For the purpose of processing personal data, Alfaizoon may engage data processors and/or, at its sole discretion, hire other persons to perform certain functions on behalf of Alfaizoon. In such cases, Alfaizoon shall take necessary measures to ensure that such data is processed by the personal data processors in accordance with instructions of Alfaizoon and applicable legislation. Alfaizoon shall also require personal data processors to implement appropriate measures for the security of personal data. In such cases, Alfaizoon shall ensure that such persons will be subject to the non-disclosure obligation and will not be able to use this information for any other purpose, except to the extent necessary to perform the functions assigned to them.
Alfaizoon services is responsible for safeguarding your personal information (information you have voluntarily disclosed to us) and using this information only for the purpose for which it was collected (as explained to you prior to collection and agreed by you).
The following is general information on Alfaizoon’s privacy practices. Please read our privacy statement and let us know if you have any questions.
How we are compliant with the EU GDPR regulation
This is a notice to inform you of the Alfaizoon policy about all the information that we record about you. It sets out the conditions under which we may process any information that we collect from you, or that you provide to us. It covers information that could identify you (“personal information”) and information that could not. In the context of the law and this notice, “process” means to collect, store, transfer, use or otherwise act on information.
The operations of Alfaizoon are in accordance with the European Union’s general data protection regulation (GDPR), effective May 25, 2018. Alfaizoon has made the GDPR a priority, and we are and have always been fully aligned with the regulation’s intended result: the protection of your privacy and personal data
This policy (together with our terms and conditions and any other documents referred to in it) sets out:
Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it.
For the purposes of European economic area data protection law, (the “data protection law”), the data controller is Faizan Ahmed, his email is Care@Alfaizoon.com his office address is at PO Box 9354 Dubai, UAE
Personal information we collect about you (PIPEDA)
According to the federal personal information protection and electronic documents act, 2000 (PIPEDA), “personal information” means information about an identifiable individual. The information you provide to Alfaizoon is considered personal information it is possible to relate it back to you through your name, address, email address, telephone number and any other information that can identify you.
If information cannot be related to an identifiable individual it is considered anonymous information (such as laboratory results identified by alpha-numeric identifier instead of an individual’s name). Whenever possible, Alfaizoon works with anonymous information. This privacy statement does not apply to anonymous information.
This terms also applies to personal data within the scope of Alfaizoon privacy shield certification:
For the purposes of this statement, “personal data” means information that relates to a natural person (a “data subject”) and can be linked either directly or indirectly to that data subject. In addition, certain personal data covered by Alfaizoon’s privacy shield certification may be subject to more specific privacy policies of Alfaizoon or to contracts.
In the case of any conflict between these policies and contracts and the principles, the principles will control. Other data may include
Information we receive from other sources:
We receive information about you from other service users, from third-party services, from our related companies, and from our business and channel partners.
Other users of the services: other users of our services may provide information about you when they submit content through the services. We also receive your email address from other service users when they provide it in order to invite you to the services. Similarly, an administrator may provide your contact information when they designate you as the billing or technical contact on your company’s account.
Alfaizoon companies: we receive information about you from companies that are owned or operated by Alfaizoon, in accordance with their terms and policies.
Alfaizoon partners: we work with a global network of healthcare/Partners who provide consultation, and other services around our Client services. Some of these partners also help us to market and promote our services, generate leads for us, and resell our products. We receive information from these partners, such as technical contact information, company name, what Alfaizoon service you have opted for or may be interested in, evaluation information you have provided, and what country you are in.
Other partners: we receive information about you and your activities on and off the services from third-party partners, such as advertising and market research partners who provide us with information about your interest in and engagement with, our services and online advertisements.
Cookies and other technologies
Most web browsers automatically accept cookies and similar technologies, but if you prefer, you can change your browser to prevent that and your help screen will tell you how to do this. We also give you information about disabling cookies. However, you may not be able to take full advantage of our website if you do so.
