Privacy Policy

Privacy and security hold the utmost importance to us Heale Tech Ltd (Heale, we or us) and we are committed to protecting and respecting your privacy.

This privacy policy (Privacy Policy) is meant to help you understand how your personal data, as defined in the Data Protection Law DIFC Law No. 5 of 2020 (as amended from time to time) (Personal Data) and information is collected, used and disclosed when you access or use our website (located at: www.heale.io), any related websites, social media platforms owned or operated by us and associated mobile applications (together the Sites).

Please read this Privacy Policy carefully to understand our views and practices regarding your Personal Data and how we will treat it. 

If you do not wish to be bound by the terms of this Privacy Policy please do not provide any l Personal Data or information to us directly or through our Sites. 

CONSENT

1. By clicking accept to this Privacy Policy or otherwise notifying us of your acceptance of this Privacy Policy, you agree that you are providing express, freely given consent to us processing your Personal Data and information for the purposes outlined in this Privacy Policy and that we may lawfully process your Personal Data on the basis of this consent. 

2. To the extent that our legal basis for processing your Personal Data and information is consent, you have a right to withdraw consent to the collection of your Personal Data and information at any time by sending us a written request to do so by email to privacy@heale.io

INFORMATION WE COLLECT FROM YOU

The Personal Data and information we may collect and process are:

1. Information you give us
   1. When you sign up to our Sites or create an account, we gather registration details, including your name, email, login credentials, passport number, national identification number, address, zip code, country and phone number (for multi-factor authentication and important notifications). Additionally, we may collect any additional information you provide, such as a profile picture. 
   2. When you contact us via contact forms, phone, email, chat services, or other means for questions about our services, customer support or when you participate in surveys, user interviews, or respond to queries, we will collect the Personal Data and information you provide in these interactions, including (without limitation) contact details, uploaded images, and message content.
   3. We may employ vendors to offer interactive features on our Sites, and any information you submit through these features may be retained by us. For example, our chat service may capture and store chat transcripts for customer support purposes. Please refrain from sharing sensitive data through these channels unless specifically requested as part of our service provision. By providing such information directly, you consent to its processing by us and our vendors.
   4. For payment processing, analytics, and other services, we utilize providers like Stripe, who may collect personal data such as your name, address, phone number, bank account, credit card and debit card details (as applicable), including transactional and device information, to enhance service quality, prevent fraud, and conduct analytics.
2. ‍Information we collect about you 
   Throughout your visits to our Sites, we may automatically gather the following details:
   1. Technical Information:
      1. Internet protocol (IP) address used to connect your device to the internet.
      2. Login details, browser type, version, and time zone settings.
      3. Browser plug-in types, operating system, and platform.
   2. Visit Information:
      1. Full Uniform Resource Locators (URL) clickstream, including date and time.
      2. Pages and listings viewed or searched for.
      3. Page response times, download errors, and length of visits to specific pages.
      4. Page interaction details such as scrolling, clicks, and mouse-overs.
      5. Methods used to navigate away from pages and any phone number used to contact customer service.
   3. Device & Usage Information:
      When you interact with us through our services, we automatically receive certain information from the devices you use to access them. This passive collection of data includes geolocation details, internet browser or mobile device specifications, originating website, operating system, and location data through your IP address, indicating the city and state of your login.
   4. Location Information:
      To access our services, you may need to provide your zip code, city or town, and state or province of residence. We also utilize your location data as outlined in this Privacy Policy, including its use in aggregate form.
   5. Cookies and Other Electronic Technologies:
      We employ cookies and similar technologies to enhance your experience on our Sites. Cookies are small pieces of information stored on your device when you visit a website or use a mobile application. These technologies help us track website and mobile application usage, personalize content, and provide features like social media integration. We use essential cookies to provide core functionality and non-essential cookies for functional and marketing purposes. Cookies and/or other similar technologies do not usually contain information that personally identifies a person, but each time you visit our Sites the browser sends the cookie data back to the server to notify the system of the user's previous activity.  When you first visit our Sites, you will be notified that we use first- and third-party cookies to help the Sites function efficiently, to give you a smooth customer experience and to deliver our ads. Most web browsers automatically accept cookies and other similar technologies.  If you wish to disable cookies and/or other similar technologies you may do so through your browser settings, however, please be aware that if you choose to do this, some functionality of our Sites will not be available to you.
   6. Analytics:
      We utilize web analytics vendors, like Google Analytics, to understand how users interact with our services and improve them accordingly. This includes tracking user behavior, website origins, and providing features such as dynamic remarketing and interest-based advertising.
   7. Mobile Device Settings:
      When accessing our Sites using a mobile device, we may also receive and collect identification numbers associated with your device, mobile carrier, device type and manufacturer, and, if enabled, geographical location data (including GPS). Please note that some of the Personal Data and information we collect, for example an IP address, can sometimes be used to approximate a device's location.

