The missing layer in your health system.

Empowering you to measure, understand and continuously improve the outcomes that matter to patients.

Book a demo → See the platform
PAIN SYMP ADL SPORT QOL +47 AVG Δ Baseline 12 mo
KOOS · multi-dim
0 50 100 0 12 26 52 WEEKS POST-OP 84 AT WK 52
KOOS-PS · recovery
NORMAL 0 5 10 Pre 3mo Y1 Y2 Y3 FOLLOW-UP −71% VS BASELINE
Dysuria · 3-year

Healthcare organisations can't improve what they don't measure.

We build the outcomes intelligence layer to change that.

Identify and scale excellent care

Benchmark outcomes across services to uncover high-performance models of care and replicate success at scale.

Focus on outcomes that matter to patients

Capture meaningful patient-reported outcomes and experiences (PROMs & PREMs) to keep care centred on what matters most.

Reduce costly, wasteful services

Use real-world outcomes data to identify low-value care, reduce variation, and improve resource allocation.

Enable data-driven quality improvement

Turn outcomes into actionable improvements that deliver measurable clinical and operational impact.

The Clinician Platform · TCP

The value based care engine for modern health systems

TCP connects clinical systems to the people they serve — capturing, analysing and acting on the patient-reported data that defines real outcomes, across the entire care pathway.

Explore the platform → Care Pathway Library
What we deliver

Pathways, not products.

Deploy globally validated patient care pathways in weeks, or co-design new ones with our team — every one built around the outcomes that matter to your patients and your business.

Example pathway Transplant patient journey
Pre & peri-transplant Post-transplant

Continuous learning and responsiveness to the individual along the entire care journey.

A library of validated pathways

ICHOM-aligned, evidence-based pathways ready to configure for your population.

Hip & knee Heart failure Parkinson's Maternity Depression & anxiety Diabetes Dialysis Surgery waitlist Referral triage + 50 more

Or design new ones with our team

For conditions, populations or programmes that need a tailored approach — co-designed and deployed on the same platform.

Co-design
Configure
Deploy
Measure
Proof of scale & reach

The numbers behind the platform.

8.2m
Patients
2,600
Clinicians
350
Projects
5
Continents
How we deliver

Vendor-led to client-led, in three phases.

A delivery model designed for health systems that want to own their outcomes program — not rent it.

Partnering for success

Teaming with partners who understand the road to VBHC.

From global standards to clinical systems integration — the partner ecosystem behind every TCP deployment.

Strategic partner · Standards

International Consortium for Health Outcomes Measurement

Recognised implementation partner Accreditation support Standard sets deployed

The Clinician is a long serving ICHOM partner that supports organisations worldwide in their ICHOM accreditation process.

  • Deploy any ICHOM Standard Set on TCP, configured to your population
  • Co-design implementation against ICHOM accreditation criteria
  • Track and report on accreditation milestones across your programme
Newsweek World's Best Hospitals 2026, powered by Statista
ICHOM accreditation strengthens a hospital's ability to systematically measure and act on patient-reported outcomes (PROMs), directly aligning with the increasingly weighted PROMs and value-based care criteria used by Newsweek and Statista's World's Best Hospitals ranking.
Industry partners
ICHOM Accreditation
Australasian Institute of Digital Health
AWS Partner Network
Google Cloud
Magentus
Microsoft Solutions Partner
About us

A team built across the regions we serve.

Strong technology team. Solutions-focused engagement team. Distributed across the markets where our clients deliver care.

Contact us

Sales · Partnerships · Support · Regional contact list.

Get in touch →

Connect

Where we are

Three hubs. Seven countries.

Operating teams across New Zealand, Singapore, and Australia — with representations across the Middle East, Europe, and North America.

Hub Representation
Headquarters
New Zealand

84 Newton Rd
Eden Terrace
Auckland 1010

0800 102 647
Asia Hub
Singapore

65 Chulia Street
#38-02/03 OCBC Centre
049513

+65 3129 2919
Plus representations in
  • United States
  • Saudi Arabia
  • United Kingdom
  • Israel
Built for the enterprise

The platform behind the pathways.

TCP doesn't replace your EMR or PAS — it sits alongside them as the patient-reported measures and outcomes intelligence layer. Built to slot into your existing systems of record: integrating cleanly with the systems you already run, configurable to local clinical workflows without code, secured to the standards governance bodies expect, and proven at the scale public health systems demand.

Book a demo → Talk to us
Capabilities

Five things every enterprise asks us about.

Interoperability

API-driven architecture aligned with HL7 FHIR (including SMART-on-FHIR), HL7 v2.x, openEHR and DICOM. Clinical terminology across SNOMED CT, LOINC, ICD-10 and RxNorm. An OMOP Clinical Events API ingests visits, procedures, drugs and observations to trigger pathway logic in real time.

Production integrations with Epic, Altera and Magentus. EHR iframe embedding via signed tokens.