A number of cookies and similar technologies we use last only for the duration of your web or app session and expire when you close your browser or exit the app. Others are used to remember you when you return to the platform and will last for longer.
We use these cookies and other technologies on the basis that they are necessary for the performance of a contract with you, or because using them is in our legitimate interests (where we have considered that these are not overridden by your rights), and, in some cases, where required by law, where you have consented to their use.
Alfaizoon also uses persistent cookies for a number of legitimate interests, such as to be able to track the number of unique visitors to the site. Additionally, persistent cookies enable Alfaizoon to tailor content and related subject matter to match your preferred interests and/or for the purposes of not showing you the same content and related subject matter repeatedly.
We may also employ cookies to compile anonymous, aggregated statistics that allow us to understand how users use our site and to help us improve the structure of our website. We cannot identify you personally in this way.
Types of cookies we use on our website
The website capture limited data (user-agent, HTTP referrer, last URL requested by the user, client-side and server-side clickstream) about visits to the Website. Alfaizoon may use this data to analyze patterns and to perform system maintenance. You have several options on how to manage cookies on your device. All browsers allow you to block or delete cookies from your device. You may consult the privacy features in your browser to understand what you should do if you need to manage cookies.
How we use your information
Your personal information is used and disclosed only for the purposes for which it is collected as consented by you, unless otherwise required by the law.
If information is disclosed to third parties, we will not disclose more information than is required.
You can see a full list of the types of data we process, the purpose for which we process it and the lawful basis on which it is processed here. For a list of data processors we use, please send us a message and we will send you our data processors.
We use information held about you in the following ways:
We may use your personal information for the following purposes:
In some cases our use of your information is based on your consent, for example where you contact us from our contact us feature in which case you can withdraw your consent at any time by following the unsubscribe link on Alfaizoon emails. In other cases we process your personal information because it is necessary to deliver a service you have requested.
To ensure that we are appropriately balancing Alfaizoon’s legitimate interests against your rights and interests, you are entitled to object to such processing at any time as described under “your personal data rights” below.
Alfaizoon may also process and disclose your personal information to the extent required by law, applicable regulation or judicial process.
Please keep in mind that Alfaizoon does not trade or sell your personal information.
We May Share Your Information with:
Any member of our group, which means our subsidiaries, our partner physician, our ultimate holding company and its subsidiaries, who support our processing of personal data under this policy. If any of these parties are using your information for direct marketing purposes, we will only transfer the information to them for that purpose with your prior consent.
Selected Third Parties
Our selected third parties may include:
If Alfaizoon or substantially all of its assets are acquired by a third party, in which case personal data held by it about its customers will be one of the transferred assets.
If we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply our terms of supply terms and other agreements with you; or to protect the rights, property, or safety of Alfaizoon, our customers, or others. This includes exchanging information with other companies and organizations for the purposes of fraud protection and credit risk reduction and to prevent cybercrime.
Delaware / Delaware Do Not Track Disclosures
Various third parties are developing or have developed signals or other mechanisms for the expression of consumer choice regarding the collection of information about an individual consumer’s online activities over time and across third-party websites or online services (e.g., browser do not track signals). Currently, Alfaizoon do not monitor or take any action with respect to these signals or other mechanisms.
Where we store your information
Alfaizoon has a data privacy officer who is responsible for ensuring that your personal information is collected, used, disclosed (shared) and retained in compliance with applicable privacy regulations.
However, the data that we collect from you may be transferred to, and stored at, a destination outside the European economic area (“EEA”) that may not be subject to equivalent data protection law.
In order to store it
In order to enable us to provide products or services to you and fulfil our contract with you. This includes Client Centered Services fulfilment, processing of, and the provision of support services.
How we store and secure information we collect
Information storage and security
We use industry standard technical and organizational measures to secure the information we store.
While we implement safeguards designed to protect your information, no security system is impenetrable and due to the inherent nature of the internet, we cannot guarantee that data, during transmission through the internet or while stored on our systems or otherwise in our care, is absolutely safe from intrusion by others.
