1 Person responsible, provider and developer of the app
1.1 Name and address of the controller.
The clinic which has received a license and registration code for the use of the instacount.MOBILE app from INVITEC as part of the use of instacount® PLUS.
from now on referred to as “the clinic”)
1.2 Name and address of the app developers
INVITEC GmbH & Co. KG
Altendorfer Str. 97-101
(from now on referred to as “INVITEC”)
2 Processing of personal data when downloading the app.
3 Purpose of the App
The app is a functional extension of the instacount® PLUS software system solution for batch documentation and instrument management in the reprocessing unit for medical devices (AEMP). The app supports sub-processes of regular reprocessing within the AEMP as a mobile application. An instacount® PLUS installation is required to operate the app.
4 Functions of the app
The app includes functions for recording incoming goods, loading R&D machines, and sterilization machines, the organization of the tray storage and the dispatching of the sterilized goods.
5 Processing of personal data when using the app.
5.1 Data transfer of your smartphone.
When you use the app, no personal data is processed and/or stored in the app or the smartphone.
5.2 Processing as part of the registration process.
In order to use the app, registration of a mobile device via the instacount® PLUS software system solution is required.
After successful registration, the functions of the app are available to you.
To restrict access to the app, the app is protected by a password that you assign yourself via the user administration of the instacount® PLUS software system solution in accordance with the valid password guidelines.
Your personal data will not be processed separately as part of registration in the app.
6 Data transfer to third parties and data storage location
Data is not transmitted to third parties at any time during the use of the app. The app data is stored in the database of the instacount® PLUS software system solution, which is provided and managed in-house by the clinic.
7 Data deletion or storage limitation
As described, no personal data is processed within the app, so deletion is not required. The clinic is responsible for deleting personal data processed in the instacount® PLUS installation.
8 Your rights as a data subject
You have the right at any time to:
- Information about your stored personal data
- Correction of inaccurate or incorrect personal data
- Restriction of processing
- Deletion of your data
- Receipt of your data in a structured, common, and machine-readable format
- Revocation of your consent to the processing of your personal data. Please note that the lawfulness of the processing is not affected until the revocation.
- Complaint to the competent supervisory authority
To exercise your rights, please contact the clinic.
Objection to processing based on legitimate interest.
You also have the right to object at any time to the processing of your personal data if it is carried out based on a legitimate interest of the controller (pursuant to Art. 6 (1) lit. f DSGVO). As a result, the processing of your data will be stopped, unless legal requirements or interests worthy of protection in a continuation of the processing are opposed. This is the case, for example, if personal data is still required in order to be able to enforce legal claims, if necessary.
Right of appeal to supervisory authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a data protection supervisory authority. For this purpose, you can contact the data protection supervisory authority of your usual place of residence or any other data protection supervisory authority.
9 Contact in data protection matters
If you have any questions regarding the processing of your personal data, you must contact the clinic’s data protection officer and his team directly, who are also available in cases of requests for information, applications, or complaints.
10 Data security and encryption
In addition to data protection, data security is also very important to us. Our high standard for IT security includes numerous measures: All communication between the app and the backend system takes place via an encrypted connection. The data stored in the backend system is also encrypted. The backend system itself is set up in accordance with the clinic’s security concept, which is also applied to the clinic’s other systems. In addition, there are, among other things, physical protection measures and organizational protection measures such as access only for responsible employees. Your personal data is thus protected against unauthorized access.
The greatest threat to your data comes from outsiders, which is why you can also contribute to data security yourself. In particular, you should choose a password that is at least 8 characters long and must contain at least one uppercase letter and one number. In addition, it is important to use the security mechanisms offered by Apple or Android. These include an unlock password, Touch ID (fingerprint) or Face ID.