Privacy Policy

1. The importance of user privacy and our commitment to your privacy:

  • Based on the importance and confidentiality of user data collected and processed through (Ithnain App), the application management aims to provide the best levels of service and protection, so it is keen to maintain and ensure the confidentiality and privacy of the data entered or collected about any of the application's users.
  • (“you” or “user” or “users”) are bound by the laws, regulations and legislations applicable in the Kingdom of Saudi Arabia.
  • This policy aims to clarify the nature of the data that the Ithnain app collects from the user and how this data will be handled by the administration and the users' rights related to it. This policy is read in conjunction with the terms of use of the app and the terms used in this policy are subject to the definitions mentioned in the terms of use of the Ithnain app.

2. Legal basis for collecting and using your personal data:

Your personal data will be collected, processed, shared and used based on the following legal bases:

  • Contractual basis: To fulfill our obligations to you in relation to the provision of electronic services via the Two App - including your health profile.
  • Legal obligation: To comply with the statutory requirements of executive and supervisory authorities, including but not limited to the Personal Data Protection Law and the legislation issued under it.
  • Vital interests: Data is processed to protect your vital interests.
  • Public interest: Where data processing is necessary for the performance of a task carried out in the public interest.

3. How we will use your data:

We will collect, process and use your personal data for the following purposes:

  • To enable us to provide, manage, and optimize the services provided via the Ithnain App and other services and products offered by us.
  • To improve the quality and accessibility of the health services provided to the user.
  • Review the user's health profile, which is the collection of information documenting his/her health status and information related to the health services provided to him/her through health facilities and/or approved technology applications/media, including recording, monitoring and/or analyzing information related to the user's health or fitness, including his/her physical activity, measurements or descriptions.
  • Communicate and interact with you and users of the App for various purposes, such as requesting assistance, responding to inquiries, or addressing complaints.
  • Provide the user with updates on current or new services and products or other events offered by the Department or its partners.
  • Monitor and detect violations of Ithnain's terms of use and policies.
  • Archiving and utilizing user data for future communication.
  • Maintain and optimize the performance and security of Ithnain and manage its systems and networks.
  • To create a user login account and to authenticate the user's identity when registering with Ithnain.
  • To administer Ithnain and carry out its internal processes, including but not limited to - troubleshooting, information analysis, quality management, testing, research, statistical and comprehensive survey purposes.
  • To comply with legal and regulatory requirements.
  • For any other lawful purpose that may be identified to you before or at the time of collection of information with your consent.
  • To fulfill any other purpose permitted or required by law.

To manage Ithnain use of personal user data in an aggregated or anonymized form for the purpose of developing and providing solutions and services.

4. What personal data we collect and use:

We collect the data that you enter for the purpose of registering or using our services or for the purpose of utilizing the application or that you provide to us to communicate with you directly through approved communication channels for the same purpose, including, but not limited to, the following:

  • Identifiable Personal Data: Full name, phone number, gender, and other personally identifiable information.

  • Health data: It is the data related to the physical and psychological health status of the user and related to the health care provided to him and included in his health file, and this data includes - but is not limited to - the following:

      - Visits and referrals

      - Allergy information

      - Operations

      - Laboratory tests

      - Clinical notes and summaries

      - Prescribed and non-prescribed medications

  • Geographic data: Including the city, for statistical purposes.
  • Contact information: Including phone number, cell phone number, email address.
  • Any other data that the user agrees to collect or use.

5. How we collect your personal data:

We will collect your personal data (user data) from your in-app patient record subject to their respective privacy policies, and/or by communicating with you directly via approved communication channels (WhatsApp, Twitter, Instagram).

6. Duration of retention of personal data:

Your identifiable personal data - including health data - will be retained in accordance with specified retention periods for as long as necessary to fulfill the purposes for which it was collected, and/or in accordance with legal, regulatory, accounting, or oversight requirements, which may vary depending on the circumstances and requirements, and data storage periods are regularly reviewed to ensure that user data is not stored for longer than necessary. As long as we retain your data, we ensure that we take all reasonable administrative, technical and physical precautions to protect your data from unauthorized use or disclosure.

Management retains all non-identifiable data for the purpose of developing and improving the user experience as stated in paragraph (3) of this policy.

