🔒 Privacy Policy
Last Updated: January 1, 2025
ShareMed is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your personal information.
1. Introduction
ShareMed Inc. ('we', 'us', 'our') operates the ShareMed platform. We are committed to protecting your personal data and respecting your privacy rights.
Data Protection Officer: privacy@sharemed.com
2. Information We Collect
2.1 Personal Information
We collect information you provide directly:
- Account Information: Name, email, phone number, password
- Organization Details: Company name, legal form, registration number, address
- KYC Information: Business registration documents, tax ID, licenses, certifications
- Contact Information: Additional contacts (financial, compliance officers)
2.2 Usage Data
We automatically collect:
- IP address and device information
- Browser type and version
- Pages visited and time spent
- Referring URLs
- Operating system
2.3 Transaction Data
- Listings created and viewed
- Offers made and received
- Messages sent and received
- Documents uploaded
- Search queries
3. How We Use Your Information
We use your information to:
- Provide Services: Operate the platform, process channel transactions, facilitate communications
- Verify Identity: Conduct KYC verification to ensure platform integrity
- Improve Services: Analyze usage patterns, develop new features
- Communicate: Send notifications, updates, support messages
- Comply with Law: Meet legal and regulatory obligations
- Prevent Fraud: Detect and prevent fraudulent activities
- Marketing: Send promotional materials (with your consent)
4. Legal Basis for Processing (GDPR)
We process your data based on:
- Consent: You have given explicit consent
- Contract: Processing is necessary to perform our contract with you
- Legal Obligation: We must comply with legal requirements (KYC, AML)
- Legitimate Interests: Processing is necessary for our legitimate business interests
5. Information Sharing
5.1 We Share With:
- Other Users: As necessary for transactions (name, organization, contact info)
- Service Providers: Hosting, email, payment processors, analytics
- Legal Authorities: When required by law or to protect rights
5.2 We Do NOT:
- Sell your personal data to third parties
- Share data for unrelated marketing purposes
- Disclose sensitive information without consent
6. Data Security
We implement industry-standard security measures:
- Encryption: SSL/TLS encryption for data in transit
- Secure Servers: Data stored on secure, encrypted servers
- Access Controls: Limited access to personal data
- Regular Audits: Security assessments and penetration testing
- Incident Response: Procedures for data breach notification
Note: No system is 100% secure. We cannot guarantee absolute security.
7. Data Retention
We retain your data:
- Active Accounts: For the duration of your account
- Inactive Accounts: Up to 3 years after last activity
- KYC Documents: 5 years after account closure (regulatory requirement)
You may request deletion of your data, subject to legal obligations.
8. Your Rights (GDPR)
You have the right to:
- Access: Request a copy of your personal data
- Rectification: Correct inaccurate or incomplete data
- Erasure: Request deletion of your data ('right to be forgotten')
- Restriction: Limit how we process your data
- Portability: Receive your data in a portable format
- Object: Object to processing based on legitimate interests
- Withdraw Consent: Withdraw consent at any time
- Complain: Lodge a complaint with a supervisory authority
To exercise your rights, contact: privacy@sharemed.com or info@sharemedswiss.org
9. Cookies
We use cookies and similar technologies:
9.1 Types of Cookies
- Essential Cookies: Required for platform functionality
- Analytics Cookies: Help us understand usage patterns
- Preference Cookies: Remember your settings
9.2 Managing Cookies
You can control cookies through your browser settings. Note that disabling cookies may affect platform functionality.
10. International Transfers
Your data may be transferred to and processed in countries outside your residence. We ensure adequate protection through:
- Standard Contractual Clauses (SCCs)
- Adequacy decisions by the European Commission
- Other approved transfer mechanisms
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes via:
- Email notification
- Platform announcement
- Updated 'Last Modified' date
Continued use after changes constitutes acceptance of the updated policy.
🔒 Your Privacy Matters
We are committed to protecting your personal information and respecting your privacy rights. If you have any concerns, please contact us.
