Privacy Policy

Healthinn, commercial name of INNOVAHEALTH S.L., with Tax Identification Code no. B90286170, and address in Seville, Spain,6 José Galán Merino Street, Module 7 (hereinafter “Healthinn” or “we”) exposes:

1. Our approach to privacy.

1.1 This Privacy Policy sets out how we collect, store, process, transfer, share and use data that identifies you or is associated with you (“personal information”) and information regarding our use of cookies and similar technologies.

1.2 We operate the website www.rehand.net (“Website”), where you can view and order products and services, read updates and information about our products and services, and seek instructions and guidance on how to use our products and services. We also operate specific applications, web-based tools and a specific reporting system, which are available for use on your mobile device and/or the web (collectively the “Platform”).

1.3 This Privacy Policy applies to both the Web and the Platform. Please ensure that you have read this Privacy Policy and understand how we collect, store, use and disclose your personal information before accessing or using the Web or the Platform.

2. Previous information: The types of accounts we offer.

We designate several types of Accounts (each, an “Account”) that provide different functionality to different users of the Platform;

a. A  “DEMO Account” allows you limited access to view and test certain content of the Platform limited both in amount and time.

b. A “User Account” allows a patient to access, through the “ReHand” tablet application, the exercise program and questionnaires set up by their therapist. The User Account is unique, personal and non-transferable. The User Account is always linked to a specific Associated Therapist Account (“Associated Therapist Account” or “Your Therapist”). Healthinn is not responsible for the misuse or negligence of the User Account, nor for the use of such account by any third party other than the specific patient for whom a user and password has been created by the healthcare professional.

c. A “Therapist Account” allows a Therapist to use the “ReHand Generator” and “ReHand Reports” to configure and monitor their patients’ exercise programs. It allows you to set up and monitor exercise programs to unlimited “User Accounts”, provided that each user account created corresponds to a single patient, and that those patients are under the supervision of the Therapist who holds the Therapist Account. A Therapist Account is unique, personal and non-transferable. The Therapist Account may be linked to a particular associated hospital account (“Associated Hospital Account” or “Your Hospital”), if that account has given you access by virtue of being your employer. Healthinn is not responsible for the misuse or negligence of the Therapist Account, or for the use of the Therapist Account by anyone other than the particular therapist to whom it is provided.

d. A “Hospital Account” allows you to create unlimited Therapist Accounts on the Platform, provided that the Therapist holding the Therapist Account is an employee of the Hospital with the ability to treat patients, and that such Therapist Accounts correspond to one per Therapist.

3. Who is responsible for the use of your personal information?

We differentiate between 2 contexts:

A. Web context, contact and correspondence:

Healthinn is the data controller of the personal information we hold about you in connection with your use of the Website, your information provided through the Website, and the information you provide to us when you contact us by any means. This means that we determine and are responsible for how your personal information is used.

B. Platform Context:

Healthinn, depending on the type of Account, will be the data controller or processor of the personal information we hold about you in connection with your use of the Platform and your information provided through the Platform:

a) In the case of the DEMO Account, Healthinn is the data controller.

b) In the case of a User Account with an Associated Therapist Account, not having the latter an Associated Hospital Account, Healthinn is the data processor, while Your Therapist is the data controller. Healthinn will make available a data processing agreement for Your Therapist if requested by Your Therapist as the data controller.

c) In the case of a User Account with an Associated Therapist Account, with the latter having an Associated Hospital Account, Healthinn is in charge of the treatment, while Your Hospital is responsible for the treatment. The Therapist may also be the data controller if a prior agreement to that effect has been made between the Therapist and Your Hospital. Healthinn will make available a data processing agreement for the corresponding data controller if requested by the latter.

d) In the case of a Therapist Account without an Associated Hospital Account, Healthinn is the data processor, while the holder of the Therapist Account, either a natural or legal person, is the data controller. Healthinn will make available a data processing agreement for the Therapist Account holder if requested as the data controller.

e) In the case of a Therapist Account with an Associated Hospital Account, Healthinn is the data processor, while Your Hospital is the data controller. The Therapist may also be the data controller if a prior agreement to that effect has been made between the Therapist and Your Hospital. Healthinn will make available a data processing agreement for the corresponding data controller if requested by the latter.

f) In the case of a Hospital Account, Healthinn is the data processor, while the holder of the Hospital Account, whether a natural or legal person, is the data controller. Healthinn will make available a data processing agreement for the holder of the Hospital Account if he or she requests it as the data controller.

