Last Updated: 23/08/2020
Welcome to Healphant.
What we collect
When you create an account, post and discuss an issue, and/or make a payment or send an invoice, we collect personal information, as explained further below. If you are a patient, and create an account or submit an issue, we collect personal data such as your email address and your name and date of birth, as well as data pertaining to your health. This is based first on patient consent, second on contractual obligations, as we cannot provide our service without this information, and last on obligations by law, namely obligations in order to issue an invoice. Indeed, we need your contact details to keep you informed of your consultancy and to ensure the consultation takes place safely. Other personal data such as your date of birth we need to fulfil our legal obligations with regards to the payment of the consultation. We try our best to guide you through explaining the issue with the minimum personal data as is necessary and in as an anonymous manner as possible. We do not use your full name when communicating the issue to Healthcare professionals, but rather a pseudonym. We have put into place several security measures and strive to secure your personal data. For instance, when you exchange with a Healthcare professional, either through our messaging platform or through video-consultation, all the information exchanged is encrypted. If you are a Healthcare professional, we process personal information such as your name, medical college number and ID card number to create an account thereby allowing you to find patients or for your patients to reach you. It is also necessary in order for us to verify the identity and habilitation to carry out medical consultancies of the medical professionals on our platform. The legal basis for the processing is therefore first contractual and second to fulfill legal obligations. If you are a patient or a Healthcare professional, we may use the email address you share when registering for marketing or communications purposes, in accordance with legal consent requirements. An unsubscribe button will always be present in any direct marketing email. You may also unsubscribe to marketing emails by contacting us, at the following address: firstname.lastname@example.org
Healphant’s website and services are not intended for, or designed to attract, individuals under the age of 18. We do not knowingly collect personally identifiable information from any person under the age of 18 without parental supervision.
How we store and use personal data:
We take industry standard security measures to protect personal information under our control from loss, misuse, and breach, but like with every website, there are risks associated with uploading your information online. When you are asked for your personal information, you are only sharing that information with Healphant, unless clearly stated otherwise. We use this information to strive to bring an efficient and positive service to patients and Healthcare professionals alike, by connecting them swiftly and safely. You retain the right to view and request copies, deletion and modification of the personal data we collect from you. Your profile or issues can always be modified or deleted. To exercise your rights, contact email@example.com
All stored information is securely protected. We do not have full credit card numbers available to us, displayable or downloadable. Credit card information is stored by our payment transaction provider, Stripe.
We use social media and social networking services for visibility, to promote our services. These platforms and applications are often provided by third party service providers. Please see their privacy policies for more information.
__stripe_mid (or “muid”; part of stripe.js): First party cookie which serves as fraud prevention and detection. Has a life duration of 1 year. Belongs to the domain stripe.com (applies to webpages served by stripe.com like dashboard or docs)
__stripe_sid (or “sid”; part of stripe.js): First party cookies which serves as fraud prevention and detection. Has a life duration of 30 minutes. Belongs to the domain m.stripe.com (common cookie, applies to both stripe.com and merchant domain that includes stripe.js)
m (or “guid”; part of stripe.js): Third party cookie which serves as fraud prevention and detection. Has a life duration of 2 years. Belongs to the domain m.stripe.com (common cookie, applies to both stripe.com and merchant domain that includes stripe.js)
session: First party cookie which serves login session for Stripe Dashboard. Has a life duration up to 90 days.
lsession: First party cookie which serves as login session for Stripe Express Dashboard for Stripe Express Users. Has a life duration of 7 days.
stripe.csrf: First party cookie which serves as cross-site request forgery protection for Stripe Dashboard Users. Has a life duration of 1 year.
cliauth_secret: First party cookie which is used to confirm authentication for the Stripe CLI. Has a life duration equal to the amount of time the session took.
art_token/cbt_token/cct_token/cdt_token/ect_toksvt_token/lc_token/prt_token/act_token: First party cookies used to confirm authentication for account recovery/change of bank account/login challenge/password reset/support request/adding an email/new device. Has a life duration equal to the amount of time the session took.
NID: Third party cookie used by reCAPTCHA, an additional security measure that is sometimes used when logging into Stripe. Has a life duration of 6 months.
Alternatively, you can also contact us at the following email address: firstname.lastname@example.org