MEDPLANNER CLINICAL MESSAGING APP – TERMS OF USE
Last Updated: 16 September 2024
These Terms of Use govern the use of the MedPlanner clinical messaging app (“App”) for all users in Malaysia, Indonesia, Singapore, and the United Kingdom. By accessing or using the App, you agree to comply with and be bound by these Terms of Use.
PLEASE READ THESE TERMS CAREFULLY BEFORE USING THE APP. IF YOU DO NOT AGREE TO THESE TERMS, DO NOT USE THE APP.
1. Introduction
MedPlanner Sdn Bhd (“MedPlanner”, “we”, “us”, or “our”) operates the MedPlanner clinical messaging app, which is a secure communication platform designed for healthcare professionals to exchange information related to patient care. This platform is designed to comply with the applicable laws and regulations regarding data protection and healthcare communication in Malaysia, Indonesia, Singapore, and the United Kingdom.
2. Eligibility
The App is intended for use by licensed healthcare professionals in the jurisdictions mentioned. By using the App, you represent and warrant that:
• You are a licensed healthcare professional in your country of residence.
• You have the authority to agree to these Terms on behalf of your employer or institution.
• You comply with all applicable laws and regulations, including privacy and healthcare regulations in your jurisdiction.
3. Data Privacy and Security
MedPlanner is committed to protecting the privacy and security of your data. Our data privacy practices are in accordance with the respective data protection regulations in the regions we operate, including but not limited to:
• Malaysia: The Personal Data Protection Act 2010 (PDPA)
• Indonesia: The Law on Electronic Information and Transactions (EIT Law) and its amendments.
• Singapore: The Personal Data Protection Act 2012 (PDPA)
• United Kingdom: The General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018
Personal Health Data
By using the App to exchange personal health data, you acknowledge that it is your responsibility to ensure that you have obtained all necessary patient consents required under the applicable laws in your jurisdiction.
Encryption and Security Measures
We use end-to-end encryption to secure all communications through the App. However, users are responsible for maintaining the security of their devices and access credentials to the App.
4. User Conduct
You agree to use the App only for lawful purposes and in accordance with these Terms. Specifically, you agree that you will not:
• Share patient information without obtaining the necessary consents as required by law.
• Use the App to transmit or share harmful, unlawful, or discriminatory content.
• Attempt to access or interfere with other users’ data or use the App in any manner that could damage or impair the service.
5. Compliance with Healthcare Laws
As a user of the App, you must comply with healthcare laws and regulations relevant to the jurisdiction in which you practice, including but not limited to:
• Malaysia: The Private Healthcare Facilities and Services Act 1998 and the guidelines set by the Ministry of Health.
• Indonesia: The Medical Practice Law, which governs healthcare practices and patient confidentiality.
• Singapore: The Healthcare Services Act 2020, which sets out rules on healthcare service delivery and patient privacy.
• United Kingdom: The National Health Service (NHS) Guidelines on patient confidentiality and data security.
6. Disclaimer of Warranties
The App is provided on an “as-is” basis. MedPlanner does not guarantee that the App will be error-free or that access to the App will be uninterrupted. MedPlanner disclaims any and all warranties, express or implied, including but not limited to warranties of merchantability, fitness for a particular purpose, and non-infringement.
7. Limitation of Liability
To the maximum extent permitted by law, MedPlanner shall not be liable for any direct, indirect, incidental, special, consequential, or punitive damages resulting from:
• Your use or inability to use the App.
• Unauthorized access to your data due to your failure to secure your access credentials.
• Loss or corruption of data.
In jurisdictions where limitations on liability are not permitted, MedPlanner’s liability shall be limited to the maximum extent allowed by the applicable laws.
8. Governing Law
These Terms of Use are governed by and construed in accordance with the laws of the country in which you reside.
• Malaysia: The laws of Malaysia apply to users residing in Malaysia.
• Indonesia: The laws of Indonesia apply to users residing in Indonesia.
• Singapore: The laws of Singapore apply to users residing in Singapore.
• United Kingdom: The laws of England and Wales apply to users residing in the United Kingdom.
9. Termination
MedPlanner reserves the right to suspend or terminate your access to the App at any time, without notice, for any violation of these Terms or if required by applicable law.
10. Intellectual Property
MedPlanner owns all intellectual property rights in the App, including but not limited to its design, features, and functionality. You may not copy, modify, distribute, or create derivative works from any part of the App.
11. Updates to Terms
We may update these Terms from time to time to reflect changes in the law, our practices, or the App’s functionality. We will notify you of any significant changes, and your continued use of the App following such notification constitutes your acceptance of the updated Terms.
