Last updated: August, 2023
MEDICAL TOURISM REVIEW S.L. ("us", "we", or "our") operates the https://medicaltourism.review/ website (the "Service").
This page informs you of our policies regarding the collection, use and disclosure of Personal Information when you use our Service.
1. Information Collection And Use
While using our Service, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you, especially for the account creation. Personally identifiable information includes your email address or your third-party service account (Facebook, Google or Twitter).
We also collect personal information, if you decide to create an account - this helps us build a strong and trustworthy platform. The personal information is shown on your profile and helps people identify you and trust your content better.
Personal Information that we collect includes:
- Your full Name - helps us and other users to identify you and build trust with you and your content;
- Your description - helps us and other users to understand who you are;
- Your date of birth - helps us calculate your age;
- Your general address - country and city / village - helps us and users understand where you’re from;
- Your gender - helps us and other users to identify you and build trust with you and your content;
- Your profile picture - helps us and other users to identify you and build trust with you and your content;
Note that all these fields are optional, but filling these in helps users build stronger profiles and build trust towards them and their content. We collect this information for the purpose of providing the Service, identifying and communicating with you, responding to your requests/inquiries, (servicing your purchase orders), and improving our services.
We are also responsible for destroying the stored Personal Data at the end of the retention period.
Our CEO & DPO (Data Protection Officer) can authorize Personal Data destruction. If authorized, the data is digitally removed from our system and backups.
At the end of the destruction procedure, our Server administration teams will perform an audit to check if all relevant Personal Data has been destroyed and will provide reports upon request.
For more information about the data we store, please contact us at [email protected].
We also collect users' contextual and behavioral data, see Log Data section below.
2. Log Data
We may also collect information that your browser sends whenever you visit our Service ("Log Data"). This Log Data may include information such as your computer's Internet Protocol ("IP") address, browser type, browser version, the pages of our Service that you visit, the time and date of your visit, the time spent on those pages and other statistics.
Some of this data is stored on our servers - this data helps us improve our Service, identify broken pages, fix existing issues.
In addition, we use third party services that collect, monitor and process data - that helps us improve our Service’s functionality. These third party service providers have their own privacy policies addressing how they use such information. More information on which third party services we use, see the Third Party Services section below.
You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. The Help feature on most browsers provides information on how to accept cookies, disable cookies or to notify you when receiving a new cookie.
If you do not accept cookies, you may not be able to use some features of our Service and we recommend that you leave them turned on.
4. Third Party Services
HumanFace Tech S.L. uses third-party services to improve our Service after you have visited our Service.
We ask your consent to use these services to further improve our platform.
Third party services that we use are:
Google Analytics 4
We utilize Google Analytics 4 for tracking and analysis. Google Analytics 4 applies data privacy practices such as data anonymization and aggregation to protect your information.
- 14 months event retention period: This is the period during which event data is available for reporting and analysis;
- 2 months conversion events: This allows us to track when a user completes a desired action on our site, such as making a purchase, for a period of 2 months.
- Google Signals: This enables additional Google Analytics advertising features, such as remarketing, demographics and interest reports, and cross-device reporting.
- Granular location and device data collection: This allows us to collect detailed information about the geographic location of our visitors and the devices they use.
- Advanced settings for ad personalization: This allows us to better tailor advertisements to users based on their activity on our site. While we do not currently run any Google Ads, this feature comes built-in with Google Analytics 4.
For more information on the privacy practices of Google, please visit the Google Privacy & Terms web page: https://policies.google.com/privacy
Facebook Pixel is an analytics service provided by Facebook, Inc. - this tool also tracks users behaviors, collects users data and gives us reports - based on which we improve our Service.
Facebook Pixel also helps our Facebook Ads find their audiences on Facebook Social Network more efficiently. For more information about Facebook’s data collection and processing, please visit this page: https://www.facebook.com/about/privacy/
HubSpot has five core products — HubSpot CRM, Marketing Hub, Sales Hub, Service Hub, and CMS Hub. For more information about their services, data collection and data processing that they use, visit this page: https://legal.hubspot.com/privacy-policy
We are actively using HubSpot today for their Chat functionality.
5. Do Not Track Disclosure
We support Do Not Track ("DNT"). Do Not Track is a preference you can set in your web browser to inform websites that you do not want to be tracked.
You can enable or disable Do Not Track by visiting the Preferences or Settings page of your web browser.
If you consent to use Third Party Services, but you have enabled Do Not Track in your browser, we will follow the DNT settings and not activate the third party services.
6. Deleting Your Account and Retention of Data
If you wish to delete your account, you may do so by sending a request using a special form (link to the form), and we will process your request within 30 days.
When you delete your account, we will remove all personal identification information associated with your account from our systems. This includes your name, profile picture, email address, and any other personally identifiable information.
However, please note that any reviews, comments, or other contributions that you have made on our platform will remain, but they will be anonymized and will not be linked to your personal information. We believe that user-generated content is a valuable part of our platform, and keeping this content helps us maintain a comprehensive and useful resource for other users.
We will retain anonymized data for internal purposes, including backups, fraud prevention, dispute resolution, investigations, our legitimate business interests, and legal compliance for the period necessary to fulfill these purposes.
7. Service Providers
We may employ third party companies and individuals to facilitate our Service, to provide the Service on our behalf, to perform Service-related services and/or to assist us in analyzing how our Service is used.
These third parties will not have access to your Personal Information - it will be sanitized and anonymized.
We may use your Personal Information to contact you with newsletters, marketing or promotional materials and other information that may be of interest to you. You may opt out of receiving any, or all, of these communications from us by following the unsubscribe link or instructions provided in any email we send.
The security of your Personal Information is important to us, and we strive to implement and maintain reasonable, commercially acceptable security procedures and practices appropriate to the nature of the information we store, in order to protect it from unauthorized access, destruction, use, modification, or disclosure.
However, please be aware that no method of transmission over the internet, or method of electronic storage is 100% secure and we are unable to guarantee the absolute security of the Personal Information we have collected from you.
In the event that Personal Data is compromised due to a breach of security, MTR, as Data Controller, will notify our country’s supervisory authority of data breaches, as well as our Clients, within seventy-two (72) hours after the breach has been detected (unless the data is encrypted or anonymized), in compliance with applicable law.
10. International Transfer
Your information, including Personal Information, may be transferred to — and maintained on — computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ from those from your jurisdiction.
Our servers are located in New York, USA and in Spain, European Union. If you choose to provide information to us, please note that we transfer the information, including Personal Information to New York, USA and Spain and process it there.
11. Links To Other Sites
We have no control over, and assume no responsibility for the content, privacy policies or practices of any third party sites or services.
12. Children's Privacy
Only persons age 18 or older have permission to create accounts on our platform. Our Service does not address anyone under the age of 13 ("Children").
We do not knowingly collect personally identifiable information from children under 13. If you are a parent or guardian and you learn that your Children have provided us with Personal Information, please contact us at [email protected]. If we become aware that we have collected Personal Information from children under age 13 without verification of parental consent, we take steps to remove that information from our servers.