WhatsApp Icon

Privacy policy

The Dermis Platform

 

The Dermis (“we”, “our”, or “us”) is committed to protecting and respecting your privacy.

 

This Privacy Policy, together with our Terms of Use and any other documents referred to in it, explains how personal data we collect from you, or that you provide to us, will be processed by us. The purpose of this policy is to give you confidence when using The Dermis website and mobile application (“Platform”) and to demonstrate our commitment to protecting your privacy and personal health information.

 

This policy applies only to The Dermis Platform and services provided through it.

 

By accessing or using the Platform, you agree to the collection and use of information in accordance with this Privacy Policy.

 

If you do not agree with this policy, please do not use the Platform.

 

Data Controller

 

For the purposes of applicable data protection laws, the data controller is:

The Dermis Telehealth Platform

Dubai, United Arab Emirates

(Full registered address to be inserted once the company license is issued)

 

 

Regulatory Compliance

 

The Dermis operates in compliance with:

 

• Dubai Health Authority (DHA) telehealth regulations

• UAE Federal Personal Data Protection Law (PDPL)

• Applicable healthcare and data protection regulations in the UAE

 

In case of any conflict between international regulations and UAE local regulations, UAE laws and DHA regulations will prevail.

 

Age Restriction

 

The Platform is not intended for individuals under 18 years of age unless supervised by a parent or legal guardian.

 

We do not knowingly collect personal information from individuals under 18 without parental or guardian consent. If we become aware that such information has been collected without consent, it will be deleted.

 

Information We Collect

 

We may collect and process the following categories of personal data.

1- Identity Data

This may include

• First name and last name

• Date of birth

• Gender

• Nationality

• Emirates ID or passport details (where required for medical records or regulation)

 

2- Contact Data

This may include

• Email address

• Phone number

• Residential address

• Location information

 

3- Health and Medical Data

As a healthcare platform, The Dermis may collect sensitive health information including

• Dermatological conditions and medical history

• Uploaded photos of skin conditions

• Medical records and consultation notes

• Prescriptions

• Diagnostic reports and test results

• Treatment plans

 

This data is classified as sensitive personal health information.

 

4- Financial Data

• Payment information

• Billing details

• Transaction history

 

Payments may be processed through third party payment providers compliant with PCI security standards.

 

5- Profile Data

• Username and password

• Appointment history

• Preferences

• Feedback or survey responses

 

6- Technical Data

• IP address

• Device type and operating system

• Browser information

• Mobile device identifiers

• Login data

• Time zone and location data

 

7- Usage Data

Information about how you interact with the Platform including

• Pages visited

• Features used

• Appointment activity

• Time spent on the platform

 

8- Video Consultation Data

If you participate in teleconsultations:

• Text 

• Video

• Images shared during consultation

 

These may be recorded only where permitted by regulation and with your consent.

 

How We Collect Your Data

 

We collect personal data through several methods.

Direct Interaction

You may provide data when you:

• Register for an account

• Book a consultation

• Upload images of skin conditions

• Communicate with dermatologists

• Contact customer support

• Provide feedback

 

Automated Technologies

 

When you use the platform, certain information may automatically be collected through

 

• Cookies

• Analytics tools

• Device identification technologies

 

Third Party Sources

In some situations data may also be received from:

 

• Insurance providers

• Partner clinics

• Diagnostic laboratories

• Healthcare providers involved in your care

 

How We Use Your Data

 

We use personal data only when legally permitted and for legitimate healthcare purposes.

 

Your information may be used to:

 

Provide Healthcare Services

 

• Conduct dermatology consultations

• Maintain medical records

• Provide treatment plans

• Issue prescriptions

• Monitor treatment progress

 

Manage Appointments

 

• Schedule consultations

• Send reminders and notifications

 

Payment Processing

 

• Process payments for consultations or services

• Manage billing and insurance claims

 

Improve the Platform

 

• Analyze usage patterns

• Improve user experience

• Develop new services

 

Regulatory Compliance

 

• Comply with DHA regulations

• Maintain legally required medical records

• Respond to regulatory authorities

 

Communication

 

• Respond to user queries

• Provide support

• Send important updates regarding the Platform

 

Sharing of Personal Data

 

Your personal data may be shared only when necessary and in accordance with applicable laws.

 

This may include sharing with:

• Licensed dermatologists using the platform

• Healthcare providers involved in your care

• Laboratories and diagnostic centers

• Pharmacies for prescription fulfilment

• Insurance companies (where applicable)

• Technology service providers supporting the platform

• Regulatory authorities such as the Dubai Health Authority

 

We do not sell personal health information to third parties.

 

Data Security

 

The Dermis implements industry standard security measures to protect personal data including:

 

• Secure servers

• Encryption of sensitive data

• Secure login authentication

• Restricted access to medical records

• Compliance with healthcare data protection standards

 

Despite strong safeguards, no system can guarantee absolute security.

 

Data Storage and Retention

 

Your personal data will be retained only as long as necessary to provide services and comply with legal obligations.

 

Medical records will be stored in accordance with Dubai Health Authority medical record retention requirements.

 

Where possible, data may be anonymized for research and statistical purposes.

 

International Data Transfers

 

In some cases, your data may be processed outside the UAE by technology providers supporting the platform.

 

Whenever this occurs, The Dermis ensures appropriate safeguards are implemented to maintain data protection standards.

 

Your Rights

 

Under applicable data protection laws, you may have the right to:

 

• Request access to your personal data

• Request correction of inaccurate data

• Request deletion of certain personal data (where legally permitted)

• Object to processing of your data

• Restrict processing of your data

• Request transfer of your data to another provider

• Withdraw consent where processing is based on consent

 

Medical records may not be deleted where retention is required by healthcare regulations.

 

Requests may be submitted through our support contact.

 

Cookies

 

The Platform uses cookies to improve user experience and analyze website usage.

 

You may disable cookies through your browser settings, although some features may not function properly.

 

Changes to this Privacy Policy

 

The Dermis may update this Privacy Policy from time to time.

 

Updates will be posted on this page and continued use of the Platform will constitute acceptance of the revised policy.

 

Contact

 

If you have any questions regarding this Privacy Policy or how your data is handled, please contact:

 

The Dermis Platform Support

Email: support@thedermis.ae

(Address to be updated once company registration is completed)