Privacy policy

Last updated: 07.03.2023

At Tonic App S.A. (“Tonic App”) privacy is important to us. This Privacy Policy describes how we collect and use personal data, and the circumstances under which we may share this information. This Privacy Policy applies to the privacy practices of (1) Tonic App on its website, located at https://tonicapp.io; (2) all products or services provided by us and described on the website; (3) on the Tonic App mobile and web applications; (4) our email channels (collectively, the “Platform”) and to Tonic App’s other interactions with users of the website, application, or Platform. When using the Platform, there may be additional notices about information practices and choices. Please read those additional privacy disclosures to understand how they apply to you.

By visiting or otherwise using the Platform, you agree to the Platform’s Terms of Use and consent to Tonic App the collection, use, and disclosure practices, and other activities as described in this Privacy Policy, and any additional privacy statements that may be posted on an applicable part of the Platform. If you do not agree and consent, please discontinue the use of the Platform, and uninstall all related downloads and applications.

What is Personal Data?

For the purposes of this Privacy Policy, “Personal Data” means information about an identifiable individual.

What type of Personal Data do we collect?

As you use our Platform, we collect certain data about you and your use of the Platform. The data we collect falls into three different categories: (a) information you provide us; (b) information we collect from you automatically when you use our Platform; and (c) information we collect from our partners and other sources.

Information you provide

Tonic App may collect information you provide directly to Tonic App and/or its service providers (the “Service Providers”) when you use our Platform. This includes, but is not limited to:

  • Personal Data you provide when you create an account (the “Account”) or register on the Platform. When you create an Account, we ask for Personal Data, which may include your first and last name, birthdate, email, phone number, medical specialty, medical license, country of practice, professional background and education institution. Once you have completed the registration process, you may at any time provide additional information to your profile, including professional roles or positions, subspecialty, city of practice, practice website, education and training details, research interests, publications, scientific societies you belong to, list of congresses you usually attend, medical and research contacts and collaborators, and list of keywords best describing you and your career, for prospective professional connections. Providing additional information is entirely optional, but enables you to better identify yourself professionally and find new opportunities in the Platform to build and leverage your professional network. The information that is publicly available or you voluntarily provide will be published in your profile, except your birthdate, which is accessible to other users browsing the Tonic App mobile application.
  • Personal Data you provide when you update your account.
  • Personal Data you provide when you participate in a survey or promotion.

Information collected automatically

Tonic App, its Service Providers, and/or Tonic App’s partners or affiliates may automatically collect certain information about you when you access or use the Platform (“Usage Data”). Usage Data may include IP address, device identifier, browser type, operating system, information about your use of the Platform, and data regarding network connected hardware (e.g., computer or mobile device).

The methods that may be used on the Platform to collect Usage Data include:

  • Log Information: log information is data about your use of the Platform, such as IP address, browser type, internet service provider, referring/exit pages, operating system, date/time stamps, and related data, and may be stored in log files.
  • Information collected by tracking technologies: location-identifying technologies, device tokens, and other tracking technologies now and hereafter developed (“Tracking Technologies”) may be used to collect information about interactions with the Platform.
    • Location-identifying Technologies: geo-filtering software, using your IP address, locates you (not precisely – country and city only) for the purpose of verifying your location and transmit or restrict content based on your location.
    • Device Tokens: a device token is a unique identifier issued by the operating system of your mobile device. You may sign up to receive “push notification” messages through the Platform. To ensure messages reach the correct devices, we rely on a device token unique to your mobile device. While we may be able to access a list of the tokens, the mobile app and tokens do not reveal your identity, unique device ID, or contact information to us.
    • Cookies: cookies are alphanumeric identifiers that we transfer to your computer’s (or other device’s) persistent storage medium (e.g., hard drive) through your browser to enable our systems to recognize your browser and tell us how and when pages on our Website are visited and by how many people. We use cookies to enhance visitors’ experiences, to learn more about their use of the Website and to improve quality. Company cookies do not collect Personal Data, but we may combine the general information collected through cookies with Personal Data to tell us who you are or what your screen name or email address is. Most browsers have an option for turning off the cookie feature, which will prevent your browser from accepting new cookies, as well as (depending on the sophistication of your browser software) allowing you to decide on acceptance of each new cookie in a variety of ways. We strongly recommend that you leave the cookies activated, however, because cookies enable you to take advantage of some of our Website’s most attractive features. Ads appearing on the Website may be delivered to users by our advertising partners, who may set cookies. These cookies allow the ad server to recognize your computer or other device each time they send you an online advertisement to compile information about you or others who use your computer or device. This information allows ad networks to, among other things, deliver targeted advertisements that they believe will be of most interest to you. This Privacy Policy covers the use of cookies by Company and does not cover the use of cookies by any advertisers.