12. Contact Us
If you have any questions or concerns regarding these Terms or the use of the App, please contact us at:
MedPlanner Sdn Bhd
Email: contact@medplanner.io
By clicking “I agree” or by using the MedPlanner clinical messaging app, you agree to these Terms ofUse.
​
​
​
MEDPLANNER CLINICAL MESSAGING APP - PATIENT DATA PROTECTION POLICY
​
Effective Date: 16 September 2024
​
MedPlanner Sdn Bhd (“MedPlanner”, “we”, “us”, or “our”) is committed to ensuring the protection of patient data shared via the MedPlanner clinical messaging app (“App”). This policy outlines the responsibilities of healthcare professionals and MedPlanner in safeguarding patient data in compliance with the applicable laws and regulations in Malaysia, Indonesia, Singapore, and the United Kingdom.
By using the App, healthcare professionals (“Users”) agree to comply with this policy and applicable patient data protection laws.
1. Purpose
The purpose of this Patient Data Protection Policy is to ensure that patient data is handled with the utmost care, confidentiality, and security when shared through the App. This policy is aligned with the healthcare and privacy laws of Malaysia, Indonesia, Singapore, and the United Kingdom.
2. Legal Frameworks by Jurisdiction
MedPlanner operates in accordance with the following patient data protection regulations in each country:
• Malaysia: The Personal Data Protection Act 2010 (PDPA) and Private Healthcare Facilities and Services Act 1998.
• Indonesia: The Law on Electronic Information and Transactions (EIT Law) and Regulation No. 20/2016 on Personal Data Protection in Electronic Systems.
• Singapore: The Personal Data Protection Act 2012 (PDPA) and the Healthcare Services Act 2020.
• United Kingdom: The General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
3. Patient Data Definition
For the purposes of this policy, “Patient Data” refers to any personal health information relating to an identified or identifiable patient, including:
• Medical history, diagnoses, treatments, and test results.
• Personal information, including name, contact details, and date of birth.
• Data relating to the provision of healthcare services.
4. Collection of Patient Data
MedPlanner facilitates the secure exchange of patient data between healthcare professionals. Users are solely responsible for ensuring that:
• They have obtained informed consent from patients for the collection, use, and sharing of their personal data in accordance with local regulations.
• Patient data is only shared when necessary for the provision of healthcare services.
Informed consent should include:
• Purpose of data use.
• Parties involved in the data exchange.
• Duration of data retention.
5. Use of Patient Data
Users are required to use patient data shared through the App only for purposes directly related to the treatment, diagnosis, and care of the patient. Patient data may only be used in accordance with the laws of the country where the data was collected, including:
• Malaysia: Under the PDPA, patient data may only be used for the primary purpose for which it was collected, such as patient care and treatment.
• Indonesia: The EIT Law mandates that patient data can only be used with explicit consent and must comply with data privacy and confidentiality requirements.
• Singapore: The PDPA and Healthcare Services Act 2020 require healthcare providers to obtain patient consent before sharing or processing personal data.
• United Kingdom: Under the UK GDPR, patient data must be processed lawfully, fairly, and transparently, with clear communication to patients about how their data will be used.
6. Security Measures
MedPlanner has implemented robust security measures to protect patient data shared via the App. These measures include:
• End-to-end encryption for all communications within the App.
• Secure data storage using healthcare-grade security standards.
• Access controls: Only authorized users may access patient data shared on the App.
• Data anonymization: When feasible, patient data is anonymized to minimize the risk of unauthorized identification.
Despite these efforts, it is the responsibility of Users to ensure that they protect their login credentials and devices used to access the App.
7. Patient Rights
MedPlanner acknowledges and supports the rights of patients under the data protection laws of the respective countries, including:
Malaysia: Under the PDPA, patients have the right to:
• Access their personal data.
• Correct inaccuracies in their personal data.
• Withdraw consent for the use of their personal data.
Indonesia: Under the EIT Law, patients have the right to:
• Be informed about the collection and use of their personal data.
• Request the correction or deletion of their data.
• Limit the processing of their data.
Singapore: Under the PDPA, patients have the right to:
• Access and correct their personal data.
• Withdraw consent to the use of their personal data.
• Request the portability of their personal data.
United Kingdom: Under the UK GDPR, patients have the right to:
• Access and correct their personal data.
• Request the deletion of their personal data.
• Restrict the processing of their personal data.
• Request data portability.
To exercise these rights, patients may contact the healthcare provider or organization responsible for managing their data.
