LINE4HEALTH
General Terms of
Personal Data Protection
WHO ARE WE?
Line4Health s.r.o. is a company with a specialized team of experts in the field of medical information technology and remote diagnostics, headquartered at Prievozská 4D, Bratislava - Ružinov district, 821 09, Slovak Republic, Company ID: 56 009 852, registered in the Commercial Register maintained by the District Court Bratislava III, Section: Sro, Entry No.: 175609/B (Company).
In accordance with the provisions of Article 13 and Article 14 of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, repealing Directive 95/46/ES (GDPR), the Digital Coalition, as the controller, provides you, as the data subject, with information regarding the purpose for which personal data is processed, even when the personal data is not obtained directly from the data subject.
You are required to familiarize yourself with this information and understand it, at the latest by the time your personal data is obtained.
The purpose of the Contract is the provision of examination and monitoring devices by the Company to you, as the patient, for the purpose of conducting necessary examinations and measurements and making them available to your doctor for evaluation and further diagnosis. This corresponds with the purposes of personal data processing within this contractual relationship.
In accordance with the provisions of Article 13 and Article 14 of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, repealing Directive 95/46/ES (GDPR), the Digital Coalition, as the controller, provides you, as the data subject, with information regarding the purpose for which personal data is processed, even when the personal data is not obtained directly from the data subject.
You are required to familiarize yourself with this information and understand it, at the latest by the time your personal data is obtained.
The purpose of the Contract is the provision of examination and monitoring devices by the Company to you, as the patient, for the purpose of conducting necessary examinations and measurements and making them available to your doctor for evaluation and further diagnosis. This corresponds with the purposes of personal data processing within this contractual relationship.
PERMANENT COMMITMENT TO PRIVACY PROTECTION
We respect the privacy of all individuals whose personal data we process in the course of our activities, and therefore we commit to protecting your privacy and handling all information we collect and store about you responsibly.
By reviewing this information, you acknowledge that we may collect, use, and possibly provide your personal data to other public authorities, as well as third parties, to the extent and in the manner described below.
It is important to us that you understand why and how we handle your personal data.
Therefore, please read the information below about how we collect your personal data, how we handle it, and what additional rights you have in connection with the processing of your personal data by the Digital Coalition.
By reviewing this information, you acknowledge that we may collect, use, and possibly provide your personal data to other public authorities, as well as third parties, to the extent and in the manner described below.
It is important to us that you understand why and how we handle your personal data.
Therefore, please read the information below about how we collect your personal data, how we handle it, and what additional rights you have in connection with the processing of your personal data by the Digital Coalition.
WHAT ARE PERSONAL DATA?
We consider personal data to be any information about an identified or identifiable natural person, such as a first name, last name, email address, phone number, IP address, social security number, date of birth, income information, etc.
As the data controller, we may process your data for various purposes, and the legal basis for processing, as well as the duration of processing and storage, may differ depending on the specific purpose of the processing operations.
As the data controller, we may process your data for various purposes, and the legal basis for processing, as well as the duration of processing and storage, may differ depending on the specific purpose of the processing operations.
WHAT ARE OUR CONTACT DETAILS?
If you have any questions or comments regarding data protection, you can contact us in writing, by email, or by phone using the following contact details:
National Coalition for Digital Skills and Jobs of the Slovak Republic
Prievozská 4D
Bratislava - Ružinov district, 821 09
Slovak Republic
Phone: +421 907 543 450
Email: kontakt@line4health.com
Contact for the Data Protection Officer: kontakt@line4health.com
To strengthen the guarantees and legal protection of your rights and freedoms in the processing of your personal data, we have appointed a Data Protection Officer to oversee the lawfulness of the processing of your personal data.
The Data Protection Officer is your contact point for any questions or potential requests regarding data protection and for exercising your rights. You can contact them at the phone number or email address above, or in writing; please mark any written correspondence with “to the attention of the Data Protection Officer".
National Coalition for Digital Skills and Jobs of the Slovak Republic
Prievozská 4D
Bratislava - Ružinov district, 821 09
Slovak Republic
Phone: +421 907 543 450
Email: kontakt@line4health.com
Contact for the Data Protection Officer: kontakt@line4health.com
To strengthen the guarantees and legal protection of your rights and freedoms in the processing of your personal data, we have appointed a Data Protection Officer to oversee the lawfulness of the processing of your personal data.