4. Personal information we collect and process when you use the Web, contact us or purchase our services.

4.1 We collect personal information that you voluntarily submit directly to us when you use the website, contact us or purchase our services. This may include information you provide to us when you request further information or order a monthly subscription, communicate with us by telephone, email or otherwise in connection with the Platform, send comments or subscribe to our mailing lists, newsletters or other forms of marketing communications.

4.2 We will tell you where we require you to provide certain personal information so that we can process your order, respond to your inquiry or otherwise provide you with the functionality of the Platform. If you choose not to provide such personal information, we may not be able to process your order, provide support or respond to your other requests.

4.3 When you use the Web, the categories of information we collect may include

a) the type of service or care you are requesting;

b) your contact information, such as your name, e-mail address and telephone number;

c) your profession, and the name and address of your place of work;

d) your payment information, such as your payment method and billing address;

e) your preferences as to how we communicate with you;

f) the content of any inquiry or request you send to us;

We use this information to process any requests you make through our website, to respond to your questions and requests, to contact you and to help us develop new products and services.

We may also collect technical data, such as the Internet Protocol (IP) address, browser type and version, time zone settings and location, browser plug-in types and versions, operating system, device type and version, and other technologies of the devices you use to access the Platform.

4.4 Appendix A sets out more details about the categories of personal information we collect about you and how we use that information when you use the Website, contact us, or purchase our services, as well as the legal basis on which we process personal information and the recipients of that personal information.

5. The personal information we collect from you when you use our products and applications (the Platform) and how we use it.

5.1 We also collect personal information that you or your Therapist, Physician, Researcher and/or healthcare professional (individually or as a group, shall be referred to as the “Therapist”) submits to us directly on a voluntary basis when using our Platform. This may include information that you or your Therapist provide to us when you create or set up an account or use one of our products or applications, as well as settings that are automatically generated through your use.

5.2 We will tell you where you are required to provide certain personal information so that we can offer you certain features and functionality of the applications. If you choose not to provide such information, we may not be able to provide you with those parts or functionalities of the Platform.

5.3 When you use the Platform, the categories of information that we collect may include:

a) Name, surname and/or e-mail address.

b) Medical history number.

c) Pathology and hand affected;

d) Results in the clinical questionnaires;

e) Professional and/or associated healthcare entity;

f) Information on how the Platform is used; and

g) Data on performance and adherence on the Platform, such as days run, exercises performed and/or scores obtained.

Finally, also when it is essential, we will consult the account associated with your device, but at no time will this information be stored.

We use this information to provide you with the functionalities of our products and applications that make up the Platform, and to provide customer support.

5.4 Appendices B and C sets out in more detail the categories of personal information we collect about you and how we use that information when you use the Platform, as well as the legal basis on which we process personal information and the recipients of that personal information.

6. The information we automatically collect about your use of the website.

6.1 We also automatically collect personal information indirectly about how you access and use the website, as well as information about the browser you use to access the website. For example, we may collect:

a) the pages that you see on the Web;

b) information about your device (such as your IP address, device identifier, device type, model and manufacturer); and

c) information about your usage patterns (such as how often you use the site and your language settings).

We use this information to provide you with the features and functionality of the site, to monitor and improve the site, and to develop new products and services.

6.2 Appendix D sets out more information about the categories of personal information we collect about you automatically and how we use that information.

7. How long will we keep your personal information?

7.1 Generally, we will store the personal information we collect about you for no longer than is necessary for the purposes set out in Appendices A and B, in accordance with our legal obligations and legitimate business interests.