If you use our server or data center services, responsibility for securing storage and access to the information you put into the services rests with you and not Alfaizoon. We strongly recommend that server or data center users configure SSL to prevent interception of data transmitted over networks and to restrict access to the databases and other storage points used.
How long we keep information
How long we keep information we collect about you depends on the type of information, as described in further detail below. After such time, we will either delete or anonymize your information or, if this is not possible (for example, because the information has been stored in backup archives), then we will securely store your information and isolate it from any further use until deletion is possible.
Information you share on the services: if your account is deactivated or disabled, some of your information and the content you have provided will remain in order to allow other users to make full use of the services. For example, we continue to display messages you sent to the users that received them and continue to display content you provided.
Marketing information: if you have elected to receive marketing emails from us, we retain information about your marketing preferences for a reasonable period of time from the date you last expressed interest in our services, such as when you last opened an email from us or ceased using your Alfaizoon account. We retain information derived from cookies and other tracking technologies for a reasonable period of time from the date such information was created.
How to access and control your information
You have certain choices available to you when it comes to your information. Below is a summary of those choices, how to exercise them and any limitations.
Consent to provide personal information
We inform you when we need to collect your personal information and why we are collecting it.
Alfaizoon only collects information from you after you give us your consent. The only exception is when the law requires the collection, use or disclosure of a person’s information without consent (e.g. Reporting infectious diseases for public health safety).
Providing us with personal information is entirely voluntary. By giving us your personal information, you consent to allow us to use and disclose your personal information as described to you. If you do not agree with the use and disclosure of your information, please do not provide us with your personal information.
Some of our services can only be offered if you provide personal information so, if you choose not to provide your information, we may not be able to provide you with those services.
You may withdraw consent at any time. You will be informed of the effect that withdrawing your consent will have.
Your withdrawal of consent will only apply from the point that you withdrew consent. Your withdrawal of consent is not retroactive.
This means we will not remove information that has already been disclosed.
Client Centered Services subjects
Alfaizoon collects anonymized medical and health information about the individuals who take part in Client Centered Services through Healthcare (Partner). The Healthcare who examine the individuals before and during the Client Centered Services, are responsible for ensuring that the individuals understand and consent to the gathering of sensitive personal data relating to an individual’s health and lifestyle, and the transfer of such anonymized information to third parties who may be providing services for the Client Centered Services. The requirements of data protection and data privacy laws generally mandate that consent must be obtained before any health or sensitive data is collected from individuals. These informed consent agreements state that data may be transferred to other countries and to other parties.
Transfer to third parties
To facilitate the purposes of Client centered Service, personal data may be shared in the normal course and scope of business with third parties to whom Alfaizoon has chosen to outsource work. In the event that personal data is transferred to a third party, Alfaizoon requires in its agreements with third parties that adequate privacy precautions are taken that provide the same level of privacy protection as is required by the principles of the privacy shield. In certain circumstances, Alfaizoon may remain responsible and liable under privacy shield principles if such third parties process the personal data in a manner inconsistent with the privacy shield principles
Your rights as a data subject
In some jurisdictions (for example, the member states of the European Union) you may be entitled to certain rights in and to your personal data, subject to certain conditions and exceptions contained in applicable law. These rights may include the following:
To protect your privacy and the security of your personal data, we will take reasonable steps to verify your identity before complying with such rights requests.
Legal bases for processing (for EEA users):
If you are an individual in the European economic area (EEA), we collect and process information about you only where we have legal bases for doing so under applicable EU laws. The legal bases depend on the services you use and how you use them. This means we collect and use your information only where:
If you have consented to our use of information about you for a specific purpose, you have the right to change your mind at any time, but this will not affect any processing that has already taken place. Where we are using your information because we or a third party (e.g. Your employer) have a legitimate interest to do so, you have the right to object to that use though, in some cases, and this may mean no longer using the services
Our COPPA policy towards children
The services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children under 16. Alfaizoon.com complies with both the Children’s Online Privacy Protection Act of 1998 (COPPA) and, with regard to EU data subjects, with GDPR. While children under the age of eighteen (16) may use the Site only with the consent of his or her parent or legal guardian, please be advised that this Site is not directed or otherwise promoted for use by children under the age of sixteen (16).