Configurability

A no-code Form Builder for digital PROMs and PREMs, a Patient Pathway Editor for multi-stage care journeys, and a configurable alert engine triggered by patient-reported thresholds. Pathways adapt dynamically — moving patients between monitoring frequencies based on reported symptoms — without engineering changes.

White-label branding. Patient interface in 20+ languages, including right-to-left scripts.

Access Control

Integrates with your organisation's Active Directory to mirror existing roles and permissions — or extend them with TCP-specific scopes where the platform needs finer-grained control. Group-and-role-based access enforced within an organisational hierarchy defined per deployment. PII can be restricted by health service: clinical teams see their own patients identifiably, while cross-organisational users see aggregated, anonymised data only.

Two-factor authentication. Full audit trail across authentication, authorisation and data access.

Scalability

Cloud-native architecture on Kubernetes, designed to scale horizontally with patient volume and clinical user growth. Multi-tenant isolation enforced at the API boundary on every request. Cloud-agnostic by design.

State-wide deployment scaling toward 5,000 clinicians and 1M+ patients in South Australia. The only third-party system operating across Singapore's Ministry of Health firewall.

Trust & Compliance

ISO 27001 certified information security management. HIPAA-compliant data handling and GDPR-aligned privacy controls. Encryption at rest and in transit across all services. Secrets managed under least-privilege, unique-per-service, revocable principles with auditable access.

Aligned to global health data governance standards. Auditable end-to-end.
Certified, compliant, and built on global health data standards
SOC 2 Compliance HL7 FHIR GDPR HIPAA Compliant ISO 27001 Certified LOINC from Regenstrief MSSS-DGTI Bureau de certification
See the platform

Six views of TCP in action.

A clinician-facing platform, a patient-facing app, and the configuration tools that connect them — across mobile, tablet, and desktop, in 20+ languages.

Patient engagement — The Clinician Platform

Patient engagement

Multilingual web app — no app store download required. PROMs, PREMs, and symptom checks captured on any device, scored automatically.

Provider portal — The Clinician Platform

Provider portal

Central hub for clinical teams to track patient milestones, monitor outcomes, and surface alerts across the full pathway.

Symptom analytics — The Clinician Platform

Symptom analytics

Configurable individual- and population-level analytics with banded clinical thresholds for real-time triage and quality improvement.

Alert dashboard — The Clinician Platform

Alert dashboard

Threshold-triggered alerts with priority routing, assignee management, and predefined action types for proactive clinical response.

Multilingual & accessible — The Clinician Platform

Multilingual & accessible

20+ languages including right-to-left scripts. Dark mode, adjustable text size, and accessibility controls built into every patient touchpoint.

No-code configuration — The Clinician Platform

No-code configuration

Drag-drop Form Builder for validated digital PROMs and a Pathway Editor for multi-stage care journeys. Clinical teams own the build, not engineers.

Want to see it running on your data?

We can stand up a sandbox with your pathway, your branding, and your terminology in under two weeks. Book a 30-minute walkthrough with the team.

Book a demo → Talk to us
The Clinician Platform

The platform built for outcomes-led care.

A configurable platform that captures, analyses and acts on patient-reported and clinical data — built to run pathways at scale, integrate with the systems you already use, and turn outcomes measurement into operational reality.

Book a demo → Talk to our team
Two sides of the platform

One platform, both sides of the care journey.

Clinical applications for the teams delivering care. Patient applications for the people receiving it. Connected by a single intelligence layer.

For the teams delivering care

Real-time visibility of patient-reported outcomes, deterioration signals, and pathway adherence — surfaced into the clinical workflow where decisions are actually made.

  • Longitudinal outcome trajectories with MCID benchmarking
  • Risk-stratified patient lists and deterioration alerts
  • Service and cohort-level benchmarking dashboards
  • Outcomes returned to the EMR via FHIR
How it works

Built around the care pathway.

Every TCP deployment runs on a structured pathway — a sequence of touchpoints where data is captured, content is delivered, and outcomes are measured.

Patient-side capture & delivery Clinical system events

Defined touchpoints

Configurable per pathway, per population.

Bidirectional data flow

Patients to clinicians, clinical systems to patients.

Outcome-anchored

Every touchpoint serves a defined endpoint.

Platform capabilities

Four capabilities. One platform.

Everything you need to operate outcomes measurement at scale — without stitching together a stack of point tools.

Configurability

No-code design of pathways, forms, dashboards and workflows.

Data capture

PROMs, PREMs, clinical data, remote monitoring. Structured and unstructured. Multilingual.

Intelligence

Analytics, benchmarking, alerts, reporting. Cohort, service and individual views.

Engagement

Multilingual patient communication, education, accessibility, omnichannel delivery.

Adaptive pathway design

Enterprise-grade flexibility without enterprise-level complexity.

Dynamic data collection

Collect PROMs, PREMs, clinical, and remote monitoring data in one connected workflow.

