Privacy Policy

Dima Health Technologies Inc. - Privacy and Data Protection Policy ("Privacy Policy")

This Privacy Policy outlines how Dima Health Technologies Inc. ("Dima," "we," "us," or "our") may collect, use, disclose, or otherwise process the personal data of our customers when you use our website at https://dima.ph ("Website") in accordance with the applicable data protection laws in the Philippines. This Privacy Policy applies to personal data in our possession or under our control, including personal data held by organizations we have engaged to collect, use, disclose, or process personal data for our purposes.

If you do not agree to this Privacy Policy and our Terms and Conditions, please do not use any of our services. Your continued use of the services constitutes your acknowledgment and acceptance of this Privacy Policy.

PERSONAL DATA

  1. Definitions

    • Customer: Refers to an individual who (a) has contacted us through any means (such as through the Website) in relation to the goods or services available on the Website, or (b) may have entered or entered into a contract with us for the supply of any goods or services by us.
    • Personal Data: Refers to data, whether true or not, about a customer who can be identified either from that data or from that data and other information to which we have or are likely to have access.

  2. Examples of Personal Data We Collect
    Depending on how you interact with us, some examples of personal data we may collect from you include:

    • Your name, identification numbers such as government-issued IDs, passport number, residential address, email address, telephone number, nationality, gender, and date of birth;
    • Medical and health-related information you provide to us (including medical history, claims, health status, laboratory test results, diagnostic images, photographs);
    • Billing information you provide us (e.g., credit card or online payment system details);
    • Information about the device you are using to access the Website or App;
    • Geographical location or address; or
    • Any other information you may input into the Website or related services.

COLLECTION, USE, AND DISCLOSURE OF PERSONAL DATA

  1. Collection of Personal Data
    We generally do not collect your personal data unless:

    • It is provided voluntarily by you or via an authorized third party (such as your employer or insurer who processes claims for medical care), or
    • The collection and use of personal data without consent is permitted or required by Philippine law.

    We will seek your consent before collecting any additional personal data or using your personal data for a purpose that has not been previously notified to you (except where permitted by law).

  2. Purposes for Collecting and Using Your Personal Data
    We may collect and use your personal data for any or all of the following purposes:

    • Providing the goods and services requested by you, including medical and healthcare services;
    • Verifying your identity;
    • Responding to queries, requests, applications, complaints, and feedback;
    • Managing our relationship with you;
    • Processing payments and claims;
    • Improving the quality of our medical services;
    • Creating anonymized information for statistical or research purposes;
    • Notifying you about updates or new services;
    • Marketing and promoting our services;
    • Conforming to legal requirements, assisting law enforcement, or responding to regulatory requests;
    • Transmitting data to third-party service providers, governmental, or regulatory authorities as required; and
    • Other incidental business purposes related to the above.

5A. Legitimate Interests
We may rely on the "legitimate interests" exception under Philippine law to collect, use, and disclose personal data without your consent for purposes of fraud detection and prevention.

  1. Passive Data Collection
    As you use the Website or App, certain information may be passively collected, such as:

    • Site Activity Information: We may track actions like the content of searches you perform;
    • Device and Browser Information: Information such as your IP address, browser type, and connection speed;
    • Cookies: We use session and persistent cookies to enhance your experience. You may disable cookies, but certain features may not work properly;
    • Location Information: If using location-based services, we may collect real-time location data;
    • Device Information: We may collect information about your device to improve service delivery, fix bugs, and enhance performance;
    • Web Analytics: We use tools like Google Analytics to track usage patterns.

  2. Disclosure of Personal Data
    We may disclose your personal data for any of the following purposes:

    • To our subsidiaries, affiliates, or partners;
    • To parties processing claims for your medical care (such as your employer or insurer);
    • To service providers and contractors who support our business, bound by confidentiality agreements;
    • As required by law, including for court orders or legal processes;
    • To protect your safety or the safety of others, to protect our rights, or to respond to a government request;
    • In the event of a sale, merger, or restructuring, where your personal data is transferred as part of the assets.

  3. Continuing Purposes
    The purposes listed above may continue to apply even if your relationship with us has ended, for a reasonable period thereafter, as required for legal or business purposes.

WITHDRAWING YOUR CONSENT

  1. Withdrawal of Consent
    You can withdraw your consent for the collection, use, and disclosure of your personal data by submitting a written request to us. Once we receive your request, we may require time to process it and notify you of the consequences, including any legal impacts. We aim to process such requests within ten (10) business days.

  2. Consequences of Withdrawing Consent
    Depending on the scope of your request, we may not be able to continue providing services to you. We will notify you of this before processing the request.

  3. Right to Retain Data
    Withdrawing consent does not affect our right to continue processing personal data where it is required or permitted by law. We are not obligated to delete personal data already collected, unless stipulated otherwise by law.

ACCESS TO AND CORRECTION OF PERSONAL DATA

  1. Access and Correction Requests
    If you wish to request access to or correction of your personal data, you may do so by submitting a written request to our Data Protection Officer at the contact details provided below.

  2. Access Fees
    A reasonable fee may be charged for access requests, and we will inform you before processing the request if this is the case.

  3. Response Time
    We will respond to your request as soon as possible, generally within fourteen (14) business days. If we cannot respond within thirty (30) days, we will inform you of when we can.

PROTECTION OF PERSONAL DATA

  1. Data Protection Measures
    We implement appropriate administrative, physical, and technical measures to safeguard your personal data from unauthorized access, use, or disclosure, such as encryption, antivirus protection, and access restrictions.

  2. Data Security
    While we strive to protect the security of your personal data, no method of transmission over the Internet is completely secure. We continuously review and improve our security measures.

RETENTION OF PERSONAL DATA

  1. Retention Period
    We retain personal data for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable laws.

  2. Data Removal
    We may cease retaining personal data when it is no longer needed for the purposes for which it was collected, and we will remove identifying information when reasonable.

TRANSFERS OF PERSONAL DATA OUTSIDE THE PHILIPPINES

  1. International Transfers
    We generally do not transfer personal data outside the Philippines. If this occurs, we will ensure that the data continues to be protected in a manner comparable to Philippine standards.

DATA PROTECTION CONTACT

For inquiries or requests related to personal data protection, you may contact us via:

EFFECT OF PRIVACY POLICY AND CHANGES

This Privacy Policy applies in conjunction with any other notices or agreements regarding the collection, use, and disclosure of your personal data. We may revise this Privacy Policy from time to time, and your continued use of our services constitutes acceptance of any changes.

Effective date: January 1, 2018
Updated date: November 5, 2019