Privacy Policy 

Website : “Diappymed.com”

TABLE OF CONTENTS :

1. Identity and contact details of the controller
2. Data Protection Officer (DPO)
3. Processing implemented by purpose
4. Your rights
5. Cookies and other trackers

 

The company DIAPPYMED  (hereinafter “the Data Controller“)  wishes by this privacy policy, to inform the users  of the application (hereinafter “the Users“) of the  processing of personal data collected via  the Website “https://diappymed.com”  (hereinafter “the Website“).

The collection of personal data takes place in compliance with the provisions of REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (GDPR).

The User is hereby informed that the personal data collected as part of the service described herein are necessary for the use of the Website. Among the User’s personal data that Diappymed collects from him may include:

• IP address
• Browser used
• Type of terminal used

 

1. Identity and contact details of the controller

The processing of Users’ personal data is implemented under the responsibility of the following controller:

DIAPPYMED

Cap Alpha,
3 avenue de l’Europe,
34830, Clapiers
represented by Mr Omar DIOURI.

 

2. Data Protection Officer (DPO)

Our data protection officer has been registered with the data protection authorities in an EU member state. If you have any questions or requests regarding this privacy statement or for the Data Protection Officer, you can contact the DPO via the following email address: dpo@diappymed.com

 

3. Processing implemented by purpose

 

Web server log management

Control intrusion attempts on the server

Data controller	Legal basis	Shelf life	Recipients of the data	Transfer outside the EU
Diappymed	Art. 6.1.c – Necessary for compliance with a legal obligation	365 days starting from the collection   While browsing, our server (hosted by Bluehost) stores logs. This mainly consists of collecting your IP address and the history of your requests.	The controller and any authority legally authorised to access the data	BlueHost*

 

 

 

Management of the register of consent regarding cookies and other trackers

Collection and timestamping of consents for the installation of cookies and other trackers on the user terminal

 

Data controller	Legal basis	Shelf life	Recipients of the data	Transfer outside the EU
Diappymed	Article 6 (1) a GDPR: Consent of the data subject	6 months starting from the consent of the data subject	The controller and any authority legally authorised to access the data	BlueHost*

 

Website Analytics Management

Sub-purpose: Production of audience and website usage statistics

Data controller	Legal basis	Shelf life	Recipients of the data	Transfer outside the EU
Diappymed		Statistical cookies exempt from consent  retention period of 13 months.   Personal data collected via cookies  24 months for statistics	The controller and any authority legally authorised to access the data	BlueHost*

 

Management of demonstration requests by health professionals

Proposal for in-person or remote appointments

Data controller	Legal basis	Shelf life	Recipients of the data	Transfer outside the EU
Diappymed	Article 6 (1) a GDPR: Consent of the data subject	6 months starting from the consent of the data subject.	The controller and any authority legally authorised to access the data	BlueHost*

 

Management of contacts and communications

Proposal for in-person or remote appointments (web conferences or other events)

Data controller	Legal basis	Shelf life	Recipients of the data	Transfer outside the EU
Diappymed	Article 6 (1) a GDPR: Consent of the data subject	3 years starting from the consent of the data subject.	The controller and any authority legally authorised to access the data	BlueHost*

 

* Our website is hosted by our subcontractor BlueHost based in the United States. This service provider is not included in the list of certified subcontractors whose transfers can be made freely (cf: https://www.dataprivacyframework.gov/)

We cannot therefore guarantee the integrity and security of your data.

 

BLUEHOST, INC

5335 Gate Parkway Jacksonville

FL 32256

 

4. Your rights

In accordance with the provisions of Regulation No. 2016/679 of 27 April 2016 and Law No. 78-17 of 6 January 1978 as amended, the User is fully informed of the rights at his disposal.

