top of page
SMCC-Homescreen-Bild.jpeg
SMCC-Logo.png

Privacy Policy
of Swiss Medical Care Compass App

Privacy Policy - Swiss Medical Care Compass App

Effective Date: 19.05.2025

Why is this important?

The Swiss Medical Care Compass App is your digital companion in everyday healthcare: you always have access to essential data, documents, and appointments.

Protecting and securing your personal data is of the utmost importance to us.

We kindly ask you to take a moment to read this privacy policy.

Your data belongs to you. We process your personal data in compliance with data protection laws. The processing of your patient data aims to support you in your healthcare journey as effectively as possible.

This privacy policy explains how we collect, use, share, disclose, and protect personal data. Personal data refers to any information relating to an identified or identifiable person.

This privacy policy and the Terms of Use apply to the use of the Swiss Medical Care Compass App (the App).

Swiss Medical Care Compass AG is the controller of the personal data processed via the App. The App was developed by heyPatient AG, which operates the App on behalf of Swiss Medical Care Compass AG.

By registering for the App and accepting this privacy policy, you consent to the processing of your personal data (including sensitive health data) as described in this policy.

In the case of a proxy account, by giving this consent you confirm that you are authorized to open a proxy account on behalf of the person you represent and to store and process that person’s personal data (including sensitive health data) in the App as described in this policy.

1 Use of the App

Registration

When you register, the data stored in your App account is secured in the cloud. You will be able to access this data from multiple devices.

You may withdraw your consent to this privacy policy at any time with future effect by deleting your account or uninstalling the App.

Please do not register if you do not want us to process your personal and health data or the data of the person you represent.

Transmission and Collection of Personal Data

We process personal data when you provide it in the following ways:

Downloading and registering for the App

If you register via SwissID, the following required information is collected: your first and last name, email address, and date of birth. These details can be saved to your personal profile automatically if you choose.

Use of the App is not permitted for persons under 18 years of age.

Health Data

If you contact us in relation to the App or customer service matters, we will record this contact.

You may also submit personal data when filling out forms, sending emails, making inquiries, reporting a problem with the App, or in similar scenarios.

We use the data you provide only to fulfill the service you have requested. If the GDPR applies, Art. 6(1)(b) GDPR is the relevant legal basis.

Device Information

We do not collect location data from your device. When you use the App, we automatically receive technical information such as the type of mobile device used, a unique device identifier (e.g., IMEI number, MAC address, mobile number), mobile network information, mobile operating system and version, IP address, browser type, country and language code, and time zone settings. These data are processed solely to provide the requested service. If the GDPR applies, Art. 6(1)(b) GDPR is the relevant legal basis.

We also collect information related to your use of the App, such as logs and administration data, to ensure smooth operation of the App.

This processing is in our legitimate interest to provide an optimal service. If the GDPR applies, Art. 6(1)(f) GDPR is the relevant legal basis.

2 Reasons for Processing Personal Data

We process the personal data stored in your App account, including health data, for the following purposes:

  • To provide you with the App, its services and functionalities, and to inform you of any changes;

  • To respond to inquiries you send us, such as support requests;

  • To develop, test, and improve the App, including adding new features;

  • To better understand how you use the App and its functionalities, and to ensure content is effectively presented;

  • To provide support, maintenance, troubleshooting, and ensure security of the App;

  • For data analysis and testing, for statistical purposes, App upgrades, and ongoing development;

  • To enable you to use interactive features if you choose;

  • To invite you to participate in opinion groups or inform you about community activities;

  • If necessary, to issue security alerts or perform corrective actions.

 

If the GDPR applies, Art. 6(1)(a) and (b) GDPR are the relevant legal bases.

3 Retention Period

We will retain personal data only as long as needed for the purposes described in this policy unless a longer retention period is legally required.

4 Disclosure of Personal Data

Swiss Medical Care Compass AG may share the personal data stored in your App account with technical partners, service providers, and contractors involved in developing, testing, supporting, providing, and maintaining the App (see section 6).

In any case, we share personal data only to provide, maintain, host, and support the App.

We may disclose data when lawfully requested by authorities or required by law, including for national security.

We may also disclose data if needed to enforce our terms of use, this policy, protect rights or safety, investigate illegal activities, or provide evidence in legal proceedings.

Foreign governments, courts, and law enforcement may access data under foreign laws. We strive to prevent such access by all reasonable means.

User-Granted Disclosures

We share your or your managed data when you choose to do so in the App (e.g., via heyFamily or data sharing with providers).

5 Using the App to Inform Third Parties

The App allows you to share stored information with third parties (e.g., using “Share,” “heyFamily,” or “Release” features).