The Data Protection Officer is your contact point for any questions or potential requests regarding data protection and for exercising your rights. You can contact them at the phone number or email address above, or in writing; please mark any written correspondence with “to the attention of the Data Protection Officer".
PROTECTION OF PERSONS UNDER 16 YEARS OLD
If you are under 16 years old, please ask your legal guardians for their consent before providing any personal data about yourself or your legal guardians to us. Without such consent, you are not authorized to provide us with your personal data.
HOW DO WE PROCESS YOUR PERSONAL DATA?
We may process your data in various ways and for different purposes, depending on whether you are simply a visitor to our website or an applicant or participant in a project. However, we always handle your data in accordance with applicable data protection regulations.
Therefore:
At the provided links, you will find sections of the privacy protection terms concerning the processing of personal data related to specific processing purposes. These documents include information on what personal data is processed, for what purpose, on what legal basis, and for how long it is stored.
Therefore:
- If you are a visitor to our website and we are processing your personal data, you can find more information about how we process your data at the following link:
- If you are entering into a Contract for the provision of a monitoring device, you can find more information about the processing of your personal data at the following link:
At the provided links, you will find sections of the privacy protection terms concerning the processing of personal data related to specific processing purposes. These documents include information on what personal data is processed, for what purpose, on what legal basis, and for how long it is stored.
ARE YOU OBLIGED TO PROVIDE YOUR PERSONAL DATA TO US?
In pre-contractual relationships and during the fulfillment of a contract, we require personal data from you, which we process for various purposes and on different legal grounds.
Legal obligation (Article 6(1)(c) GDPR): If the legal basis for processing your personal data is the fulfillment of our legal obligations and you refuse to provide your personal data, this may result in damages for which we may seek compensation from you (e.g., we are required to provide your data to regulatory authorities during financial audits concerning the use of funds from a non-repayable financial contribution).
Contractual necessity (Article 6(1)(b) GDPR): If the legal basis for processing your personal data is the conclusion or performance of a contractual relationship and you refuse to provide your personal data, this may prevent us from entering into a binding legal contract with you.
Consent (Article 6(1)(a) GDPR or Article 9(2)(a) GDPR): If the legal basis for processing your personal data is your consent, you can withdraw your consent at any time, using the same method by which it was originally given. The granting of consent for data processing for the required purposes is never a condition for entering into a contractual relationship with us.
Legitimate interests (Article 6(1)(f) GDPR): If the legal basis for processing your personal data is our legitimate interests, you are required to tolerate such processing, but you have the right to object to it. You can learn more about this right in a specific section below.
Public interest (Article 6(1)(e) GDPR): If the legal basis for processing your personal data is the performance of a task carried out in the public interest, we are authorized to process your personal data under the conditions outlined in this document.
Legal obligation (Article 6(1)(c) GDPR): If the legal basis for processing your personal data is the fulfillment of our legal obligations and you refuse to provide your personal data, this may result in damages for which we may seek compensation from you (e.g., we are required to provide your data to regulatory authorities during financial audits concerning the use of funds from a non-repayable financial contribution).
Contractual necessity (Article 6(1)(b) GDPR): If the legal basis for processing your personal data is the conclusion or performance of a contractual relationship and you refuse to provide your personal data, this may prevent us from entering into a binding legal contract with you.
Consent (Article 6(1)(a) GDPR or Article 9(2)(a) GDPR): If the legal basis for processing your personal data is your consent, you can withdraw your consent at any time, using the same method by which it was originally given. The granting of consent for data processing for the required purposes is never a condition for entering into a contractual relationship with us.
Legitimate interests (Article 6(1)(f) GDPR): If the legal basis for processing your personal data is our legitimate interests, you are required to tolerate such processing, but you have the right to object to it. You can learn more about this right in a specific section below.
Public interest (Article 6(1)(e) GDPR): If the legal basis for processing your personal data is the performance of a task carried out in the public interest, we are authorized to process your personal data under the conditions outlined in this document.
WHO, BESIDES US, MAY HAVE ACCESS TO YOUR DATA?