The User has:

– a right of access to his data – the User has the right to obtain confirmation as to whether or not his data is processed as well as the communication of a copy of his data and information relating to the characteristics of the processing carried out by the Data Controller on these data;

– a right to rectification of inaccurate information and incomplete data;

– a right to erasure of data that are no longer necessary for processing, a right to withdraw consent to processing, a right to object to the processing of data when there are no compelling legitimate grounds justifying the processing, a right to object to commercial prospecting;

– a right to limit processing in the event of inaccuracy of the data during the time of their verification, or when they are only necessary for the exercise of a right in court;

– a right to the portability of his data, in order to request the transmission to another controller of the data provided with his consent or at the time of the conclusion of the contract;

– a right not to be the subject of a decision based exclusively on automated processing producing significant legal effects concerning him;

– a right to define directives relating to the fate of his data after his death.

 

The User may exercise his rights at any time:

– By post to:

DIAPPYMED

Cape Alpha,

3 avenue de l’Europe,

34830, Clapiers

– By email to: dpo@diappymed.com

The User must specify in his request his IP address and the email address to which he wishes the response of the Data Controller he has contacted to reach him. He will also have to send a screenshot of the IP Config, which will ensure the validity of the request.

In accordance with the law, this request will be answered within one month of receipt.

Finally, the User has the right to lodge a complaint with the French Supervisory Authority, i.e., the “Commission Nationale de l’Informatique et des Libertés” (hereinafter : “CNIL”) or any other competent supervisory authority in his State of residence.

The User may make this claim to the French CNIL:

– By post to the following address:

3 Place de Fontenoy

TSA 80715

75334 PARIS CEDEX 07

– By phone at 01 53 73 22 22 (Monday to Thursday from 9am to 6.30pm / Friday from 9am to 6pm);

– By fax to 01 53 73 22 00;

– Via the CNIL website at the following address: https://www.cnil.fr/fr/plaintes

 

5. Cookies and other trackers

 

Our website, “https://diappymed.com” (hereinafter “the Website“) installs trackers on your terminal. Trackers are also installed by third parties.

In compliance with the transparency principle, the following section explains how cookies and other trackers are used on our website.

 

5.1. Definition of trackers

A tracker is a small computer file deposited and read for example when consulting a website, reading an email, installing or using software or a mobile application, regardless of the type of terminal used.

Trackers include cookies and scripts.

5.2. Strictly necessary trackers

Some trackers ensure the proper functioning of certain aspects of the website and save your preferences as a User. Those trackers are “strictly necessary in order to provide an information society service explicitly requested by the subscriber or user » or have « the sole purpose of carrying out or facilitating the transmission of a communication over an electronic communications network », in compliance with Article 5§3 of the Directive 2002/58/EC as modified in 2009 and with the CNIL’s recommendations.

The User’s consent is not required regarding the following trackers:

Cookie operator: WordPress

Domain name: Complianz

Cookie	Durée de conservation	Finalité
cmplz_consented_services	365 days starting from the installation	Store preferences regarding consent to cookies and other trackers
cmplz_functional	365 days starting from the installation	Store preferences regarding consent to cookies and other trackers
cmplz_policy_id	365 days starting from the installation	Store the ID of the « Cookie and other trackers Policy accepted »
cmplz_marketing	365 days starting from the installation	Store preferences regarding consent to cookies and other trackers
cmplz_statistics	365 days starting from the installation	Store preferences regarding consent to cookies and other trackers
cmplz_preferences	365 days starting from the installation	Store preferences regarding consent to cookies and other trackers
cmplz_banner-status	365 days starting from the installation	Save the User’s choice regarding the cookies and other trackers banner

 

Cookie operator: WordPress

Domain name: Polylang

Cookie	Durée de conservation	Finalité
pll_language	365 days starting from the installation	Store the language settings

 

5.3. Trackers submitted to the User’s consent

The User’s consent is necessary regarding cookies that allow to store information on the User’s terminal or to have access to information already stored on that terminal, in compliance with Article 5§3 of the Directive 2002/58/EC as modified in 2009 and with the CNIL’s recommendations.

The consent must be freely given, specific, informed and unambiguous, in compliance with Articles 4§11 and 7 of the GDPR.

The User’s consent is not required regarding the trackers installed through the website.