physiotraq

Privacy Policy

Last updated: January 16, 2026

1. Introduction

At PhysioTraq, we place paramount importance on protecting your personal data and that of your patients. This privacy policy explains how we collect, use, store, and protect your information when you use our thermal monitoring service.

2. Data Collected

We collect different categories of data to provide and improve our service:

2.1 Identification Data

  • First and last name
  • Professional email address
  • Profession and specialty
  • Organization or institution

2.2 Health Data (patients/athletes)

  • Anonymized patient identifier
  • Body temperature measurements
  • Weight (optional)
  • Treatment medical notes
  • Monitoring session history

2.3 Technical Data

  • PhysioTraq device identifiers
  • Device geolocation data (optional)
  • Connection and usage logs
  • Browser and device information

3. Use of Data

Your data is used to:

  • Provide real-time thermal monitoring service
  • Generate safety alerts in case of abnormal temperature
  • Create treatment reports and histories
  • Improve the quality and performance of our service
  • Manage your account and subscription
  • Send you important service-related communications

4. Legal Basis for Processing

The processing of your data is based on:

  • Contract performance: to provide the service you have subscribed to
  • Legal obligation: to comply with our regulatory requirements
  • Legitimate interest: to improve our services and ensure security
  • Consent: for processing health data and sending marketing communications

5. Data Sharing

We never sell your personal data. We may share your data only with:

  • Stripe: for secure payment processing
  • Our hosting providers: for secure data storage in Europe
  • Competent authorities: in case of legal obligation

6. Data Security

We implement robust security measures to protect your data:

  • Encryption of data in transit (TLS 1.3) and at rest (AES-256)
  • Secure authentication with email confirmation
  • Servers hosted in certified data centers in the European Union
  • Regular backups and business continuity plan
  • Restricted data access following the principle of least privilege

7. Data Retention

We retain your data according to the following periods:

  • Account data: for the duration of your subscription + 3 years
  • Treatment data: 10 years (in accordance with medical obligations)
  • Billing data: 10 years (accounting requirements)
  • Technical logs: 1 year

8. Your Rights

Under GDPR, you have the following rights:

  • Right of access: obtain a copy of your data
  • Right to rectification: correct your inaccurate data
  • Right to erasure: request deletion of your data
  • Right to portability: receive your data in a structured format
  • Right to object: object to the processing of your data
  • Right to restriction: limit the processing of your data

To exercise these rights, contact us at privacy@physiotraq.com.

9. Cookies

We use cookies strictly necessary for the operation of the service (authentication, preferences). We do not use advertising cookies or third-party tracking.

10. Changes

We may update this privacy policy. In case of substantial changes, we will notify you by email and via an in-app notification.

11. Contact

For any questions regarding this policy or your personal data:

Data Controller: PhysioTraq SAS
Data Protection Officer: dpo@physiotraq.com
Address: 123 Innovation Avenue, 75001 Paris, France

You also have the right to lodge a complaint with a supervisory authority (such as the CNIL in France or the ICO in the UK).

Back to registration