Privacy Policy

A. Basic Information

• Name, address, place of residence
• Date of birth and gender
• BSN number or equivalent
• Contact details (email, phone number)
• Login credentials (username, password – encrypted)

B. Medical and Healthcare-Related Data

• Medical history, current complaints and symptoms
• Medication use, allergies and contraindications
• Measurements and health data that you enter or share with us
• Reports from (video) consultations and contact moments
• Prescriptions and dispensing of medicines
• Data on treatment plan and progress

C. Identification and Verification Data

• Data from digital identification (e.g., via eID / video identification)
• Log data from login attempts

D. Financial and Administrative Data

• Bank account number (for SEPA direct debit)
• Payment details and invoice information
• Subscription type and payment status

E. Technical Data

• IP address
• Device and browser information
• Usage data from the app/platform (log files, session information)

F. Communication Data

• Correspondence via email, chat or messages in the platform
• Complaints, requests and feedback

Healthcare and Medical Assessment

• assessing your complaints and medical situation;
• conducting (video) consultations and digital intakes;
• deciding whether or not to prescribe medication;
• monitoring progress and your health within the chosen indication.

Pharmacy Care and Medicine Provision

• processing prescriptions;
• delivering and arranging delivery of medicines;
• checking for contraindications, interactions and dosages.

Account Management and Platform Use

• creating and managing your account;
• securing access to your file;
• logging usage (for example, for security and audit trail).

Administration and Payment

• invoicing and processing payments;
• executing subscriptions and SEPA direct debits;
• complying with fiscal and administrative retention obligations.

Quality, Safety and Improvement of Care

• internal quality monitoring and incident registration;
• analyzing anonymized/aggregated data to improve our services;
• training and peer review within the care team (anonymized where possible).

Legal Obligations and Supervision

• complying with obligations from laws and regulations (including WGBO, Wkkgz, Medicines Act, GDPR);
• reporting to supervisory authorities (for example, IGJ) when required.

Communication

• answering questions and requests;
• sending important service messages (e.g., about your medication, changes in appointments or system updates).

Marketing (Only With Your Consent)

• sending newsletters or targeted information about our services, if you have registered for this. You can always easily unsubscribe.

For healthcare and medical data

• Performance of the treatment/care agreement (art. 6(1)(b) GDPR);
• Provision of healthcare by a healthcare professional, with appropriate confidentiality (art. 9(2)(h) GDPR).

For pharmacy care and medication provision

• Performance of the agreement and/or important public interest in public health (art. 6(1)(b) and art. 9(2)(h)/(i) GDPR).

For administration and invoicing

• Legal obligation (for example, fiscal retention obligation) (art. 6(1)(c) GDPR).

For security, quality and improvement

• Legitimate interest of Aevita to provide safe and high-quality care (art. 6(1)(f) GDPR).

Within Aevita, only those employees who need the data for their work have access, such as:

• doctors;
• nurses;
• pharmacist and pharmacy team;
• customer service employees;
• administrators of digital systems (for technical maintenance).

All these individuals are bound by (medical) professional secrecy, confidentiality agreements and internal privacy and security rules.

In addition, we may share data with: