At this point we would like to inform you about data protection when visiting our website. The protection of privacy and your personal data is important to us. We want to collect and process personal data about you only with your knowledge or consent. You will find out what information we store, if any, and for what purposes we use it. We are committed to observing data protection in accordance with the EU Data Protection Regulation (EU-DSGVO) and the Hessian Data Protection and Freedom of Information Act (HDSIG).
In accordance with the provisions of data protection law, this data protection statement provides information about the collection of data from the data subject, in particular with regard to Art. 13 DSGVO and related processing of personal data when visiting our website.
Name and address of the person responsible
The responsible party within the meaning of the General Data Protection Regulation and other national data protection laws of the member states as well as other data protection regulations is the:
Please refer to the imprint for this information.
Contact details of the data protection officer
You can reach our data protection officer at the following contact options:
The data protection officer of the data controller can be reached as follows:
Please refer to the imprint for this information.
Any data subject may contact our data protection officer directly at any time with any questions or suggestions regarding data protection.
Handling of personal data
Definition: Personal data is any information by which a person is clearly identifiable. It is therefore data that can be traced back to a specific person.
As a rule, it is possible to use our website without providing personal data. Insofar as personal data (for example name, address, place of residence or e-mail addresses) is collected on our pages, this is always done, as far as possible, on a voluntary basis. In accordance with the principle of data minimization, we only process personal data if this is absolutely necessary for the purposes described in this data protection declaration or to fulfill a purpose requested by you. Your data will not be passed on to third parties unless this is required by law and you have given us your consent.
Protection of minors
Children and young people under the age of 16 should not transmit any personal data to us without the consent of their parents or legal guardians. We do not request personal data from children, do not collect it and do not pass it on to third parties.
Access data/server log files
When visiting the website, data is collected about each access to the offer (so-called server log files). The access data includes:
We use this technical access information on the basis of Art. 6 para. 1 letter f DSGVO (legitimate interest) exclusively for statistical purposes in order to improve the attractiveness and usability of our websites and, if necessary, to detect technical problems and malfunctions on our website at an early stage. The Internet address of the terminal device you are using is anonymized after a short time by overwriting the last byte (e.g. 83.243.48.xxx). No personal usage profile is created, and the data is not passed on to third parties.
Use of the contact form/contact
You can contact us easily and conveniently via a form. When using the contact form, personal data is only collected to the extent provided by you. Insofar as the form contains mandatory fields, these are marked and explained in each individual case. All information is thus provided voluntarily and is collected directly from you as the person concerned. Transmission of this information via our contact form is encrypted.
Please note that further data resulting from the selected communication channel (contact by e-mail, telephone or mail) may be collected when processing the request.
Your voluntarily provided personal data will be stored for the purpose of processing your request as well as for any follow-up questions that may arise and for contacting you in this context. The processing of the data is based on Art. 6 para. 1 letter a DSGVO (consent). This personal data is not passed on to third parties.
The data you enter in the contact form will remain with us until you request us to delete it, revoke your consent to store it, or the purpose for storing the data no longer applies (e.g. after we have completed processing your request). Mandatory legal provisions - in particular retention periods - remain unaffected.
E-mail contact
If you contact us by e-mail, we process your personal data transmitted with the e-mail to process the request and in the event that follow-up questions arise.
The legal basis for processing the data is Art. 6 (1) letter f DSGVO (legitimate interest). There is a necessary legitimate interest to use the information for processing your request. If the data processing takes place in the context of further contact after the use of the contact form, the previous section must be observed. If the data processing is carried out for the implementation of pre-contractual measures, which are carried out in response to your request, the legal basis for this data processing is Art. 6 (1) letter b DSGVO (contract performance). We only process further personal data if you explicitly consent to this. There is no transfer of data to third parties in this context. The data will be used exclusively for processing your request.
The personal data transmitted with the e-mail will remain with us until the purpose for storing the data no longer applies (e.g. after processing your inquiry has been completed). Mandatory legal provisions - in particular retention periods - remain unaffected.
Please note that encrypted and/or signed communication may not be possible via the contact channels provided. For sending sensitive information, it is recommended to use the postal service.
Online appointment
Data protection information on Doctolib
For optimal appointment management, we use the appointment management system of Doctolib. Doctolib offers us on the one hand a modern calendar system and on the other hand our patients the possibility to make appointments with us online at https://www.doctolib.de/. Doctolib GmbH (Mehringdamm 51, 10961 Berlin) acts as a processor for us.
We use the Doctolib calendar software for all our patients to manage appointments in a uniform manner. Doctolib processes all data in accordance with all applicable data protection regulations and applies the highest security standards.
The following data is entered into the Doctolib calendar for the purpose of making appointments: last name, first name, date of birth, address, telephone number, e-mail address, primary care physician, health insurance status, referring physician, reason for visit and appointment history.