USE AND DISCLOSURE OF PERSONAL DATA

1. We use your Personal Data in the following ways:
   1. To fulfil services and meet obligations from contracts between you and us. This includes delivering requested information and services.
   2. To inform you about services similar to those you've already inquired about, as well as to provide suggestions, information and recommendations about other offerings we believe may interest you.
   3. To contact you for administrative purposes, such as providing customer support, responding to inquiries or resolving issues.
   4. To send communications related to our services and our Sites, including updates, event notifications, and feedback requests.
   5. To operate, maintain, improve, optimise and enhance our services and Sites, including enabling access and facilitating transactions.
   6. To secure our services, verify identity, prevent fraud, and improve security features. This includes multi-factor authentication and withdrawal setups.
   7. We may anonymize, or de-identify collected Personal Data and information to create reports to understand usage trends, preferences, and demographics and for research purposes and may disclose such data to affiliates, partners, or third parties.
   8. For Customization and marketing purposes, such as personalizing content based on user interaction and location. 
   9. For internal operations, troubleshooting, data analysis, testing, research, statistical and survey purposes to ensure optimal functioning and presentation of content on our Sites.
   10. To facilitate interactive features of our services and maintain the safety and security of our Sites.
   11. To defend legal rights, comply with laws, and enforce our Terms of Service and policies.
   12. In scenarios such as corporate sales, mergers, or reorganizations, your Personal Data and user information may be part of the transferred assets.
2. We may disclose your Personal Data and information in the following manner:
   1. among our related entities for various purposes, including providing services, marketing, customer support, and improving services.
   2. with third-party companies to perform business-related functions on our behalf, such as marketing, data storage, security, and payment processing.
   3. with third-party organizations if you consent to such disclosure.
   4. as outlined in the relevant section regarding cookies and similar electronic technologies.
   5. to other users of our services if you choose to make it publicly available in areas such as comments.
3. We will only use your Personal Data for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. If we wish to use your Personal Data for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so. We may process Personal Data without your consent, in compliance with the above rules, where this is required or permitted by law.

VOLUNTEERED INFORMATION

1. We also collect Personal Data and information through forums and communities, surveys and customer support communications, your communication to us of ideas for new products or modifications to existing products, feedback and other solicited or unsolicited submissions (Volunteered Information). 
2. By sending us Volunteered Information, you further  agree that we are under no obligation of confidentiality, express or implied, with respect to the Volunteered Information. This section shall survive any termination of your account or the services we offer you.

SECURITY

While no organisation can guarantee perfect security, Heale has implemented and seeks to continuously improve technical and organizational security measures to protect the Personal Data and information provided via the services from loss, misuse, unauthorized access, disclosure, alteration, or destruction.

RETENTION OF YOUR PERSONAL DATA AND INFORMATION

1. We retain your Personal Data and information for as long as we deem necessary for the purpose for which that information was collected and for our legitimate business operations; provided, however, that your Personal Data and information is only retained to the extent permitted or required by applicable laws. Further details of the periods for which we retain data are available on request.
2. When we no longer need to retain your Personal Data and information, we will take reasonable steps to remove it from our systems and records and/or take steps to anonymize it so that you can no longer be identified from it in accordance with our internal document retention policies. When determining the retention period for your Personal Data and information, we take into account various criteria, such as the type of products and services requested by or provided to you, the nature and length of our relationship with you, possible re-enrolment with our products or services, the impact on the services we provide to you if we delete some of your Personal Data and information and mandatory retention periods provided by law.

WHERE WE STORE YOUR PERSONAL DATA

1. We will store your Personal Data and information in the United States of America.  Our servers are located in the United States of America.
2. As a global company, we may transfer your personal data to our affiliates, service providers, or other third parties located outside the United Arab Emirates for the purposes outlined in this Privacy Policy. Such transfers may involve the processing of your personal data in countries with data protection laws that may differ from those in the United Arab Emirates.
3. We will only transfer your Personal Data internationally where permitted by applicable data protection laws and where we have implemented appropriate safeguards to ensure the protection and security of your Personal Data.
4. We take the security of your personal data seriously and implement reasonable technical, physical, and organizational measures to protect your personal data during international transfers. However, please note that no method of transmission over the internet or method of electronic storage is completely secure, and we cannot guarantee the absolute security of your personal data during international transfers.
5. If your personal data is transferred internationally, you may have the right to request access to, rectification, erasure, or restriction of processing of your personal data in accordance with applicable data protection laws. You may also have the right to object to the processing of your personal data or to lodge a complaint with the relevant data protection authority if you believe that your rights have been violated.
6. Please contact us if you want further information on the countries to which we may transfer Personal Data and the specific mechanism used by us when transferring your Personal Data outside the United Arab Emirates.
7. By submitting your Personal Data, you agree to this transfer, storing or processing. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this privacy policy.
8. All Personal Data and information you provide to us are stored on our secure servers. Any payment transactions will be encrypted. Where we have given you (or where you have chosen) a password which enables you to access certain parts of our Sites, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
9. Unfortunately, the transmission of Personal Data and information via the internet is not completely secure. Although we will do our best to protect your Personal Data, We cannot guarantee the security of your data transmitted to our Sites; any transmission is at your own risk. Once we have received your Personal Data and information, we will use strict procedures and security features to try to prevent unauthorised access.

