Privacy policy - ClinicForYou

Privacy policy

1. General principles of the privacy policy we have adopted

a) Clinicforyou Ltd with headquarters at Rajska St 73, 54-028 Wroclaw, TIN: 8992691186, attaches particular importance to the privacy and security of personal data of users of the website at www.clinicforyou.com. In this respect, we are guided in particular by the rules resulting from the following acts and regulations issued on their basis:

I) Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46 / EC (hereinafter referred to as: GDPR);

II) the Act of 10 May 2018 on the Protection of Personal Data (Journal of Laws of 2018 item 1000);

III) the Act of 18 July 2002 on the provision of electronic services (Journal of Laws of 2017, item 1219) Act of 16 July 2004 – Telecommunications Law (Journal of Laws of 2017, item 1907 as amended).

b) Administrator of Personal Data of persons using the Website is Clinicforyou Ltd. with headquarters at Rajska St. in Wroclaw (54-028), TIN: 8992691186, further as: ADO or Administrator), which can be contacted by traditional mail to the address indicated, by e-mail to the following e-mail address: info@clinicforyou.com, via the contact form on the website https://clinicforyou.com/contact/ or by telephone on +48 604 454 212.

c) The privacy policy specifies, among others:

I) the scope and manner of processing by us of the personal data of Website Users (hereinafter also referred to as: User),

II) the ability to access this data,

III) the method of using this data,

IV) the policy of using cookies on the Website.

2. Ways of collecting data about the user

a) The Administrator is interested in the best matching of the services provided to the User’s needs and making it easier for the User to contact the Administrator. To this end, the Administrator collects various data about the User. Depending on the purpose and legal basis of collecting and processing personal data, the Administrator may collect and process, among others the following data:

  • identification data, including but not limited to: name, surname, PESEL, date of birth;
  • contact details, including but not limited to: address, telephone number, e-mail address;
  • data collected and processed to make the patient’s qualification for a medical procedure, diagnosis and conduct of the treatment process, including in particular health data, with the reservation that this applies only to persons using medical services provided by the Administrator.

b) Administrator for submission and processing of personal data in writing, including keeping medical records; performance of the contract for the provision of medical services: legal basis for the presentation: art. 6 par. 1 liters b / c GDPR and art. 9 par. 2 liters GDPR in relation to art. 3 par. 1 act on healing health and art. 24 in connection from 29 of the Act on Patient Rights and Patient Rights Ombudsman and statements of the Minister of Health. To the top The provision of art. 29 of the Act of 6 November 2008. Correct and current period in relation to the last calendar years in which the last entry was made, except:

– medical documentation in the event of death of a patient as a result of injury or poisoning, medical records containing data necessary to monitor the fate of blood and its components that is stored for 30 years from the end of the calendar year in which death or last entry was made;

– X-ray images stored outside the patient’s medical records, which are stored for a period of 10 years, counted from the end of the calendar year in which the photograph was taken;

– referrals for medical examinations or orders, which are kept for a period of: 5 years, counting from the end of the calendar year in which the health service subject to referral or doctor’s order was granted, 2 years from the end of the calendar year in which the referral was issued

– if the medical service was not provided due to failure to report to the patient within the set time limit, unless the patient received the referral; medical documentation regarding children up to the age of two, which is kept for 22 years. After the periods listed in paragraph 1 entity providing health services destroys the medical documentation in a way that makes it impossible to identify the patient who has been affected or can be given to the patient, his statutory representative or a person authorized by the patient.

