Quick search: doctors, specialities, Hospitals....
CTRL+K
Account
Are you a doctor?
Join us

Privacy Policy

Effective Date: August 30, 2021

Date Last Updated: June 14, 2024

Table of Contents

Introduction

Welcome to www.ibenseena.com (“we,” “us,” or “Ibenseena“). We are committed to protecting the privacy and confidentiality of our users’ (“you,” “your,” or “users“) personal information. This Privacy Policy outlines the types of information we collect, how we use it, and the choices you have regarding your personal data.

By accessing or using Ibenseena, you consent to the practices described in this Privacy Policy. If you do not agree with this policy, please do not use our website.

Information We Collect

We collect both personally identifiable information (“PII”) and non-personally identifiable information (“Non-PII”) from our users. PII is information that can be used to identify an individual, while Non-PII is data that does not directly identify an individual.

a. Information You Provide
  • When you create an account, we may collect your name, email address, password, and other relevant contact information.
  • When you submit a doctor’s profile, we may collect information such as the doctor’s name, specialty, contact details, education, and work experience.
b. Automatically Collected Information
  • We may collect certain information automatically, including your IP address, browser type, operating system, and usage patterns on our website.

How We Use Your Information

a. Provide Services We use your information to provide you with access to our website’s features and services, including displaying doctor profiles and contact information.

b. Communication We may use your contact information to send you important updates, notifications, and information related to your account and the services we offer.

c. Improve User Experience We analyze user behavior and engagement on our website to improve our services, user interface, and overall user experience.

d. Legal Compliance We may use your information to comply with legal obligations, resolve disputes, and enforce our terms and conditions.

Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect information about your interactions with our website. This helps us personalize your experience, analyze usage patterns, and improve our services. You can manage your cookie preferences through your browser settings.

Third-Party Sharing

We may share your information with third parties under the following circumstances:

  • With doctors to display their profiles accurately.
  • With service providers who assist us in operating our website and providing services to you.
  • To comply with legal obligations or respond to lawful requests.

Data Security

We take appropriate measures to protect your personal information from unauthorized access, disclosure, alteration, or destruction. However, no data transmission over the internet or data storage system can be guaranteed to be 100% secure.

On all our pages, we apply this privacy policy. This enables us to inform you about how we use and protect your data.

Who processes your personal data?

Your data is processed in accordance with the General Data Protection Regulation (GDPR) (Regulation No. 679/2016)

Data controller and data processor
Ibenseena administrators are responsible for processing the data of all ibenseena.com website users. In some cases, doctors with the authority to access patients’ health space, are also capablbes to access patient data. In this respect, we undertake to take all necessary precautions with regard to the nature of the data collected, and the risks presented by the processing, in order to preserve the security of your data and, in particular, to prevent it from being distorted, damaged or accessed by unauthorized third parties.

How is your data used?

My ibenseena space is implemented in accordance with the provisions of Articles R. 1111-26 et seq. of the Public Health Code (Decree no. 2021-1048 of August 4, 2021 relating to the implementation of the digital health space). The processing of your data is thus based on grounds of public interest, within the meaning of Article 6 e) of the RGPD.

My health space aims to promote the role of each person, throughout their life, in protecting and improving their health. This secure domain digital public service enables you to manage your health data in conjunction with players in the health, social and medico-social sectors, thus promoting prevention, coordination, quality and continuity of care.

Certain anonymized data, used for statistical purposes concerning the use of the service, will be used to steer the improvement of Mon espace santé.

What data is collected?

Only personal data strictly necessary for the purpose of processing is collected.

This includes the following data:

General data (surname, first name, date of birth, etc.);
Health data contained in your shared medical file;
Data contained in your medical profile;
Data concerning messages and documents in your secure health messaging system;
Traceability data concerning access to your Mon espace santé profile.

How long will your personal data be kept?

Your data will be kept for 1 year from the time you close My space. 
Some data may be automatically deleted from your account and are not subject to the retention period. This concerns data that you voluntarily delete from your medical profile, your health measures or your messaging system. The deletion of these elements will result in their immediate and definitive deletion from your Mon espace santé profile.

Is your data secure?

