In order to deliver the services contained within the BAP Breast Augmentation Planner application, [Company Providing the Application] will process limited personal data related to the user of the application in a capacity as Data Controller. The personal data processed will constitute user name and contact details and the processing of personal data is necessary for the performance of the service and delivery of the service to the end user. The processing of personal data will observe regulations set forth in the EU General Data Protection Regulation (GDPR EU/2016/679) and supplementary national data privacy legislation.
The following information will explain how we process your information, how are they used and your choices regarding your information.
The company that is responsible for your information under this Privacy Policy (the “data controller”) is:
Per Hedén AB
c/o emkay Ekonomikonsult HB
Iversonsgatan 2
114 30 STOCKHOLM
This Privacy Policy applies to apps , websites, events and other services operated by Per Hedén AB. From now on, we will refer to all of these as our “services” in this Privacy Policy. If a particular service requires a separate privacy policy, that privacy policy applies in that case. When not otherwise specifically mentioned, this privacy policy is applied.
In order to analyze flux of data related to the app, we need to collect some of your information. Those will be treated in accordance to the abovementioned GDPR and supplementary data privacy regulation.
Data collected from the app will be used in an anonymous way for statistics, performance benchmarking and research.
We need to collect your information to offer a more personalized experience of the app.
We also collect information generated as you use our services, for example access logs, as well as information from third parties, such as cases where you access our services through a social media account, or a company account.
You will choose to give us certain information when using our services.
When you create an account, you provide us with your login credentials, as well as some basic details necessary for the service to work such as your name and your contact details.
We process information related to the country where you work and the implants you are utilizing in your clinical practice.
When you subscribe to a paid service or make a purchase directly from us (rather than through a platform such as iOS or Android), you provide us or our payment service provider with information, such as your debit or credit card number or other financial information.
When you participate in surveys or focus groups, you give us your insights into our products and services, responses to our questions and testimonials.
When you book an event (such as a course, a masterclass or a conference) through our app, you allow us to share your information with third parties who are in charge of the organizations of such activities.
If you ask us to communicate with or otherwise process information of other people (for example, if you ask us to send an email on your behalf to a company), we collect the information about others that you give us in order to complete your request.
In addition to the information you provide us directly, we receive information about you from others, including:
Social Media You may be able to use your social media login (such as Facebook Login) to create and log into your account. This saves you from having to remember yet another user name and password and allows you to share some information from your social media account with us.
We may receive info about you from our partners, for instance people organizing couses, seminaries, conferences.
When you use our services, we collect information about which features you’ve used, how you’ve used them and the devices you use to access our services. See below for more details.
Usage InformationWe collect information about your activity on our services, for instance how you use them (e.g., date and time you logged in, features you’ve been using, searches, clicks and pages which have been shown to you, referring webpage address, advertising that you click on) and how you interact with companies
Device informationWe collect information from and about the device(s) you use to access our services, including: hardware and software information such as IP address, device ID and type, device-specific and apps settings and characteristics, app crashes, advertising IDs (such as Google’s AAID and Apple's IDFA, both of which are randomly generated numbers that you can reset by going into your device’ settings), browser type, version and language, operating system, time zones, identifiers associated with cookies or other technologies that may uniquely identify your device or browser (e.g., IMEI/UDID and MAC address); information on your wireless and mobile network connection, like your service provider and signal strength; information on device sensors such as accelerometers, gyroscopes and compasses.
Other information with your consentIf you give us permission, we can collect your precise geolocation (latitude and longitude) through various means, depending on the service and device you’re using, including GPS, Bluetooth or Wi-Fi connections. The collection of your geolocation may occur in the background even when you aren’t using the services if the permission you gave us expressly permits such collection. If you decline permission for us to collect your geolocation, we will not collect it.
We use and may allow others to use cookies and similar technologies (e.g., web beacons, pixels) to recognize you and/or your device. We use them for different reasons, such as authenticating you, remembering your preferences and settings, analyzing site traffic and trends, delivering and measuring the effectiveness of advertising campaigns, allowing you to use social features) and how you can better control their use, through your browser settings and other tools.
The main reason we use your information including personal data is to deliver and improve our services according to the Contract, for research purposes and data analysis. Additionally, we use your info to help keep you safe and to provide you with advertising that may be of interest to you. Read on for a more detailed explanation of the various reasons we use your information, together with practical examples:
Link the various devices you use so that you can enjoy a consistent experience of our services on all of them. We do this by linking devices and browser data, such as when you log into your account on different devices or by using partial or full IP address, browser version and similar data about your devices to help identify and link them.
To serve you relevant offers and adsAdminister sweepstakes, contests, discounts or other offers Develop, display and track content and advertising tailored to your interests on our services and other sites Communicate with you by email, phone, social media or mobile device about products or services that we think may interest you
To improve our services and develop new onesConduct research and analysis of users’ behavior to improve our services and content (for instance, we may decide to change the look and feel or even substantially modify a given feature based on users’ behavior) Develop new features and services (for example, we may decide to build a new interests-based feature further to requests received from users).
To ensure legal complianceMost of the time, the reason we process your information is to perform the contract that you have with us.
We may use your information where we have legitimate interests to do so. For instance, we analyze users’ behavior on our services to continuously improve our offerings, we suggest offers we think might interest you, and we process information for administrative, fraud detection and other legal purposes.
From time to time, we may ask for your consent to use your information for certain specific reasons. You may withdraw your consent at any time by contacting us at the address provided at the end of this Privacy Policy.