Scalable patient engagement

Sustain long-term participation through personalised, multilingual patient engagement.

Actionable outcomes

Surface risks, trends, and variation in real-time across patients, cohorts, and services.

AI-native configuration

Configure new pathways yourselves —
with an AI consultant on call.

Your team builds new pathways without us in the room. RAI sits alongside as expert support — typed, spoken, or both. Built outside TCP as a companion application; ships configuration straight in.

Structured forms

Fill in the standard building blocks step by step. Self-explanatory templates for teams who want full manual control.

Inline AI-assist

Each step has an AI helper that drafts, suggests, and completes fields based on your inputs. You stay in control; RAI saves you keystrokes.

Chat with RAI

Open the Analyst panel and describe your project in plain language. RAI interviews you like an experienced consultant and configures as you talk.

Early access

Live Voice with RAI

Same conversation, spoken. RAI talks you through each decision in real time. Currently in preview while we tune accent handling.

RAI
RAI · Analyst
Configuring · Lung Cancer Pathway
RAI: What's the post-op cadence for KOOS — fixed weekly intervals, or anchored to surgery date?
Anchored. Surgery + 6w, 3m, 6m, 12m, 24m.
RAI: Got it. I'll set a track milestone at each anchor and a notification 24h before. Want a reminder if a patient misses a window?
Yes — 48h after, then escalate to clinician at 7d.
Type to configure, or hold to talk…

What gets configured

Fifteen wizard steps, mapped one-to-one to TCP's underlying schema. No exports, no rework — configuration ships straight in.

01Project settings 02Patient auth 03Variables 04Questionnaires 05Tracks 06Milestones 07Notifications 08Message templates 09Template bindings 10In-app content 11EAPP rules 12Dashboards 13CSV schemas 14Integrations 15Roles & security

Form Builder mode also available for standalone surveys, outside the Project Wizard.

See it in action → Request a guided walkthrough
Designed to scale

From a single service to an entire nation.

The same platform runs a single clinical service, a multi-site network, or a national outcomes programme. Multi-tenant by design.

Multi-tenant

Isolated workspaces per site or programme.

Role-based access

Granular permissions across roles and regions.

Multi-language

Patient and clinician interfaces in 20+ languages.

National scale

Performance tested to population scale.

Integration

Works with your stack, not around it.

TCP integrates with the clinical systems you already run — capturing what they can't, and returning outcomes to where decisions are made.

Capability

FHIR-native · HL7 · REST APIs · SSO/SAML · 30+ EMR integrations including Epic, Cerner, Oracle Health, Allscripts.

Use case

Cabrini Health — ICHOM Colorectal Cancer Set integrated with the Cabrini Monash Colorectal Neoplasia Database.

Security & compliance

Built for the most regulated environments in healthcare.

Data security, patient privacy, and regional sovereignty — engineered into the platform, not bolted on.

ISO 27001 Certified
SOC 2 Compliance
HIPAA Compliant
GDPR
MSSS-DGTI
Regional regulatory alignment: PDPL (KSA) SDAIA

Data residency

Regional hosting in KSA, GCC, EU, AU, US, Canada, SG.

Consent management

Patient consent captured and auditable.

Audit logging

Full traceability across the platform.

See the platform.

Book a demo, talk to our team, or request the security pack for procurement review.

Book a demo → Talk to our team Request security pack
Legal

Last modified: 10 March 2026

The Clinician is committed to respecting and protecting the privacy of the individuals and organisations who use our services. The Clinician ('we', 'us' or 'our') means The Clinician Holdings Limited and its wholly owned subsidiaries.

The purpose of this Privacy Policy (the 'Policy') is to inform you how information may be collected from you and how it may be used and protected by us. This Policy applies across all websites we own or operate and all services we provide, including the websites and apps we offer, which for the purposes of this Policy will collectively be referred to as our 'Services'. Accordingly, this Policy is intended for all users of our Services, including our customers and the affiliates of our customers (such as our customer's employees and patients). However, this in no way means we are responsible for the privacy or data security practices of our customers and how they use our Services.

We keep our privacy notice under regular review to ensure it is up to date and accurate.

By using any of our Services you agree to this Policy. If you do not agree, you may and should not use our Services.

Definitions

Personally Identifiable Information (PII)
Information which relates to an individual who is identifiable or reasonably identifiable from that information alone or with other information that is either present or accessible by us.
Personal Health Information (PHI)
Health information pertaining to individuals comprising identifiable and sensitive data.
Aggregate data
A dataset containing multiple records from same or different individuals and can be personally identifiable, deidentified or anonymised.
Deidentified data
A dataset stripped of personally identifying identifiers (e.g. national identifiers, insurance numbers etc.) and data elements (e.g. date of birth, address, email, phone numbers etc.) which can be used to re-identify individuals. However a mapping exists elsewhere to match records to such identifying information so re-identification is possible.
Anonymised data
Same as deidentified data except a mapping doesn't exist so it is not possible to re-identify individuals using reasonable computing resources, know how and availability of additional data which can be linked.
Derived data
Data and information that is derived from your, or any of our clients' use of our Services (in combination with similar data and information obtained from any of our other clients) and is anonymised and aggregated so that the identity of any client or patient cannot be ascertained from any disclosure by any third party.

