GDPR Agreement
GDPR Policy
Last Updated: 26.06.2024
GDPR Policy of MLA MedTech
At MLA MedTech, accessible from https://mlamedtech.com, we are committed to protecting and respecting your privacy. This GDPR Policy outlines our procedures and policies regarding the collection, use, and disclosure of your personal data when you use our services and informs you of your privacy rights and how the law protects you.
1. Introduction
MLA MedTech SRL, incorporated in Romania, provides technology solutions for medical startups. Our primary focus is to ensure the security and privacy of personal data in compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679.
2. Data Controller Contact Information
MLA MedTech SRL Str. Str. Siret nr. 87, Sector 1, 012152 Bucuresti, office@mlamedtech.com.
3. Personal Data We Collect
We may collect and process the following personal data about you:
- Identification Data: Name, surname, date of birth.
- Contact Data: Address, email address, phone number.
- Professional Data: Job title, employer, work address.
- Technical Data: IP address, browser type and version, time zone setting, browser plug-in types and versions, operating system, and platform.
- Usage Data: Information about how you use our website, products, and services.
- Health Data: Medical information only when necessary for providing our services and with explicit consent.
4. How We Collect Your Data
We use different methods to collect data from and about you, including:
- Direct Interactions: You may provide us with your data by filling in forms or corresponding with us by mail, phone, email, or otherwise.
- Automated Technologies or Interactions: As you interact with our website, we may automatically collect technical data about your equipment, browsing actions, and patterns.
- Third Parties or Publicly Available Sources: We may receive personal data about you from third parties and public sources.
5. Purpose of Processing Personal Data
We use your personal data for the following purposes:
- To provide and maintain our services.
- To manage your relationship with us.
- To notify you about changes to our services.
- To allow you to participate in interactive features of our services.
- To provide customer support.
- To gather analysis or valuable information so that we can improve our services.
- To monitor the usage of our services.
- To detect, prevent, and address technical issues.
6. Legal Basis for Processing Personal Data
We process your personal data based on the following legal grounds:
- Consent: You have given clear consent for us to process your personal data for a specific purpose.
- Contract: The processing is necessary for a contract we have with you, or because you have asked us to take specific steps before entering into a contract.
- Legal Obligation: The processing is necessary for us to comply with the law.
- Legitimate Interests: The processing is necessary for our legitimate interests, except where such interests are overridden by your interests or fundamental rights and freedoms.
7. Data Security
We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk of personal data processing. However, please be aware that no method of transmission over the Internet or method of electronic storage is completely secure.
8. Data Retention
We will retain your personal data only for as long as is necessary for the purposes set out in this GDPR Policy. We will retain and use your personal data to the extent necessary to comply with our legal obligations, resolve disputes, and enforce our policies.
9. Your Data Protection Rights
Under the GDPR, you have the following rights:
- Right to Access: You have the right to request copies of your personal data.
- Right to Rectification: You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
- Right to Erasure: You have the right to request that we erase your personal data, under certain conditions.
- Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data, under certain conditions.
- Right to Data Portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
10. Exercising Your Rights
If you wish to exercise any of the rights mentioned above, please contact us using the contact information provided in Section 2. We will respond to your request within one month. If you make a request, we have one month to respond to you.
11. Cookies and Similar Technologies
We use cookies and similar tracking technologies to track activity on our website and hold certain information. You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of our website may become inaccessible or not function properly.
12. Third-Party Links
Our website may contain links to third-party websites. This GDPR Policy does not apply to these websites. We encourage you to read the privacy policies of any third-party websites you visit.
13. Changes to This GDPR Policy
We may update our GDPR Policy from time to time. We will notify you of any changes by posting the new GDPR Policy on this page. We will let you know via email and/or a prominent notice on our website before the change becomes effective and update the “Last Updated” date at the top of this GDPR Policy.
14. Complaints
If you have any complaints about our use of your personal data, you have the right to lodge a complaint with the National Supervisory Authority for Personal Data Processing (ANSPDCP) in Romania.
15. Contact Us
If you have any questions about this GDPR Policy, please contact us:
MLA MedTech SRL
Str. Str. Siret nr. 87, Sector 1, 012152 Bucharest
Romania
Email: office@mlamedtech.com
Thank you for trusting MLA MedTech with your personal data. We are committed to protecting and respecting your privacy.
