Privacy Policy

This privacy policy describes how MALO CLINIC collects and processes information about your personal data, how we will use and protect this information, and the choices you can make about how the institution can use your personal data. 

This privacy policy applies to all users of MALO CLINIC. We consider personal information to be that which alone or in combination with other information allows you to be identified or contributes to your identification (including your health data).

1. Collection of information

 The institution collects personal information directly from its holders or through the guardians of minors under 16 years of age.

In order to fulfill all obligations arising from the contractual relationship we have established with our users, the processing of personal information is necessary to comply with the obligations and duties inherent to that relationship. The absence of this information may prevent or distort the fulfillment of these obligations.

1.1 Information we request from you

Category of information that we request for your creation as a user of the health services provided by MALO CLINIC: 

(a) Personal identification data (name, date of birth, gender, nationality);

(b) Contacts (full address, landline, mobile phone, email);

(c) National identification data (User number, NISS, NIF, Citizen Card number, validity of CC, health subsystem);

(d) Information relating to special categories of personal data (health data);

(e) Other information (profession, professional situation, company protocol, affiliation, spouse's name, hospital process number).

Information collected during the execution of the contractual process (outpatient, surgery, MCDT):

(f) Health information to integrate into the clinical process.

Data may be collected from third parties in cases where the companies of the Malo group operate as subcontracted entities or within the scope of collaboration protocols. 

2. How we use your personal information and what the legal bases are

We use your personal information as a result of the contractual relationship you established with MALO CLINIC to:

(a) Fulfill all contractual and legal obligations arising from this situation (lawfulness – execution of a contract);

(b) Exercise our rights under current legislation and regulations;

(c) Provide the contracted services appropriate to the informed / assessed state of health;

(d) Send promotional information (specific consent);

(e) Transmission of health data for insurance purposes (specific consent) or continuation of treatment in another healthcare unit;

(f) Keep our records correct and up to date.

3. Your rights regarding your personal data

 Your personal data will be kept by MALO CLINIC for the periods defined in the current archival regulation for all units supervised by the Ministry of Health (Order 247/2000 of 08/05, amended by Order 157/2014 of 19/08) – permanent retention.

Whenever you exercise the right to rectify the information regarding your personal data, the MALO CLINIC group will promote this rectification as soon as possible.

You may, under certain conditions, oppose the processing of your personal data for reasons related to your particular situation, limit its use, or request that we share that data with other organizations in a structured, commonly used, and machine-readable format.

When you have given consent for the processing of your personal data, you can withdraw it at any time.

To exercise the rights indicated, please inform us through the contacts indicated below (point 8).

4. Sharing of information

As a rule, the company does not transfer or share personal data information with third parties (other than service providers acting under our guidance and responsibility), unless required to do so by legal and regulatory requirements. 

Other situations in which personal information may be disclosed to third parties:         

(a) MCDT Laboratories, Health Entities (other dental clinics);

(b) Insurance companies, Courts, ERS;

(c) Television, media (specific consent);

(d) Marketing Partner Companies and Social Networks, such as, but not limited to, Facebook and Instagram (Meta), Linkedin; 

(e) Tax authority (SAFT-PT);

(f)  Software maintenance company (GLINTT). 

5. Security of personal data

The company ensures the use of the best techniques, organizational and security measures to protect personal information, preventing its loss, misuse, alteration, or destruction, ensuring its integrity, availability, and confidentiality. To this end, all employees with access to your personal data are required to keep them confidential. Only authorized personnel bound by the duty of secrecy and confidentiality should have access to this information.

Data will be retained for the strictly necessary time for the purposes of its processing or by legal or regulatory determination. During the retention period, the integrity and access to data are guaranteed.

Data collected for marketing purposes will be retained as long as they serve the purposes for which they were collected, without prejudice to the retention of data that MALO CLINIC is obliged to retain by legal imposition, or until you give us written notice to the contrary, using the contacts mentioned below.

6. Transfer of information

Personal information may be transferred, archived, or processed in a country different from that where it was collected and where the data subjects come from. In such cases, the transfer of data is carried out in accordance with the requirements of the GDPR. When the transfer of personal data is made to a country outside the Union, adequate safeguards will always be provided through binding rules with legal force, such as standard contractual clauses approved by the Commission. When the transfer is made to other Group companies, it is always based on the group’s privacy policy and, if they exist, on the binding Corporate Rules for Data Controllers and processors. If you require more detailed information about the mechanisms and provisions used in the transfer of personal data, please contact us using the contacts provided in point 8.

7. Privacy of minors

MALO CLINIC does not collect or process personal data from this category of data subjects without the consent of parents/guardians. 

8. Our contacts

General Contact

Tel: (+351) 217 228 100

Email: geral@maloclinics.com

Address: Avenida dos Combatentes, 43A 1600-042 Lisbon Portugal

For any questions related to the processing of your personal data or those for which you have parental responsibility, please contact us through:

Data Protection Officer: dpo@maloclinics.com

The company is committed to cooperating in seeking the best and fairest resolutions for the complaints related to the processing of personal data that you may have submitted. If you feel that the company has not been competent in resolving the complaints raised, you have the right to submit that complaint to the competent control authority – National Data Protection Commission – via its WEB page at the following address: https://www.cnpd.pt

9. Changes to the privacy policy

You can always request a copy of this privacy notice, using the contacts indicated here. The company may modify the privacy policy. You can check the date of the last update by consulting/viewing the last review/version date that will be part of this document. All changes to this policy are considered effective from the date of their publication (revision). We recommend that you frequently review the privacy policy to check for any new updates.