Privacy policy

PRIVACY POLICY

Framework:

Within the scope of its activity, Magismed Lda ("MAGISMED"), with head office at Avenida Antera de Quental n84, 4710-353 Braga, legal person no. 513957871, collects personal data related to its Customers, electronically and in person, ensuring that its processing is carried out in accordance with the privacy protection rules emerging from Regulation (EU) 2016/679 (GDPR) and other applicable national legislation, as well as in accordance with the confidentiality duties to which MAGISMED is subject.
The data collected corresponds to data provided by Customers or Potential Customers themselves by filling in forms.

Data controller:

The entity responsible for processing is MAGISMED insofar as it is responsible for determining the purposes and means of processing the personal data of its Clients.

Type of data processed:

Information about your health; including: reason for consultation/act, personal history (childhood illnesses, immunisations, habits, gynaecological history, allergies, medication, active illnesses, inactive illnesses), family history (most frequent conditions - diabetes, hypertension, PT, cancer, living/deceased, cause of death), clinical examination, diagnoses, complementary examinations, referral, alerts (diabetes, hypertension, etc.), blood group; medication, etc.), blood group; medicines prescribed, identification of the prescriber, code of the place of prescription and data on the prescription and special reimbursement scheme; act and heading of the episode carried out, start and end date of the episode, status of the episode, health professional who carried out the episode, episode number, type of episode, indication of whether there are any results from the episode and identifier of these results. Genetic data, racial or ethnic origin and data relating to sex life and sexual orientation.
In order to provide its services, MAGISMED will necessarily have to collect data relating to your health and, in certain cases, genetic data, data relating to your racial or ethnic origin and data relating to your sex life or sexual orientation. As this is a "special category of data", Magismed will comply with the most stringent protection requirements laid down in the GDPR with regard to the processing of this data, both with regard to the appropriate legal grounds for its processing and with regard to the implementation of appropriate technical and organisational measures to minimise its processing, restrict access to this data and guarantee its security.

Purposes of processing:

MAGISMED uses your aforementioned data to book appointments, book examinations, medical diagnosis, to provide healthcare and auditing. The data collected will be based on the need for processing for the purposes of preventive medicine, medical diagnosis, provision of health care or treatment.
Data relating to your health will only be processed by or under the responsibility of professionals bound by confidentiality, to the strict extent necessary for the provision of healthcare, and may be communicated to your relatives only in the circumstances expressly provided for in the Law in force.

Data sharing:

MAGISMED uses other organisations to provide certain services. The provision of these services may involve access by these organisations to the personal data of their clients.
MAGISMED ensures that such subcontracting entities offer sufficient guarantees for the implementation of appropriate technical and organisational measures so that the processing meets the requirements of the applicable law and ensures the security and protection of the rights of data subjects, under the terms of the subcontracting agreement signed with said subcontracting entities.
MAGISMED may also transmit its Clients' personal data to third parties when such data communications are necessary or appropriate (i) in the light of applicable law, (ii) in fulfilment of legal obligations/court orders, (iii) to respond to requests from public or government authorities.
MAGISMED may transmit your personal data to the Health Regulatory Authority, the ACSS, the Shared Services of the Ministry of Health (SPMS), INFARMED or the Regional Health Administrations, the Courts, Solicitors, criminal police bodies or the Public Prosecutor's Office when notified to do so or when necessary for the fulfilment of legal obligations, as provided by law.

Rights of personal data subjects:

Under the terms of the applicable law, Customers, holders of personal data, have the following rights:
(a) Right to Information, which consists of the right of Customers to be informed by Magismed, among other things, about the purpose of the data processing, to whom it can be communicated, what rights they have and under what conditions they can exercise them, as well as what data they must provide;
(b) Right of Access, which consists of the right of Customers to access their personal data that they have provided, without restrictions, delays or excessive costs, as well as to know any available information about the origin of that data;
(c) Right of Rectification, which is the right of Clients to demand that their data is accurate and current, and may request its rectification from MAGISMED;
(d) Right of Deletion (or "forgetting"), which is the right of Clients to demand the deletion of their personal data from MAGISMED's records when they are no longer used for the purposes for which they were collected, without prejudice, however, to the retention periods imposed by law;
(e) Right to Object, which is the right of Clients to object, at their request and free of charge, to the processing of their personal data;
(f) Right to Portability, which is the right of Clients to receive the personal data they have provided to MAGISMED, in a structured, commonly used and machine-readable format, and to transmit that data to another controller.
(g) Right to Restriction of Processing, which is the right of Clients to, in certain circumstances, request MAGISMED to restrict the processing of their data, namely (i) when they contest the accuracy of their personal data, for a period that allows MAGISMED to verify its accuracy; (ii) if the processing is unlawful and the Client opposes the deletion of the data, requesting, on the other hand, the limitation of its use; or (iii) when MAGISMED no longer needs the Client's personal data for processing purposes, but such data is required by the Client for the purposes of declaring, exercising or defending a right in legal proceedings;
(h) Right to lodge a complaint with the CNPD, which consists of the right to lodge, without prejudice to any other administrative or judicial remedy, a complaint with a supervisory authority, in particular in the Member State of the data subject's habitual residence, place of work or place where the infringement is alleged to have taken place, if the data subject considers that the processing of personal data concerning him or her violates the GDPR and other applicable national legislation. In Portugal, the supervisory authority is the National Data Protection Commission.
In order to exercise any of their rights, including to access their data or request its rectification, deletion or object to its processing under the terms of the law, Clients should contact MAGISMED by letter: with registered office at Avenida Antero de Quental nº84 4710-353 Braga, or by email: info@magismed.com.