  • providing health care and management of health care systems and services, e.g. identification during registration and before providing health services. Legal basis for processing: art. 6 paragraph. 1 point c and art. 9 paragraph. 2 liters GDPR in connection with art. 3 paragraphs. 1 of the Act on Medical Activity and Art. 24 and 26 of the Act on Patient Rights and the Patient’s Rights Ombudsman, §10 para. 1 point 2 of the Ordinance of the Minister of Health, art. 32 in conjunction. Article 3 paragraphs 1 of the Act on the Information System in Health Care through the period of storing medical records resulting from the provisions of the law
  • Ensuring social security and management of social security systems and services, eg issuing medical certificates or medical exemptions. Legal basis for processing: art. 9 paragraph. 2 liters RODO in connection with art. 3 paragraphs. 1 of the Act on Medical Activity and Art. 24 of the Act on Patient Rights and the Spokesman for Patients’ Rights as well as art. 54 of the Act on cash benefits from social insurance in case of illness and motherhood. For the period of storing medical records resulting from the provisions of the law
  • Health prevention. Legal basis for processing: art. 9 paragraph. 2 point h RODO in connection with art. 3 paragraphs. 2 of the Act on Medical Activity and Art. 24 of the Act on Patient Rights and the Patient’s Rights Ombudsman Throughout the period of storing medical records resulting from the provisions of the law
  • Making a medical diagnosis. Legal basis for processing: art. 9 paragraph. 2 liters h) GDPR in connection with art. 3 paragraphs. 1 of the Act on Medical Activity and Art. 24 of the Act on Patient Rights and the Patient’s Rights Ombudsman Throughout the period of storing medical records resulting from the provisions of the law
  • Implementation of patients’ rights, including the right to designate a person authorized to disclose her medical records and / or inform her about the state of health and provide medical documentation and / or information to an authorized person. Legal basis for processing: art. 6 paragraph. 1 point c GDPR in connection with art. 9 paragraph. h GDPR and art. 26 paragraph. 1 of the Act on Patient Rights and § 8 para. 1 Regulation of the Minister of Health Throughout the period of storing medical records resulting from the provisions of the law
  • Contact by using a phone number or e-mail address in order to confirm a visit, cancel a visit or surgery, inform about the possibility of receiving a test result, which is the legitimate interest of ADO, which is patient service. Legal basis for processing: art. 6 paragraph. 1 point b GDPR art. 6 paragraph. 1 point f GDPR For the duration of storage of medical records under the laws of the United
  • Implementation of the contract for the provision of electronic services in the form of using the contact form, subscribing to the newsletter service, Legal basis for processing: art. 6 paragraph. 1 point a and b GDPR for the duration of the account / subscription / end of contact
  • Settlements, claims and defense against claims for business activity, which is the legitimate interest of data processing by ADO. Legal basis for processing: art. 6 paragraph. 1 point f RODO for the period of limitation of claims resulting from legal provisions
  • Keeping accounting books and tax documentation. Legal basis for processing: art. 6 paragraph. 1 point c GDPR in connection with art. 74 paragraph. 2 of the Accounting Act and other specific provisions. Throughout the period of storage of accounting and tax documentation resulting from the provisions of law
  • Ensuring the safety of persons and property while using video monitoring, registering the image at the ADO seat, which is the legitimate interest of data processing by ADO. Legal basis for processing: art. 6 paragraph. 1 point f GDPR for a period of one month

c) According to the accepted practice of most websites, the Administrator stores HTTP queries sent to the Website. The browsed resources are identified by URL addresses. The exact list of information stored in the web server log files is as follows:

I) public IP address of the computer from which the query came (it can be directly the user’s computer);

II) name of the User’s station – identification carried out by the http protocol, if it is possible;

III) the time of arrival of the inquiry;

IV) the first line of the http request;

V) http response code;

VI) the number of bytes sent by the server;

VII) URL address of the page previously visited by the User (referrer link) – in the case when the transitional ADO Website has been made via a link;

VIII) information about the User’s browser;

IX) information on errors that occurred during the execution of the http transaction

d) The basis for the processing of your personal data is, in principle, your consent to the processing of your personal data. Consent may be expressed by the User only voluntarily, by filling in the appropriate contact form at https://clinicforyou.com/contact/. The data provided in the form are processed for the purposes specified in the consent.

e) Consent to direct marketing for ADO products and services based on art. 172 Telecommunications Law.

f) The consent granted by the User to the processing of his personal data is completely voluntary, informed, public and confirmed by the User. However, it is necessary to subscribe to the newsletter, obtain an answer to a given question or simply ask for contact from the clinic. contact the clinic. ADO applies the opt-in policy to obtain consents, which means that only when the checkbox is selected determines the consent of the indicated content.

g) At any time, the User has the right to obtain information about his data being processed, the right to inspect and correct his data, the right to rectify data, the right to be forgotten, the right to limit processing, the right to transfer his personal data, and the right to object to the processing his personal data and the right to withdraw consent to their processing. In order to implement the above rights, please send an e-mail to info@clinicforyou.com containing the following data: e-mail address or telephone number, justification and content of the request.