However, the application involves recordings of patients, including children under the age of 16. If we become aware that a child under 16 has provided us with personal information, we will take steps to protect or delete such information if required to do so. If you become aware that a child has provided us with personal information, please contact our support services.
How we protect your information
All information you provide to us is stored on our secure servers. Any payment transactions will be encrypted using TLS 1.3 (a strong protocol), x25519 (a strong key exchange), and aes_128_gcm (a strong cipher). Where we have given you (or where you have chosen) a password which enables you to access certain parts of our platforms, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our platforms; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorized access.
Our site may, from time to time, contain links to external sites. We are not responsible for the privacy policies or the content of such sites.
Your Delaware Privacy Rights (CCPA)
We may elect to share information about you with third parties for those third parties’ direct marketing purposes. Delaware Civil Code § 1798.83 permits Delaware residents who have supplied personal information (as defined in the law) to us, under certain circumstances, request and obtain certain information regarding our disclosure, if any, of personal information to third parties for their direct marketing purposes.
If this law applies to you, you may obtain the categories of personal information shared by us and the names and addresses of all third parties that received personal information for their direct marketing purposes from us during the immediately prior calendar year (e.g., requests made in 2016 will receive information about 2015 sharing activities).
To make such a request, please provide sufficient information for us to determine if this applies to you, attest to the fact that you are a Delaware resident and provide a current Delaware address for our response. To make such a request (limit one request per year), please send an email to: legal@Alfaizoon.com, with “Delaware Privacy Rights” as the subject line
As Directed By Your Healthcare provider
We may disclose your PHI as directed by Your Healthcare provider but only as permitted by Your Healthcare provider’s notice of privacy practices and as permitted under our business associate agreement with Your Healthcare provider and applicable provisions of HIPAA.
Your right to withdraw consent
Where the processing of your personal information by us is based on consent, you have the right to withdraw that consent without detriment at any time by contacting us legal@Alfaizoon.com. You can also change your marketing preferences at any time as described in ‘our promotional updates and communications’ section.
You can also exercise the rights listed above at any time by contacting us at legal@Alfaizoon.com.
If your request or concern is not satisfactorily resolved by us, you may contact our data protection officer, his email is legal@Alfaizoon.com
He can provide further information about your rights and our obligations in relation to your personal data, as well as deal with any complaints that you have about our processing of your personal data.
Data Privacy Regulatory Frameworks and Requirements
GDPR Data Privacy User Rights
If you are an EU resident and Alfaizoon is processing, and/or transmitting your personal data, then you – as an “EU data subject” – benefit from the following rights and privileges under the General Data Protection Regulation (GDPR):
Data portability is the ability to obtain some of your information in a format you can move from one service provider to another (for instance, when you transfer your mobile phone number to another carrier). Depending on the context, this applies to some of your information, but not to all of your information. Should you request it, we will provide you with an electronic file of your basic account information and the information you create on the spaces you under your sole control, like your personal bitbucket repository
Notice for Delaware Consumers – Your Privacy Rights under the (CCPA)
Under Delaware ’s “shine the light” law, Delaware residents have the right to request in writing from businesses with whom they have an established business relationship
Attn: Privacy and Data Protection Officer: PO Box 9354 Dubai, UAE
We will respond to such written requests within 30 days following receipt at the mailing address above. We reserve the right not to respond to requests submitted other than to the address specified above or otherwise exempted by law. Please note that we are required only to respond to each user once per calendar year.
Complaint to a Data Protection Authority
You have the right to submit a complaint concerning our data processing activities to our data protection officer.
If you have any queries regarding our data collection and protection practices or your rights, please do not hesitate to contact our data protection officer, at Care@Alfaizoon.com