We share some users’ information with service providers and partners who assist us in operating the services, and with other companies to offer you the beast experience.
We use third parties to help us operate and improve our services. These third parties assist us with various tasks, including data hosting and maintenance, analytics, customer care, marketing, advertising, payment processing and security operations.We may also share information with partners who distribute and assist us in advertising our services. For instance, we may share limited information on you in hashed, non-human readable form to advertising partners.
We follow a strict vetting process prior to engaging any service provider or working with any partner. All of our service providers and partners must agree to strict confidentiality obligations.
We may transfer your information if we are involved, whether in whole or in part, in a merger, sale, acquisition, divestiture, restructuring, reorganization, dissolution, bankruptcy or other change of ownership or control.
We may disclose your information if reasonably necessary: (i) to comply with a legal process, such as a court order, subpoena or search warrant, government / law enforcement investigation or other legal requirements; (ii) to assist in the prevention or detection of crime (subject in each case to applicable law); or (iii) to protect the safety of any person.
We may also share information: (i) if disclosure would mitigate our liability in an actual or threatened lawsuit; (ii) as necessary to protect our legal rights and legal rights of our users, business partners or other interested parties; (iii) to enforce our agreements with you; and (iv) to investigate, prevent, or take other action regarding illegal activity, suspected fraud or other wrongdoing.
We may ask for your consent to share your information with third parties. In any such case, we will make it clear why we want to share the information. We may use and share non-personal information (meaning information that, by itself, does not identify who you are such as device information, general demographics, general behavioral data, geolocation in de-identified form), as well as personal information in hashed, non-human readable form, under any of the above circumstances. We may also share this information with other companies and third parties (notably advertisers) to develop and deliver targeted advertising on our services and on websites or applications of third parties, and to analyze and report on advertising you see. We may combine this information with additional non-personal information or personal information in hashed, non-human readable form collected from other sources.
Sharing of information laid out sometimes involves cross-border data transfers, for instance to the United States of America and other jurisdictions. As an example, where the service allows for users to be located in the European Economic Area (“EEA”), their personal information is transferred to countries outside of the EEA. We use standard contract clauses approved by the European Commission or other suitable safeguard to permit data transfers from the EEA to other countries. Standard contractual clauses are commitments between companies transferring personal data, binding them to protect the privacy and security of your data
We want you to be in control of your information, so we have provided you with the following tools:
Device permissions. Mobile platforms have permission systems for specific types of device data and notifications, such as phone book and location services as well as push notifications. You can change your settings on your device to either consent or oppose the collection of the corresponding information or the display of the corresponding notifications. Of course, if you do that, certain services may lose full functionality.
Deletion. You can delete your account by using the corresponding functionality directly on the service.
We want you to be aware of your privacy rights.
GDPR and supplementary data privacy legislation givew you the right to review the personal information we keep about you (called right of access).
If you believe that the information we hold about you is inaccurate or that we are no longer entitled to use it and want to request its rectification, deletion or object to its processing, please contact us Uninstall. You can stop all information collection by an app by uninstalling it using the standard uninstall process for your device. If you uninstall the app from your mobile device, the unique identifier associated with your device will continue to be stored. If you re-install the application on the same mobile device, we will be able to re-associate this identifier to your previous transactions and activities.
In certain countries, including in the European Union, you have a right to lodge a complaint with the appropriate data protection authority if you have concerns about how we process your personal information. The data protection authority you can lodge a complaint with notably may be that of your habitual residence, where you work or where we are established.
For Application users resident in the state of California the California Consumer Privacy Act (CCPA) will apply. If you are a California resident, you can in accordance with the CCPA request a notice disclosing the categories of personal information about you that we have shared with third parties for their direct marketing purposes during the preceding calendar year. To request this notice, please submit your request Please allow 30 days for a response. For your protection and the protection of all of our users, we may ask you to provide proof of identity before we can answer such a request.
We work hard to protect you from unauthorized access to or alteration, disclosure or destruction of your personal information. As with all technology companies, although we take steps to secure your information, we do not promise, and you should not expect, that your personal information will always remain secure.
We regularly monitor our systems for possible vulnerabilities and attacks and regularly review our information collection, storage and processing practices to update our physical, technical and organizational security measures.
We may suspend your use of all or part of the services without notice if we suspect or detect any breach of security. If you believe that your account or information is no longer secure, please notify us immediately
We keep your personal information only as long as we need it for legitimate business purposes during your usage of the application whereafter the personal data will be deleted after an inactive period of 2 years unless a retention period is stated by law. In practice, we delete or anonymize your information upon deletion of your account or after two years of continuous inactivity, unless: we must keep it to comply with applicable law (for instance, some “traffic data” is kept for one year to comply with statutory data retention obligations); we must keep it to evidence our compliance with applicable law (for instance, records of consents to our Terms, Privacy Policy and other similar consent are kept throughout the active use of the Application); there is an outstanding issue, claim or dispute requiring us to keep the relevant information until it is resolved; or the information must be kept for our legitimate business interests, such as fraud prevention and enhancing users' safety and security. Keep in mind that even though our systems are designed to carry out data deletion processes according to the above guidelines, we cannot promise that all data will be deleted within a specific timeframe due to technical constraints.
This policy may change over time and the new Privacy Policy will be published here. In the event of material changes to this privacy policy we will notify you by email.
If you have questions about this Privacy Policy or if you want to exercise any of your personal data privacy rights, you can reach us: per@drheden.com