YOUR RIGHTS

1. We will not retain data longer than is necessary to fulfil the purposes for which it was collected or as required by applicable laws or regulations.  
2. You have control of the purpose for collecting data, and the duration for which the Personal Data may be kept. You may request that we delete your Personal Data at any time by contacting us at privacy@heale.io However, if the retention of certain Personal Data is essential for the fulfilment of obligations under any applicable laws we may retain such data.
3. If you would like to access or have a copy of the Personal Data we hold about you, please contact us at privacy@heale.io Please provide as much information as you can about the information you are looking for so that we can deal with your request as quickly as possible. 
4. You have the right to ask us not to process your Personal Data for marketing purposes. We will usually inform you (before collecting your Personal Data) if we intend to use your data for such purposes or if we intend to disclose your Personal Data and information to any third party for such purposes. You can exercise your right to prevent such processing by checking certain boxes on the forms we use to collect your data. You can also exercise the right at any time by contacting us at privacy@heale.io

UPDATING YOUR DETAILS

1. Should any of the Personal Data and information you have provided to us undergo changes, such as; alterations to your email address, name, payment details, or any other provided information or if you harbour concerns regarding the accuracy of Personal Data or account information held on the Sites, please do not hesitate to contact us at privacy@heale.io  
2. We are committed to promptly reviewing and updating our records to ensure their accuracy and relevance.

THIRD PARTY LINKS AND WEBSITES

1. Our Sites may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates.  
2. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies.  Please check these policies before you submit any Personal Data to these third party websites.

PROTECTION OF CHILDREN’S PRIVACY

1. Our Sites are not directed to individuals under the age of eighteen (18), and we request that these individuals do not provide Personal Data through our Sites unless provided by their parents with their parental consent. 
2. We do not knowingly collect Personal Data and information from children under 18 without parental consent. 
3. If we become aware that we have collected Personal Data from a child under the age of 18 without proper parental consent, we will take steps to delete such information as soon as possible.

MARKETING OPT OUT

1. Every email marketing communication we send will include instructions allowing you to opt out of receiving future marketing messages. Moreover, should you decide at any point that you no longer wish to receive such communications or wish to have your name removed from our mailing lists, please reach out to us at: privacy@heale.io 
2. Even if you choose to opt out of marketing communications, we can still send you emails concerning your account or any services you have requested or received from us.

OTHER TERMS

Your access to and use of our services is subject to our Terms of Services (which you sign with us) and our Terms of Use found at www.heale.io/legal/terms-of-use and such other terms, which may be made available to you in connection with your use of our services.

COMPLAINTS

You may submit a written complaint about how we handle your Personal Data and information to our Privacy Officer at privacy@heale.io If you are not satisfied with our handling of your complaint or we have not replied to you within a reasonable period of time, then you are entitled to make a complaint to a data protection authority or supervisory authority.

HOW TO CONTACT US

1. Ensuring transparency and accountability regarding data privacy is paramount to us, and we are committed to providing comprehensive assistance to you regarding any questions or queries you may have about how your Personal Data and information is collected, used, and stored. 
2. Our dedicated support team is readily available to address any concerns and provide detailed explanations regarding the collection methods, purposes, and security measures employed to safeguard your Personal Data and you may contact us at: privacy@heale.io

ASSIGNMENT

Heale may at any time assign, transfer or novate this Privacy Policy to any third party at their sole discretion. You may not assign this Privacy Policy without Heale’s express prior written consent.

APPLICABLE LAW AND JURISDICTION

This Privacy Policy, its subject matter and its formation (and any non-contractual disputes or claims) are governed by English law. We both agree to the exclusive jurisdiction of the courts of the Dubai International Financial Centre.

CHANGES TO OUR PRIVACY POLICY

1. Any changes we may make to this Privacy Policy will be posted on this page and, where appropriate, notified to you by e-mail. 
2. Continued use of our Sites after having been informed of any such changes to these conditions implies acceptance of the revised privacy policy.