How we collect your information

The ways in which we collect your personal information can be broadly grouped into:

Information we collect directly from you

When accessing and using areas of our Services, we may ask you to provide personally identifiable information, for example when you register for a free demo, subscribe to our Services, contact us with questions or request support. This PII may include, but is not limited to:

  • Name
  • Contact information (including email address and phone numbers)
  • Position (i.e. if acting on behalf of a company, your role at this company)
  • Billing and purchase information

If you are accessing our Services through one of our customers (such as your health provider), we may collect identifiable personal health information from you which may relate to any of the following:

  • your past, present or future physical or mental condition;
  • your past, present or future experience of healthcare treatment; or
  • your past, present or future payment for healthcare treatment.

We collect and use this information only for the purposes of providing the Services requested by our customers (i.e. your health provider). As part of these Services we may share the PHI you provide us with your health provider, this may be as personally identifiable or deidentified analytics and reports.

You are not required to provide us with any of your personal information, but doing so may mean we cannot provide you with all or some of our Services.

Information we collect automatically

We collect some information from you automatically when you access and use our Services. This information may be collected through cookies, log files, audit logs and other tracking technologies and may include details of your visits and use of our Services (e.g. timezone, preferred languages) and details regarding the device you use to access our Services (e.g. browser type, IP address).

We collect this information to help us understand how our Services are used by you so that we can continue optimising those Services to better cater to you.

You may opt-out from the collection of cookies by managing your cookie settings on your web browser however, doing so may impact the functionality of our Services.

Information we collect from other sources

If you are an affiliate of one of our customers (i.e. a patient or employee) we may collect your personal data from that customer at their discretion. We collect and use this data only to facilitate the provision of the Services our customer has requested. By providing us your personal data, our customers represent they have the authority to do so, and where required have obtained your necessary consent, and acknowledge that it may be used in accordance with this Privacy Statement.

How we use your information

We use your personal data for the purpose of operating, improving and providing you our Services. Depending on how you access or use our Services, this may include the following:

Provision of Services: to enable you access and use of our Services, including the various applications provided through The Clinician Platform. For example, this may include:

  • user registration emails/SMS for setting up accounts
  • survey invite links sent via SMS/email to patients

Communication: this may include,

  • providing you with information regarding our Services, such as instruction manuals or any updates to our Services (including security updates)
  • operational communications, such as informing you of changes to our terms, conditions, or policies, and other administrative information
  • marketing communications relating to The Clinician Platform or other The Clinician and third party products or services we think you may be interested in

SMS Communications: Where we communicate with you via SMS, messages may be sent using the alphanumeric Sender ID "MyClinician". These messages may include account registration notifications, survey invitations, and other service-related communications. Message frequency varies depending on your care programme. To opt out of SMS communications, contact your care provider directly.

Analysis and reporting: we may use deidentified personal data of you and other users' of our Services (whether obtained directly or from third parties (including our customers)) in analysis, to produce aggregated and anonymised analytics and reports, which we may share with our customers. If you are a patient of one of our customers, we may also use your deidentified personal data to produce personally identifiable analytics and reports which will only be shared to our customers with limited access at their discretion (i.e. to your care team or other authorised users).

Optimising and expanding our Services: we may use your personal data and more specifically technical information collected through tracking and monitoring your use of our Services, for improving your user experience and providing you with new or enhanced features throughout our Services.

Product development: we may use Derived Data, that is anonymised and aggregated for the purposes of:

  • generating analytical data for our internal research and development, to conduct statistical analysis and identify trends and insights; and
  • benchmarking, product improvement, product development and any other lawful purpose.

Support: to assist you with the resolution of technical issues or other issues relating to our Services and to assist you with any questions or inquiries relating to our Services, including the correction of personal information.

Protect: to detect, prevent and address any fraudulent, malicious or other activity which does not comply with our marketing website's terms of use or other terms entered into upon agreement for the use of our Services. If we believe necessary or appropriate, we may disclose your personal data in the following circumstances:

  1. as required under applicable law, including laws outside your state or country of residence;
  2. to comply with legal process;
  3. to respond to requests from public and government authorities, including public and government authorities outside your state or country of residence;
  4. to enforce our terms of use or other terms entered into upon agreement for the use of our Services;
  5. to protect our operations or those of any of our affiliates;
  6. to protect our rights, privacy, safety or property, and/or that of our affiliates, you or others; and
  7. to allow us to pursue available remedies or limit the damages that we may sustain.

We will only retain your personal data for as long as we have a legitimate interest to do so. This includes for as long as we reasonably believe necessary to fulfil any Services we have been requested to provide, comply with any laws or regulations, resolve disputes or enforce any of our agreements.