Some information about your use of the Platform may be collected using Tracking Technologies across time and services, and used by Tonic App’s and third parties for delivering the Platform.

Information Tonic App Collects From Partners And Other Sources

We may collect Personal Data that you have provided to our subsidiaries, affiliates, business partners and/or businesses related to Tonic App for purposes set out below. Tonic App is not responsible or liable for the accuracy of the information provided by third parties or for third party policies or practices. As a general rule, Tonic App collects Personal Data directly from you. If third parties hold information Tonic App requires, we will endeavor to ensure the information has been collected with your consent.

Specifically, we may collect and use Personal Data that is aggregated and anonymised (the “Analytic Information”) from our subsidiaries, affiliates, business partners and/or businesses related to Tonic App, for various business purposes, including, without limitation, enabling us to provide the Platform. This Analytic Information, because it is aggregated and anonymised, is no longer Personal Data as it cannot be used, alone or in conjunction with other information, to identify an individual. We may use this Analytic Information in a variety of ways, including to help analyze site traffic, understand users’ needs and trends, and to improve our products and services. We may use this information by itself or aggregate it with information we have obtained from others.

Further, we may use, transfer, lease, sell or otherwise commercialise Analytic Information for any and all purposes without notice or obligation to you, provided that the Analytic Information does not indicate your identity and cannot be used, alone or in conjunction with other information, to determine your identity. You will not have any rights arising from the creation, collection or use of the Analytic Information.

Why do we collect your Personal Data?

We collect Personal Data for purposes related to managing and developing our businesses and operations, including but not limited to:

  • Establishing, managing and terminating business relations with you.
  • Reviewing the products and services that we provide to you, or that you provide to us.
  • Communicating and sending curated healthcare-related information of interest to you, including newsletters, alerts, notifications, including from our customers and partners, which may include medicines advertising.
  • Informing you of our products and services other than those that you have specifically requested.
  • Tracking and analysing trends and patterns related to our businesses and operations for market research related purposes.
  • Providing you with the Platform.
  • Creating aggregated information or Analytic Information that does not individually identify you.
  • Complying with applicable law or regulatory requirements.
  • And any other reasonable purpose to which you consent.

In addition to the foregoing, we may also use and disclose your Personal Data for other purposes, which we will disclose before the time of collection.

How will we use your Personal Data?

Tonic App may collect and use Personal Data in the circumstances described above. Personal Data collected by Tonic App is used only for the purpose identified at the time of its collection, as described in this Privacy Policy, or for other purposes which are disclosed to you and to which you consent.

We may also use your Personal Data to investigate security breaches or cooperate with government authorities pursuant to a legal matter.

Tonic App is committed to complying with European Anti-Spam Legislations. In the case of personal contact information provided in conjunction with any newsletter or other marketing initiatives, you can withdraw your consent to receiving those communications and unsubscribe from any Tonic App subscriptions at any time by contacting our Data Protection Officer (“DPO”) using the contact information provided below. In addition, commercial electronic communications sent by Tonic App to which you have subscribed will further contain an unsubscribe mechanism.