7.2 However, we may need to keep your personal information longer if we are required to do so by law.

7.3. After the retention period, all personal data will be deleted or made anonymous.

7.4 We may anonymize and aggregate any personal information we collect (so that it does not directly identify you). We may use the anonymous information for purposes including testing our IT systems, research, data analysis, improving the Platform and our applications and developing new products and features.

8. Recipients of personal information.

8.1 We may share your Personal Information with other companies or individuals when:

a) Service Providers and Consultants: we may need to share your personal information with third parties and other service providers who perform services for us or on our behalf, which may include providing professional services, such as legal and accounting services, mail, email or chat services, fraud prevention, web hosting or providing analytical services.

The following entities are recipients of the data collected for the sole purpose of providing you with the correct service for the purposes described. They have been appointed as sub-processors by Healthinn in accordance with article 28 of the Regulations:

i) Microsoft Azure: For, among others, the provision of infrastructure and platform services, computing capacity, storage and database services, security services and technical maintenance services, which we use for the operation of our solutions and, thus, the provision of the service.

ii) Google Inc. (Gmail): For, among others, the sending of follow-up reports to the Associated Therapist Account and the management and resolution of technical issues and communications via email.

iii) HubSpot: for, among others, sending marketing information, customer management, and providing relevant information about the Platform such as clinical trial results, use cases and updates, and for the management and resolution of reported technical issues.

b) Social media: we can use analytical functions of the tools called “lookalike analytics”, such as Facebook “lookalike analytics”, to identify new potential customers who could share some features with you. Whether you interact with us through social media, access our website or download our applications in response to an advertisement on a social media platform, we may therefore share your personal information with social media platforms to enable them to identify users similar to you, such as users who have liked the same pages or content as you.

c) Law enforcement, regulators, administration and other parties for legal reasons: we may share your personal information with third parties as required by law or if we reasonably believe that such action is necessary to

i) comply with the law and with reasonable requests from law enforcement agencies;

ii) detect and investigate illegal activities and violations of agreements, including our Terms of Use; and/or

iii) exercise or protect the rights, property or personal safety of Healthinn, its users or others.

8.2 In addition to the above, we may also share statistics and knowledge developed by us from your personal information. These statistics and knowledge are derived from anonymous, aggregated information, so that you cannot be identified (directly or indirectly).

9. Marketing and Advertising.

9.1 From time to time we may contact you with information about our products and services, including sending marketing messages and requesting your feedback on our products and services.

9.2 Most of the marketing messages we send will be by email. For some marketing messages, we may use the personal information we collect about you to help us determine the most relevant marketing information to share with you.

9.3 We will only send you marketing messages if you have given us your consent to do so. You can update your preferences about the emails you receive from us at a later date, including withdrawal of your consent, by clicking on the link at the bottom of our marketing emails.

10. Storage and transfer of your personal information.

10.1 Security. We implement appropriate technical and organizational measures to protect your personal information from accidental or unlawful destruction, loss, change or damage. Among other security measures employed, we use pseudo-anonymization, HTTPS communications and encryption, among others. We will never contact you by phone to request your password, credit or debit card information or national identification numbers.

10.2 International Transfers of Your Personal Information. The personal information we collect may be transferred to and stored in countries outside the jurisdiction in which you are located and where we and/or our third party service providers operate. If you are in the European Economic Area (“EEA”), your Personal Information may be processed outside the EEA including in the United States.

10.3 In the case of such a transfer, we ensure that:

a) the personal information is transferred to countries that are recognized as offering an equivalent level of protection; or

b) the personal information is transferred to entities certified under the EU and US Privacy Shield; or

c) the transfer is made in accordance with appropriate safeguards, such as standard data protection clauses adopted by the European Commission.

If you would like more information about the security measures used, please contact us using the details provided at the end of this Privacy Policy.

11. Your rights with respect to your personal information.

11.1 Healthinn, in its commitment to the provisions of the General Data Protection Regulation (EU 2016/679), warns you of the possibility of exercising your rights to access, rectify, cancel, oppose, limit and/or transfer personal data that the law recognizes to those affected by data processing.