Data retention periods:

Your data will be kept by MAGISMED in strict compliance with the applicable legislation and will be stored in specific databases created for this purpose. This data is kept in a format that allows the identification of data subjects for no longer than is necessary for the purposes for which it is processed. The length of time for which data is stored and retained varies according to the purpose for which the information is used. There are, however, legal requirements that oblige data to be kept for a certain period of time. To this extent, data relating to your health is stored in accordance with the legislation applicable to the archiving of hospital documentation.

Security measures:

MAGISMED undertakes to adopt the appropriate technical and organizational measures to protect the data over which it is responsible for processing against accidental or unlawful interference that causes unauthorized destruction, alteration, disclosure or access, as well as any other form of unlawful processing.
To this end, MAGISMED has a set of security technologies and procedures to protect users' personal data from unauthorized access, use or disclosure, such as storing the personal data collected in computer systems with limited access and located in controlled facilities.

Changes to the privacy policy:

MAGISMED reserves the right, at any time, to make readjustments or changes to this Privacy Policy, such changes being duly publicized by MAGISMED.

Cookies:

Cookies are small files that are saved on the CLIENT's computer and serve only to identify the computer that is accessing Magismed. These files do not contain any personal information. Cookies generally last for a limited period of time. No cookie can extract information from the hard disk of the CUSTOMER's computer, steal personal information or read cookie files created by other providers.
Thanks to cookies, MAGISMED is able to recognize duly registered CUSTOMERS, provided they use the same equipment and browser, without them having to register on each visit to access the areas and services reserved exclusively for them. The CUSTOMER is free to reject our cookies if the browser allows it, but doing so may compromise the full functionality of MAGISMED used.
Our system respects the DoNotTrack (non-monitoring) option set in visitors' browsers. If you do not wish to contribute anonymous information about how you browse the site to our Web Analytics tool, please check the options available in the next paragraph:
Notwithstanding the anonymous information collected and processed on our Web Analytics platform, technical information about your visit(s) may be collected by the technological infrastructure that supports the system. MAGISMED does not share this information with third parties, without prejudice to the legal requirements imposed by current legislation (i.e. this information may be shared with the competent public authorities, in compliance with Portuguese and European legislation).
Under the terms of Law no. 41/2004 of August 18, the storage of information and the possibility of accessing information stored on a user's terminal equipment (namely through cookies) are only carried out by MAGISMED if the user has given their prior and express consent to the installation of cookies on their equipment.
If you block or do not consent to the use of cookies, no cookies will be stored on your device, although full operation of our website is not guaranteed as you may be prevented from taking full advantage of the content provided. For security reasons, you will be asked for your authorization each time you access our website.
Cookies can be blocked and/or disabled using your browser settings or add-ons. See your browser documentation for more information.

What Cookies We Use

Essential Cookies:

  • Technical Cookies
    These are session, identification, configuration and registration cookies, strictly necessary to identify and provide the services requested. The information obtained through them is only processed by Magismed.
  • Analysis Cookies:
    These are collection cookies for data analysis in order to improve the supply of products or services, allowing us, graphically, to quantify the number of users in order to enable a statistical analysis of the use of the service offered. This data is processed by us or by third parties (Google Analytics).

MAGISMED also uses:

  • Functionality Cookies:
    These are cookies that help personalize and optimize the experience of using our websites based on the activities of previous sessions.
  • Performance Cookies:
    These are cookies that help us measure the origin of visits by users of our websites. These cookies allow us, through analysis based on previous activities, to communicate to users who are potentially interested in our services. The information collected through this type of cookie allows us to analyze in which media our online advertisements are most effective.
  • Targeting cookies:
    These cookies allow us to display personalized ads through the Google Display network, allowing us to optimize the experience based on previous visits to our website.
  • Social Networks / Remarketing Cookies:
    These cookies allow us to display personalized ads through social networks, Facebook, Instagram, LinkedIn or others, and Google, allowing us to optimize the experience based on previous visits to our websites.

How to disable a Cookie:
Most browsers show you how to configure your browser to allow or disallow the use of Cookies. To control the use of Cookies, configure it through the browser.

How to configure Cookies in the main browsers?
Chrome:
https://support.google.com/chrome/answer/95647?hl=pt'

Firefox:
https://support.mozilla.org/pt-BR/kb/cookies-informacoes-sites-armazenam-no-computador?redirectslug=cookies-informacoes-armazenadas-por-sites-em-seu-c&redirectlocale=pt-BR

Explorer:
https://support.microsoft.com/pt-pt/help/17442/windows-internet-explorer-delete-manage-cookies

Safari:
https://support.apple.com/pt-pt/guide/safari/sfri11471/mac

Edge:
https://privacy.microsoft.com/en-us/windows-10-microsoft-edge-and-privacy

Opera:
https://www.opera.com/help/tutorials/security/privacy/