Sharing of Information

At times we may share your personal data with the following third parties:

  • third party service providers who assist and enable us to support delivery of our Services to our customers and users
  • regulators, law enforcement bodies, government agencies, courts or other third parties where we believe it's necessary or appropriate to comply with applicable laws or regulations, to exercise, establish or defend our legal rights, or to prevent or lessen serious threats to the health or safety of individuals. Where possible and appropriate, we will notify you of this type of disclosure
  • any other third parties where we have your consent

The Clinician does not disclose any personal health information to any third party we have not specified within this Policy without your authorisation, unless required by law or is necessary to prevent or lessen a serious threat to public health or safety or the health and safety of you or another individual.

International Data Transfers

To facilitate the provision of our Services, we may transfer, store or process your personal data in locations outside of your jurisdiction — including locations where our data hosting provider's servers are located. Data protection laws in countries where your data is transferred may differ from those of your jurisdiction. When transferring data, we will follow applicable data protection laws and standards specified in agreement with our customers.

For individuals in the European Economic Area (EEA), your personal data may be transferred outside of the EEA. We will only transfer your personal data outside the EEA in accordance with the requirements of the General Data Protection Regulation (GDPR). For instance, we will only transfer EEA personal data to jurisdictions identified by the EU Commission as providing adequate protection or will complete the transfer subject to appropriate safeguards under the GDPR.

Protection of Information

The Clinician is committed to protecting the security and privacy of your information through all levels of collection, processing, transmission, and storage. In achieving this, The Clinician maintains an information security management system (ISMS) which complies with the policies, procedures and forms required by the industry information security standard ISO/IEC 27001:2013. This is reflected by our ISMS being ISO/IEC 27001:2013 certified.

We keep your information safe by implementing strict data security practices to prevent unauthorised access, use, disclosure, alteration or deletion of any and all information collected and stored in our systems. We use industry standard encryption for storing (AES 256 bits) and transmission (TLS 1.1 and TLS 1.2) and limit access to only authorised users. However, under this Policy you acknowledge, that no such effort can completely guarantee the security of the stored or transmitted data and that breaches of security are still possible regarding both our systems and that of a third party's systems (for example, ISP's and hosting services providers). For this reason, we do not warrant or ensure the integrity and security of the data stored in our or a third party's systems, including without limitation your information.

Your Privacy Rights

If you have voluntarily provided personal information, you are entitled to the following rights over your information:

  • request confirmation that we do indeed hold any personal information regarding you;
  • request access to the personal information we hold about you;
  • request the correction and/or deletion of your personal information;
  • request information regarding how your personal information has been used or disclosed within a year from the date of your request; or
  • withdraw consent to the holding, use, processing, or disclosure of your personal information.

If you would like to exercise your rights, please contact us using the contact information set out in the How to Contact Us section below.

GDPR Notice

General Information — Responsible Person

Terence Ng, Director of Security and Compliance, terence@theclinician.com, +65 8777 7188 has been assigned responsibility for overall oversight of The Clinician Holdings Ltd's GDPR compliance program.

Data Protection Officer

The Data Protection Officer (DPO) shall have the responsibilities set forth in this Policy and GDPR Article 39. The DPO is tasked with daily and ongoing oversight and management of The Clinician Holdings Ltd's GDPR Compliance Program, which includes the following responsibilities:

  • Monitoring The Clinician Holdings Ltd's internal compliance with GDPR
  • Providing guidance at the earliest stage possible on all aspects of data protection
  • Keeping The Clinician Holdings Ltd stakeholders appraised of changes to GDPR and other relevant laws and regulations
  • Assisting the controller or processor in monitoring internal compliance with the Regulation
  • Maintaining inventories of all personal data stored on behalf of the data controller or processor
  • Responding to security, privacy, and data access requests and complaints from data subjects
  • Managing data security and critical business continuity issues that could impact personal data
  • Providing guidance on data protection impact assessments (DPIA)
  • Cooperating with the supervisory authority as needed

The Data Protection Officer is: Terence Ng, Director of Security and Compliance, terence@theclinician.com, +65 8777 7188

Article 27 Local Representative

EU Representative: Instant EU GDPR Representative Ltd, Adam Brogden, contact@gdprlocal.com, +353 15 549 700, Ireland

Subject Access Request (SAR) Policy — GDPR

This policy outlines how you can exercise your rights under the General Data Protection Regulation (GDPR) to make a Subject Access Request (SAR).

What is a Subject Access Request (SAR)?

A Subject Access Request (SAR) allows you to request access to the personal data we hold about you. This includes information about how we collect, process, and store your data. SARs are an essential part of your data protection rights and allow you to verify the lawfulness of our data processing activities.