3. The scope of data collected about the User via the Website and the manner of their use.

a) The scope of data processing is determined by the user’s consent.

b) In the contact form there is a consent to contact by phone and / or e-mail.

i) “I agree to the processing of my personal data (ie name, telephone number and / or e-mail address) by Clinicforyou Ltd. with headquarters at Rajska St. 73 in Wroclaw (54-028), Tax Identification Number: 8992691186 (hereinafter also referred to as: ADO) for processing for direct marketing purposes, for telephone contact and / or e-mail to the e-mail address / phone number provided and in to service the sent question. The legal basis for the notification of art. 6 paragraph. 1 point a) Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and the repeal of Directive 95/46 / EC (RODO). The administrator of personal data contained in the application is Clinicforyou Ltd. with headquarters at Rajska St. 73 in Wroclaw (54-028), TIN: 8992691186. Personal data is not transferred to other recipients, international organization or to third countries. Personal data is stored for the period needed to establish and maintain contact. The applicant has the right to access their personal data, rectify it, delete it by sending a request to the e-mail address: info@clinicforyou.com containing the name and the content of the request. The applicant also has the right to file a complaint to the President of the Office for Personal Data Protection. Providing personal data is voluntary, does not result from the regulations, failure to do so will result in the lack of contact from the Clinic. On the basis of personal data, no automated decisions are made, including profiling (more in privacy policy). „

c) If you wish to subscribe to the newsletter, the User agrees to the following: “I consent to the processing of my personal data (ie e-mail address) by Clinicforyou Sp. z o.o. with headquarters at ul. Rajska 73 in Wroclaw (54-028), TIN: 8992691186 in order to receive the clinic newsletter. I am aware that my consent may be revoked at any time, which will result in the removal of my e-mail address from the distribution list of the clinic Newsletter service by sending a notification to the e-mail address: info@clinicforyou.com Legal basis for n

otification of art. 10 of the Act of 18 July 2002 on the provision of electronic services (Journal of Laws of 2018 item 650, as amended) in conjunction with Article. 6 paragraph. 1 point a) Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and the repeal of Directive 95/46 / EC (RODO). The administrator of personal data contained in the application is Clinicforyou Ltd. with headquarters at Rajska 73 in Wroclaw (54-028), TIN: 8992691186. Personal data is not transferred to other recipients, international organization or to third countries. Personal data is stored during the subscription period. The applicant has the right to access their personal data, rectify them and file a complaint to the President of the Office for Personal Data Protection. Providing personal data is voluntary, it does not follow from the regulations, failure to do so will result in the lack of possibility to order. Based on personal data, no automated decisions are made, including profiling. I am aware that my consent may be revoked at any time, which will result in the removal of my e-mail address from the Newsletter service distribution list (more in privacy policy). „

d) In the case of consent to the processing of personal data in the above-mentioned To the end, the User should provide real data enabling his identification and contact with him.

e) In connection with the User’s expressing the above consent, his personal data may be used in particular for the following purposes:

I) make contact with the User by phone or e-mail in order to service the query sent to the clinic;

II) marketing activities by means of electronic communication,

III) for other purposes specified in this privacy policy.

f) The Administrator may on the terms specified in art. 28 GDPR, entrust the processing of personal data to third parties without separate consent of the User. The processing entity processes them only to the extent and on the specific ADO order (under the contract for entrusting the processing of personal data) in order to ensure the security of this data or to enable ADO to provide services. The processing entity is obliged to ensure the secrecy and security of personal data.

g) We entrust the processing of personal data to the following entities (with whom we are bound by agreements ensuring the security of your data):

I) Domeny.pl, nazwa.pl, Zenbox.pl, E-reception – to store data on the server.

II) Get Response – in order to use the marketing system with marketing information (in case of subscribing to our newsletter).

III) to the accounting office – for accounting and accounting services of the Administrator,

IV) technical and organizational service providers (in particular ICT service providers, medical equipment suppliers, entities providing postal and courier services);

V) providers of legal and consulting services, including claims for claims related to the economic activity run by the Administrator and defense against claims;

VI) to employers with whom ADO has concluded contracts for the provision of medical services,

VII) to other entities, persons or bodies – to the extent and under the rules specified by law, including persons authorized by States as part of the implementation of patients’ rights

h) Access to your personal data may have:

I) ADO employees and collaborators authorized to process your personal data at the ADO request;

II) in the case of personal data processed for the purpose of providing medical services, other medical entities to ensure the continuity of treatment and the availability of health services

III) Access to pseudonymous (non-personally identifiable) personal data may also have agencies with whom we cooperate in online marketing. With such entities, we each time sign contracts guaranteeing the security of data transferred.The User acknowledges that his personal data may also be transferred to authorized state authorities in connection with their proceedings, upon their request and after fulfilling the conditions confirming the necessity of obtaining such data from ADO (here, for example, law enforcement authorities).

