Privacy Policy

  1. Home   Privacy Policy

CDoctorsTeams Privacy Policy
Last Updated: [July 31, 2025]

At CDoctorsTeams LLC located at 7712 Rock Palm Ave, Tampa, Florida, USA, we are committed to protecting the privacy and security of the data of our users, healthcare professionals, and medical service providers (collectively, “Users”). This Privacy Policy explains how we collect, use, store, protect, and share information obtained through our digital platform, which includes the Website changsdoctorsteam.com,

the Mobile Application available on Google Play and other app stores, and any other related digital media (collectively, “the Platform”).
Our mission is to connect patients with healthcare professionals in an efficient, secure, and accessible manner, promoting transparency, regulatory compliance, and empowering Users to control their personal information. This policy is designed to comply with applicable data protection laws and Google Play requirements for mobile applications.

General Principles


We adhere to the data protection laws and regulations applicable in the jurisdictions where we operate, including, but not limited to:

  • General Data Protection Regulation (GDPR) for users in the European Union.
  • Health Insurance Portability and Accountability Act (HIPAA) in the United States, for protected health information.
  • General Data Protection Law (LGPD) in Brazil.
  • Other local laws applicable in the regions where the Platform is available, such as the Federal Law on Protection of Personal Data Held by Private Parties (LFPDPPP) in Mexico.
    We ensure transparent, secure, and ethical data handling, fostering User trust and supporting our vision of a globally informed and connected health community.

Data Collection


We collect information to operate the Platform and provide personalized services. The collected data is divided into the following categories, with special attention to sensitive categories required by Google Play:
a. Personal Data:

  • Identification: Full name, email address, phone number, date of birth, and, in some cases, identification documents (e.g., for account verification).
  • Health Information (Sensitive Data): Medical history, symptoms, prior diagnoses, prescriptions, or information related to medical consultations, voluntarily provided by Users to facilitate connections with healthcare professionals.
  • Payment Data: Credit/debit card information or other payment methods, processed exclusively through secure payment service providers (e.g., Stripe, PayPal).
  • Login Data: Account credentials, such as passwords (stored encrypted).
    b. Usage Data:
  • Information about interactions with the Platform, such as pages visited, browsing time, search preferences, scheduled appointments, clicks, and enabled push notifications.
  • Technical data, such as IP address, device identifiers (Android device ID, AAID), device type, operating system, app version, browser, and approximate location (IP-based).
    c. Professional and Provider Data:
  • Professional credentials, medical licenses, certifications, specialties, and details of offered services.
  • Commercial information, such as company names, service descriptions, product images, and contact details for advertising.
    d. Automatically Collected Data:
  • Cookies and Similar Technologies: Used to enhance user experience, analyze performance, and personalize content (see Section 10 for details).
  • Device Sensor Data (if applicable): For example, access to the camera or microphone for teleconsultations, only with explicit consent.
  • Geolocation: Approximate location (IP-based) or precise location (GPS, if enabled by the User) to offer region-relevant services, such as nearby professionals.
    e. Data Sources:
  • Information provided directly by Users when registering, completing profiles, scheduling appointments, or interacting with the Platform.
  • Data generated by Platform usage, such as activity logs or interactions with push notifications.
  • Information from third parties, such as payment processors, medical license verification services, or analytics partners (e.g., Google Analytics), always with consent or as permitted by law.
    Note for Google Play: We clearly inform Users about the collection of sensitive data, such as health information and geolocation, before collection, through app permission requests and consent screens. Users may choose not to provide certain data, though this may limit some functionalities.

Purpose of Data Use


We use collected data to fulfill our corporate purpose of connecting patients with healthcare professionals and medical service providers and to enhance the Platform experience. Specific purposes include:

  • Service Management: Facilitating the search, scheduling, and execution of medical appointments (in-person or via telemedicine), connecting Users with Professionals, processing payments, and sending confirmations or reminders.
  • Personalization: Tailoring the experience, such as recommending professionals or services based on preferences, location, or medical history.
  • Advertising and Promotion: Displaying relevant ads from professionals and providers within the Platform, respecting Users’ preferences for personalized advertising.
  • Education and Prevention: Disseminating educational content on health and wellness, aligned with our mission to promote disease prevention.
  • Analysis and Improvement: Analyzing usage data to optimize performance, fix errors, enhance security, and develop new features.
  • Legal Compliance: Fulfilling legal obligations, such as regulatory reporting, audits, protecting health data under HIPAA, or responding to authority requests.
  • Technical Support: Addressing inquiries, resolving issues, and providing assistance through our Support Center.
  • Fraud Prevention: Detecting and preventing fraudulent activities, such as fake accounts or unauthorized payments.
    Note for Google Play: Sensitive data, such as health information, is used exclusively to provide User-requested medical services and not for third-party advertising outside the Platform.

Legal Basis for Data Processing


Data processing is based on the following legal grounds, as per applicable regulations:

  • Explicit Consent: Obtained upon registration, acceptance of this Privacy Policy, or enabling specific app permissions (e.g., geolocation or camera access).
  • Contract Performance: Processing necessary to fulfill the Terms and Conditions, such as managing appointments, payments, or teleconsultations.
  • Legal Obligations: Compliance with regulatory requirements, such as protecting health data under HIPAA, LGPD, or GDPR.
  • Legitimate Interest: Platform improvement, fraud prevention, and security assurance, provided User rights are not overridden.
    Note for Google Play: For sensitive data (e.g., health, geolocation), we always obtain explicit consent before collection, and Users can revoke consent at any time.

Data Security


We implement technical, organizational, and administrative measures to protect data against unauthorized access, loss, alteration, or improper disclosure, including:

  • Encryption: SSL/TLS protocols for data transmission and AES-256 encryption for stored data.
  • Access Controls: Restricted data access, limited to authorized employees under strict confidentiality agreements.
  • Security Audits: Periodic assessments to identify and mitigate risks.
  • Anonymization and Pseudonymization: Applied for internal analysis, removing or masking personal identifiers where possible.
  • Android Permission Management: We request only necessary permissions (e.g., camera for teleconsultations) and respect device privacy settings.
  • Service Providers: We work with third parties (e.g., payment processors, cloud services) that meet equivalent security standards (e.g., ISO 27001 certifications) and are bound by data protection contracts.
    Note for Google Play: We comply with Android data security guidelines, including proper permission usage and protection of sensitive data in transit and at rest.

Data Storage and Retention

  • Data is stored on secure servers located in Canada, selected to comply with local data protection regulations.
  • We retain data only as long as necessary for the purposes described or as required by applicable laws:
    • Active Account Data: Retained while the account is active.
    • Health Data: Kept for legal periods, such as 6 years under HIPAA in the USA or 5 years under LGPD in Brazil.
    • Usage and Analytics Data: Retained for up to 12 months, unless the User requests deletion.
    • Payment Data: Stored only by secure payment processors, not directly by the Platform.
  • Upon expiration of the retention period, data is securely deleted or anonymized using industry-standard methods.
    Note for Google Play: We inform Users about retention periods and provide options to request data deletion.
  1. Data Disclosure to Third Parties
    We do not sell or share personal data with third parties for commercial purposes unrelated to Platform services. Data may be disclosed in the following cases:
  • Healthcare Professionals: Necessary information (e.g., name, contact details, medical history) to facilitate appointments or teleconsultations, shared only with User consent.
  • Service Providers: Technology partners (e.g., payment processors, cloud storage, Google Analytics) operating under confidentiality agreements and complying with data protection regulations.
  • Legal Compliance: When required by law, court order, or competent authority.
  • Emergencies: In exceptional cases to protect User or others’ safety, as permitted by law.
    Note for Google Play: We detail all third parties with data access in our Data Safety Declaration in Google Play Console and do not share sensitive data for third-party advertising.

International Data Transfers


Given our commitment to a global health community, data may be transferred to countries outside the User’s jurisdiction (e.g., servers in the USA). In such cases:

  • We apply Standard Contractual Clauses (SCCs) and other GDPR-approved mechanisms to ensure an adequate level of protection.
  • We work with providers meeting international data protection standards.
  • We inform Users about international transfers before collecting sensitive data.
    Note for Google Play: We comply with data transfer requirements for global apps, ensuring Users are informed.