Making a Subject Access Request

  1. Identity Verification: To ensure the security of your data, we require you to verify your identity. You can do this by providing a copy of a valid identification document (e.g., passport, driver's license) along with your SAR.
  2. Submit Your Request: You can submit a SAR by sending an email to support@theclinician.com. Please provide as much detail as possible to help us locate and provide the requested information.
  3. Information Required: In your SAR, please include your full name and contact details, a description of the personal data you are requesting, and any relevant time periods or specific details to help us locate your data.

Response Time

We will respond to your SAR without undue delay and within one month of receiving your request and verifying your identity. In some cases, particularly if your request is complex, we may require an additional two months to respond, but we will inform you of any such extension.

No Fee

In most cases, we do not charge a fee for fulfilling a SAR. However, if your request is manifestly unfounded, excessive, or repetitive, we may charge a reasonable fee or decline to respond. We will inform you of any charges before proceeding.

Exemptions

Please be aware that certain exemptions may apply under the GDPR, which might prevent us from fulfilling your SAR. These exemptions include cases where fulfilling the request would adversely affect the rights and freedoms of others or where the data is subject to legal privilege.

Changes to the Privacy Policy

This Policy may be revised from time to time at our sole discretion. When the Policy was last updated will be reflected by the date at the beginning of this document. You should visit this page regularly to ensure you have read and understand the latest version. Continuing to use our Services continues your acceptance of any changes.

How to Contact Us

If you have any questions or concerns regarding this Privacy Policy, or would like to exercise your rights over your personal data, please contact us using the following contact information.

Appendix A: Privacy Notice for Swiss Residents

This Notice outlines how The Clinician processes personal data of Swiss residents in compliance with the Swiss Federal Act on Data Protection (FADP) and the Swiss Data Protection Ordinance (DPO).

Data Protection Principles Under FADP

FADP is underpinned by six important principles that The Clinician adheres to. These principles require that personal data must: be processed lawfully; be processed in good faith and proportionately; be collected for a specific purpose that the data subject can recognise, and may only be further processed in a manner that is compatible with this purpose; be destroyed or anonymised as soon as they are no longer required for the purpose of processing; be accurate and kept up to date; if processed with consent as a lawful base, the consent is given voluntarily for one or more specific instances of processing based on appropriate information.

Legal Basis for Processing

The Clinician relies on the following legal bases for processing: your consent, performance of a contract with you, compliance with a legal obligation, protection of your vital interests, our legitimate interests (provided they do not override your fundamental rights and freedoms), public interest or exercise of official authority.

Your Rights Under FADP

As a Swiss resident, you have the following rights regarding your personal data:

  • Right of access to personal data
  • Right to data portability
  • Right to personal data deletion or destruction
  • Right to personal data rectification
  • Right to personal data processing prohibition
  • Right to personal data non-disclosure
  • Right to be informed of measures taken

To exercise these rights, please contact us at claire.smart@gillespiemanners.com. We will respond to your request within 30 days.

Third-Party Services and Data Transfers

Sub-processor: Amazon Web Services — Cloud storage. Data transfers to AWS are protected using Standard Contractual Clauses (SCCs) and other appropriate safeguards in line with the Swiss FADP. AWS also maintains ISO/IEC 27001 certification and implements strong technical and organisational security measures. Privacy reference: aws.amazon.com/privacy.

Swiss Representative

Under Article 14 of the FADP, we have appointed a Swiss Representative to act as our data protection agent: Elite Med Group — Adam Brogden, contact@gdprlocal.com, Tel +41 78 229 72 57, Via Luigi Lavizzari 4, 6850 Mendrisio, Switzerland.

Legal Protection

Data subjects have the right to enforce their data protection claims through legal channels or to lodge a complaint with the Federal Data Protection and Information Commissioner (FDPIC). In the case of projects financed by cantons or municipalities in Switzerland, the cantonal data protection commissioners are responsible in some cases.

Legal

Last modified: 27 October 2020

1. Acceptance of Terms and Conditions

The Clinician Holdings Limited ("The Clinician", "we", "us", "our") owns and operates theclinician.com website and all other related services, including websites and apps offered through The Clinician Platform (collectively, our "Services").

Acceptance: Your access and use of our Services is governed by the following terms of use and The Clinician's Privacy Policy (together the "Terms"). Please read the Terms carefully. By accessing and using our Services, you agree to be bound by the Terms. If you disagree with any of these terms and do not wish to be bound by the Terms, please do not use our Services.

Additional Terms: You may be required to agree to additional terms and conditions for particular Services that we may make available to you from time to time and we will provide any additional terms and conditions prior to being able to access those particular Services. Any such additional terms and conditions are to be read in conjunction with these Terms. To the extent of any inconsistency between these Terms and any additional terms and conditions for particular Services, the additional terms and conditions will prevail in relation to the particular Services.

Changes: These Terms may be revised from time to time at our sole discretion. You should regularly check to ensure you have read and understood the latest versions of our Terms, as continuing to use our Services deems your acceptance of any changes. If we have provided you with additional terms and conditions for particular Services, from time to time at our discretion, we may update and provide you with updated terms and conditions. When this occurs, we will ask you to accept the updated terms and conditions and if you do not accept you may no longer be able to access the particular Services.

