Privacy Policy and Terms of Service
1. Introduction
At OLAID, we value your privacy and security. This Privacy Policy and Terms of Service outlines how we collect, use, share, and protect your personal information when you use our app. By accessing or using OLAID, you agree to the terms and conditions set forth herein.
2. Data Collection and Use
Personal Data: We collect various types of personal data, including- Contact information: Name, email address, phone number.
- Health information: Complete medical history, allergies, medications, chronic diseases, blood information, etc.
- Emergency contact information: Names, email addresses, and phone numbers of your emergency contacts.
- Usage data: We collect information about how you use the app, such as the features you access, frequency of use, and device characteristics.
- Legal Basis for Processing: The legal basis for collecting and processing personal data is to fulfill our contractual obligations to you (Article 6(1)(b) GDPR), comply with legal obligations (Article 6(1)(c) GDPR), and pursue legitimate interests (Article 6(1)(f) GDPR). Where consent is required, it will be obtained in accordance with Article 6(1)(a) GDPR.
- Consent Management: By providing your personal data and agreeing to this Privacy Policy, you give your explicit consent for us to collect, process, and store your personal data as outlined here. You have the right to withdraw this consent at any time in accordance with GDPR Article 7(3).
- Data Retention: We retain your data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, comply with legal obligations, or resolve disputes. Retention periods are determined in accordance with GDPR Article 5(1)(e).
This data is collected and processed in compliance with the General Data Protection Regulation (GDPR), ensuring transparency, lawful processing, and respect for individual rights.
Use of data: We use your data to- Provide Services: Store your health information, allow quick access to it in case of emergency, and facilitate communication with emergency services.
- Personalize Your Experience: Tailor the app to your specific needs and offer relevant content.
- Improve the App: Analyze usage data to identify areas for improvement and develop new features.
- Comply with Legal Obligations: Maintain records for legal and tax purposes.
3. Data Security
The security of your data is our top priority. In compliance with GDPR Article 32, we employ technical and organizational security measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction. These measures include
- Restricted Access: Access to your data is restricted to authorized employees and service providers who need the information to perform their functions.
- Access Controls: We implement role-based access controls.
- Continuous Monitoring: We continuously monitor our systems to detect and respond to any security threats.
- Regular Security Audits: State that regular security audits and penetration tests are conducted to identify and address vulnerabilities.
4. Data Sharing
- With Your Consent: We will only share your data with third parties with your explicit consent, in compliance with GDPR Article 7. Third parties processing data on our behalf are bound by data processing agreements (DPAs) as required by GDPR Article 28.
- Service Providers: We may share your data with trusted service providers who help us operate our apps, such as cloud storage providers and data analytics services.
- Emergency Services: In case of an emergency, we may share your information with relevant emergency services, such as ambulances, fire departments, or police.
- Legal Compliance: We may disclose your data if required by law or government agencies.
- Cross-Border Data Transfers: Where personal data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or reliance on adequacy decisions (GDPR Chapter V).
5. User Eligibility and Subscription
- Age Restrictions: Users under the age of 18 can create an account with the consent of a parent or legal guardian. Age verification may be conducted through a combination of methods, such as parental consent forms and age-gating mechanisms.
- Subscription: Your subscription includes a one-week free trial, after which you will be charged USD 25 + VAT for a one-year plan, which renews automatically unless canceled.
6. User Responsibilities
- Accurate Information: You are responsible for providing accurate medical data, which will be used in case of an emergency.
- Emergency Response: OLAID is not responsible for any decisions made by emergency responders based on the information provided by you. OLAID is not liable for any damages or injuries resulting from the actions or inactions of emergency responders.
7. User Rights
Your Rights Under GDPR: As a user, you have the following rights under GDPR
- Right to Access (Article 15): Request access to your personal data.
- Right to Rectification (Article 16): Request correction of inaccurate or incomplete data.
- Right to Erasure (Article 17): Request deletion of your data, subject to legal and contractual obligations.
- Right to Restrict Processing (Article 18): Request that we limit the processing of your data.
- Right to Data Portability (Article 20): Request a copy of your data in a structured, commonly used, and machine-readable format.
- Right to Object (Article 21): Object to data processing based on legitimate interests.
- Right to Withdraw Consent (Article 7(3)): Withdraw your consent at any time without affecting the lawfulness of processing prior to withdrawal.
- Right to Lodge a Complaint: Lodge a complaint with a supervisory authority, such as the Information Commissioner’s Office (ICO) in the UK or your local data protection authority.
8. Cancellation and Refunds
You can cancel your subscription at any time, but refunds are not offered after payment is processed.
9. Changes to Terms of Service
OLAID reserves the right to update these terms and policies as necessary. In the event of significant changes, we will notify you, and continued use of the service after the update will constitute acceptance of the revised terms.