Privacy Policy
Last Updated: 4th October, 2024
TikCare respects your privacy and is committed to protecting your personal data.
This Privacy Policy is meant to help you understand what information we collect, why we collect it, and what you can do to protect your information.
TikCare is owned by SilverX Limited (“the Company”, “we”, “us”, or “our”), which is the company that collects and processes personal data for the purposes described in this policy.
Scope of this privacy policy
This Privacy Policy covers our collection, use and disclosure of information about identifiable individuals and information which can be used to identify an individual (“Personal Data”). Personal Data does not include “aggregate” information which we aggregate from information (including Personal Data) you provide to us. Personal Data may be collected about our customers and visitors to the Website, and end users of the Services. You can choose not to provide us with certain information, but by doing so, you may not be able to use many of the features and functionality of our Services.
The Services are intended for use by health care providers (“Customers”). Our Customers are responsible for maintaining their own privacy policies governing the collection, use and disclosure of Personal Data and for obtaining the necessary authorizations and consents before any Personal Data are made available to us for use in accordance with this Privacy Policy.
You understand and agree that we and our authorized business partners, affiliates, subsidiaries or agents may collect, maintain, and process information provided by you, on and through the Services. You represent and warrant that you have permission to share any information you elect to provide to us, you consent to such information being shared with third parties as described in this Privacy Policy, and that such information is accurate, current, non-misleading, and consistent and relevant for the purpose for which you are providing information.
Information we collect
Depending on the level of your engagement with our website or the Services, we may collect, use, store and transfer different kinds of personal data about you as follows:
Identity Data:
Includes first name, last name, username or similar identifier, position.
This is information you provide to us when you subscribe to our Services.
Contact Data:
Includes email address.
It also includes some contact data within your organisation when you are about to enter or have entered a Contract with us.
We require this information to manage the Contract we have entered or we are about to enter with you and to enable you to communicate with us.
We also collect these data for our regulatory and legal compliance obligations.
Technical Data:
In relation to the use of the Services, this includes: internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access the Services.
Please see our cookies policy for more details about why and how we use cookies and other tracking technologies.
Usage Data:
Includes details of your use of the Services including but not limited to, traffic data and other communication data, and the resources that you access, the number of active users of our Services.
We collect this data to monitor and measure the performance of the Services and to manage the Contract.
Other Information:
Non-Identifiable Data
When you interact with the Company through the Services, we receive and store certain personally non-identifiable information. Such information, which is collected passively using various technologies, cannot presently be used to specifically identify you. The Company may store such information itself or such information may be included in databases owned and maintained by Company affiliates, agents or service providers. The Services may use such information and pool it with other information to track, for example, the total number of visitors to our Site or App downloads, the number of visitors to each page of our Site, and the domain names of our visitors’ Internet service providers. It is important to note that no Personal Data is available or used in this process.
Cookies
In operating the Services, we may use a technology called “cookies.” A cookie is a piece of information that the computer that hosts our Services gives to your browser when you access the Services. Our cookies help provide additional functionality to the Services and help us analyze Services usage more accurately. For instance, our Site may set a cookie on your browser that allows you to access the Services without needing to remember and then enter a password more than once during a visit to the Site. In all cases in which we use cookies, we will not collect Personal Data except with your permission. On most web browsers, you will find a “help” section on the toolbar. Please refer to our cookie policy for information on how to receive notification when you are receiving a new cookie and how to turn cookies off. We recommend that you leave cookies turned on because they allow you to take advantage of some of the Service features.
Log Files
Like many internet and mobile services, we may automatically gather certain information about our Services traffic and store it in log files. This information includes mobile device identifiers, browser type, IP address, mobile or internet service provider, referring/exit pages, operating system, date/time stamp, and clickstream data. We use this information, which does not identify individual users, to analyze trends, to administer the Services, to track users’ movements around the Services, and to gather demographic information about our user base.
We also store in our log files information identifying users who have accessed data that we process and store about patients, and any changes they make to such data. We use this information to comply with legal obligations relating to such data and to keep a record of such changes. We may also use it to improve our Services. We may link this automatically collected data to Personal Data. Device identifiers may be tied to Personal Data to troubleshoot access issues.
We may use third-party tracking services that use log files, cookies, and possibly other techniques to track non-Personal Data about visitors to the Services in the aggregate. These services capture usage and volume statistics as well as geographical location data to compile usage reports and maps for optimization and troubleshooting purposes.
Aggregated Personal Data
In an ongoing effort to better understand and serve the users of the Services, the Company often conducts research on its customer demographics, interests and behavior based on the Personal Data and other information provided to us. This research may be compiled and analyzed on an aggregate basis, and the Company may share this aggregate data with its affiliates, agents and business partners. This aggregate information does not identify you personally. The Company may also disclose aggregated user statistics in order to describe our services to current and prospective business partners, and to other third parties for other lawful purposes.
Online Tracking
At this time, this Service does not support Do-Not-Track signals.
Data Collection
We collect Personal Data from you when you voluntarily provide such information, such as when you contact us with inquiries, respond to one of our surveys, register for access to the Services or use certain Services.
