Privacy Notice

Abount the app

The Patient Portal App serves as an essential tool in modern healthcare, allowing patients to conveniently access their medical records, schedule appointments, communicate with healthcare providers, and manage their overall well-being. With user-friendly interfaces and robust features, this cutting-edge app streamlines the patient experience, empowering individuals to take control of their health journey.

Our Official Website MMMHMC Website

This Privacy Notice provides in brief the manner how My Health Patient Portal application of Mariano Marcos Memorial Hospital and Medical Center (MMMHMC) collect and process your personal data every time you use and avail of our services.

What and how we Collect?

With your consent, we collect your data electronically depending on the feature of the application your are using, which includes

  • Hospital Number, birthday, email address, and mobile number;
  • Temperature, blood pressure, glucose level, height and weight;
  • and, Any other information that will assist us in providing you with better health care

Why we collect your personal data

We use your personal data for the following purpose/s:

  • To meet your medical and ancillary needs and/or requirements and other programs and services you availed;
  • For multi-disciplinary treating team, where necessary;
  • For research purposes, where necessary;
  • For collaboration with other medical health provider, where necessary, and upon your consent;
  • For purposes required by law.

Methods utilized for automated access

My Health Patient Portal uses Google API Services, a third-party service, provide location services and personalized push notifications

The following data are processed for this purpose:

  • Your IP address
  • Geolocation
  • Operating System
  • Phone Model

Sharing your personal data.

We do not share your personal data with third parties unless:

  • you have consented to the sharing thereof
  • it is necessary to protect our interests
  • when required and/or permitted by law
  • with service providers acting on our behalf who have agreed to protect the confidentiality of the data

Data Protection and Security Measures

In furtherance with our commitment to ensure the security of your personal data, reasonable and appropriate safeguards and measures have been put in place especially designed for its protection, and for the maintenance of its integrity, availability and confidentiality of your personal information maintaining a combination of organizational, physical and technical security measures based on generally accepted data privacy and information security standards. Among the measures we implement are the following:

  • Policies on access control in both digital and physical infrastructures to prevent unauthorized access to personal information.
  • Acceptable use policies
  • End-to-end encryption and data classification whenever suitable.
  • Security measures against natural disasters, power disturbances, external access, and similar threats.
  • Technical measures to protect our computers and databases against accidental, unlawful, or unauthorized usage, interference, or access.

Storage and Retention

We store files containing personal information in our computers and servers, which are kept in a secure environment. We may also store your personal information with cloud- based third-party data storage providers. We shall ensure that proper measures are adopted to protect your information.

Personal data shall be stored in a database for two (2) years after inquiries and requests are acted upon. After which, records shall be disposed of securely.

Other categories of data may be kept longer than two (2) years when its retention period is determined by other relevant laws and regulations.

Disposal

Physical records shall be disposed of through shredding, while digital files shall be anonymized. In all instances, our manner of disposal shall ensure that the personal information shall no longer be retrieved, processed, or accessed by unauthorized persons.

Rights of Data Subjects.

Under the Data Privacy Act of 2012, you have the right to the following:

  • To be Informed of the collection and processing of your personal data;
  • To Object to the processing of your personal data;
  • To Access your personal data;
  • To Correct inaccuracies or errors of your entries;
  • To suspend, withdraw or order the blocking, removal or destruction of your personal data from our filing system; and
  • To Complain due to such inaccuracies, incomplete, outdated, false, unlawfully obtained or unauthorized use of personal data.
  • Transmissibility of your rights to your lawful heirs and assigns;
  • To obtain a copy of such data in an electronic or structured format where your personal data is processed by electronic means and in a structured and commonly used format.

Changes to the Privacy Notice

My Health Patient Portal reserves the right to update or revise this privacy notice at any time and will provide a new privacy notice whenever there are substantial changes. Prior versions of the privacy notice shall be retained by the Hospital and shall be provided to data subjects upon request. subjects upon request.

Feedback on our Privacy Notice

Suppose you have suggestions or comments regarding our privacy notice or for any issues concerning My Health Patient Portal's data privacy practices. In that case, you may reach us through our Data Protection Officer, Dr. Annalyn Q. Urbano, MD, FPCP, FPRA, via this address: Mariano Marcos Memorial Hospital and Medical Center, Brgy. 6 San Julian, City of Batac, Ilocos Norte, 2906, or email us at dpo.mmmhmc@gmail.com.