Privacy Policy

1. Introduction

HealthConnect GCC ("we", "us", or "our") operates a B2B healthcare procurement marketplace. This Privacy Policy describes our practices regarding the collection, use, and disclosure of information we receive from users of our platform.

By using our services, you agree to the collection and use of information in accordance with this policy. We are committed to protecting your privacy and complying with applicable data protection laws, including the UAE Data Protection Law and the EU General Data Protection Regulation (GDPR) where applicable.

2. Information We Collect

2.1 Information You Provide

We collect information you provide directly to us, including:

• Account registration information (name, email, phone number, company details)
• Business verification documents (licenses, certifications, tax IDs)
• Profile information and preferences
• RFQ details and specifications
• Product listings and catalogs
• Quote submissions and negotiations
• Payment and billing information
• Communications with us and other users
• Feedback, reviews, and ratings

2.2 Automatically Collected Information

When you use our platform, we automatically collect:

• Device information (IP address, browser type, operating system)
• Usage data (pages visited, time spent, features used)
• Location information (approximate geographic location)
• Cookies and similar tracking technologies
• Log files and analytics data

2.3 Information from Third Parties

We may receive information from third parties, such as business verification services, payment processors, and analytics providers.

3. How We Use Your Information

We use the collected information for the following purposes:

• Providing and maintaining our services
• Processing and facilitating transactions
• Verifying user identity and business credentials
• Communicating with you about your account and transactions
• Sending notifications, updates, and marketing communications
• Improving our platform and developing new features
• Analyzing usage patterns and trends
• Preventing fraud and ensuring platform security
• Complying with legal obligations
• Resolving disputes and enforcing our terms

4. Information Sharing

We may share your information in the following circumstances:

4.1 With Other Users

When you submit RFQs or quotes, your business information and transaction details are visible to relevant buyers or suppliers on the platform.

4.2 Service Providers

We share information with third-party service providers who perform services on our behalf, such as payment processing, data analytics, email delivery, and customer support.

4.3 Legal Requirements

We may disclose information if required by law, regulation, legal process, or government request, or to protect our rights, property, or safety.

4.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

5. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect and track information about your use of our platform. Cookies are small data files stored on your device.

Types of Cookies We Use:

• Essential Cookies: Required for the platform to function properly
• Performance Cookies: Collect information about how you use the platform
• Functional Cookies: Remember your preferences and settings
• Marketing Cookies: Track your browsing habits to show relevant ads

You can control cookies through your browser settings. However, disabling cookies may affect the functionality of our platform.

6. Data Security

We implement appropriate technical and organizational measures to protect your information against unauthorized access, alteration, disclosure, or destruction:

• 256-bit SSL/TLS encryption for data transmission
• Encrypted data storage in secure UAE-based data centers
• Regular security audits and penetration testing
• Access controls and authentication mechanisms
• Employee training on data protection practices
• ISO 27001 certification for information security

While we strive to protect your information, no method of transmission over the internet is 100% secure. You are responsible for maintaining the confidentiality of your account credentials.

7. Data Retention

We retain your information for as long as necessary to provide our services and fulfill the purposes described in this policy. Specific retention periods include:

• Account information: Until account deletion plus 90 days
• Transaction records: 7 years (legal and tax requirements)
• Communications: 3 years from last interaction
• Analytics data: 2 years in anonymized form
• Marketing data: Until you unsubscribe plus 30 days

8. Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal information:

• Access: Request access to your personal information
• Correction: Request correction of inaccurate information
• Deletion: Request deletion of your information (subject to legal obligations)
• Portability: Request a copy of your information in a portable format
• Restriction: Request restriction of processing in certain circumstances
• Objection: Object to processing of your information
• Withdraw Consent: Withdraw consent where processing is based on consent

To exercise these rights, please contact us at privacy@healthconnect.ae. We will respond to your request within 30 days.

9. Children's Privacy

Our services are intended for businesses and are not directed to individuals under 18. We do not knowingly collect personal information from children. If we learn that we have collected information from a child, we will delete it promptly.

10. International Data Transfers

Your information is primarily stored in data centers located in the UAE. If we transfer data internationally, we ensure appropriate safeguards are in place, including:

• Standard contractual clauses approved by relevant authorities
• Adequacy decisions by regulatory bodies
• Appropriate technical and organizational measures

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or through a prominent notice on our platform. The "Last Updated" date at the top indicates when the policy was last revised. Your continued use of our services after changes constitutes acceptance of the updated policy.

12. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us: