datenschutz

Privacy Policy
Patient information on data protection

Dear patient,
The protection of your personal data is important to us. According to the EU General Data Protection Regulation (GDPR), we are obliged to inform you about the purpose for which our practice collects, stores or forwards data. You can also find out from the information what rights you have with regard to data protection.

1. RESPONSIBILITY FOR DATA PROCESSING

Responsible for data processing is:
Dr. med. J. Shariati
Internistische Hausarztpraxis Notfallmedizin
Augsburgerstraße 670
70329 Stuttgart

Tel: 0711 3260066
Fax: 0711 3260021
E-Mail: info@dr-shariati.de

You can reach the responsible data protection officer at:
Dr. med. J. Shariati
Internistische Hausarztpraxis Notfallmedizin
Augsburgerstraße 670
70329 Stuttgart

Tel: 0711 3260066
Fax: 0711 3260021
E-Mail: info@dr-shariati.de

2. PURPOSE OF DATA PROCESSING

Data processing is carried out based on legal requirements in order to fulfill the treatment contract between you and your doctor and the associated obligations.
For this purpose, we process your personal data, in particular your health data. This includes anamnesis, diagnoses, treatment suggestions and findings that we or other doctors collect. For these purposes, other doctors or psychotherapists with whom you are being treated may also provide us with data (e.g. in doctor’s letters).
The collection of health data is a prerequisite for your treatment. If the necessary information is not provided, careful treatment cannot be carried out.

3. RECIPIENTS OF YOUR DATA

We only transfer your personal data to third parties if this is permitted by law or if you have consented to this.
Recipients of your personal data can primarily be other doctors/psychotherapists, associations of statutory health insurance physicians, health insurance companies, the medical service of the health insurance company, hospitals, medical associations and private medical clearinghouses.
The transmission is mainly carried out for the purpose of billing the services provided to you and to clarify medical questions and questions arising from your insurance relationship. In individual cases, data may be transmitted to other authorized recipients.

Analytics and Third Party Tools

When you visit this website, your surfing behavior can be statistically evaluated. This happens primarily with so-called analysis programs.

Detailed information about these analysis programs can be found in the following data protection declaration.

4. Hosting and Content Delivery Networks (CDN)

External hosting

This website is hosted by an external service provider (hoster). The personal data collected on this website is stored on the host’s servers. This can be v. a. These include IP addresses, contact requests, meta and communication data, contract data, contact details, names, website access and other data generated via a website.

The host is used for the purpose of fulfilling the contract with our potential and existing customers (Art. 6 Para. 1 lit. b GDPR) and in the interest of a secure, fast and efficient provision of our online offering by a professional provider (Art. 6 Para . 1 lit. f GDPR).

Our hoster will only process your data to the extent necessary to fulfill its service obligations and follow our instructions regarding this data.

We use the following host:

1&1 IONOS SE
Elgendorfer Str. 57
56410 Montabaur

Conclusion of a contract for order processing

In order to ensure data protection-compliant processing, we have concluded a contract for order processing with our host.

Note on data transfer to the USA and other third countries

Our website includes, among other things, tools from companies based in the USA or other third countries that are not secure in terms of data protection. If these tools are active, your personal data may be transferred to these third countries and processed there. We would like to point out that a level of data protection comparable to the EU cannot be guaranteed in these countries. For example, US companies are obliged to hand over personal data to security authorities without you as the data subject being able to take legal action against this. It cannot therefore be ruled out that US authorities (e.g. secret services) process, evaluate and permanently store your data on US servers for surveillance purposes. We have no influence on these processing activities.

SSL or TLS encryption

This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator. You can recognize an encrypted connection by the browser address line changing from “http://” to “https://” and by the lock symbol in your browser line.

If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

5. Data collection on this website

Cookies

Our websites use so-called “cookies”. Cookies are small text files and do not cause any damage to your device. They are stored on your device either temporarily for the duration of a session (session cookies) or permanently (persistent cookies). Session cookies are automatically deleted at the end of your visit. Permanent cookies remain stored on your device until you delete them yourself or your web browser automatically deletes them.

In some cases, cookies from third-party companies may also be stored on your device when you enter our site (third-party cookies). These enable us or you to use certain third-party services (e.g. cookies to process payment services).

Cookies have various functions. Numerous cookies are technically necessary because certain website functions would not work without them (e.g. the shopping cart function or the display of videos). Other cookies are used to evaluate user behavior or display advertising.

Cookies that are necessary to carry out the electronic communication process (necessary cookies) or to provide certain functions you want (functional cookies, e.g. for the shopping cart function) or to optimize the website (e.g. cookies to measure the web audience) are used stored on the basis of Art. 6 Para. 1 lit. f GDPR, unless another legal basis is stated. The website operator has a legitimate interest in storing cookies in order to provide its services in a technically error-free and optimized manner. If consent to the storage of cookies has been requested, the relevant cookies will be stored exclusively on the basis of this consent (Art. 6 Para. 1 lit. a GDPR); consent can be revoked at any time.

You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general, and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be restricted.

If cookies are used by third-party companies or for analysis purposes, we will inform you separately in this data protection declaration and, if necessary, request your consent.

Cookie consent with Cookiebot

Our website uses Cookiebot’s cookie consent technology to obtain your consent to store certain cookies on your device and to document these in compliance with data protection regulations. The provider of this technology is Cybot A/S, Havnegade 39, 1058 Copenhagen, Denmark (hereinafter “Cookiebot”).

When you enter our website, a connection will be established to Cookiebot’s servers to obtain your consent and other declarations regarding cookie use. Cookiebot then stores a cookie in your browser in order to be able to assign you the consent given or its revocation. The data collected in this way will be stored until you request us to delete it, delete the Cookiebot cookie yourself or the purpose for storing the data no longer applies. Mandatory legal retention obligations remain unaffected.

Cookiebot is used to obtain the legally required consent for the use of cookies. The legal basis for this is Article 6 Paragraph 1 Letter c GDPR.

You can change or withdraw your consent at any time from the cookie statement on our website.
 

Renew or change your cookie consent
You can prevent the collection and processing of your data by cookiebot.com by deactivating the execution of script code in your browser or installing a script blocker in your browser (you can find this, for example, at www.noscript.net or www. ghostery.com).

Contract for order processing

We have concluded a contract for order processing with Cookiebot. This is a contract required by data protection law that ensures that Cookiebot only processes the personal data of our website visitors according to our instructions and in compliance with the GDPR.

Server log files

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • Browser type and browser version
  • operating system used
  • Referrer URL
  • Host name of the accessing computer
  • Time of server request
  • IP address

This data will not be merged with other data sources.

This data is collected on the basis of Article 6 Paragraph 1 Letter f GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of his website – for this purpose the server log files must be recorded.

Contact form

If you send us inquiries using the contact form, your details from the inquiry form, including the contact details you provided there, will be stored by us in order to process the inquiry and in case of follow-up questions. We will not pass on this data without your consent.

This data is processed on the basis of Article 6 Paragraph 1 Letter b GDPR, provided your request is related to the fulfillment of a contract or is necessary to carry out pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of the inquiries addressed to us (Art. 6 Para. 1 lit. f GDPR) or on your consent (Art. 6 Para. 1 lit. a GDPR) if this was queried.

The data you enter in the contact form will remain with us until you request us to delete it, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your request has been processed). Mandatory legal provisions – in particular retention periods – remain unaffected.

Inquiry by email, telephone or fax

If you contact us by email, telephone or fax, your request including all resulting personal data (name, request) will be stored and processed by us for the purpose of processing your request. We will not pass on this data without your consent.

This data is processed on the basis of Article 6 Paragraph 1 Letter b GDPR, provided your request is related to the fulfillment of a contract or is necessary to carry out pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of the inquiries addressed to us (Art. 6 Para. 1 lit. f GDPR) or on your consent (Art. 6 Para. 1 lit. a GDPR) if this was queried.

The data you send to us via contact requests will remain with us until you request us to delete it, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your request has been processed). Mandatory legal provisions – in particular statutory retention periods – remain unaffected.

6. STORING YOUR DATA

We only keep your personal data for as long as necessary to carry out the treatment.
Due to legal requirements, we are obliged to store this data for at least 10 years after treatment has been completed. Other regulations may require longer retention periods, for example 30 years for X-ray recordings according to Section 28 Paragraph 3 of the X-ray Ordinance.

7. Analysis tools and advertising

Google Tag Manager

We use Google Tag Manager. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Google Tag Manager is a tool that allows us to integrate tracking or statistical tools and other technologies on our website. The Google Tag Manager itself does not create user profiles, does not store cookies and does not carry out any independent analyses. It is only used to manage and display the tools integrated through it. However, Google Tag Manager collects your IP address, which may also be transferred to Google’s parent company in the United States.

The use of the Google Tag Manager is based on Art. 6 Para. 1 lit. f GDPR. The website operator has a legitimate interest in quickly and easily integrating and managing various tools on his website. If appropriate consent has been requested, processing is carried out exclusively on the basis of Art. 6 Para. 1 lit. a GDPR; consent can be revoked at any time.

Google Analytics

This website uses functions of the web analysis service Google Analytics. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Analytics enables the website operator to analyze the behavior of website visitors. The website operator receives various usage data, such as page views, length of stay, operating systems used and the user’s origin. Google may summarize this data in a profile that is assigned to the respective user or their device.

Google Analytics uses technologies that enable user recognition for the purpose of analyzing user behavior (e.g. cookies or device fingerprinting). The information collected by Google about the use of this website is usually transmitted to a Google server in the USA and stored there.

The use of this analysis tool is based on Art. 6 Para. 1 lit. f GDPR. The website operator has a legitimate interest in analyzing user behavior in order to optimize both its website and its advertising. If appropriate consent has been requested (e.g. consent to the storage of cookies), processing is carried out exclusively on the basis of Art. 6 Para. 1 lit. a GDPR; consent can be revoked at any time.

Data transfer to the USA is based on the EU Commission’s standard contractual clauses. Details can be found here: https://privacy.google.com/businesses/controllerterms/mccs /.

IP anonymization

We have activated the IP anonymization function on this website. This means that your IP address will be shortened by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area before it is transmitted to the USA. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to website activity and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics is not combined with other Google data.

Browser plugin

You can prevent Google from collecting and processing your data by downloading and installing the browser plug-in available at the following link: https://tools.google.com/dlpage/gaoptout?hl=de.

You can find more information about how Google Analytics handles user data in Google’s privacy policy: https://support.google.com/analytics/answer/6004245?hl=de.

Order processing

We have concluded an order processing contract with Google and fully implement the strict requirements of the German data protection authorities when using Google Analytics.

Storage duration

User and event-level data stored by Google that is linked to cookies, user identifiers (e.g. User ID) or advertising IDs (e.g. DoubleClick cookies, Android advertising ID) is anonymized after 14 months or deleted. Details can be found at the following link: https://support.google.com /analytics/answer/7667196?hl=de

IONOS WebAnalytics

This website uses the analysis services of IONOS WebAnalytics (hereinafter: IONOS). The provider is 1&1 IONOS SE, Elgendorfer Straße 57, D – 56410 Montabaur. As part of the analyzes with IONOS, among other things, Visitor numbers and behavior (e.g. number of page views, duration of a website visit, bounce rates), visitor sources (i.e. which page the visitor comes from), visitor locations and technical data (browser and operating system versions) are analyzed. For this purpose, IONOS stores the following data in particular:

  • Referrer (previously visited website)
  • requested web page or file
  • Browser type and browser version
  • operating system used
  • device type used
  • Time of access
  • IP address in anonymized form (only used to determine the location of access)

According to IONOS, data collection is completely anonymized so that it cannot be traced back to individual people. Cookies are not stored by IONOS WebAnalytics.