Thus, in the case that you want to access, rectify, cancel, oppose, limit or make portability of the treatment of your Information at any time, you must send us a request, which must be attached to [email protected] the following information, receiving a response on it within 30 days:

– Name and surname, e-mail, and/or history number.

– Website or Platform in which you inserted the data whose access, rectification, cancellation or opposition is intended.

– Right you wish to request and content of your request.

– Data on which you wish to exercise your previous right.

– Sufficient identification title to be identified by the holder of the data, either through a digital certificate or accompanying the request with a photocopy of your ID.

11.2 When, given the complexity of the complaint or the number of requests received, the above-mentioned deadline cannot be met, we will inform you of the extended deadline by which we will respond to your request. Such extension may not exceed two months from the date we notify you that an extension is necessary.

11.3 If we do not comply with your request, we will inform you within one month of the reasons on which we have based our decision and of your right to refer a complaint to your national data protection authority.

11.4 If an interested party considers that the processing of personal data concerning him/her, carried out through the Platform and/or the website, infringes the Regulations, he/she has the right to file a complaint with the Spanish Data Protection Agency, in accordance with Article 77 of the Regulations.

12. Cookies and similar technologies used on our website.

12.1 Our website uses cookies and similar technologies (such as local storage objects or LSOs) to distinguish you from other users.

12.2 Cookies are pieces of code that allow us to personalise our web experience by saving your information such as user ID and other preferences. A cookie is a small data file that we transfer to your computer’s hard drive for record-keeping purposes.

12.3 Cookies help us to provide you with a good experience when you browse our website and also allow us to monitor and analyse how you use and interact with our website so that we can continue to improve it. They also help us and our advertising partners to determine which products and services may be of interest to you, in order to serve you targeted advertising.

12.4 We use the following types of cookies:

a) Cookies strictly necessary. Cookies are required for the operation of the website. They include, for example, cookies that allow payment for products or services through the website.

b) Analytical/performance cookies. They allow us to recognize and count the number of visitors and to see how visitors move through our website when they are using it. This helps us to improve the way our website works. We may use third party analytical tools, such as Google Analytics, to help us measure traffic and usage trends on the Platform and to better understand the demographics of our users. You can learn more about Google’s practices at http://www.google.com/policies/privacy/partners and see the opt-out options currently available at https://tools.google.com/dlpage/gaoptout.

c) Functionality cookies. They are used to recognize you when you return to our website. This allows us to personalize our content for you, greet you by name and remember your preferences (e.g., your choice of language or region).

d) Destination Cookies. These cookies record your visit to our website, the pages you have visited and the links you have followed. We will use this information to make our website and the advertising that appears on it, and the marketing messages that we send to you more relevant to your interests.

e) Third party cookies. Please note that advertisers and other third parties may use their own cookie tags when you click on an ad or link on our Platform. These third parties are responsible for setting their own cookies and privacy policies.

12.5 Please see Appendix D for more information about the cookies we use on the website.

12.6 The cookies we use are designed to help you get the most out of our website, but if you do not wish to receive cookies, most browsers allow you to change the cookie settings. Please note that if you choose to reject all cookies you may not be able to use the full functionality of our website. These settings can usually be found in the “options” or “preferences” menu of your browser. To understand these settings, please use the “Help” option of your browser for more details.

12.7 For more information about cookies and other similar technologies, please visit www.allaboutcookies.org or the Network Advertising Initiative’s online sources at www.networkadvertising.org.

12.8 Please note that deleting or blocking cookies may not be effective for all types of tracking technologies such as Local Storage Objects (LSOs) such as HTML5.

13. The tracking technologies used in our emails.

13.1 Our emails may contain tracking technologies that provide us with information about your interactions with our emails, including identifying whether and when you have opened an email that we have sent to you, how many times you have read it and whether you have clicked on any links in that email. This helps us measure the effectiveness of our marketing e-mail campaigns, make the e-mails we send you more relevant to your interests and understand whether you have opened and read any important administrative e-mails we may send you.

13.2 Popular email clients will allow you to block these technologies by disabling certain external images in the emails. You can do this through your email client settings, which generally give you the option to choose whether emails will display “remote images”, “remote content” or “images” by default.

