These terms and conditions (“Agreement”) set forth the general terms and conditions of your use of the disc-me.com website (“Website” or “Service”) and any of its related products (“Patient Portal”), and services (collectively, “Services”). This Agreement is legally binding between you (“User”, “you” or “your”) and this Website operator (“Operator”, “we”, “us” or “our”).
If you are entering into this agreement on behalf of a business or other legal entity, you represent that you have the authority to bind such entity to this agreement, in which case the terms “User”, “you” or “your” shall refer to such entity. If you do not have such authority, or if you do not agree with the terms of this agreement, you must not accept this agreement and may not access and use the Website and Services.
By accessing and using the Website and Services, you acknowledge that you have read, understood, and agree to be bound by the terms of this Agreement. You acknowledge that this Agreement is a contract between you and the Operator, even though it is electronic and is not physically signed by you, and it governs your use of the Website and Services.
1. Access & Intellectual Property
We grant the user during the Term a non-exclusive, non-transferable, revocable, non-assignable, non-sublicensable right to use our Services in accordance with, and solely as necessary to receive the Services contemplated under this Agreement.
Except as expressly set forth in the user agreement, the user shall not, and shall not attempt to (and shall not permit any Third Party to, or attempt to) directly or indirectly:
- Interfere in any manner with the functionality or proper working of the Website, Patient Portal, or any other Services;
- Modify, alter, tamper with, translate, repair, or create derivative works from the Website, Patient Portal, or any other Services;
- Reverse engineer, disassemble, decompile or otherwise attempt to discover the source code, object code or underlying structure, ideas or algorithms of the Website, Patient Portal, or any other Services;
- Attempt to gain unauthorized access to the Website, Patient Portal, or any other Services, or the server(s) on which they are stored or any other server, network, computer, or database connected to the Services;
- Use or make available the Services documentation for purposes other than those set forth in this Agreement;
- Sell, distribute, rent, lease, assign, sub-contract or otherwise transfer or encumber rights to the Services without the prior express written consent of the Operator;
- Use the Services in a way that could damage, disable, overburden, impair or compromise the systems or security or interfere with other users of the Services;
- Use the Services to build a product, service, or application that is competitive with any platform product, service, or application; or
- Transmit any material that is defamatory, offensive, or otherwise objectionable in relation to the Services.
The user acknowledges and agrees that any breach of the Access Limitations shall be a material breach of the user Agreement.
The content of the pages of the Website is for your general information and use only. It is subject to change without notice. Neither we nor any third parties provide any warranty or guarantee as to the accuracy, timeliness, performance, completeness or suitability of the information and materials found or offered on this website for any particular purpose.
This website contains material which is owned by or licensed to us. Reproduction is prohibited other than in accordance with the copyright notice, which forms part of these terms and conditions. Unauthorized use of this website may give rise to a claim for damages and/or be a criminal offence.
For the avoidance of doubt, this Agreement does not transfer any intellectual property whatsoever. The Operator reserves all right, titles, and interests in and to the Services, and all related Intellectual Property Rights.
2. Patient Portal & Appointment Booking
2.1 You must be at least 18 years of age to use the Patient Portal and appointment booking services. If you are booking on behalf of a minor or a dependent, you confirm that you are their legal guardian or authorised representative and accept full responsibility for the accuracy of information provided.
2.2 If you create an account on the Patient Portal, you are responsible for maintaining the security of your account and you are fully responsible for all activities that occur under the account.
2.3 We may, but have no obligation to, monitor and review new accounts before you may sign in and start using the Services.
2.4 Providing false contact information of any kind may result in the termination of your account.
2.5 You must immediately notify us of any unauthorised uses of your account or any other breaches of security.
2.6 We will not be liable for any acts or omissions by you, including any damages of any kind incurred as a result of such acts or omissions.
2.7 You are required to maintain all information requested during your registration process so that it remains true, accurate, up-to-date, and complete at all times. By registering or logging into the Patient Portal, you agree that we may collect and use your personal information, including but not limited to: your full name, date of birth, Emirates ID or national identification number, insurance information, phone number, and email address, for the sole purpose of facilitating appointment booking and identity verification.
2.8 Users shall use our Services subject to and in accordance with these Terms. You may not assign or transfer any of your rights or obligations under these Terms to any person or entity.
3. One-Time Password (OTP) Authentication
3.1 OTP Delivery. To verify your identity when accessing or booking through the Patient Portal, a One-Time Password (OTP) may be sent to your registered mobile phone number via SMS (short message service) or WhatsApp. By registering your mobile number, you consent to receiving OTP messages through these channels.