User Rights


Users have rights over their personal data, which they can exercise by contacting our Support Center at [raul@generalgateway.com]. These rights include:

  • Access: Obtain a copy of stored personal data.
  • Rectification: Correct inaccurate or incomplete data.
  • Deletion: Request data deletion, except when legal obligations require retention (e.g., health data under HIPAA).
  • Objection: Oppose processing for specific purposes, such as personalized advertising.
  • Portability: Receive data in a structured, machine-readable, and transferable format.
  • Restriction: Limit data use in certain circumstances.
  • Consent Withdrawal: Revoke consent at any time, which may result in account termination or service limitations.
    We respond to requests within 30 days (or less, as required by local laws, e.g., 15 days under LGPD). Users may file complaints with their local data protection authority (e.g., CNIL in France, ANPD in Brazil).
    Note for Google Play: We facilitate rights exercise through the app (e.g., a link in settings to request data deletion) and provide clear contact information.

Cookies and Similar Technologies


We use cookies and tracking technologies to enhance functionality and personalization, including:

  • Essential Cookies: Necessary for basic operations (login, navigation, security).
  • Analytics Cookies: Collect anonymous data to analyze performance (e.g., via Google Analytics).
  • Advertising Cookies: Enable relevant ads from professionals and providers within the Platform.
    In the mobile app, we use similar technologies, such as advertising identifiers (AAID) and analytics SDKs (e.g., Firebase Analytics). Users can:
  • Manage cookie and tracking preferences through Platform or device settings.
  • Reset the AAID on their Android device to limit ad tracking.
  • Disable ad personalization in the app or operating system settings.
    Disabling essential cookies or tracking permissions may limit functionalities, such as teleconsultation access.
    Note for Google Play: We disclose SDKs and tracking technologies in our Data Safety Declaration and offer options for Users to control personalized advertising.

App Permissions


The mobile app requests specific permissions to provide services, including:

  • Camera and Microphone: For teleconsultations, activated only during sessions and with explicit consent.
  • Location: To recommend nearby professionals, optional and with consent.
  • Push Notifications: For appointment reminders or updates, enabled only if allowed by the User.
  1. Minors
    The Platform is intended for individuals aged 18 and older. We do not intentionally collect data from minors. If we discover that a minor has provided data without parental or guardian consent, we will delete such information immediately. Parents or guardians may contact us at [soporte@changsdoctorsteam.com] to report any issues.
    Note for Google Play: We declare in Google Play Console that our app is not directed to minors and comply with the Children’s Online Privacy Protection Act (COPPA) and other applicable regulations.
  2. Privacy Policy Updates
    We may update this Policy to reflect changes in our practices, applicable laws, or Google Play requirements. We will notify Users at least 15 days in advance through:
  • Push notifications in the app.
  • Email to the registered address.
  • A prominent notice on the Website or Platform.
    Continued use of the Platform after updates implies acceptance of the new Policy. Users can review the updated version in the app or at changsdoctorsteam.com.

Note for Google Play: We ensure the Privacy Policy is accessible within the app in the “Login” section and in the Google Play store listing.

Google Play Statement


We comply with Google Play’s User Data Policies, including:

  • Transparency: Clearly informing about data collection, use, and disclosure, especially for sensitive data like health information.
  • Consent: Obtaining explicit consent for sensitive data and app permissions.
  • Security: Protecting data with industry-standard measures.
  • Data Deletion: Providing a clear process for Users to request data deletion, accessible within the app.
  • Data Safety Declaration: Completing the relevant section in Google Play Console, detailing data types, purposes, third parties, and security measures.
    To request account and data deletion, Users can:
  • Send an email to soporte@changsdoctorsteam.com with the subject “Account Deletion Request.”
  • Use the “Delete Account” option in the app settings, if available.
    We are committed to meeting Google Play requirements and protecting our Users’ privacy.

Contact


If you have any questions, concerns, or requests regarding this Privacy Policy, please feel free to contact our Support Center at soporte@changsdoctorsteam.com.
Thank you for trusting CDoctorsTeams. Your privacy is important to us, and we are committed to supporting our mission of empowering individuals in a secure and trusted environment.
CDoctorsTeams LLC
7712 Rock Palm Ave, Tampa, Florida, USA
+1 813 338 6112

Copyright © 2025 CDoctorsTeams