13.3 Some browsers also give you the option to download and install extensions that block tracking technologies.

14. Advertising based on interest.

14.1 We may conduct interest-based advertising and use third-party advertising companies to serve targeted ads to you based on your browsing history. We may share, or may allow, third party online advertising networks, social media companies and other third party services to collect information about web usage over time so that they can play or display ads on the Platform, our products and services, and similar products and services on other websites, applications or services you may use (including Google and Facebook).

14.2 Generally, but not always, this information is collected using cookies and similar tracking technologies. These third parties may collect mobile identifiers, such as the iOS Advertising ID (IDFA), Google Advertising ID, as well as your device’s IP address, information about other applications on your device, your location, information about your use of the website, and information about the ads you have viewed or clicked on.

14.3 We and our partners may use this information to make the ads you see online more relevant to your interests, as well as to provide advertising-related services such as reporting, attribution, analysis, and market research.

14.4 We may also use certain forms of display advertising and other advanced features through Google Universal Analytics, such as Remarketing with Google Analytics, Google Display Network Impression Reporting, DoubleClick Campaign Manager Integration and Google Analytics Demographics and Interest Reporting. These features would allow us to use first-party cookies (such as the Google Analytics cookie) and third-party cookies (such as the Doubleclick advertising cookie) or other third-party cookies in conjunction to report, optimize and display ads based on your previous visits to the Platform. You can control your advertising preferences or opt out of certain Google advertising products by visiting the Google Ad Preferences Manager, currently available at https://google.com/ads/preferences or by visiting the NAI’s online resources at www.networkadvertising.org/choices.

14.5 You may be able to limit the use of these identifiers for interest-based advertising on a particular device through your device settings by selecting “limit ad tracking” (iOS) or “opt-out of interest-based advertising” (Android).

14.6 For more information about interest-based advertising and how you can opt out of some of these ads, you can visit

a) “Network Advertising Initiative’s” online resources at networkadvertising.org/choices;

b) the DAA resources at www.aboutads.info/choices; and/or

c) your online options at www.youronlinechoices.eu.

14.7 Please note that the option not to receive interest-based advertising through NAI and DAA online resources or Your Online Options will only prevent you from receiving interest-based ads on that specific browser or device, but you may still receive interest-based ads on your other devices. You will need to opt-out on each browser or device you use.

14.8 Some of these opt-outs may not be effective unless your browser is set to accept cookies. If you delete cookies, change your browser settings, change your browser or device, or use another operating system, you will need to opt out again.

14.9 Please note that exclusion of interest-based advertising does not mean that you no longer see advertising on your device, but that the advertising is no longer tailored to your interests.

15. Links to third party platforms.

15.1 The Website may, from time to time, contain links to and from third party websites, including those of our partner networks, hospitals and clinics with which we have worked, scientific journals, advertisers, news publications and parcel delivery companies. If you follow a link to any of these websites, please note that these websites have their own privacy policies and we do not accept any responsibility for their policies. Please check the individual policies before submitting any information to those websites.

16. Our policy towards children under 18.

16.1 You may not use ReHand app unless you are 18 years of age or older. If you are the parent or guardian of a minor under the age of 18 (hereinafter referred to as the “minor”), you may use the ReHand app and allow the minor to use the ReHand app under your direct supervision. You shall be solely responsible for all access and use by the minor in your care.

17. Changes to this policy.

Due to the dynamic development of the Internet, new technologies and opportunities are constantly evolving. In order for you to take advantage of these opportunities and technologies as well, we reserve the right to modify this Privacy Policy for the future when new or additional services or service features are introduced or existing services are changed or expanded.

A change in the privacy policy, which refers to the use of data already collected, only takes place if it is reasonable. If and to the extent that changes in the privacy policy relate to the use of data already collected, we will notify you promptly by email, through the Platform, or otherwise.