As you visit or browse the Website or use the App, we collect information about the device and browser you use, your network connection, your IP address, and information about the cookies installed on your device. This information is logged to help diagnose technical problems for analytics and for quality control purposes.
By voluntarily providing us with Personal Data, you are consenting to our use of it in accordance with this Privacy Policy. If you provide Personal Data to the Services, you acknowledge and agree that such Personal Data may be transferred from your current location to the offices and servers of our company and the authorized third parties referred to herein located in the other jurisdictions.
Data Usage
We will only use your personal data when the law allows us to do so. Most commonly we will use your personal data in the following circumstances:
- Where you have consented before the processing. Consent means processing your personal data where you have signified your agreement by a statement or clear opt-in to processing for a specific purpose. Consent will only be valid if it is a freely given, specific, informed and unambiguous indication of what you want. You can withdraw your consent at any time by contacting us.
- Where we need to perform a contract we are about to enter or have entered with you. Performance of contract means processing your data where it is necessary for the performance of a contract to which you are a party or to take steps at your request before entering into such a contract.
- Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests. Legitimate Interest means the interest of our business in conducting and managing our business to enable us to give you the best service/product and the best and most secure experience. We make sure we consider and balance any potential impact on you (both positive and negative) and your rights before we process your personal data for our legitimate interests. We do not use your personal data for activities where our interests are overridden by the impact on you (unless we have your consent or are otherwise required or permitted to by law). You can obtain further information about how we assess our legitimate interests against any potential impact on you in respect of specific activities by contacting us.
- Where we need to comply with a legal or regulatory obligation. Comply with a legal obligation means processing your personal data where it is necessary for compliance with a legal obligation that we are subject to.
The table below explains what we use (process) your personal information for (other than the special category of data) and our reasons for doing so.
Purpose/activity | Type of data | Lawful basis for processing |
To manage our relationship with you including responding to your queries and requests, notifying you of changes to the Website and/or to the Services and/or our Terms of Service or Terms of Use of the Services or this privacy policy | Identity Contact | Necessary to comply with legal obligations (to inform you of any changes to our terms and conditions) Necessary to perform a contract |
To administer and protect our business and the Services, including troubleshooting, data analysis and system testing | Identity Contact Technical | Necessary for our legitimate interests (for running our business, provision of administration and IT services, network security) |
To ensure that you are able to meet your regulatory obligations | Identity Contact | Performance of a contract with you To comply with a legal or regulatory obligation or expectations |
Disclosures of your personal data
We are not in a business to sell your data. Nevertheless, the above purposes and activities may require us to pass on some of our personal data to the following third parties:
- Our service providers acting as our processors and sub-processors providing data hosting services in connection to the Services;
- Other suppliers, which we may appoint from time to time to provide various services to us, such as IT and system administration services.
- Professional advisers acting as processors or joint controllers including lawyers, bankers, auditors and insurers who provide consultancy, banking, legal, insurance and accounting services; and
- Regulators, local authorities and other public or regulatory authorities acting as processors or joint controllers who require reporting of processing activities in certain circumstances.
We only allow our service providers to handle your personal information if we are satisfied they take appropriate measures to protect your personal information. We also impose contractual obligations on service providers to ensure they can only use your personal information to provide services to us and to you and for no other reasons.
As we develop our business, we might sell or buy businesses or assets. In the event of a corporate sale, merger, reorganization, dissolution or similar event, Personal Data may be part of the transferred assets.
We may disclose and exchange information with law enforcement agencies and regulatory bodies to comply with our legal and regulatory obligations.
Data security
The Company takes reasonable steps to protect the Personal Data provided via the Services from loss, misuse, and unauthorized access, disclosure, alteration, or destruction. However, no Internet or email transmission is ever fully secure or error free. In particular, email sent to or from the Services may not be secure. Therefore, you should take special care in deciding what information you send to us via email. Customers are encouraged not to email Protected Health Information to the Company unless prior arrangements have been made with the Company to ensure email is encrypted.
Where we have given you (or where you have chosen) a password that enables you to access certain parts of our Services, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
By contracting with us or using our Services, you consent to the collection, storage, processing and transfer of your information in and to Hong Kong or other countries and territories, pursuant to the laws of the Hong Kong. Some of these countries may not offer the same level of privacy protection as your own.
We do transfer certain Aggregated Data in and to Hong Kong or other countries and territories (however for the avoidance of doubt, such does not contain any personal data) to help us improve our services to you and other users of the Services.
Data retention
We retain your personal data for as long as we need it for the purposes we have collected it for, such as contracting with you for your use of our Services. We may retain your personal data for a longer period if you make a complaint under this privacy policy or our Terms of service, or if we have a reasonable belief that litigation may arise in relation to our relationship with you. We may also be required to retain certain personal data from you to comply with our legal and regulatory requirements.
In some circumstances you can ask us to delete your data: see your legal rights section below for further information.
In some circumstances, we will anonymise your personal data (so that it can no longer be associated with you) for research, analysis or statistical purposes, in which case we may use this information indefinitely without further notice to you.
