Your Information Rights On DermEngine

MetaOptima has recently updated its privacy policy! We'd like to take this opportunity to summarize how our company and its software (DermEngine & MoleScope) strictly adhere to all laws set out by the General Data Protection Regulation (GDPR).  The GDPR defines the rights you as a patient have to your personal data. This includes but is not limited to your right to access your information, and knowledge as to whether or not your personal data is being processed. If you have any questions, you are encouraged to email us at privacy@metaoptima.com.

What Is Personal Information?
Personal information is anything that can be considered data relating to yourself or your patients. This includes name, gender, and date of birth, contact information, ethnicity, skin type; skin cancer history; medical reports and skin, hair, scalp and other body surfaces images.

Right to Information Requests
It is important to understand that patients and doctors have certain rights over the personal information entered in our platform:

• Accessibility: access your personal data that was uploaded to our platform
• Rectification: have any inaccuracies within your information corrected
• Processing restriction: request the suppression or restriction of personal data
• Portability: obtain and reuse your personal information for their own purposes across different services
• Processing objection: object to data processing based on legitimate interests or performance of tasks in the public interest, marketing, research, or statistics

You have the right to actively use information requests listed above at any time by submitting a written claim to MetaOptima. Claims can be done on metaoptima.com, molescope.com or dermengine.com websites (Subject Access Request Form) and will be responded to within 30 days of initial contact.

Data Request Process
The procedure at MetaOptima to manage your personal data access request follows the four steps below:

• Request: you or your physician make an official request (Subject Request Form can be found here) 
• Request Confirmation: Your request is considered regarding verification of the requester's identity, compliance with legal health laws, informing the requester of their decision’s impact, and receiving final confirmation from the requester.
• Preparation and execution: If approved, MetaOptima will execute an internal approval.
• Delivery: Information and final results are sent to you if approved.

Subject Access Request
A third party may act on behalf of the data subject. Examples include an adult acting on behalf of:

• A child (parent or carer with parental responsibility)
• A adult without capacity (carer or advocate)
• Another adult who has capacity and has provided consent (solicitor or carer)
  
  

Exemptions allow personal data to be disclosed to law enforcement agencies without the consent of the individual who is the subject of the data.

Handling Complaints
Our company strives to investigate all complaints and take appropriate measures in response if a complaint is justified. If you have any concerns, we encourage you to contact us at privacy@metaoptima.com.

-The MetaOptima Team