Privacy Policy
Last updated : 03/04/2026
1. Data controller
The data controller is DMQODE, operating IMC Platform at https://imc.dmqode.be. Contact: contact@dmqode.be.
2. Data collected
We collect identification data, health data, disability data, financial data and connection data.
3. Health data (special category)
Health data is sensitive data protected by Article 9 of the GDPR. Processing is based on your explicit consent (Article 9.2.a).
4. Connected health devices
When you connect a health device, we retrieve your measurements via official APIs. OAuth tokens are securely stored. You can disconnect a device at any time.
5. Purpose of processing
Your data is processed for medical record management, social rights calculation, synchronization with connected devices and document management.
6. Legal basis
Processing is based on your explicit consent (Article 6.1.a GDPR), contract performance (Article 6.1.b) and our legitimate interest (Article 6.1.f).
7. Retention period
Your data is retained as long as your account is active. After account deletion, all personal data is erased within 30 days.
8. Data sharing
Your data is NEVER sold to third parties. It may be shared with connected health APIs and AI analysis services within the scope of synchronization you have authorized.
9. Your rights (GDPR)
You have the right to access, rectification, erasure, restriction, portability and objection. Contact: contact@dmqode.be. Complaint to the Data Protection Authority: https://www.autoriteprotectiondonnees.be.
10. Security
We implement technical and organizational measures: HTTPS encryption, hashed passwords, secure OAuth tokens, restricted access to health data.
11. Cookies
The Platform uses only essential cookies (session, language preferences, cookie consent). No tracking or advertising cookies are used.
12. DPO Contact
For data protection questions: contact@dmqode.be. Supervisory authority: Data Protection Authority, Rue de la Presse 35, 1000 Brussels.