Eligibility: By accepting these Terms and accessing our Services, you are confirming to being over 18 years of age and therefore, eligible to give your explicit consent. If you are less than 18 years of age, you must have your parent or legal guardian's permission to accept the Terms and access our Services.

2. Intellectual Property Rights

Existing IP: You acknowledge and agree that all material on our Services, including text, graphics, trademarks, images, videos, source code, design, layout, experience, "look and feel" and any other functionalities or information across our Services (collectively, the "Content") is owned by The Clinician and is subject to copyright and other intellectual property rights. You agree to not copy, reproduce, republish, upload, transmit, distribute, store, or modify the Content in any form without prior written consent from The Clinician. If you wish to use any piece of Content in any way described, please contact us using the contact information set out in the How to Contact Us section below.

User Content: You may provide data to us through our Services, such as data which relates to you, patients, employees, your organisation or other third parties (collectively "User Content"). By providing User Content to us you represent and warrant that you own all right, title, and interest in the data including but not limited to, copyrights, trademarks, and rights of publicity contained therein, or have obtained all necessary permissions for providing such data. You further represent and warrant that you have made all necessary disclosures and obtained all necessary permissions in order for our Services to access and process the User Content in accordance with that required by all applicable laws, including but not limited to, laws applying to privacy, personal health information, and intellectual property. You and individuals will maintain ownership of all User Content. However, you agree by providing User Content that you grant us a royalty free, perpetual, transferable and sublicensable license without geographical or other restrictions, to access, use, process, copy, upload, transmit, distribute, store and modify User Content as reasonably necessary to provide, maintain, update, or improve our Services. We will not exploit personally identifiable information in any way, nor share it with third parties other than is agreed in writing or required by law.

New IP: In using our Services new IP may be created. In general its ownership and licensing will follow these principles:

  • If the new IP requires our Services (i.e. The Clinician Platform), such as any improvement or addition of new features to The Clinician Platform which may be applicable to our other customers, the ownership and licensing belongs to us unless otherwise agreed in writing. However, we will grant a royalty free, perpetual, non-transferable license to you, to use such IP for non-commercial purposes, including use in care delivery, research, teaching and policy making, within the scope of any agreement you hold with us.
  • If the new IP does not require our Services, such as new IP which relates to or is the result of analysing your data, especially clinical, administrative and financial insights, its ownership may belong to you or may be assigned to you, given you cover the full costs of generating that IP. In these circumstances, you agree to grant us a royalty free, perpetual, transferable and sub-licensable license to use the IP commercially without geographical or other restrictions.

Where any uncertainty or disagreement exists over the ownership and licensing of new IP, you agree to not use such IP for any commercial purposes until both parties reach an agreement in writing which allows you to do so.

3. Use of our Services and Content

Wrongful use: In accessing and using our Services, you agree to not take any action which may cause undue inconvenience, disruption or offence to The Clinician and its users, or that may disturb the performance, availability or security of our Services. You must not introduce viruses, malicious software, malicious code or any other material technologically harmful to the Services. You must not copy, store, transmit or use our Services in any way that is linked to technologically harmful activity. You must not try to gain unauthorised access to the Services or our systems in any way. You may use the Services only as permitted by law, meaning you must not take any action deemed unlawful, illegal or fraudulent, and we may suspend or cease providing access to you at any time if you do not comply with these Terms. Unlawful use of the Services will be reported to relevant law enforcement authorities and any information collected about you will be shared with such authorities.

Modification of Content: We are continually updating and modifying our Services to improve their functionality and better cater to our users. In using our Services, you agree The Clinician has the right to add, suspend or remove any Content or functionalities at any time.

Removal of Content: If you wish for any Content to be removed from our Services, please contact us using the contact information set out in the How to Contact Us section below, and provide details of the Content with your reasoning for its removal.

4. Third Parties

Our Services may contain links to or material of third parties not owned by The Clinician and/or advertising not related to The Clinician (collectively, "third party content"). Any third party content, including the linked websites of third parties, that appears on our Services is not prepared or controlled by The Clinician; it is provided for convenience only and does not imply The Clinician checks, endorses, approves, investigates or agrees with any third party's website or material. If you visit a linked website or contact an advertiser, that dealing will be solely between you and that other website, advertiser, or party at your own risk. To the fullest extent permitted by law, The Clinician disclaims any and all liability in respect of use of any third party websites or services our Services link to, unless we specifically state otherwise.

5. Liability

Limitation of liability: To the fullest extent permitted by law:

  • All warranties, representations and warranties (whether express, implied or statutory) are excluded, including without limit, suitability, satisfactory quality, fitness for purpose, compatibility, non-infringement, accuracy, security or completeness of a Service or its Content; and
  • The Clinician will not be liable for any damage, loss or expenses, or indirect losses or consequential damages of any kind, suffered or incurred by you in connection with your use and access to our Services.

