Back to Home

GDPR Compliance

Last Updated: May 1, 2023

1. Introduction

At HealthPredict, we are committed to protecting the privacy and security of your personal data. This GDPR Compliance statement explains how we comply with the General Data Protection Regulation (GDPR) and outlines your rights under this regulation.

2. Data Controller

HealthPredict is the data controller for personal data collected through our website and services. This means we determine the purposes and means of processing your personal data.

3. Legal Basis for Processing

We process your personal data on the following legal bases:

  • Consent: Where you have given us explicit consent to process your data for specific purposes.
  • Contract: Where processing is necessary for the performance of a contract with you.
  • Legitimate Interests: Where processing is necessary for our legitimate interests, provided those interests do not override your fundamental rights and freedoms.
  • Legal Obligation: Where processing is necessary to comply with a legal obligation.

4. Your Rights Under GDPR

Under the GDPR, you have the following rights:

  • Right to Access: You have the right to request a copy of the personal data we hold about you.
  • Right to Rectification: You have the right to request that we correct any inaccurate or incomplete personal data.
  • Right to Erasure: You have the right to request that we delete your personal data in certain circumstances.
  • Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data in certain circumstances.
  • Right to Data Portability: You have the right to request that we transfer your personal data to another organization or directly to you.
  • Right to Object: You have the right to object to the processing of your personal data in certain circumstances.
  • Rights Related to Automated Decision Making: You have the right not to be subject to a decision based solely on automated processing that produces legal effects concerning you or significantly affects you.

5. How to Exercise Your Rights

To exercise any of these rights, please contact us at privacy@healthpredict.com. We will respond to your request within one month. Please note that we may need to verify your identity before processing your request.

6. Data Protection Measures

We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including encryption of personal data, regular testing and evaluation of the effectiveness of our security measures, and procedures to ensure the ongoing confidentiality, integrity, availability, and resilience of our processing systems.

7. International Data Transfers

If we transfer your personal data outside the European Economic Area (EEA), we ensure that appropriate safeguards are in place to protect your data, such as Standard Contractual Clauses approved by the European Commission.

8. Data Breach Notification

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority without undue delay and, where feasible, within 72 hours after becoming aware of the breach. If the breach is likely to result in a high risk to your rights and freedoms, we will also notify you directly.

9. Contact Us

If you have any questions about our GDPR compliance or how we handle your personal data, please contact us at:

Email: privacy@healthpredict.com
Address: 123 Health Avenue, San Francisco, CA 94103, United States