8. Data Retention
Patient data will only be retained as long as necessary for the provision of healthcare services or as required by the laws of the relevant jurisdiction. Retention periods vary depending on the country’s regulations:
• Malaysia: Under the Private Healthcare Facilities and Services Act 1998, patient records must be retained for a minimum of 7 years.
• Indonesia: Healthcare providers must retain patient records for at least 5 years under the Medical Practice Law.
• Singapore: The Healthcare Services Act 2020 requires healthcare institutions to retain patient data for at least 6 years.
• United Kingdom: The NHS Code of Practice recommends retaining adult patient records for 8 years, and longer for minors.
​
9. Cross-Border Data Transfers
Patient data may be transferred across borders where necessary for healthcare purposes. MedPlanner ensures that any cross-border transfers comply with local laws governing data exports:
• Malaysia: Cross-border data transfers are permitted under the PDPA if the recipient country provides adequate data protection standards.
• Indonesia: The EIT Law permits cross-border data transfers with the patient’s consent.
• Singapore: Cross-border data transfers are allowed under the PDPA, provided that the recipient ensures comparable protection standards.
• United Kingdom: The UK GDPR allows cross-border transfers to countries or organizations that provide an adequate level of data protection.
10. Data Breach Notification
In the event of a data breach involving patient data, MedPlanner will promptly notify the affected Users and comply with the applicable breach notification requirements in each jurisdiction:
• Malaysia: Under the PDPA, data breach notifications must be made to the relevant data subject and regulator where required.
• Indonesia: Under the EIT Law, data breach notifications must be made to the authorities and affected individuals.
• Singapore: The PDPA mandates that breaches involving personal data must be reported to the Personal Data Protection Commission (PDPC) within 72 hours.
• United Kingdom: Under the UK GDPR, data breaches must be reported to the Information Commissioner’s Office (ICO) within 72 hours and affected individuals must be notified if there is a high risk to their rights and freedoms.
11. Responsibilities of Healthcare Providers
Healthcare professionals and organizations using the App are responsible for ensuring compliance with the relevant patient data protection laws. This includes obtaining consent, protecting patient confidentiality, and ensuring the security of patient data.
Users are required to:
• Ensure that all patient data shared via the App complies with local regulations.
• Report any suspected data breaches to MedPlanner immediately.
• Provide patients with information about how their data is collected and used.
12. Changes to This Policy
MedPlanner reserves the right to update this policy to reflect changes in laws or practices. Users will be notified of any significant changes to this policy.
13. Contact Information
If you have any questions or concerns about this Patient Data Protection Policy, please contact us at:
MedPlanner Sdn Bhd
Email: contact@medplanner.io
By using the MedPlanner clinical messaging app, you agree to comply with this Patient Data Protection Policy and the relevant data protection laws in your country.
MEDPLANNER CLINICAL MESSAGING APP - PRIVACY POLICY
​
Effective Date: 16 September 2024
​
MedPlanner Sdn Bhd (“MedPlanner”, “we”, “us”, or “our”) is committed to protecting your privacy and ensuring that your personal data is handled in compliance with the applicable data protection laws. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you use the MedPlanner clinical messaging app (“App”).
This Privacy Policy applies to users located in Malaysia, Indonesia, Singapore, and the United Kingdom, and it is designed to ensure compliance with the respective privacy laws in these jurisdictions.
1. Data Controller
For the purposes of data protection laws, MedPlanner Sdn Bhd is the data controller of your personal data.
• Malaysia: We comply with the Personal Data Protection Act 2010 (PDPA).
• Indonesia: We comply with the Law on Electronic Information and Transactions (EIT Law).
• Singapore: We comply with the Personal Data Protection Act 2012 (PDPA).
• United Kingdom: We comply with the General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
2. Data We Collect
We collect the following types of personal data when you use the App:
Personal Information
• Name, professional title, and contact details (e.g., email, phone number).
• Institution or organization details where you work.
Usage Data
• Data about how you use the App (e.g., interactions, messaging data, IP address, and device information).
Patient Data
• Patient-related information: You may transmit or store sensitive patient data, such as medical records and health information. It is your responsibility as a healthcare professional to ensure that you have obtained the necessary patient consent before using the App to handle patient data.
3. How We Use Your Data
We use your personal data for the following purposes:
• To facilitate secure communication between healthcare professionals.
• To verify your identity and maintain the security of the App.
• To improve and develop the App’s features and user experience.
• To comply with legal and regulatory requirements in each jurisdiction.
4. Data Protection Laws by Jurisdiction
We ensure that all personal data processed through the App complies with the corresponding privacy regulations of the respective countries.
