Privacy Policy

Last updated : 03/04/2026

1. Data controller

The data controller is DMQODE, operating IMC Platform at https://imc.dmqode.be. Contact: contact@dmqode.be.

2. Data collected

We collect identification data, health data, disability data, financial data and connection data.

3. Health data (special category)

Health data is sensitive data protected by Article 9 of the GDPR. Processing is based on your explicit consent (Article 9.2.a).

4. Connected health devices

When you connect a health device, we retrieve your measurements via official APIs. OAuth tokens are securely stored. You can disconnect a device at any time.

5. Purpose of processing

Your data is processed for medical record management, social rights calculation, synchronization with connected devices and document management.

6. Legal basis

Processing is based on your explicit consent (Article 6.1.a GDPR), contract performance (Article 6.1.b) and our legitimate interest (Article 6.1.f).

7. Retention period

Your data is retained as long as your account is active. After account deletion, all personal data is erased within 30 days.

8. Data sharing

Your data is NEVER sold to third parties. It may be shared with connected health APIs and AI analysis services within the scope of synchronization you have authorized.

9. Your rights (GDPR)

You have the right to access, rectification, erasure, restriction, portability and objection. Contact: contact@dmqode.be. Complaint to the Data Protection Authority: https://www.autoriteprotectiondonnees.be.

10. Security

We implement technical and organizational measures: HTTPS encryption, hashed passwords, secure OAuth tokens, restricted access to health data.

11. Cookies

The Platform uses only essential cookies (session, language preferences, cookie consent). No tracking or advertising cookies are used.

12. DPO Contact

For data protection questions: contact@dmqode.be. Supervisory authority: Data Protection Authority, Rue de la Presse 35, 1000 Brussels.