We may share your personal data with other third parties, specifically trusted and contractually bound external business partners, who assist us in processing and protecting your personal data. These are so-called recipients and processors who help us create and maintain functional and secure systems, and who provide software or other services essential for processing your personal data for the aforementioned purposes.
We are also obliged to provide your personal data to authorized public authorities when they exercise their legal rights according to relevant special laws (e.g., police investigations, financial and administrative controls). These authorities, however, are not considered recipients under GDPR.
In connection with fulfilling our legal obligations as a data controller, the recipients of your personal data may or could include entities designated by legal regulations, particularly the tax office, state administrative authorities, and public authorities for control and supervision purposes, courts, and law enforcement agencies.
Depending on the purpose of processing and the specific circumstances, other individuals may also be recipients of your personal data (in the position of processors or independent controllers), especially:
When we process your personal data through processors, a special category of data recipients, we ensure that they comply with applicable legal regulations and the terms agreed in the data processing agreement, that they are bound by confidentiality, and that they protect your data in accordance with GDPR requirements.
We are also obliged to provide your personal data to authorized public authorities when they exercise their legal rights according to relevant special laws (e.g., police investigations, financial and administrative controls). These authorities, however, are not considered recipients under GDPR.
In connection with fulfilling our legal obligations as a data controller, the recipients of your personal data may or could include entities designated by legal regulations, particularly the tax office, state administrative authorities, and public authorities for control and supervision purposes, courts, and law enforcement agencies.
Depending on the purpose of processing and the specific circumstances, other individuals may also be recipients of your personal data (in the position of processors or independent controllers), especially:
- Providers of postal and delivery services;
- External suppliers of programming work and system management;
- Companies that are external providers of accounting, auditing, or HR services;
- Providers of marketing activity services;
- External consultants, lawyers, courts, and executors;
- The data protection officer under GDPR;
- Companies providing registry and archiving services;
- Hosting providers, data center service providers;
- Cloud service providers.
When we process your personal data through processors, a special category of data recipients, we ensure that they comply with applicable legal regulations and the terms agreed in the data processing agreement, that they are bound by confidentiality, and that they protect your data in accordance with GDPR requirements.
DOES AUTOMATED PROCESSING OF YOUR DATA, INCLUDING PROFILING, WITH LEGAL EFFECTS ON YOU OCCUR?
No, it does not occur.
DOES CROSS-BORDER TRANSFER OF YOUR PERSONAL DATA OCCUR?
No, it does not occur.
WHAT ARE YOUR RIGHTS AS A DATA SUBJECT?
According to applicable data protection laws, as a data subject, you have certain rights:
[Right to Access] You have the right to be provided with a copy of the personal data we hold about you, as well as information about how we use your personal data. In most cases, your personal data will be provided to you in written form, unless you request otherwise. If you have requested this information by electronic means, it will be provided to you electronically, where technically possible.
[Right to Rectification] We take reasonable steps to ensure the accuracy, completeness, and up-to-date status of the information we hold about you. If you believe that the data we have is inaccurate, incomplete, or outdated, please do not hesitate to request that we amend, update, or complete this information. As a data subject, you have the right to request the rectification of personal data concerning you if it is incorrect or to have it completed if it is incomplete. We are obliged to comply with your request for rectification or completion of personal data without undue delay.
[Right to Erasure] In certain circumstances, you have the right to request the deletion of your personal data, for example, if the personal data we have collected is no longer needed for the original purpose of processing, or if you withdraw your consent to the processing. However, your right must be assessed in light of all relevant circumstances. For example, if the processing of your data is necessary to comply with our legal obligation or to establish, exercise, or defend legal claims, we may not be able to comply with your request.
[Right to Restriction of Processing] In certain circumstances, you have the right to request that we stop using your personal data. This could occur, for example, if you believe the personal data we hold is inaccurate or if we no longer need your personal data. If processing has been restricted in accordance with Article 18(1) GDPR, such personal data may, with the exception of storage, only be processed: a) with the consent of the data subject, or b) for the establishment, exercise, or defense of legal claims, or c) for the protection of the rights of another natural or legal person, or d) for reasons of important public interest of the Union or a Member State.