4. The rules governing the use of cookies

a) Our site uses cookies to enable the user to comfortable use of the website, ensure the proper functioning of the website, improve the speed and security of using the website, use marketing tools, analyze traffic on the site.

b) Your use of the Website may entail saving and storing on the User’s computer (or other device enabling access to the Website, e.g. a smartphone) so-called cookies.

c) Cookies are text-numeric files that allow the use of various website functions, eg they collect information on how to use a given page, allow you to save the User’s session status or allow you to adjust and optimize the content to your preferences.

d) The Website uses two basic types of cookies: “session” (sessioncookies) and “permanent” (persistentcookies). Session cookies are temporary files that are stored on the User’s end device (computer / smartphone) until logging out, leaving the website or turning off the software (web browser). Persistent cookies are stored on the User’s end device for the time specified in the cookie file parameters or until the user deletes them.

e) Cookies are sent and can be saved on the User’s computer in a way that allows access to them for the following purposes:

I) statistical data concerning activity on the Website pages (eg information about the geographical location of users, frequency of using the Website, interest reports), in order to better understand how the users use the Website.

II) the ADO informs the User that he / she uses the following analytical tools regarding actions taken by the User within the Website: Facebook conversion pixel, Google Analitics, Hotjar, which collect anonymous information about your website visits, such as subpages that have been displayed, time , spent on the website or transitions between individual subpages. The information collected in this respect is completely anonymous and does not allow the identification of the user.

III) Our site uses functions provided by external websites, such as YouTube. Playing YouTube videos visible on the embedded site (embedded) on YouTube or Vimeo connects to the acceptance of YouTube or Vimeo cookies. Third party cookies are also used for remarketing and as part of statistical activities.

f) Saving or using cookies does not cause any configuration changes on the user’s computer (smartphone) or software installed on this computer (smartphone).

g) The User has the possibility to determine the conditions for storing or accessing cookie files by means of the software settings installed in the telecommunications terminal device used by him.

h) Most web browsers allow cookies to be saved on the User’s device by default. The User may at any time block the option of saving cookie files or give consent to save them on his computer by changing settings in the web browser, advertising settings, mobile application ad settings and any other available methods.

I) The cookie management instructions are available at http://wszystkoociasteczkach.pl/ in Polish and at http://www.allaboutcookies.org/manage-cookies/ in English. Disabling cookies may, however, hinder the use of the Website, in particular by limiting or disabling certain Website functions. Therefore, it is recommended that you agree to the use of cookies by the browser.

j) At the same time, ADO informs that if the user’s browser accepts cookies, the User consents to the use of these cookies in accordance with the provisions of Polish law, in particular art. 173 of the Pr. tel.

k) The User may at any time delete the installed cookies using the appropriate option in the browser he uses. If you browse the Website in browser incognito mode, all cookies installed during your visit to the Website are deleted by default when you close your browser. For details, please consult your browser software provider or the “help” section in the browser menu.

l) Cookies are also placed on the Website User’s phone and may also be used by advertisers and partners cooperating with the Website operator.

5. Server logs

Using the site involves sending queries to the server on which our site is stored. Each query addressed to the server is saved in the server logs. Logs include User’s IP address, server date and time, information about the web browser and operating system from which the User uses. Logs are saved and stored on the server. The data stored in the server logs are anonymous and are not associated with specific people using the site and are not used by us to identify the User. The server logs are only auxiliary materials used to administer the site, and their content is not disclosed to anyone except those authorized to server administration.

6. Data protection measures

Information about the User is processed by ADO, with appropriate technical and organizational measures that meet the requirements of Polish law, in particular those indicated in the introduction of this Policy. These measures are primarily aimed at protecting Users’ personal data against unauthorized access. In particular, access to Users’ personal data is available only to authorized persons (employees, contractors and ADO associates) who are obliged to keep these data confidential. The Website Users’ personal data collection can be used to create a database and is treated as a personal data base.

7. Changes to the Policy

Extending or changing the scope or content of services provided by ADO, as well as changes in legal regulations may make it necessary to introduce changes to the Privacy Policy. In this situation, we will inform you about changes in the “Privacy policy” tab. With the change of the Privacy Policy version, the date will be displayed indicating the date of its implementation and the signature denoting the given version of the Policy. No change will adversely affect the fundamental right of the User to exercise control over the data processed by ADO.

8. Contacting the Website Administrator

We make every effort to enable Users to submit any comments, suggestions, suggestions and objections regarding the data processing policy we have adopted. All issues related to the content of this Policy and the processing of your personal data by the Administrator, please send an e-mail to: info@clinicforyou.com

Get a free quote

We have helped thousands of patients to receive affordable, high-quality medical care abroad. Let us know about your needs and expectations.

Thank you!

Your inquiry has been sent successfully. Please give us a moment to review your request. We do our best to reply as soon as possible.

1 2 3

Which statement best describes you?

Drop any attachments here. Photos, diagnosis, results etc.

5MB max file size (pdf, doc, docx, png, jpg, gif or tiff)

Your contact details
Back
Finish