If you choose to invite a colleague to use the Platform through our Invite Colleagues function, we will collect your name, phone number and email address, as well as the name, phone number and email address of the recipient. We will automatically send your colleague a one-time email and text inviting him or her to use the Platform. We do not use the names or email addresses submitted in these circumstances for any other purpose without the consent of you or the email recipient to do so. To fulfill our obligations under European Anti-Spam legislations, please ensure that you only submit email addresses of individuals with whom you have a personal or family relationship and who would want to receive the message from you.

We reserve the right to send you transactional or informational emails such as customer service communications in connection with the products you have registered to use or changes to the website or policies.

How is your Personal Data disclosed?

In addition to the purposes set out above, we may disclose Personal Data for purposes related to:

  • Managing and developing Tonic App’s businesses and operations.
  • Managing your Account.
  • Providing you with the Platform.
  • Creating and maintaining a responsible business relationship with you.
  • Creating aggregated information or Analytic Information that does not individually identify you.
  • Communicating with you on topics related to your Account, Platform, and other matters related to Tonic App.
  • Informing you of our products and services other than those that you have specifically requested.
  • Tracking and analysing trends and patterns related to our businesses and operations for market research related purposes.
  • Interacting with you on social media.
  • And other purposes identified when the Personal Data is collected, or as permitted or required by law.

Personal Data is disclosed to third parties for purposes set out above, including, but not limited to:

  • A third party, in the event of a change in ownership of all or a part of Tonic App through some form of merger, purchase, sale, lease or amalgamation or other form of business combination, provided that the parties are bound by appropriate agreements or obligations which require them to use or disclose your Personal Data in a manner consistent with the use and disclosure provisions of this Privacy Policy, unless you indicate otherwise.
  • Third party service providers, affiliates and business associates including an organisation or individual retained by Tonic App to perform functions on its behalf.
  • Any third party, where you have provided your consent for such disclosure or where disclosure is required or permitted by law.

In addition, you can direct us to share data with other parties. Once you direct us to share your data with a third party, that data is governed by the third-party’s privacy policy.

On rare occasions, we may use or disclose your Personal Data without your knowledge or consent where we are permitted or required by applicable law or regulatory requirements to do so.

Tonic App may share or sell aggregated, de-identified data that does not identify you with partners and the public in a variety of ways. When we provide this information, we ensure that the data does not identify you and cannot be associated back to you.

Notification respecting service providers internationally

Tonic App may use and disclose certain Personal Data to third party service providers and to affiliated entities in connection with the performance of certain technological or administrative functions, such as data management. From time to time, these third party service providers may be located outside the European Economic Area. Prior to making this disclosure, Tonic App will take appropriate steps to ensure that the third party service providers safeguard the Personal Data and use the Personal Data only for authorised purposes set out in this Privacy Policy or in accordance with applicable laws.

To ask any questions or to obtain written information about Tonic App’s policies and practices regarding those service providers, you may write to our DPO at the address listed below in the “How to contact us?” section.

How does Tonic App obtain consent?

It is important to us that we collect, use or disclose your Personal Data only where we have your consent to do so or as provided in this Privacy Policy.

Depending on the sensitivity of the Personal Data, your consent may be express, implied or deemed (using an opt-out mechanism). Express consent can be given electronically or in writing. Implied consent is consent that can reasonably be inferred from your action or inaction. For example, when you accept our Terms of Use, we will assume your consent to the collection, use and disclosure of your Personal Data for purposes related to your acceptance and use of those products or services, or for other purposes identified to you at the relevant time. Deemed consent is consent we assume in the event that you do not exercise an opt-out mechanism offered to you.

By submitting your Personal Data to Tonic App or obtaining our services, you consent to the collection of and use of your personal data in the manner described in this Privacy Policy. To the extent that Tonic App is required by applicable laws to obtain your explicit consent for the collection, use or disclosure of your Personal Data in accordance with this Privacy Policy, such consent will be requested at the appropriate time. Further, if we plan to use or disclose your Personal Data for a purpose not previously identified (either in this Privacy Policy or separately), we will endeavor to advise you of that purpose before such use or disclosure.

