Privacy Policy

DNA Poli is a digital healthcare platform developed and operated by a consortium of Dutch academic hospitals and research institutions. We are the data controller for personal data processed through this website and the DNA Poli patient portal.

You can reach us at: info@dnapoli.nl

Through this website we may collect:

• Contact form submissions (name, email address, message)
• Technical data such as browser type, IP address, and pages visited (via server logs)

Through the patient portal, additional health-related data is processed under a separate data processing agreement with your treating institution.

We use contact form data solely to respond to your enquiry. We do not use it for marketing or share it with third parties.

Technical log data is used to maintain the security and performance of the platform and is not linked to individual identities.

Processing of contact enquiries is based on your consent (Article 6(1)(a) GDPR) given at the time of submission. Technical log data is processed on the basis of our legitimate interest in maintaining a secure and functioning service (Article 6(1)(f) GDPR).

Contact form submissions are retained for a maximum of 12 months and then securely deleted. Technical logs are retained for 90 days.

Under the GDPR you have the right to:

• Access, correct, or delete your personal data
• Restrict or object to processing
• Data portability

To exercise any of these rights, contact us at info@dnapoli.nl.

You also have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens): autoriteitpersoonsgegevens.nl.

DNA Poli implements technical and organisational measures in line with NEN 7510 and GDPR requirements to protect personal data against unauthorised access, loss, or disclosure.

We may update this policy from time to time. The date at the bottom of this page reflects the most recent revision. Continued use of the website after changes constitutes acceptance of the updated policy.