Your legal rights
Under certain circumstances, you have the following rights under data protection laws in relation to your personal data.
- Request access to your personal data (commonly known as a “data subject access request”). This enables you to receive a copy of the personal data we hold about you and to check that we are lawfully processing it.
- Right to be informed. You have the right to be informed how your personal data will be used. This privacy policy as well as any additional information or notice that is provided to you either at the time you provided your details, or otherwise, is intended to provide you with this information.
- Request correction of the personal data that we hold about you. This enables you to have any incomplete or inaccurate data we hold about you corrected, though we may need to verify the accuracy of the new data you provide to us.
- Request erasure of your personal data. This enables you to ask us to delete or remove personal data where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove your personal data where you have successfully exercised your right to object to processing (see below), where we may have processed your information unlawfully or where we are required to erase your personal data to comply with local law. Note, however, that we may not always be able to comply with your request of erasure for specific legal reasons which will be notified to you, if applicable, at the time of your request.
- Object to processing of your personal data where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground as you feel it impacts on your fundamental rights and freedoms. You also have the right to object where we are processing your personal data for direct marketing purposes. In some cases, we may demonstrate that we have compelling legitimate grounds to process your information which override your rights and freedoms.
- Request restriction of processing of your personal data. This enables you to ask us to suspend the processing of your personal data in the following scenarios:
- if you want us to establish the data’s accuracy;
- where our use of the data is unlawful but you do not want us to erase it;
- where you need us to hold the data even if we no longer require it as you need it to establish, exercise or defend legal claims; or
- you have objected to our use of your data but we need to verify whether we have overriding legitimate grounds to use it.
- Request the transfer of your personal data to you or to a third party. We will provide to you, or a third party you have chosen, your personal data in a structured, commonly used, machine-readable format. Note that this right only applies to automated information which you initially provided consent for us to use or where we used the information to perform a contract with you.
- Withdraw consent at any time where we are relying on consent to process your personal data. However, this will not affect the lawfulness of any processing carried out before you withdraw your consent. If you withdraw your consent, we may not be able to provide certain products or services to you. We will advise you if this is the case at the time you withdraw your consent.
If you would like to exercise any of those rights, please contact us via info@tikcare.co and let us have enough information to identify you;
- let us have proof of your identity and address (a copy of your driving licence or passport and a recent utility or credit card bill); and
- let us know what right you want to exercise and the information to which your request relates.
We try to respond to all legitimate requests within one month. Occasionally it could take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
Exclusions
- This Privacy Policy does not apply to any Personal Data collected by the Company other than Personal Data collected through the Services. This Privacy Policy shall not apply to any unsolicited information you provide to the Company through the Services or through any other means. This includes, but is not limited to, information posted to any public areas of the Services, such as forums, any ideas for new products or modifications to existing products, and other unsolicited submissions (collectively, “Unsolicited Information”). All Unsolicited Information shall be deemed to be non-confidential and the Company shall be free to reproduce, use, disclose, and distribute such Unsolicited Information to others without limitation or attribution.
Children - The Company does not knowingly collect Personal Data from children under the age of 18. If you are under the age of 18, please do not submit any Personal Data through the Services. We encourage parents and legal guardians to monitor their children’s Internet usage and to help enforce our Privacy Policy by instructing their children never to provide Personal Data on the Services without their permission. If you have reason to believe that a child under the age of 18 has provided Personal Data to the Company through the Services, please contact us, and we will endeavor to delete that information from our databases.
Links to Other Web Sites - This Privacy Policy applies only to the Services and does not apply to the practices of companies that we do not own or control. The Services may contain links to other web sites not operated or controlled by the Company (the “Third Party Sites”). The policies and procedures we described here do not apply to the Third Party Sites. The links from the Services do not imply that the Company endorses or has reviewed the Third Party Sites. We suggest contacting those sites directly for information on their privacy policies.
Other Terms and Conditions - Your access to and use of the Services is subject to the Terms of Use at https://tikcare.co
Changes to Company’s Privacy Policy - The Company reserves the right to update or modify this Privacy Policy at any time and from time to time without prior notice. Please review this policy periodically, and especially before you provide any Personal Data. This Privacy Policy was last updated on the date indicated above. Your continued use of the Services after any changes or revisions to this Privacy Policy shall indicate your agreement with the terms of such revised Privacy Policy.
Access to Information - To keep your Personal Data accurate, current, and complete, please contact us as specified below. We will take reasonable steps to update or correct Personal Data in our possession that you have previously submitted via the Services. As appropriate, any amended Personal Data will be transmitted to those parties to which we are permitted to disclose your information. Having accurate Personal Data about you enables us to give you the best possible service.
- In the event Personal Data relates to a Customer’s patients in the United States, and we are providing services as a Business Associate, the terms of the Business Associate Agreement will dictate the manner in which we update, correct, or remove Personal Health Information. In the event there is a conflict between this Privacy Policy and the Business Associate Agreement, the Business Associate Agreement will prevail.
Please also feel free to contact us if you have any questions about the Company’s Privacy Policy or the information practices of the Services.
You can contact us via info@tikcare.co.