Malaysia
Under the Personal Data Protection Act 2010 (PDPA), we:
• Ensure that personal data is not processed without the user’s consent, unless otherwise permitted by law.
• Implement strict data security measures to protect against unauthorized access.
Indonesia
In compliance with the EIT Law and the Regulation No. 20/2016 on Personal Data Protection in Electronic Systems:
• We protect personal data from misuse and unauthorized disclosure.
• Explicit user consent is required for data collection and use.
Singapore
Under the Personal Data Protection Act 2012 (PDPA), we:
• Ensure that personal data is collected, used, and disclosed only for purposes that are reasonable and legitimate.
• Require healthcare professionals to ensure that patient data is transmitted with proper consent and care.
United Kingdom
In compliance with the UK GDPR and the Data Protection Act 2018:
• We ensure transparency about how we collect, store, and use personal data.
• We implement data minimization practices and use encryption to secure patient information shared through the App.
5. Data Sharing and Disclosure
We do not sell, rent, or lease your personal data to third parties. However, we may share your data in the following circumstances:
• With service providers who help us operate and improve the App (e.g., cloud service providers, analytics platforms).
• If required by law, such as to comply with a legal obligation or court order.
• To protect the rights, property, and safety of MedPlanner, its users, or the public.
​
6. Cross-Border Data Transfers
Since MedPlanner operates in multiple countries, your data may be transferred across borders to ensure seamless functionality. We ensure that such transfers comply with applicable privacy regulations, such as:
• Malaysia: Under PDPA, we ensure that any transfer of personal data to a location outside of Malaysia meets data protection standards equivalent to PDPA.
• Indonesia: Cross-border transfers are permitted with the explicit consent of the data subject.
• Singapore: We comply with the Transfer Limitation Obligation of the PDPA, ensuring that overseas recipients provide comparable data protection standards.
• United Kingdom: Data transfers outside of the UK are conducted in compliance with the UK GDPR, ensuring appropriate safeguards are in place.
7. Data Security
We take data security seriously and have implemented the following measures to protect your personal data:
• End-to-end encryption for all communications sent through the App.
• Regular data security audits and risk assessments.
• Secure servers located in compliance with regional data residency laws.
Despite our best efforts, no method of data transmission or storage is completely secure. We cannot guarantee absolute security, but we continuously work to protect your information.
8. Your Rights
Depending on your jurisdiction, you may have the following rights concerning your personal data:
• Access: You have the right to request access to the personal data we hold about you.
• Correction: You have the right to request correction of inaccurate or incomplete personal data.
• Deletion: You may request the deletion of your personal data, subject to legal requirements.
• Restriction: You may request that we restrict the processing of your personal data in certain situations.
• Data Portability: You have the right to receive your personal data in a structured, commonly used format and to request that we transfer it to another service provider.
• Withdraw Consent: If you have provided consent for the processing of your personal data, you have the right to withdraw that consent at any time.
To exercise your rights, please contact us using the information provided below.
9. Data Retention
We retain personal data only as long as necessary to fulfill the purposes outlined in this Privacy Policy, or as required by law. Patient-related data may be subject to additional retention periods as required by healthcare regulations.
10. Children’s Privacy
The App is not intended for use by individuals under the age of 18. We do not knowingly collect personal data from individuals under 18 years of age.
11. Changes to This Privacy Policy
We may update this Privacy Policy periodically to reflect changes in our practices, technologies, or legal obligations. We will notify users of significant changes and update the “Last Updated” date at the top of this policy.
12. Contact Us
If you have any questions, concerns, or requests regarding your personal data or this Privacy Policy, please contact us at:
MedPlanner Sdn Bhd
Email: contact@medplanner.io
MEDPLANNER CLINICAL MESSAGING APP - COOKIE POLICY
​
Effective Date: 16 September 2024
​
MedPlanner Sdn Bhd (“MedPlanner”, “we”, “us”, or “our”) uses cookies and similar technologies on the MedPlanner clinical messaging app (“App”) and its associated website. This Cookie Policy explains how we use cookies, your choices regarding cookies, and how these technologies function in compliance with the applicable laws in Malaysia, Indonesia, Singapore, and the United Kingdom.
By using our App and website, you agree to the use of cookies in accordance with this policy.
1. What Are Cookies?
Cookies are small text files that are placed on your device when you visit our website or use the App. Cookies help us to recognize your device, understand how you interact with our services, and improve your overall experience. Cookies can be categorized as session cookies (which are deleted when you close your browser) or persistent cookies (which remain on your device for a specified period or until deleted).
