MedTalk complies with the European Union's General Data Protection Regulation (GDPR) ensuring data protection, transparency, and user rights.
GDPR requires strong privacy controls, transparency, and accountability. We ensure compliance across all services.
We integrate data protection into all aspects of our systems and processes as required by GDPR.
We only collect and process data strictly necessary for the intended purposes.
We provide clear processes for exercising your rights under GDPR such as access, erasure, and portability.
All processing is based on lawful grounds such as consent, contract, or legitimate interests.
When transferring data outside the EU, we ensure adequate safeguards like SCCs or equivalent protections.
We maintain processing records and conduct regular audits to ensure GDPR compliance.
For high-risk processing, we carry out DPIAs to identify and mitigate risks.
We continuously review and update practices to remain aligned with GDPR obligations.