[Right to Data Portability] In certain circumstances, you have the right to request that we transfer the personal data you have provided to us to another third party of your choice. If the processing is based on consent or on a contract and is carried out by automated means, you have the right to receive your personal data that you have provided to us in a structured, commonly used, and machine-readable format, and to have the right to transmit those data to another controller. Where technically feasible, you have the right to have the data transferred directly from one controller to another.
[Right to Object] If the processing is based on our legitimate interests (Article 6(1)(f) GDPR), you have the right to object at any time, for reasons relating to your particular situation, to the processing of your personal data, including profiling based on those interests. In such a case, we may no longer process your personal data unless we demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms as a data subject, or for the establishment, exercise, or defense of legal claims. If you object to the processing of personal data for direct marketing purposes, including profiling to the extent it is related to such direct marketing, your personal data must no longer be processed for such purposes.
[Rights Related to Automated Decision-Making] You have the right to refuse automated decision-making, including profiling, that results in a legal or similarly significant effect on you.
[Right to Withdraw Consent] In most cases, we do not process your personal data based on your consent. However, if in specific cases we do process your data based on your consent, you have the right to withdraw your consent to the further use of your personal data.
[Right to File a Complaint or Seek Judicial Protection] As a data subject, you also have the right to file a complaint with the supervisory authority at any time, which is the Slovak Data Protection Office (more information can be found on the website www.dataprotection.gov.sk), or to bring a lawsuit before the relevant court.
[Right to Access] You have the right to be provided with a copy of the personal data we hold about you, as well as information about how we use your personal data. In most cases, your personal data will be provided to you in written form, unless you request otherwise. If you have requested this information by electronic means, it will be provided to you electronically, where technically possible.
[Right to Rectification] We take reasonable steps to ensure the accuracy, completeness, and up-to-date status of the information we hold about you. If you believe that the data we have is inaccurate, incomplete, or outdated, please do not hesitate to request that we amend, update, or complete this information. As a data subject, you have the right to request the rectification of personal data concerning you if it is incorrect or to have it completed if it is incomplete. We are obliged to comply with your request for rectification or completion of personal data without undue delay.
[Right to Erasure] In certain circumstances, you have the right to request the deletion of your personal data, for example, if the personal data we have collected is no longer needed for the original purpose of processing, or if you withdraw your consent to the processing. However, your right must be assessed in light of all relevant circumstances. For example, if the processing of your data is necessary to comply with our legal obligation or to establish, exercise, or defend legal claims, we may not be able to comply with your request.
[Right to Restriction of Processing] In certain circumstances, you have the right to request that we stop using your personal data. This could occur, for example, if you believe the personal data we hold is inaccurate or if we no longer need your personal data. If processing has been restricted in accordance with Article 18(1) GDPR, such personal data may, with the exception of storage, only be processed: a) with the consent of the data subject, or b) for the establishment, exercise, or defense of legal claims, or c) for the protection of the rights of another natural or legal person, or d) for reasons of important public interest of the Union or a Member State.
[Right to Data Portability] In certain circumstances, you have the right to request that we transfer the personal data you have provided to us to another third party of your choice. If the processing is based on consent or on a contract and is carried out by automated means, you have the right to receive your personal data that you have provided to us in a structured, commonly used, and machine-readable format, and to have the right to transmit those data to another controller. Where technically feasible, you have the right to have the data transferred directly from one controller to another.
[Right to Object] If the processing is based on our legitimate interests (Article 6(1)(f) GDPR), you have the right to object at any time, for reasons relating to your particular situation, to the processing of your personal data, including profiling based on those interests. In such a case, we may no longer process your personal data unless we demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms as a data subject, or for the establishment, exercise, or defense of legal claims. If you object to the processing of personal data for direct marketing purposes, including profiling to the extent it is related to such direct marketing, your personal data must no longer be processed for such purposes.
[Rights Related to Automated Decision-Making] You have the right to refuse automated decision-making, including profiling, that results in a legal or similarly significant effect on you.
[Right to Withdraw Consent] In most cases, we do not process your personal data based on your consent. However, if in specific cases we do process your data based on your consent, you have the right to withdraw your consent to the further use of your personal data.