All useful precautions are taken to ensure the security and confidentiality of your personal data, in particular to prevent its loss, alteration, destruction or use by unauthorized third parties. To this end, in accordance with Article 35 of the RGPD, a Data Protection Impact Analysis (DPIA) has been carried out to ensure that your privacy is respected.
On your side, be equally vigilant before any use of the service. Make sure that the browser or network from which you access My health space (home network or cell phone operator network), and the operating environment of the devices on which you consult your My health space profile, allow access to the service in a secure configuration. We therefore recommend that you never access My health space from a public network (train station, airport, hotel, etc.). Please also check that the computer configuration and operating environment of the device(s) you are using are secure, free of viruses and in good working order. Consultation of the data in your My Health Space profile is reserved directly for you, members of your healthcare team and any healthcare professional you have authorized.

Who can access your data?

You (the adult holder)
You can directly access the data contained in your My health space profile using your means of identification and authentication. Once logged in, you will have direct access to the data stored in My health space.

You can also use your means of identification and authentication to access your child’s My health space profile. These accesses are subject to respect for the secrets that the minor may invoke.

The professionals who care for you
The access rights of the various categories of authorized professionals are established according to an authorization matrix defining the data accessible according to their profession or specialty.

Your care team
A care team is a group of professionals who are directly involved in providing or coordinating care or a series of treatments, and who :

have been recognized as members of the care team because you turn to them for consultations and procedures prescribed by a doctor to whom you have entrusted your care;

Or work together in a cooperation, shared practice or health or medical-social coordination structure, including at least one healthcare professional, with a formal organization based on predefined procedures.
This information is deemed to be entrusted to the entire team involved in your care: as such, members of the care team must be able to access your medical file. For professionals who are part of the same care team, your prior consent is not required for the exchange and sharing of confidential information within this team. In this case, your consent is presumed.

Special cases

The attending physician
If you designate an attending physician in your shared medical file, he or she will have extensive rights to access all the information stored in the file. As such, he/she also has access to information that you may have made inaccessible by masking it.

What are your rights?

In accordance with the RGPD, you have several rights over the data concerning you that is processed in your “My health space” profile:

Right to object
When creating My Health Space

You have the right to object to the creation of My health space. From the date you receive the e-mail or letter informing you of the creation of My health space, you have six weeks in which to express your opposition.

If you do not object, “My health space” will be automatically created, but you may close it at any time.

Access to the medical record in My Health Space

Once your Mon Espace Santé profile has been created, you may not, unless you have a legitimate reason, refuse to allow an authorized professional or persons working under his or her responsibility to enter information in your shared medical record that is useful for the prevention, continuity and coordination of your care.

On the other hand, you can block access to your shared medical record at any time by a specific professional. You can unblock access to your shared medical record by this professional at any time.

Access and portability rights

You have direct access to all your data processed in Mon espace santé.

If your account has been created automatically (following expiry of the objection period), you can consult its contents at any time by activating your account on the Mon espace santé website.

As part of the general roll-out of Mon espace santé, the right to portability will be implemented at a later date by data controllers. This right can be exercised once the system has been rolled out.

Right to rectification and limitation

You can directly rectify data you have entered yourself (health measures and medical profile data).

In the case of documents filed in your medical file by the professionals who take care of you, rectification can be requested from the professional who filed the document. The latter can then delete the document and submit a new, corrected document.

In addition, in the context of Mon espace santé, the right to rectification and the right to limit processing must be exercised directly with the director or DPO of your local health insurance fund.

Right of deletion

You can directly delete information you have entered yourself, such as your medical profile, your health measures, documents you have deposited in your medical record or messages in your mailbox.

As with the rectification of documents placed in your shared medical record by a healthcare professional, you cannot directly delete data entered in your shared medical record. You can request deletion, if there is a legitimate reason, from the professional or establishment that created the document.

Your Choices

You have the right to:

  • Access and update your personal information.
  • Delete your account and personal information.
  • Opt-out of receiving non-essential communications.

Children’s Privacy

Our website is not intended for use by individuals under the age of 16. We do not knowingly collect personal information from children under 16. If you believe we have collected such information, please contact us to have it removed.

Changes to this Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will notify you of any material changes by posting the updated policy on our website.

Contact Us

If you have any questions or concerns about this Privacy Policy or our practices, please contact us at [ibenseena@gmail.com].

By using our website, you acknowledge that you have read and understood this Privacy Policy and consent to the practices described herein.