Your data will be collected for the purposes of appointment management, just as it was previously with us. The legal basis for processing your data is Art. 6 para. 1 lit. b) DSGVO (the treatment order you give us), Art. 6 para. 1 lit. a) DSGVO (consent for appointment reminders via SMS and e-mail) and Art. 9 para. 2 lit. h) DSGVO (for preventive health care purposes).
There is no forwarding of data by Doctolib to commercial providers. Doctolib is bound by the duty of confidentiality just like your doctor. A release from the duty of confidentiality is not required.
In order to reduce missed appointments, we would like to remind you of your appointment via SMS and/or email using the Doctolib calendar system with your consent. If you no longer wish to receive reminders, please let us know at any time and we will turn the reminders off.
In addition, we provide a service on our MVZ's website for online appointment booking by yourself and your family members. By clicking on the appointment booking button, you will leave our website and go to the website of Doctolib GmbH, https://www.doctolib.de/. No data will be transferred from you at this point. The actual appointment booking process then begins on the Doctolib website. This service falls under the commissioned data processing with Doctolib GmbH (Mehringdamm 51, 10961 Berlin) as our service provider for the organization and implementation of online appointment scheduling.
Please note that clicking on the link associated with the appointment booking button opens a website of Doctolib, for whose content we are not responsible and to which our privacy policy does not apply. A Doctolib user account is required for online appointment booking. Doctolib's privacy policy and cookie policy apply to this. For the creation of a Doctolib user account, Doctolib GmbH (Mehringdamm 51, 10961 Berlin), is the contact person and responsible for data processing.
Integration of third-party services and content
It may happen that third-party content, such as graphics from other websites, is integrated on our website. This always requires that the providers of this content (hereinafter referred to as "third-party providers") perceive the IP address of the user. Without the IP address, they would not be able to send the content to the browser of the respective user. The IP address is thus necessary for the display of this content. We endeavor to use only such content whose respective providers use the IP address only for the delivery of the content. However, we have no influence if the third-party providers store the IP address, e.g. for statistical purposes. Insofar as this is known to us, we inform the users about it.
This processing is based on legitimate interest within the meaning of Art. 6 (1) letter f DSGVO.
Cookies
Cookies are set during your visit to our website. Cookies are small text files that are stored on your computer and saved by your browser.
Session cookies are only stored for the duration of the access and are automatically deleted when you close the browser. If you then access our offer again, the cookie will be set again. The same happens if you have deleted the cookies in your browser separately or call up our website via another terminal device. These cookies do not contain any personal data, but merely identify the browser used to access the website. They serve to make our offer more user-friendly, effective and secure.
Other cookies enable specific information related to the device to be stored on the user's access device (PC, smartphone or similar), even beyond one session. They are used, for example, to retain page settings for future website visits. These cookies remain stored on your terminal device until you delete them. These cookies enable us to recognize your browser on your next visit.
Cookies that are required to carry out the electronic communication process or to provide certain functions you have requested are stored on the basis of Art. 6 (1) (f) (legitimate interest) DSGVO. The website operator has a legitimate interest in storing cookies for the technically error-free and optimized provision of its services. Insofar as other cookies (e.g. cookies for analyzing your surfing behavior) are stored, these are treated separately in this data protection declaration. When using third-party content via our website, e.g. in the case of a link, cookies from third-party providers may be used without us being able to explicitly inform you of this.
The most common browsers are set to automatically accept cookies. However, they allow you to specify the processing of such cookies, so that you can disable the storage of these cookies or set the type of processing by your browser or delete these cookies (for information on how to deal with cookies, see https://www.verbraucher-sicher-online.de/thema/cookies).
Use of the offer without JavaScript
If you have deactivated JavaScript in your browser, you will not be able to use certain content (e.g. videos) and certain notices, e.g. the above-mentioned cookie notice, will not be displayed. You can use extensions such as NoScript to allow JavaScript for certain pages (e.g. our website).
Security of your data
We use appropriate technical and organizational means to protect the data you provide against accidental or intentional manipulation, loss, destruction or access by unauthorized persons. Our security measures are continuously monitored and improved in accordance with technological developments and organizational possibilities.
To protect the security of your personal data and other confidential content during transmission on our website (e.g. contact form), we use SSL or TLS encryption. You can recognize an encrypted connection by the string "https" and the lock symbol in your browser line.
Deletion of personal data
Your personal data will be deleted or blocked in accordance with the statutory provisions as soon as the respective purpose of storage (see above) ceases to apply. In addition, storage may take place if this has been provided for by the European or national legislator in Union regulations, laws or other regulations to which the responsible party is subject, or is necessary for the assertion, exercise or defense of legal claims.
