At CareApp24, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your data when you use our home care management system.
1. Information We Collect
1.1 Personal Information
We collect the following types of personal information:
- Account Information: Name, email address, phone number, job title, and company details
- Patient Information: Medical history, care plans, health assessments, and treatment records
- Location Data: GPS coordinates for caregiver check-in/check-out verification
- Usage Data: Information about how you interact with our platform
- Device Information: IP address, browser type, operating system, and device identifiers
1.2 Automatically Collected Information
We automatically collect certain information when you use our services:
- Log files and server data
- Cookies and similar tracking technologies
- Analytics data about system usage and performance
2. How We Use Your Information
We use the collected information for the following purposes:
- Service Provision: To provide, maintain, and improve our home care management services
- Authentication: To verify user identity and manage access rights
- Communication: To send important notifications, updates, and support messages
- Analytics: To analyze usage patterns and improve system functionality
- Compliance: To comply with legal obligations and regulatory requirements
- Security: To detect, prevent, and address technical issues and security threats
3. Data Storage and Security
3.1 Data Storage
Your data is stored on secure servers located in the following regions:
- European Union: For EU-based clients (Hungary, Germany)
- Ireland: For Ireland-based clients
We ensure that all data remains within the jurisdiction where it was collected, in compliance with local data protection laws.
3.2 Security Measures
We implement industry-standard security measures including:
- End-to-end encryption for data transmission
- Encrypted data storage (AES-256 encryption)
- Multi-factor authentication (MFA)
- Regular security audits and penetration testing
- Access controls and role-based permissions
- Secure backup systems
- 24/7 monitoring and intrusion detection
4. Data Sharing and Disclosure
We do not sell your personal information. We may share your data only in the following circumstances:
- With Your Consent: When you explicitly authorize us to share specific information
- Service Providers: With trusted third-party service providers who assist in operating our platform (hosting, analytics, customer support)
- Legal Requirements: When required by law, court order, or regulatory authority
- Business Transfers: In connection with a merger, acquisition, or sale of assets
- Healthcare Professionals: With authorized healthcare providers involved in patient care
5. Your Rights
Under applicable data protection laws (including GDPR), you have the following rights:
- Right to Access: Request a copy of your personal data
- Right to Rectification: Correct inaccurate or incomplete data
- Right to Erasure: Request deletion of your personal data ("right to be forgotten")
- Right to Restriction: Limit how we use your data
- Right to Data Portability: Receive your data in a portable format
- Right to Object: Object to certain processing of your data
- Right to Withdraw Consent: Withdraw previously given consent at any time
To exercise these rights, please contact us using the information provided below.
6. Data Retention
We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Medical records are retained in accordance with healthcare regulations and legal requirements in your jurisdiction.
7. Cookies and Tracking Technologies
We use cookies and similar tracking technologies to enhance your experience. You can manage your cookie preferences through your browser settings. Types of cookies we use:
- Essential Cookies: Required for basic functionality
- Performance Cookies: Help us improve our services
- Functionality Cookies: Remember your preferences
- Analytics Cookies: Understand how users interact with our platform
8. Children's Privacy
CareApp24 is not intended for use by children under the age of 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.
9. International Data Transfers
While we primarily store data locally in each operating region, some data may be transferred internationally for processing. We ensure that such transfers comply with applicable data protection laws through:
- Standard Contractual Clauses (SCCs)
- Adequacy decisions by relevant authorities
- Your explicit consent
10. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any significant changes by posting the new policy on our website and updating the "Last Updated" date. Your continued use of our services after changes become effective constitutes acceptance of the updated policy.
11. Third-Party Services
Our platform may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any personal information.
12. Supervisory Authority
If you believe your data protection rights have been violated, you have the right to lodge a complaint with your local data protection supervisory authority:
- Hungary: National Authority for Data Protection and Freedom of Information (NAIH)
- Germany: Federal Commissioner for Data Protection and Freedom of Information (BfDI)
- Ireland: Data Protection Commission (DPC)