We may collect, use or disclose your Personal Data without your knowledge or consent where we are permitted or required to do so by applicable law or regulatory requirements.

You may change or withdraw your consent at any time, subject to legal or contractual restrictions and reasonable notice, by contacting the office of our DPO using the contact information set out below. In some circumstances, a change or withdrawal of consent may limit our ability to provide products or services to you or acquire products or services from you.

What are my tracking options?

With respect to Tonic App’s mobile app, you can stop all collection of data generated by use of the app by uninstalling the app. You may also be able to exercise specific privacy choices, such as enabling or disabling push notifications by adjusting the permissions in your mobile device.

How does Tonic App safeguard Personal Data?

Tonic App will endeavor to safeguard Personal Data using methods that are appropriate to the sensitivity of the information. Specifically, Tonic App takes the following steps to safeguard any Personal Data that it collects:

  • Protecting the confidentiality of all Personal Data when doing business internally or externally with other organisations.
  • And protecting all Personal Data with appropriate and effective security safeguards, including physical, administrative, and technology safeguards, against such risks as loss or theft, unauthorised access, disclosure, copying, use or destruction, regardless of the format in which it is held.

How does Tonic App store Personal Data?

Tonic App collects and stores your information on secure, European Union servers. For our overseas visitors, your data may be collected and stored on secure, offsite servers that meet the laws and policies of your country.

How to correct inaccurate Personal Data?

It is important that any Personal Data Tonic App holds about you is accurate and current. Tonic App requires you to keep us informed of changes to any Personal Data. You can correct any inaccuracies by accessing and modifying the information provided in your Account.

How does Tonic App retain Personal Data?

Tonic App retains Personal Data in accordance with its legal or business practices. We retain your Personal Data up to one year after you cease to be a Tonic App active Platform user. You will be considered an inactive user after one year with no activity in the Platform, starting from the date of your last access. Once the Personal Data is no longer required to fulfill the purpose for which it was collected and no longer required or permitted to be retained for legal or business purposes, it is securely destroyed or made anonymous.

How to access your Personal Data?

Any data that you provide to Tonic App can be accessed and modified from your Account. If you remove data from your profile, it will no longer appear to you or others who use the Platform. Backups of that data will remain in association with your Account and in our archive servers until deleted in accordance with our data retention schedule.

You can also ask to see the Personal Data that we hold about you. If you want to review, verify or correct your Personal Data, please contact our DPO using the contact information set out below. Please note that any such communications must be in writing.

When making an access request, we may require specific information from you to confirm your identity and right to access, as well as to search for, and provide you with, the Personal Data that we hold about you. If you need help in preparing your request, please contact our DPO.

For any personal data shared with your consent you can ask Tonic App to provide you with a copy of such data in a commonly used and machine-readable format. You can also request of Tonic App, if technically feasible, to send this information to other data processors.

Tonic App may not be able to provide you with access to your Personal Data, in situations where such refusal is permitted or required by applicable law or regulatory requirements. Tonic App will inform you of the reasons why, subject to any legal or regulatory restrictions, access has been denied.

User-provided case information

When you use the Tonic App mobile application, you may upload images and videos, create image captions, use tags, share images and videos and exchange messages with other users or group of users.

All user-provided case information that you generate in the Tonic App mobile application must comply with local, national, provincial, state, and federal privacy legislation and best practices. Identifying information must be removed from any uploaded images or videos and should not be included in any captions or messages.

We will store your uploaded images, videos, image captions, date created, and tags used. Tonic App mobile application stores only encrypted images or videos, not the original unedited images/videos. We do not store IP addresses, time or location information relating to images or videos uploaded by users.

