
You can request information on the data stored about you, and you have the right to receive your data in a common machine-readable format. You may also request the deletion or correction of your data, or the restriction of its processing, or object to the processing of your data.
8. Withdrawing your consent and contact
You are free to withdraw any consent you have given at any time. If you have any questions or wish to exercise your rights, please contact us e.g. at support@hihfs.org
In case of concerns, you can also contact the applicable data protection authority.
9. Amendments
We reserve the right to amend this Privacy Policy. You can find the latest version on our website HIHFS-MobileAppapp.com. This Privacy Policy was last changed on 08.06.2020.