The storage and analysis of the data is based on Art. 6 Para. 1 lit. f GDPR. The website operator has a legitimate interest in the statistical analysis of user behavior in order to optimize both its website and its advertising. If appropriate consent has been requested, processing is carried out exclusively on the basis of Art. 6 Para. 1 lit. a GDPR; consent can be revoked at any time.

Further information on data collection and processing by IONOS WebAnalytics can be found in the IONOS data protection declaration at the following link:

https://www.ionos.de/terms-gtc/index.php?id=6< /a>

Order processing

We have concluded an order processing contract with IONOS. This contract is intended to ensure that IONOS handles your personal data in accordance with data protection regulations.

8. Plugins and tools

Google Web Fonts (local hosting)

This site uses so-called web fonts, which are provided by Google, for the uniform display of fonts. The Google Fonts are installed locally. There is no connection to Google servers.

Further information about Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google’s privacy policy: https://policies.google.com/privacy?hl=de.

Google Maps

This site uses the map service Google Maps. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

In order to use the functions of Google Maps, it is necessary to save your IP address. This information is usually transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer. If Google Maps is activated, Google can use Google Web Fonts for the purpose of uniform font display. When you access Google Maps, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly.

The use of Google Maps is in the interest of an attractive presentation of our online offerings and to make it easy to find the places we indicate on the website. This represents a legitimate interest within the meaning of Article 6 Paragraph 1 Letter f of the GDPR. If appropriate consent has been requested, processing is carried out exclusively on the basis of Article 6 Paragraph 1 Letter a of the GDPR; consent can be revoked at any time.

Data transfer to the USA is based on the EU Commission’s standard contractual clauses. Details can be found here: https://privacy.google.com/businesses/gdprcontrollerterms/ and https://privacy.google.com/businesses/gdprcontrollerterms/sccs/.

You can find more information on how to handle user data in Google’s privacy policy: https://policies.google .com/privacy?hl=de.

Google reCAPTCHA

We use “Google reCAPTCHA” (hereinafter “reCAPTCHA”) on this website. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

reCAPTCHA is intended to check whether data entry on this website (e.g. in a contact form) is done by a human or by an automated program. To do this, reCAPTCHA analyzes the behavior of the website visitor based on various characteristics. This analysis begins automatically as soon as the website visitor enters the website. For analysis, reCAPTCHA evaluates various information (e.g. IP address, length of time the website visitor stays on the website or mouse movements made by the user). The data collected during the analysis is forwarded to Google.

The reCAPTCHA analyzes run completely in the background. Website visitors are not informed that an analysis is taking place.

The storage and analysis of the data is based on Art. 6 Para. 1 lit. f GDPR. The website operator has a legitimate interest in protecting its web offerings from abusive automated spying and SPAM. If appropriate consent has been requested, processing is carried out exclusively on the basis of Art. 6 Para. 1 lit. a GDPR; consent can be revoked at any time.

Further information about Google reCAPTCHA can be found in the Google data protection regulations and the Google terms of use under the following links: https: //policies.google.com/privacy?hl=de and https://policies.google.com/terms?hl=de.

9. YOUR RIGHTS

You have the right to receive information about your personal data. You can also request that incorrect data be corrected.
In addition, under certain conditions, you have the right to delete data, the right to restrict data processing and the right to data portability.
Your data is processed on the basis of legal regulations. We only need your consent in exceptional cases. In these cases, you have the right to withdraw consent for future processing.
You also have the right to complain to the responsible data protection supervisory authority if you believe that the processing of your personal data is not taking place lawfully.

10. LEGAL BASIS

The legal basis for the processing of your data is Article 9 Paragraph 2 Letter h) GDPR in conjunction with Section 22 Paragraph 1 Number 1 Letter b) Federal Data Protection Act. If you have any questions, please feel free to contact us.