Social media
In addition to this website, we also maintain presences on social media, which you can also access via corresponding buttons on our website. There, we inform users about our clinics and offer them the opportunity to communicate with us via the respective social network. By calling up our web presence on a corresponding platform, the general terms and conditions as well as the data processing guidelines of the respective provider of the social network apply. The GmbH named under Responsible Parties and the respective provider of the social network are responsible parties according to Art. 26 DSGVO. Links to the corresponding written works are shown below in this section.
On the part of the respective operator of the social media platform, data of the users or visitors of the respective media portal are sometimes also processed outside the European Union. Data processing outside the EU may cause disadvantages for the users concerned (for example, due to obstacles in connection with the assertion or enforcement of data protection concerns). The operators of social media portals build profiles and regularly use the collected data of the users of their platform for the purpose of market research and advertising. Data is thus stored and evaluated, for example, from the behavior of users for the purpose of "target advertising" (i.e., for targeted advertising) or for personalized advertising. Cookies are stored on the end devices of the respective users of the media platform to obtain information in advance of context-related advertising measures.
Since we, just like the operator of the social network, are the originators of the data processing measures effected when our presence is called up, you can claim your rights both from us and from the operator of the portal. However, only the portal operator has comprehensive access to the data of the users of its platform. We therefore recommend that requests for information and claims to assert data subject rights be filed directly with the respective operator of the respective media platform (listed below), if possible. The concrete scope of the processing of personal data as well as a possible transfer of your data to third parties, which is carried out by the operator of the respective social media portal, can be found in the privacy policy of the operator (see below). In addition, we will be happy to answer any further questions and provide support.
Insofar as you communicate or interact with us via our web presence on a social media platform or leave a comment there, we process your data. This does not apply exceptionally if this data protection declaration states otherwise.
The data processing is carried out to protect our legitimate interest in providing comprehensive information to the users of the respective social media presence as well as the legitimate interest in communicating with the users pursuant to Art. 6 (1) letter f DSGVO. Insofar as the platform user has given effective consent to the data processing to the respective operator of the media portal by means of a button to be activated (and has not revoked the consent), the data processing is legitimized by Art. 6 (1) letter a DSGVO.
Google / YouTube (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland)
Privacy Policy: https://policies.google.com/privacy
Opt-Out: https://adssettings.google.com/authenticated. Google has pledged to respect the European minimum standard of data protection.
Facebook (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland)
Privacy policy: https://www.facebook.com/privacy/explanation
Via the so-called "Insights" of the Facebook page, statistical data of different categories can be accessed by us.(https://www.facebook.com/business/a/page/page-insights) These statistics are generated and provided by Facebook. As the operator of the site, we have no influence on the generation and presentation. We cannot turn off this function or prevent the generation and processing of the data. For a selectable period of time as well as for the categories fans, subscribers, reached persons and interacting persons, the following data is provided to us by Facebook in relation to our Facebook page: Total number of page views, "Like" information, page activities, post interactions, reach, video views, post reach, comments, shared content, responses, proportion of men and women, origin related to country and city, language, calls and clicks in the store, clicks on route planners, clicks on phone numbers. Likewise, data on the Facebook groups linked to our Facebook page are provided in this way. Due to the constant development of Facebook, the availability and processing of the data changes, so that we refer to the already above-mentioned privacy policy of Facebook for further details on this. The processing of personal data is based on Art. 6 (1) letter f DSGVO. Our legitimate interest is to make our posts and activities on our Facebook page more attractive to users. For example, we use the distributions by age and gender for an adapted address and the preferred visiting times of the users for a time-optimized planning of our posts. Information about the type of end devices used by visitors helps us to adapt the visual design of the posts accordingly.
Instagram (Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland)
Privacy Policy: https: //help.instagram.com/519522125107875?helpref=page_content
Data subject rights
The applicable data protection law grants you comprehensive data subject rights vis-à-vis the controller with regard to the processing of your personal data, which we inform you about below:
To exercise these rights, please contact the aforementioned data controller or data protection officer.
The data protection supervisory authority responsible for us is:
The Hessian Data Protection Commissioner, Gustav-Stresemann-Ring 1, 65189 Wiesbaden (https://datenschutz.hessen.de).
Online Dispute Resolution:
The European Commission provides a platform for online dispute resolution (OS), which you can find on the Internet at ec.europa.eu/consumers/odr/.
Notice pursuant to Section 36 of the German Consumer Dispute Resolution Act (VSBG)
The company is not obliged to participate in any dispute resolution proceedings before a consumer arbitration board and will not take part in any such proceedings.
Amendment to our privacy policy
In order to ensure that our data protection declaration always complies with the current legal requirements, we reserve the right to make changes at any time. This also applies in the event that the data protection declaration has to be adapted due to new or revised services, for example new services. The new data protection statement will then apply the next time you visit our website.