[Right to File a Complaint or Seek Judicial Protection] As a data subject, you also have the right to file a complaint with the supervisory authority at any time, which is the Slovak Data Protection Office (more information can be found on the website www.dataprotection.gov.sk), or to bring a lawsuit before the relevant court.
SUBMISSIONS REGARDING THE USE OF YOUR PERSONAL DATA
We care about the protection of your personal data, and therefore we strive to secure it through individual, modern technical and organizational measures, as well as by providing you with the opportunity to exercise your rights as a data subject under GDPR at any time through a request.
You can send requests to exercise your rights as a data subject either electronically or in writing to the contact details of the Data Protection Officer provided above. This process does not affect your right to withdraw your consent for the processing of personal data, which you can always do as easily as you gave it (e.g., if you gave your consent electronically, you can always withdraw it by email or through the application without the need to send a written request), or your right to object by automated means using technical specifications, if available.
We recommend explaining in as much detail as possible what right under GDPR you are exercising, your identification details (for identity verification), and which purposes and data the request relates to. For overly general requests, we may need to ask for clarification.
GDPR sets out general conditions for exercising your individual rights. However, the existence of these rights does not automatically mean that each request will be granted, as there may be exceptions in specific cases, or certain rights may be subject to specific conditions that may not always be met. We will always assess your request regarding a particular right in accordance with legal regulations and our internal policy for handling data subject inquiries.
If the Company is not the appropriate party to handle your request for exercising data subject rights, your request will be forwarded without delay to the appropriate controller.
Each request for exercising data subject rights that we receive will be individually and competently assessed, and we will inform you of the outcome within one month of receiving your request.
Please note that when processing your request to exercise data subject rights under GDPR, we may ask you to provide credible verification of your identity, particularly if there are doubts about your identity. It is our duty to prevent the disclosure of your personal data to unauthorized persons. The process of handling your request to exercise your rights as a data subject under GDPR is free of charge. However, if your request is manifestly unfounded or excessive, particularly if it is repetitive, we are entitled to charge a reasonable fee that reflects the administrative costs involved.
You can send requests to exercise your rights as a data subject either electronically or in writing to the contact details of the Data Protection Officer provided above. This process does not affect your right to withdraw your consent for the processing of personal data, which you can always do as easily as you gave it (e.g., if you gave your consent electronically, you can always withdraw it by email or through the application without the need to send a written request), or your right to object by automated means using technical specifications, if available.
We recommend explaining in as much detail as possible what right under GDPR you are exercising, your identification details (for identity verification), and which purposes and data the request relates to. For overly general requests, we may need to ask for clarification.
GDPR sets out general conditions for exercising your individual rights. However, the existence of these rights does not automatically mean that each request will be granted, as there may be exceptions in specific cases, or certain rights may be subject to specific conditions that may not always be met. We will always assess your request regarding a particular right in accordance with legal regulations and our internal policy for handling data subject inquiries.
If the Company is not the appropriate party to handle your request for exercising data subject rights, your request will be forwarded without delay to the appropriate controller.
Each request for exercising data subject rights that we receive will be individually and competently assessed, and we will inform you of the outcome within one month of receiving your request.
Please note that when processing your request to exercise data subject rights under GDPR, we may ask you to provide credible verification of your identity, particularly if there are doubts about your identity. It is our duty to prevent the disclosure of your personal data to unauthorized persons. The process of handling your request to exercise your rights as a data subject under GDPR is free of charge. However, if your request is manifestly unfounded or excessive, particularly if it is repetitive, we are entitled to charge a reasonable fee that reflects the administrative costs involved.
CHANGE OF THESE TERMS
Protection of personal data is not a one-time matter for us. The information we are required to provide to you regarding our processing of personal data may change or become outdated.
For this reason, we reserve the right to modify and amend these terms at any time and to any extent. If we make substantial changes to this information, we will bring it to your attention, for example, through a general notice on this website or a specific notice via email.
This version of the Data Protection Terms was issued on October 1, 2024.
For this reason, we reserve the right to modify and amend these terms at any time and to any extent. If we make substantial changes to this information, we will bring it to your attention, for example, through a general notice on this website or a specific notice via email.
This version of the Data Protection Terms was issued on October 1, 2024.
© LINE4HEALTH s.r.o.