18. Notice to you.

If we need to provide you with information about something, whether for legal, marketing or other business related purposes, we will select what we believe is the best way to contact you. We will normally do this through email or by placing a notice on the Web or Platform. The fact that we may send you notices will not prevent you from opting out of certain types of contact as described in this Privacy Policy. If no objection is made within 15 days, the modified privacy policy will be deemed to have been accepted by you.

19. Applicable Law and Jurisdiction.

These Terms of Use shall be governed by and construed in accordance with the laws of Spain.

20. Questions and Additional Information.

20.1 If you have any questions or concerns, please contact us at [email protected].

20.2 If we are unable to deal with any issue you raise with us, you also have the right to file a complaint with your national data protection authority. Further information on how to contact your local data protection authority can be found at http://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.htm .


Appendices

Appendix A – Personal information we collect and process when you use the Website, contact us or purchase our services

Appendix B – Personal information we collect when you use our Platform, in specifically ReHand app

Appendix C – Personal information we collect when you use our Platform, specifically ReHand Generator and ReHand Reports

Appendix D – The information we automatically collect about web usage


Appendix A – Personal information we collect and process when you use the Website, contact us or purchase our services

1. Contact information

Type of service or care; Contact information such as your name, phone number, email address, and shipping address; your profession, and the name and address of your workplace; technical data such as operating system, version, and type of device

How we may use this information

We may use this information to process and provide the products and services you have requested. The processing is necessary for the fulfillment of a contract with you and to take action prior to entering into a contract with you.

We may use this information to set up, activate and authenticate your account. Processing is necessary for the fulfillment of a contract with you and to take action prior to entering into a contract with you.

We may use this information to process any inquiries you make regarding our Platform, our applications or your requests for products and services. The processing is necessary for our legitimate interests, i.e. the administration of the Platform and our applications, and to communicate with you effectively to respond to your queries, support requests or complaints.

We may use this information to communicate with you, including sending service-related communications, such as updates on your Account activation. Processing is necessary for the fulfillment of a contract with you.

We may use this information to send you surveys or requests for information about your experience on the Platform. We will only use your personal information in this way to the extent that you have given us your consent to do so.

We may use this information to send you unsolicited marketing communications in accordance with your preferences. We will only use your personal information in this way to the extent that you have given us your consent to do so.

Recipients of this information

We may share this information with:

– our order fulfillment and billing partners, and their affiliates to fulfill your order;

– our email and email marketing service provider, for the purpose of sending you marketing and service-related communications;

– our customer care and management platform provider, to process any support requests or inquiries you send to us;

– our payment service provider, to process your payments;

– our survey and feedback service provider, for the purpose of sending you surveys and obtaining your feedback on our products and services.

2. Information about the transaction

Transaction information, such as the products you are ordering, as well as the date and time of the transaction.

How we may use this information

We may use this information to process and provide the products and services you have requested. The processing is necessary for the fulfillment of a contract with you and to take action prior to entering into a contract with you.

We may use this information to process any warranty claims you submit to us, including exercising your rights under applicable law. Processing is necessary for the fulfillment of a contract with you.

We may use this information to respond to any support requests regarding the products you have ordered, including inquiries about the process of activating your Account. Processing is necessary for our legitimate interests, i.e. to provide customer support.

We may use this information to determine the products and services that may be of interest to you. Processing is necessary for our legitimate interests, i.e. to inform our marketing department.

We may use this information to identify fraudulent transactions. Processing is necessary for our legitimate interests, i.e., fraud detection and prevention.

Recipients of this information

We may share this information with:

– our order fulfillment and billing partners, and their affiliates to fulfill your order;

– our email and email marketing service provider, for the purpose of sending you marketing and service-related communications;

– our customer care and management platform provider, to process any support requests or inquiries you send to us;

– our payment service provider, to process your payments;

– our survey and feedback service provider, for the purpose of sending you surveys and obtaining your feedback on our products and services.

3. Payment Information

Payment information, such as your credit or debit card, billing address, and other information such as the date and time of the transaction

How we may use this information

We may use this information to process payments you make. The processing is necessary for the fulfillment of a contract.

The processing is necessary for our legitimate interests, namely the detection and prevention of fraud.

