HealthCore.me
Back to Home

GDPR Compliance

Last updated: October 31, 2025

General Data Protection Regulation (GDPR)

HealthCore.me is committed to protecting your privacy and ensuring compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

Your Rights Under GDPR

As a data subject, you have the following rights:

Right of Access

You have the right to obtain confirmation as to whether or not personal data concerning you is being processed, and access to that data.

Right to Rectification

You have the right to have inaccurate personal data corrected and incomplete personal data completed.

Right to Erasure

You have the right to request the deletion of your personal data under certain circumstances.

Right to Restrict Processing

You have the right to request the restriction of processing of your personal data under certain circumstances.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used format and to transmit that data to another controller.

Right to Object

You have the right to object to the processing of your personal data under certain circumstances.

Data We Collect

We may collect and process the following types of personal data:

  • Identity Data: Name, email address, and other contact information
  • Health Data: Medical records, health information, and treatment data
  • Technical Data: IP address, browser type, device information
  • Usage Data: Information about how you use our website and services
  • Marketing Data: Your preferences for receiving marketing communications

Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Consent: When you have given clear consent for processing
  • Contract: When processing is necessary for the performance of a contract
  • Legal Obligation: When processing is required by law
  • Vital Interests: When processing is necessary to protect vital interests
  • Legitimate Interests: When processing is necessary for our legitimate interests

Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit and at rest
  • Regular security assessments and updates
  • Access controls and authentication mechanisms
  • Staff training on data protection
  • Incident response procedures

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in our privacy policy, unless a longer retention period is required or permitted by law.

International Transfers

If we transfer your personal data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place to protect your data, such as:

  • Adequacy decisions by the European Commission
  • Standard contractual clauses
  • Binding corporate rules
  • Certification schemes

Exercising Your Rights

To exercise any of your rights under GDPR, please contact us using the information provided below. We will respond to your request within one month of receipt.

Data Protection Officer

We have appointed a Data Protection Officer (DPO) to oversee compliance with GDPR. You can contact our DPO at:

Email: dpo@healthcore.me

Address: HealthCore Data Protection Officer

Supervisory Authority

You have the right to lodge a complaint with a supervisory authority if you believe we have not handled your personal data in accordance with GDPR. You can find your local supervisory authority on the European Data Protection Board website.

Contact Us

If you have any questions about our GDPR compliance or data protection practices, please contact us at:

Email: privacy@healthcore.me

Address: HealthCore Privacy Team