AGFA HealthCare

Use of Health Data in Solution Development

Introduction

At AGFA HealthCare N.V., Septestraat, 27, 2640 Mortsel, (“AGFA”), a healthcare information technology company, we are committed to developing safe, reliable and secure products while respecting patient privacy and while complying with data protection laws in the markets we operate in.

We conduct our business in compliance with the Regulation (EU) 2016/679 of the European Parliament and Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation or GDPR).

The purpose of this privacy notice is to explain what health data we receive, how we use and store it and with whom we may share it.

How do we receive health data?

AGFA HealthCare receives health data from its customers, typically hospitals.

Which health data are processed, for which purpose and on which legal basis?

AGFA HealthCare receives health data in the form of patient studies, including medical images, reports and other data that drives clinical management.
We process this data to handle support requests, incidents and defect resolution and to drive the development and maintenance of safe, reliable and secure healthcare IT products. This is a contractual and regulatory obligation and a legitimate interest in the markets we operate in.

Technical and Organisational Measures

We use technical and organisational measures to protect health data from unauthorised access, modification or destruction. These include but are not limited to: storage and purpose limitation, training, data minimisation, pseudonymisation, encryption, user and access management, physical security, supplier management and Data Protection Impact Assessments (DPIA).
In addition, we have an Information Security Management System in place which is ISO 27001-certified.

Where is health data processed ?

We process health data in AGFA HealthCare support and development centres worldwide. These are located in the European Economic Area, the US, Canada, China and Australia.
The suppliers we use in these activities are primarily located in the European Economic Area or in countries with an adequacy decision from the European Commission.

Who has access to health data and to whom is it transferred?

Only the following parties have access to health data:

  • the customer (hospital) providing the health data to AGFA HealthCare for the above purposes
  • AGFA HealthCare employees and suppliers that contribute to the above processing activities

We do not transfer health data to other parties and we do not (re)use them for other purposes.

How long may we retain health data?

The retention time of records depends on the purpose:

  • For regulatory compliance this differs per jurisdiction. We maintain the records for as long as each jurisdiction requires us to do.
  • For development of safe, reliable and secure software, we maintain health data indefinitely in pseudonymised, minimised form and subject to the above technical and organisational measures.
What are your rights and how can you exercise them?
  • You have the right of access to your personal data and the right to request rectification of incorrect, incomplete or irrelevant data.
  • You have the right to object to processing of your personal data and to obtain the erasure of your personal data.
  • You have also the right to restrict processing of your personal data.
  • When processing of your personal data is based on consent, you also have at any time, the right to withdraw your consent for further processing of your personal data. You understand that the personal data that was disclosed by AGFA HealthCare prior to your request to abolish further disclosure is no longer under the control of AGFA HealthCare.
  • You have a right to request data portability.

If you have any queries about your personal data or if you want to exercise your rights, please contact us by e-mail at compliance@agfa.com or by letter addressed to our Agfa Group Compliance Office, Septestraat, 27, Room 70-03-27, 2640 Mortsel, Belgium.

Complaints

In case of disagreement relating to the processing of your personal data, you have the right to lodge a complaint with the Belgian supervisory authority (”Autorité de la protection des données” / “Gegevensbeschermingsautoriteit”) or the data protection authority of your country of residence.

Contact us
About AGFA HealthCare
Suggested for You

Enterprise Imaging cases and expertise

Yorkshire
Regional radiology collaboratives Benefits of intelligent networking
Yorkshire Imaging Collaborative
United Kingdom
ZOL
Transforming into a modern, well-respected, tertiary care center
Ziekenhuis Oost-Limburg (ZOL)
Belgium
Jeddah
A gateway to cross-site excellence
My Clinic
Saudi Arabia
AGFA
Foundations for connected care
Diagnostics and Telemedicine Center
Russia
san-gerardo
A growing demand with new requirements
San Gerardo Hospital
Italy
consolidate
Why and how to consolidate your image management with Enterprise Imaging
AGFA Healthcare
Global
VUMC
Connected images
VU University Medical Center (VUmc) & Academic Medical Center (AMC)
The Netherlands
Cody
Advancing excellence
Cody Regional Health
United States of America
AGFA
Enhancing patient care and radiologist workflow
Kind Abdullah Medical City (KAMC)
Saudi Arabia
AGFA
Clinical breakthroughs at Leeds Teaching Hospitals NHS Trust
Leeds Teaching Hospitals
United Kingdom
customer-references
Protecting patient privacy when using mobile devices for clinical imaging
Austin Health
Australia
IFO
Personalized, end-to-end care for cancer patients
Istituti Fisioterapici Ospitalieri
Italy
UZ Gent
From two IMPAX systems to consolidated image management
Ghent University Hospital
Belgium
Zuckerberg Hospital
A solution that works
Zuckerberg San Francisco General Hospital
United States of America
Healthcare
AI in radiology
Princess Alexandra hospital NHS
United Kingdom
jonkoping
A consolidated image platform, across three sites
Jönköping County
Sweden
King Faisal Specialist Hospita
Closing the loop between radiologists and clinicians
King Faisal Specialist Hospital & Research Centre
Saudi Arabia
IFO
Personalized, end-to-end care for cancer patients
Istituti Fisioterapici Ospitalieri
Italy
Sparrow Health System
Enterprise Imaging journey
Sparrow Health System
United States of America
AGFA HealthCare
Mountains prove no barrier to patient care
Azienda USL della Valle d’Aosta regional health organization
Italy
princess alexandra
How Enterprise Imaging is transforming patient care
Princess Alexandra Hospital
United Kingdom
Luxith
Go live with national medical imaging archive and XERO® Universal Viewer
Luxith
Luxemburg
AdventHealth
Advent Health’s journey to Enterprise Imaging
Advent Health
United States of America
AGFA Novant
Bringing cardiology into AGFA HealthCare Enterprise Imaging
Novant Health
United States of America
CWZ
All medical images together in one well-oiled Enterprise Imaging system
Canisius Wilhelmina Ziekenhuis (CWZ)
The Netherlands