Content: While The Clinician makes every endeavour to keep all Services and our Services' Content as up to date and accurate as possible, we do not provide any guarantees for its accuracy, completeness, availability, timeliness or reliability. The Clinician also does not provide any guarantees that Services and Content will always be safe, secure or error-free, or that they will function without disruption, delays or imperfections.

Information not Professional Advice: Our Services may contain general information relating to medical and physical conditions, treatments, or public or private health issues. The information provided across our Services is not intended or implied in any way to serve as medical or professional advice, and therefore should not inhibit or be used in replacement of appropriate and timely provision of medical or professional health care advice or services by a qualified health professional. You acknowledge that you have sole responsibility for ensuring your health and wellbeing by consulting a qualified health professional for any questions you may have. You must not disregard professional advice or delay in seeking advice or treatment based on the information contained across our Services or a third party's appearing on our Services.

6. Your Information

Your Information: For the purpose of these Terms "your information" means any information that relates to you and is collected through our Services directly from you or indirectly from your healthcare provider, including any technological information automatically collected from your devices.

Collection of Information: When accessing our Services we may collect personal information about you and process the data in accordance with our Privacy Policy. By accessing and using our Services you consent to these Terms.

Transmission of Information: No transmission of data over the Internet can be guaranteed as totally secure. Whilst we strive to protect such information, we do not warrant and cannot ensure the security of the information you transmit to us. Accordingly, if you choose to provide information (such as personal information) through the Services, it is done so at your own risk. For further information regarding the security of your information on our systems, please see below.

Provision of Personal Information: If you provide personal information through our Services, you agree to only provide information that is your own unless you have authorisation from the individual concerned. You agree to provide accurate, current, complete and relevant information, that is not misleading. If at any time the personal information you have provided no longer meets the specifications described, you acknowledge your responsibility to request the correction of the information we hold by contacting us using the contact information set out in the How to Contact Us section below.

7. Termination or Suspension of Access

Our Operations: From time to time at our discretion we may suspend your access to our Services for any of the following reasons:

  • to carry out maintenance services that we consider necessary for the proper functioning of our Services;
  • to carry out modifications or updates to our Services;
  • in the event of a security breach or for any reason where we consider suspending access is necessary for preserving data and integrity; or
  • if our servers, including the serving computers, hardware and operating systems necessary to operate and support our Services, malfunction.

If your access to our Services is suspended for any of these reasons, this suspension will continue until the action has been carried out, the problem or breach rectified or until otherwise agreed in writing between the parties.

Your Use: We also reserve the right to terminate or suspend your access to our Services indefinitely and without refund or compensation, at any time if we reasonably believe you are using, intend to use or have used our Services in a manner we reasonably deem inappropriate or which breaches these Terms or any additional terms and conditions entered into by you with The Clinician. If your access is suspended for these reasons, this suspension shall continue until the matter is resolved with agreement in writing between the parties.

No Liability: We will not be liable to you, your affiliates, or any third party for any damage, loss or expenses, or indirect losses or consequential damages of any kind, suffered or incurred by you as result of our suspending or terminating your access to our Services for the reasons stated here, given we have determined those on a reasonable basis.

8. Security

Your Device: You are entirely responsible for the security of your own personal device and other internet connected devices (e.g. laptop, mobile, or tablet). We suggest you take measures to protect your devices from viruses and other security threats.

Passwords: Certain Services we may provide to you may require you to have a username and password to access them. The password you select should not relate to any readily accessible data such as your name, birth date, address, telephone number, driver's licence or passport. Nor should it be an obvious combination of letters and numbers, including sequential or same numbers. You are entirely responsible for maintaining the security of your username and password and for all activity which occurs on or through your user credentials, whether authorised or unauthorised. If you believe an unauthorised person knows your password or has unauthorised access to your account, you must notify us immediately and change your password as soon as possible. The Clinician shall not have any liability for your failure to comply with these obligations.

Our Systems: The Clinician's Information Security Management System has been certified in compliance with the internationally recognised ISO 27001:2013 information security standard. As part of our compliance, we implement rigorous and appropriate data security practices to prevent unauthorised access, use, disclosure, alteration or deletion of all information stored in our systems. However, under these Terms you acknowledge, that no such effort can completely guarantee the security of the stored data and that breaches of security are still possible regarding both our systems and that of a third party's systems (for example, ISP's and hosting services providers). You agree that we do not warrant or ensure the integrity and security of the data stored in our or a third party's systems, including without limitation your information.

9. Governing Law

New Zealand: These Terms will be governed by and construed in accordance with the laws of New Zealand and New Zealand courts will have non exclusive jurisdiction in relation to any matters or disputes connected with these Terms.

How to Contact Us

If you have any questions or concerns regarding these Terms, please contact us using the following contact information.