2. Types of Cookies We Use
a. Essential Cookies
These cookies are necessary for the App and website to function properly. Without these cookies, certain features of the App, such as secure messaging, cannot operate. These cookies do not require consent under most data protection laws.
b. Performance Cookies
Performance cookies help us to understand how users interact with the App and website by collecting anonymous usage data. This information helps us improve the functionality and performance of the App.
c. Functional Cookies
Functional cookies allow us to remember your preferences and customize your experience on the App. These cookies help retain information such as language settings and login details.
d. Analytics Cookies
We use analytics cookies to collect data about how users engage with our services. This data is anonymous and helps us improve our App and website. Examples include cookies used by tools such as Google Analytics.
e. Advertising and Targeting Cookies
While the MedPlanner App does not engage in direct advertising, these cookies may be used on the website to provide relevant advertising content to users or track the effectiveness of marketing campaigns.
3. Cookies and Jurisdictional Compliance
We ensure that our use of cookies complies with the respective data protection and electronic communication regulations in the countries where we operate:
Malaysia
Under the Personal Data Protection Act 2010 (PDPA), cookies that collect personal data must only be used with the user’s consent. We provide transparent information about the cookies we use and obtain consent where necessary.
Indonesia
In compliance with Law No. 11 of 2008 on Electronic Information and Transactions (EIT Law), we ensure that any cookies used for tracking or storing personal data are disclosed to users, and consent is obtained before cookies are placed on their devices.
Singapore
The Personal Data Protection Act 2012 (PDPA) requires clear notice and consent before placing cookies on users’ devices. We ensure that users are informed about the use of cookies and that consent is obtained when necessary.
United Kingdom
Under the Privacy and Electronic Communications Regulations (PECR) and the UK GDPR, we provide users with clear information about the cookies we use and seek their consent before placing non-essential cookies. Essential cookies, which are necessary for the operation of the App and website, do not require consent.
4. How We Use Cookies
We use cookies for the following purposes:
• To operate and secure the App: Essential cookies are used to ensure the functionality and security of the App.
• To improve user experience: Functional cookies help personalize your experience by remembering your preferences and settings.
• To analyze performance: Performance and analytics cookies help us monitor how the App is being used so we can improve functionality and user experience.
• To comply with legal requirements: Cookies help us ensure compliance with applicable laws and regulations.
5. Third-Party Cookies
We may also allow certain third-party service providers, such as Google Analytics, to place cookies on your device through the App or website. These third-party cookies help us understand usage patterns and improve our services.
We do not have control over third-party cookies. For more information on how third parties use cookies, please refer to their respective privacy and cookie policies.
6. Managing Cookies
You have the option to manage or disable cookies through your browser settings. You can configure your browser to block or delete cookies, or to notify you when cookies are being set. Please note that disabling certain cookies may affect the functionality of the App or website, and some features may not work as intended.
How to Manage Cookies:
• For Google Chrome: Go to “Settings” > “Privacy and Security” > “Cookies and other site data.”
• For Mozilla Firefox: Go to “Options” > “Privacy & Security” > “Cookies and Site Data.”
• For Safari: Go to “Preferences” > “Privacy” > “Manage Website Data.”
• For Microsoft Edge: Go to “Settings” > “Cookies and site permissions.”
Additionally, most advertising networks offer ways to opt out of targeted advertising. For more information, visit the Network Advertising Initiative (NAI) or the Digital Advertising Alliance (DAA).
7. Your Rights
Depending on your jurisdiction, you may have rights related to the use of your personal data collected via cookies:
• Access and Correction: You may request access to or correction of your personal data collected through cookies.
• Withdraw Consent: You can withdraw your consent for the use of cookies at any time by adjusting your browser settings.
• Request Deletion: You may request that we delete your data collected via cookies, subject to any legal requirements.
8. Data Retention
We retain cookie data only for as long as necessary to fulfill the purposes outlined in this policy or as required by law. For example, session cookies are deleted when you close your browser, while persistent cookies may remain for a specified period unless you delete them.
9. Changes to This Cookie Policy
We may update this Cookie Policy from time to time to reflect changes in technology, legal requirements, or our practices. Any updates will be posted on this page, and significant changes will be communicated to you where required by law.
10. Contact Us
If you have any questions or concerns about this Cookie Policy or the use of cookies on the MedPlanner App or website, please contact us at:
MedPlanner Sdn Bhd
Email: contact@medplanner.io
By using the MedPlanner clinical messaging app and its associated website, you agree to the use of cookies in accordance with this Cookie Policy.