UMBRELLA Medical Society is committed to maintaining the highest standards of data privacy and security. This Privacy Policy strictly adheres to the General Data Protection Regulation (EU) 2016/679 (GDPR) and governs the collection, processing, and protection of personal data belonging to our members, congress delegates, task force applicants, and website visitors.
To facilitate elite medical education, global workshops, and continuous medical education (CME), we collect the following categories of data:
Identity & Professional Data: Full name, medical specialty, board certification status, medical license number, hospital/clinic affiliation, and job title.
Contact Data: Email address, billing address, phone number, and social media handles (if provided).
Financial & Transaction Data: Payment history, billing details, and VAT/Company registration numbers (processed securely via encrypted third-party payment gateways; we do not store full credit card numbers).
Engagement Data: Congress attendance records, webinar viewing history on our VOD platform, task force applications, and CME credit tracking.
The UMBRELLA platform includes a real-time Case Support and peer-review forum designed for advanced clinical discussion among aesthetic specialists.
Zero-Liability Clause: Members are strictly prohibited from uploading identifiable patient data, photographs, or Protected Health Information (PHI). All clinical cases must be thoroughly anonymized prior to submission.
The sole legal liability for any breach of patient confidentiality rests entirely with the uploading physician. UMBRELLA Medical Society reserves the right to immediately delete non-compliant content and revoke membership without refund.
We process your data under the legal basis of contractual necessity, legitimate interest, and explicit consent to:
Administer your membership profile and grant access to the „Scientific Engine” (VOD library, guidelines, and forums).
Manage registration, ticketing, and logistics for our accredited global workshops and annual congresses.
Process and report your attendance to national and international accreditation councils (e.g., EACCME, CMR) for the issuance of CME credits.
Send critical administrative updates, scientific curriculum announcements, and society voting protocols.
UMBRELLA Medical Society does not sell, rent, or trade your personal data. We only share information under strict, legally binding parameters:
Regulatory Bodies: We transmit required attendance and professional data to medical councils solely for CME accreditation purposes.
Industry Sponsors & Exhibitors (Opt-In Only): During physical or hybrid events, allowing an exhibitor to scan your official delegate badge constitutes your explicit, physical consent (opt-in) to transfer your basic contact data (Name, Specialty, Email, Country) to that specific sponsor. The sponsor then acts as an independent Data Controller.
Service Providers: We share necessary data with trusted IT hosting, legal, and accounting partners operating strictly under GDPR-compliant Data Processing Agreements (DPAs).
We retain professional and transaction data for the entire duration of your active membership or as long as necessary to fulfill legal, tax, and accounting obligations (typically 5 to 10 years depending on the jurisdiction). CME records are archived perpetually to ensure members can retrieve duplicate certificates if audited by their medical board.
As a data subject, you possess the absolute right to:
Access & Portability: Request a copy of the personal data we hold about you.
Rectification: Correct any inaccurate or incomplete professional data.
Erasure („Right to be Forgotten”): Request the deletion of your profile, bearing in mind this will irrevocably terminate your membership and CME tracking without refund.
Withdraw Consent: Opt-out of non-essential marketing communications at any time via the „unsubscribe” link or your account settings.
We reserve the right to unilaterally update this Privacy Policy to reflect evolving legal standards. Continued use of our platform constitutes acceptance of these terms. For any GDPR-related inquiries or to exercise your rights, please contact our Data Protection Officer (DPO) at: umbrella.medicalsociey@gmail.com