3.2 Third-Party Messaging Services. You acknowledge that OTP delivery via WhatsApp involves routing through Meta Platforms, Inc. infrastructure, which may involve processing of your phone number outside the UAE. SMS delivery is routed through licensed telecommunications operators. We do not store OTP codes beyond the duration required for authentication, and codes expire automatically. For maximum data residency control, we recommend using SMS-based OTP delivery.
3.3 Your Responsibility. You must not share your OTP with any third party. We will never ask you for your OTP via phone, email, or any other channel. If you did not request an OTP, do not use it and notify us immediately.
4. Law and Jurisdiction
4.1 Your acceptance of this agreement and terms is considered to be an approved and signed electronic signature in our electronic system and confirms the validity of this agreement, in accordance with the UAE Federal Decree-Law No. 46 of 2021 on Electronic Transactions and Trust Services.
4.2 All electronic data, the information provided, offered, submitted, presented, shared, kept, used in, or through the Services are governed in accordance with UAE Federal Decree-Law No. 45 of 2021 on the Protection of Personal Data (UAE PDPL) and its Executive Regulations, the applicable healthcare data regulations issued by the Dubai Health Authority (DHA) and/or the Department of Health Abu Dhabi (DOH), and any other applicable UAE federal or emirate-level laws.
4.3 This Agreement and these Terms and Conditions shall be governed by and construed in accordance with the laws of the United Arab Emirates and, where applicable, the Emirate of Dubai.
4.4 Any disputes relating to this Agreement and/or these Terms and Conditions shall be subject to the exclusive jurisdiction of the courts of the Emirate of Dubai, UAE.
5. Management and Operation of the Account
5.1 The user acknowledges and agrees that he/she remains exclusively liable for the management and operation of his Patient Portal, data connection, and user passwords. The user further acknowledges and agrees that the Operator shall not be held liable for any losses or damages of any kind suffered by the user as a result of his misuse of the Services.
6. Personal Data Collected
6.1 Categories of Data. For the purpose of appointment booking and identity verification only, we collect the following categories of personal data:
- Full name
- Date of birth
- Emirates ID number
- Health insurance information (insurer name, policy/membership number)
- Mobile phone number (for OTP delivery and appointment reminders)
- Email address (for booking confirmations)
6.2 No Medical Records. The appointment booking platform does not store, process, or transmit clinical records, diagnoses, prescriptions, treatment histories, or any other medical data. Any medical information you discuss with healthcare providers at DISC clinics is handled under separate clinical data governance policies.
6.3 Legal Basis for Processing. We process your personal data on the basis of: (a) your explicit consent provided at the point of registration; (b) the performance of a contract (your appointment booking); and (c) compliance with applicable UAE legal obligations. You may withdraw consent at any time by contacting us, though this may affect your ability to use the booking service.
7. Data Retention
7.1 Retention Period. We retain your personal data collected through the booking platform for a period of five (5) years from your last interaction with the Service, or as otherwise required by applicable UAE law (including any DHA or DOH healthcare regulatory retention requirements), whichever is longer.
7.2 Deletion. Upon expiry of the retention period, or upon a valid deletion request under your rights described in Section 8, your personal data will be securely deleted or anonymised such that it can no longer be attributed to you.
8. Your Data Protection Rights (UAE PDPL)
8.1 Your Rights Under UAE PDPL. In accordance with UAE Federal Decree-Law No. 45 of 2021 on the Protection of Personal Data, you have the following rights regarding your personal data:
- Right to be informed about how your data is processed
- Right to access a copy of personal data we hold about you
- Right to correct inaccurate or incomplete data
- Right to request erasure of your data where there is no legitimate basis to retain it
- Right to object to processing of your data
- Right to withdraw consent at any time, without affecting the lawfulness of processing prior to withdrawal
- Right to lodge a complaint with the UAE Data Office
8.2 How to Exercise Your Rights. To exercise any of the above rights, please contact our Data Protection contact via the Contact Us page on our website. We will respond to verified requests within 30 days.
9. Disclaimer of Information & Content
9.1 The content of the Website is not a guarantee of outcome results, so the Operator shall not be responsible for errors or omissions in reporting or explanation. No individuals including those under active care should use the information, resources, or tools contained within to self-diagnose or self-treat any health condition.
9.2 The Operator gives no assurance or warranty regarding the accuracy, timeliness, or applicability of the content.
10. Amendments
10.1 We may amend these Terms at any time at our sole discretion. If we do so, we will notify you of the modified Terms by posting on the Website and updating the Effective Date at the top of this Agreement. Your continued access and use of the Service after such modifications constitutes your acknowledgment of, and agreement to be bound by these Terms as modified.