7. Personal data protection and access:

  • We will continuously develop security practices to ensure the integrity and confidentiality of information and systems by using organizational, administrative, and technical procedures and means to protect your data from unauthorized access, use, alteration, or destruction, including internal and external audits, data encryption, and data privacy training for employees.
  • In general, access to identifiable personal data is restricted to authorized persons only, based on the principle of need-to-know, and their handling of personal data will be continuously guided and monitored by management, and they are committed to the confidentiality of the information.
  • With regard to personal health data, it will have a higher degree of protection and will be protected by a privacy seal, and access to it will only be authorized to those who have the authority to break this seal - such as the treating health practitioner - or when your interest requires it or in accordance with the laws and regulations in force in the Kingdom.
  • A record of access to personal data will be kept for auditing by the administration or the competent authorities.

8. Disclosure of personal data:

We care about the privacy and confidentiality of your personal data and will not disclose or share this data unless required or permitted by applicable laws and regulations in the Kingdom, disclosure is necessary to achieve compliance or to provide products, services or technical support at the levels required by the user as described in this policy, or when we believe that such action is necessary to protect public health and national security.

  • Disclosure to Related Parties:

    We may disclose your Personal Data to the extent necessary and reasonable in connection with the provision of the Application Services including our partners and contractors; to provide you with the requested service, information regarding services, new services, or to send invitations to participate in screening applicants regarding new products or new/existing services, as well as to improve the Services and other internal purposes.

  • Disclosure to Third Parties:

    We will not disclose or share your data with any third parties, except:

    • Disclosure to government agencies as required by applicable laws and regulations in the Kingdom of Saudi Arabia or by orders of the competent authorities.
    • In the event of using a third party or third party support, we will use reliable and authoritative entities, and require them to adhere to our confidentiality standards and take the necessary guarantees and undertakings to ensure data privacy and confidentiality of information, including signing confidentiality agreements with any such parties.

  • Disclosure to parties outside the Kingdom of Saudi Arabia:

    We will not disclose or process your personal data outside the Kingdom of Saudi Arabia, unless we obtain the necessary consents, either from you or the relevant governmental authorities, if necessary or to fulfill the purposes for which it was collected and processed in the first place.

9. Use of external links:

The administration reserves the right to disable, cancel or redirect any link in any way.

10. User rights (your personal rights):

  • You may at any time - subject to the "Retention Period for Personal Data" above - request any of the following:

      - To know the purpose and lawful basis for the collection and use of your personal data.

      - Access and obtain a copy of your personal data displayed on the Application at your request.

      - Correct, supplement or update your data as required by the relevant policies.

      - Request the suspension or deactivation of your account, unless there is a legal justification for not deactivating it or the data is closely related to a pending case before a judicial authority.

      - Withdraw your consent to review your health record and/or any of the matters to which you have expressly consented unless there is a legal basis for not doing so, and the ability to request re-acceptance if desired at any time.

  • If you wish to make any of the above requests, you can submit the request via WhatsApp (+ 966114412220), noting that the administration may request additional information in order to fulfill the request or verify your identity.

11. Your responsibility as a user to protect privacy:

In order for us to help you protect your data, we recommend the following:

  • Contact us immediately if you believe someone has accessed your data or account.
  • Never give confidential or personal information over the phone or over the Internet unless the identity of the person or party receiving the information is known.
  • Use a secure browser when conducting online transactions, close unused online applications, and make sure your antivirus software is always up to date.
  • Update your contact information if it changes.

12. Updating the policy

  • We reserve the right to modify this Privacy Policy and will notify you accordingly, and we reserve the right to suspend or terminate your account if you do not accept the new version of the Privacy Policy.

13. For inquiries and communication

  • In case of any inquiries or opinions about the terms of use and privacy policy, you can contact the application management through the available support channels (WhatsApp or social media).
Ithnain logo
We are here for you. Contact us via email or social media, and we will be happy to assist you.
Quick Links
Twitter Logo
Instagaram logo
FaceBook logo
TickTok logo
App Link to Play Store
App Link To App Store
Tamara Card
Visa Card
Master Card
Mada
© 2024 Ithnain App. All rights reserved