You may use these features to email data and information, including personal data, to third parties such as doctors or chosen persons, or to grant access (e.g., to your timeline, allergies, medications).

Please use caution and ensure that such information is only sent to the intended recipient.

Note: communication via unencrypted email is not secure. Sharing data is at your own risk, and Swiss Medical Care Compass AG is not responsible for protecting or securing information shared through the App.

6 Storage of Personal Data

We have implemented legally required security measures to protect personal data in your App account, including data processing agreements with data recipients.

If you are located in the EU and the GDPR applies under Art. 3(2)(a), international data transfers under Chapter 5 GDPR occur. Please note that Switzerland has an adequacy decision per Art. 45(1) GDPR, offering sufficient safeguards.

7 Security of Personal Data

Swiss Medical Care Compass AG takes appropriate administrative, technical, and physical measures to protect the confidentiality, integrity, and availability of personal data. We use strict procedures and encryption technologies to ensure data security.

For maximum protection against unauthorized access, we use identity providers (SwissID) for registration and authentication.

You are responsible for protecting access to your App and its data. Use a strong password and do not reuse it across different services.

Keep your credentials confidential. Neither we nor SwissSign (SwissID provider) are liable for lost, stolen, or compromised credentials or unauthorized access caused by your actions.

If you believe your account has been compromised, contact us immediately at support@heypatient.com or
+41 44 586 02 01

We encrypt data during transmission via the App.

Despite best efforts, we cannot guarantee the security of transmitted data.

8 Exercising Your Rights

You have the right to access your personal data stored in the App, correct or delete it, object to its processing, or restrict access.

You may also withdraw your consent for data processing at any time with future effect.

If you believe our data processing violates this policy or applicable law, you may contact us and your data protection authority.

You have the right to receive a copy of your data or transfer it to another controller. We may ask for additional information to verify your identity before disclosure.

These rights also apply to competent individuals on whose behalf a proxy account was opened.

To exercise your rights, contact Swiss Medical Care Compass AG by email at dpo@heypatient.com or by mail (see section 12).

9 "Do Not Track"

We do not allow third parties to collect personal data during your use of the App.

10 Children

Personal data of individuals under 18 years may only be collected through their legal guardians.

11 Changes to this Privacy Policy

Future changes to this policy will be communicated via email or push notification in the App.

12 Contact

Questions, comments, and requests related to this privacy policy are welcome and should be directed to:

dpo@heypatient.com

Mailing address:
Swiss Medical Care Compass AG

Talweg 27, 8707 Uetikon

Testimonials

«As a leading tertiary care hospital in Switzerland, we use the patient portal from heyPatient. In our new building, Agnes, we rely on their smart patient call system, which is redefining efficiency and the patient experience. This sets new standards in patient guidance and support.
The experts at heyPatient excel in high-level process automation and develop practical solutions in co-creation with hospital professionals. They are visionary, always open to feedback, and willing to go the extra mile. heyPatient is a reliable partner, and we look forward to continued collaboration and future innovations.»

«heyPatient ermöglicht unseren Patienten den schon lange gewünschten einfachen, digitalen Zugang zu unserer Klinik - gleichzeitig können klinikinterne Prozesse, auch im  Sinne der Patienten optimiert werden.The heyCommunity integrates us into a virtual regional, but also supra-regional health space, enables joint development steps and also offers every clinic the opportunity to realize individual adaptations and connections of third-party applications! A win for our patients, the heyCommunity and of course our clinic!"

"Enabling our patients to plan their stay online is a logical step in our digitalization strategy. heyPatient offers a convincing solution for this.»

Dr. Daniel Heller, 

President of the Board,

Kantonsspital Baden AG

Rolf Schwendener, deputy CEO

Merian Iselin Clinik, Basel

René Künzli, Head of Services and Member of the Executive Board

Swiss Paraplegic Center

Subscribe to our newsletter

Thank you so much!

heyPatient-Logo

team@heypatient.com

Get it from Microsoft AppSource
DCB Digital Diabetes Award Top20
  • LinkedIn Social Icon
  • Facebook

heyPatient AG

Legal 

Reg-Nr:      CHE-326.934.294

DUNS-Nr:  48-042-8462

Technoparkstrasse 2, 8406 Winterthur

+41 44 586 02 01

 

Schumannstrasse 27, 60325 Frankfurt

+49 69 505027 314

imprint

Privacy policy website

General terms of use of the heyPatient App

Privacy Policy of the heyPatient App

digital economy award

Location Winterthur

Find us in Trakt A.

(pass the Bistro - lift next to Open Workspace)

How to find heyPatient
bottom of page