Privacy Policy

Last updated: January 2023

1. Data Controller

The data controller responsible for the processing of your personal data is:

Dr. Sarah Williams
Practice Address: Musterstraße 123, 10115 Berlin
Phone: 030 5512 34567
Email: mailto@example.com

2. Collection and Processing of Personal Data

When you visit our website, our web server automatically records:

  • Your IP address
  • The website from which you visit us
  • The web pages you visit on our site
  • The date and duration of your visit
  • Your browser type and settings
  • Your operating system

We process this information to ensure the security and stability of our website.

3. Purpose of Data Processing

We process your personal data for the following purposes:

  • To provide medical services and patient care
  • To process appointment requests and inquiries
  • To comply with legal obligations (e.g., medical documentation requirements)
  • To improve our website and services

4. Legal Basis for Processing

The processing of your personal data is based on:

  • Your consent (Art. 6(1)(a) GDPR)
  • The necessity for the performance of a contract (Art. 6(1)(b) GDPR)
  • Compliance with legal obligations (Art. 6(1)(c) GDPR)
  • Legitimate interests (Art. 6(1)(f) GDPR)

5. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including any legal, accounting, or reporting requirements.

Medical records are retained for at least 10 years as required by German law.

6. Your Rights

Under the GDPR, you have the following rights regarding your personal data:

  • Right to access
  • Right to rectification
  • Right to erasure ("right to be forgotten")
  • Right to restriction of processing
  • Right to data portability
  • Right to object
  • Right to withdraw consent

To exercise these rights, please contact us using the details provided above.

7. Data Security

We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:

  • Encryption of data transmissions
  • Access controls and restrictions
  • Regular security assessments

8. Changes to This Policy

We may update this privacy policy from time to time. The current version will always be available on our website.

9. Contact

If you have any questions about this privacy policy or our data protection practices, please contact us.