Recipients of this information

We may share this information with:

– our payment service provider, to process your payments.

4. Correspondence, comments and opinions

Correspondence, comments and opinions. When you contact us directly, for example, by email, phone, through our social media channels or when you fill out an online form, we will record your comments and feedback.

How we may use this information

We may use this information to respond to your questions, problems and concerns. Processing is necessary for our legitimate interests, i.e., to communicate with users and respond to their questions, complaints and concerns.

We may use this information to develop new products and features available on our Platform or otherwise improve it. Processing is necessary for our legitimate interests, i.e., the development and improvement of our Platform.

We may use this information to determine the products and services that may be of interest to you. Processing is necessary for our legitimate interests, i.e., marketing.

We may use this information to send you requested marketing communications and other information in response to your inquiries. The processing is necessary for the fulfillment of a contract and to take action prior to the conclusion of a contract.

We may use this information to send you unsolicited marketing communications in accordance with your marketing preferences. We will process your personal information for this purpose to the extent that you have given us your consent to do so.

Recipients of this information

We may share this information with:

– our email and email marketing service provider, for the purpose of sending you marketing and service-related communications;

– our customer care and management platform provider, to process any support requests or inquiries you send to us.

5. Information received from third parties, such as social networks

Information received from third parties, such as social networks If you interact with us through a social network, we may receive information from the social network such as your name, profile information and any other information that allows the social network to share with third parties. The information we receive depends on your privacy settings with the social network.

How we may use this information

We may use this information to communicate with you and to address your questions, problems and concerns. Processing is necessary for our legitimate interests, that is, to communicate with users and respond to their questions, complaints and concerns.

We may use this information to inform our marketing department, for example, through “Facebook Lookalike Audiences”. The processing is necessary for our legitimate interests, i.e. for marketing.

Recipients of this information

We may share this information with:

– our email and email marketing service provider, for the purpose of sending you marketing and service-related communications;

– our customer care and management platform provider, to process any support requests or inquiries you send to us.

6. Your preferences and subscriptions

Your preferences and subscriptions, for example, whether you have subscribed to a newsletter and your stated preferences for notifications and marketing communications.

How we may use this information

We use this information to provide notifications, send news, alerts and marketing communications where you have asked us to do so, or where you have given your consent. The processing is necessary for our legitimate interest, i.e. to ensure that the user receives the correct communication.

We use this information to ensure that we comply with our legal obligation to send only those marketing communications that you have requested or consented to. The processing is necessary for the fulfillment of a legal obligation to which we are subject.

Recipients of this information

We may share this information with:

– our email and email marketing service provider, for the purpose of sending you marketing and service-related communications;

– our customer care and management platform provider, for the purpose of processing any support requests or inquiries you send to us.

7. All personal information

All the personal information set out above.

How we may use this information

We may use all personal information we collect to operate, maintain and provide you with the features and functionality of the Platform, to communicate with you, to monitor and improve the Platform and our business, and to help us develop new products and services. The processing is necessary for our legitimate interests, i.e. to administer and improve the Platform.

Appendix B – Personal information we collect when you use our Platform, in specifically ReHand app

1. Profile Information

Profile information, such as your email address and name; professional and/or associated healthcare entity; medical record number; your ability to access or not access a Tablet device.

How we may use this information

We may use this information to set up your account on the Platform by building a patient registration system. The processing is necessary for the fulfillment of a contract with you and/or your Associated Therapist Account Holder or Associated Hospital Account.

We may use this information to send your information to your Associated Healthcare Professional for monitoring purposes. The processing is necessary to fulfill an agreement with you and/or your Associated Therapist Account Holder or Associated Hospital Account.

We may use this information for Patient Identification to retrieve KPIs from healthcare entities. The processing is necessary to fulfill an agreement with you and/or your Associated Therapist Account Holder or Associated Hospital Account.

We may use this information to respond to your support request in connection with your use of the Platform. The processing is necessary for the fulfillment of a contract with you and/or your Associated Therapist Account Holder or Associated Hospital Account.