We will store the date of messages and the username connected to the messages, discussion titles and group names, but never the message content. When you send or receive direct messages through the Tonic App mobile application, we may process your messages, phone number, log contact data and other information (“Message Data”) in order to deliver the services. All Message Data is subject to the Terms of Use. Message Data will be encrypted end-to-end, as the message is sent, while it is in transit and when stored on our servers. The Message Data is deleted from our servers after it has reached the destined user(s), including the message content, images and videos. We will not access the Message Data, except in connection with delivering the services. Although we strive to maintain the privacy and security of all Message Data, we cannot guarantee the privacy and security of Message Data and any Message Data that you send is at your own risk.

We will also store the date your account was created, the mobile application version, and the last login date.

Your Obligations

As a user, you have certain obligations toward the other users with whom you will be communicating. Certain of these obligations are imposed by applicable law and regulations, and others have become commonplace in user-friendly communities of like-minded members, such as the Tonic App mobile application:
You must, at all times, respect the terms and conditions of the then-current Privacy Policy and the Terms of Use agreement. This includes respecting all intellectual property rights which may belong to third parties (such as images and videos).

You must not download or otherwise disseminate any information which may be deemed to be injurious, defamatory, violent, offensive, racist, sexist or xenophobic, or which may otherwise violate the purpose and spirit of the Tonic App professional mobile application and its community of users.

You must not provide information to Tonic App and/or other users which you believe might be injurious or detrimental to your person, professional or social status.
You must not use our free peer-to-peer invite and secure communications system for commercial use. While we do allow selected client outreach for partner information, market research, expert witness and career opportunities, these messages have a distinct format to protect our users. Those found soliciting, scamming, or spamming other members will be removed or suspended from the network at our sole discretion.

Any violation of these guidelines may lead to the restriction, suspension or termination of your Account by Tonic App, as we take these principles seriously and consider them to be the basis on which our users adhere to the Platform.

How do you deactivate your Account?

You can deactivate your Account by contacting us at support@tonicapp.com. When you do, data that can identify you will be removed from the Account, including, but not limited to, your email, name, birthdate and photo. If you own a device with an iOS operating system, you will be able to deactivate your account at Tonic App, through the menu. Backup copies of this data will be removed from our servers based upon an automated schedule, which means it may persist in our archive for at most thirty (30) days. Tonic App may continue to use your de-identified data.

However, Tonic App will not allow you to opt out of any announcements and messages related to the implementation of this Privacy Policy and your obligations thereunder. As such, should your uploaded images or videos, image captions, or comments contain identifying information about a patient (as described in the Terms of Use,) you will receive a written communication from Tonic App notifying you of a potential privacy violation associated with this content.

How does Tonic App handle complaints?

You can direct any questions or concerns about this Privacy Policy to Tonic App’s DPO (dpo@tonicapp.com). Tonic App maintains procedures to receive and investigate complaints and complainants will be advised of the results of any such investigation.

How does Tonic App handle children’s privacy?

The Service is intended for healthcare professionals and not directed to individuals of less than 18 years of age. If you are a parent or guardian and believe we may have collected information about a child, please contact us as described in the “How to contact us?” section, below.

How to contact us?

To get more information about Tonic App’s Privacy Policy, change or withdraw your consent or make a complaint or suggestion under this Privacy Policy, you can contact:

DPO: Tonic App – DPO

Address: Rua do Heroísmo 281 Arm. 1, 4300-259 Porto, Portugal

Telephone Number: +351 223162973

Email Address: dpo@tonicapp.com

Revision to this Privacy Policy

Tonic App may amend this Privacy Policy from time to time. Use of information we collect now is subject to the Privacy Policy in effect at the time such information is used. If we make changes in the way we use Personal Data, we will notify you in a written form and given by (1) Tonic App via email (in each case to the address that you provide); or (2) by posting to the Website; or (3) via the Tonic App Mobile Application. Users are bound by any changes to the Privacy Policy when he or she uses the Platform after such changes have been first posted.