Recipients of this information

We may share this information with:

– our email service provider, for the purpose of sending you service-related communications;

– our cloud computing and storage service provider.

2. Health Data

Pathology of the patient and hand affected; observations of your associated health professional regarding your pathology; patient results from clinical questionnaires sent; data on patient performance and adherence to the ReHand program, such as days run, exercises performed and/or scores obtained.

How we may use this information

We may use this information to provide patients with a personalized program based on their pathology needs and recovery status. The processing is necessary to fulfill a contract with you and/or your Associated Therapist Account Holder or Associated Hospital Account.

We may use this information to send your information to your Associated Healthcare Professional for monitoring purposes. The processing is necessary to fulfill an agreement with you and/or your Associated Therapist Account Holder or Associated Hospital Account.

We may use this information to respond to support requests you make in connection with your use of the Platform. The processing is necessary for the fulfillment of a contract with you and/or your Associated Therapist Account Holder or Associated Hospital Account.

Recipients of this information

We may share this information with:

– our email service provider, for the purpose of sending you service-related communications;

– our cloud computing and storage service provider.

Appendix C – Personal information we collect when you use our Platform, specifically ReHand Generator and ReHand Reports

1. Profile Information

Profile information, such as your email address and name.

How we may use this information

We may use this information to send your patient information for monitoring purposes. The processing is necessary to fulfill a contract with you or your Associated Hospital Account holder.

Recipients of this information

We may share this information with:

– our email service provider, for the purpose of sending you service-related communications;

– our cloud computing and storage service provider.

2. Usage information

Usage information, such as how long you use our products, your results when you use our products, any problems experienced when you use our products and any other information generated by the products about how you use our products.

How we may use this information

We may use this information to provide you with monitoring of product usage statistics. The processing is necessary to fulfill a contract with you or your Associated Hospital Account holder.

We may use this information to provide communications with scientific material of interest. The processing is necessary to fulfill a contract with you or your Associated Hospital Account holder.

We may share this information with:

– our customer care and management platform provider, to process any support request or inquiry you send us;

– our email and email marketing service provider, to send you marketing and service-related communications.

Appendix D – Information we automatically collect about website usage

1. Approximate location information.

Approximate location information. Other than the information you choose to provide us, we do not collect information about your exact location. However, the IP address of your device may help us determine an approximate location.

How we may use this information

We may use this information to customize the way the Website is displayed (such as the language in which it is provided to you). The processing is necessary for our legitimate interest, namely to tailor the site to make it more relevant to our users.

We may use the information you provide about your location to inform and plan our marketing strategy and to monitor and detect fraud or suspicious activity regarding your account. The processing is necessary for our legitimate interests, i.e., to inform our direct marketing strategy.

2. Information on how you access and use the Website

Information on how you access and use the website. For example, how often you access the web, how long you access the web and how long you use it, the approximate location from which you access the web, whether you access the web or applications from various devices, and other actions you take on the web.

How we may use this information

We may use this information to monitor and improve the site, to resolve problems and to inform the development of new products and services. The processing is necessary for our legitimate interests, i.e. to monitor and resolve problems with the site to improve it.

3. Log files and information about your device

Log files and information about your device. We also collect information about the computer, tablet, smartphone or other electronic device you use to access the website. This information may include details about the type of device, unique device identification numbers, operating systems, browsers and applications you use to access the website and/or applications on your device, your mobile network, your IP address and your device’s phone number (if any).

How we may use this information

We may use this information to monitor and improve the site, to resolve problems and to inform the development of new products and services. The processing is necessary for our legitimate interests, i.e. to monitor and resolve problems with the site to improve it.

Recipients of this information

We may share this information described in 1, 2 and 3 above with:

– Google LLC, which provides our analysis platforms, to help us understand how visitors use the Platform and/or our applications;

– Facebook Ireland Limited and its affiliates, in order to support the social exchange and integration of Facebook services with our Platform;

– Facebook Ireland Limited, Google LLC and their affiliates who use information collected from our Platform to target and display personalized advertisements to you when you browse the Internet.

Download our app

And see how your patients can work with ReHand.