1 Responsible controller
The operator of this website and the responsible controller in terms of data protection is:
Mr. Joop Vosson
c/o Secretary Mr. Petro Dielissen
Viecuri Medical Centre
NL – 5801 CE Venray
2 General information on processing personal data
We process your personal data in compliance with the data protection laws of the Federal Republic of Germany and the European General Data Protection Regulation. In no case will we forward your personal data to third parties outside of the Eurospital group for advertising or marketing purposes without your consent.
As an international company, we work together with external service providers. To the extent that processed data contain personal content, corresponding contractual agreements and organizational measures have been enacted according to applicable law which ensure the security of your data.
In our company, compliance with legal regulations and this policy is monitored by our data protection officers. Our employees are trained to handle personal data and have committed in writing to comply with data protection regulations.
As a general rule, our website can be used without providing personal data. Insofar as personal data (name, address or email addresses, for example) are collected, this is always on a voluntary basis whenever possible.
We draw your attention to the fact that data transmission via the Internet (e.g. when communicating by e-mail) may involve gaps in security. We attempt to protect your data from unauthorized access by third parties by means of precautions such as pseudonymization, data economy, observing deletion periods and in consideration of the current state of the art technology. Despite these protective measures, however, we cannot completely rule out unlawful processing by third parties.
3 Data collection and processing in case of access from the Internet
When you visit our website, our web servers save each access temporarily to a log file. The following data are entered and saved until automated deletion:
- Anonymized IP address of the requesting computer
- Date and time of the access
- Name and URL of the called data
- Report whether the call was successful
- Identification data of the used browser and operating system
- Website, from which the access is carried out
- Name of your Internet access provider
These personal data are not processed beyond the cases indicated above, unless you explicitly consent to further processing.
4 Purpose of the data use
In accordance with the principle of data avoidance and data economy of the General Data Protection Regulation, we only collect personal data on our website when it is either required for your desired purpose, we are obligated to do so due to legal regulations or contracts, if we have a legitimate interest and/or if you voluntarily give us your consent.
When entering personal or business data (e.g. email address, name, address), the disclosure of your data is performed on an explicitly voluntary basis.
We process your contact and business related data based on statutory regulations in connection with existing or pending business relationships. In addition, with your input, you declare your consent for the data entered to be collected, processed or used for the purpose designated by you. We process and save your provided data only as long as required for the intended purpose and delete these after fulfilling the purpose or after expiration of the respective retention periods. Collection, processing or use does not occur for any other purpose. Your consent for data use can be revoked at any time with effect for the future. Insofar as you refuse the use of the data, we hereby inform you that our services may only be usable to a limited degree.
The following are possibilities of how we can use the data:
Due to statutory regulations:
- Execution of our General Terms and Conditions
- Management of our business
- Protection from or determination of possible fraudulent transactions
Owing to contractual purposes:
- Payment processing for purchases and other services
- Processing of your application documents
Due to your consent:
- Making contact
- Sending of samples, rewards, products and information
- Registration with competitions, programs or offers at your request
- Delivery of other services that we have offered to you
- If permissible by law, delivery of user-specific, unsolicited offers and information about the products and services of Eurospital
- Surveys on our websites
- Development and provision of advertising that is adjusted to your interests
Owing to our legitimate interest:
- Determination of the effectiveness of our advertising
- Development of new products and services
- Analysis of the use of our products, services and websites
- Knowledge, how you reached our website
5 How we use your data
We use the data, which we collect, in order to make the products and services requested by you available, to inform you about other products and services offered by Eurospital and to manage our websites and services (e.g. newsletter) and to satisfy our rights and obligations with regard to data processing as stipulated by law.
In order to make a comprehensive offer available to you your data are transmitted and used within the scope of the Eurospital Group (you can find information relating to the Eurospital Group here.)
6 Protection of minors
Children and people under the age of 18 normally do not transmit personal data to us without the consent of their parents or legal guardians. We do not request personal data from children and we affirm that we do not collect personal data from children, nor do we use it in any way or disclose it to third parties without authorization.
7 Transmission of data via the Internet
The Internet is a globally open platform. Due to the Internet's inherent mode of operation and the systemic risks involved, any data transmissions are made at your own risk. For your security we exclusively offer our services via the encrypted transmission channel.
9 Security Measures
We have taken extensive precautions to protect the security of your data. The data transmitted to us that you have entered e.g. in HTML websites (contact forms) are transmitted in an encrypted form (SSL - Secure Socket Layer) via the public data network to Eurospital, where they are saved and processed.
This website uses an SSL encryption for reasons of security and for the protection of the transmission of confidential contents, such as for example the inquiries that you send us as the website operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.
If the SSL encryption is activated the data, which you transmit to us, cannot be read by third parties.
10 Forwarding of data to third parties
Your personal data will not be forwarded to third parties (thus outside of the Eurospital Group), unless you have granted us your corresponding prior consent. Excluded from this provision is the forwarding to service partners, such as for example parcel service provider or freight forwarders, if the transmission is necessary for the order processing or delivery of the goods. The logistics service providers receive the data that are required for the delivery for use at their own responsibility. We accordingly restrict this to sending the data that are necessary for the delivery.
In addition, other service providers are involved in the work for the initiation and processing of the contracts, such as for example IT service providers or the hosting service provider for the website. These companies operate for Eurospital within the framework of a so-called order processing and may only use the personal data according to our instructions.
Eurospital has obligated these service providers to the General Data Protection Regulation as per contract and monitors these companies.
Further excluded is the transmission of data for the order processing or delivery of the goods or services or the transmission and use for bookkeeping and settlement purposes within the Eurospital Group. For the forwarding of the data these can be saved (cf. Point 10) in the cloud application salesforce.com, Inc. The Landmark @ One Market Street, Suite 300, San Francisco, CA 94105, USA (“Salesforce”). In addition, no transmission will take place to third parties without your consent.
In all of these cases the transmission will be carried out in line with the applicable national and European data protection provisions; the scope of the transmitted data is only limited to the necessary minimum in this case.
We have concluded a contract with Adobe for the contract data processing and implement the strict stipulations of the German data protection authorities in full when using Adobe Analytics.
Our website uses the etracker analysis service. The provider is etracker GmbH, Erste Brunnenstraße 1, 20459 Hamburg Germany. Usage profiles can be created from the data under a pseudonym. Cookies can be used for this purpose. The cookies enable your browser to be recognized. The data collected using the etracker technologies will not be used to personally identify visitors to our website without the separately granted consent of the person concerned and will not be combined with personal data about the holder of the pseudonym.
The data collection and saving by etracker can be objected to at all times with effect for the future. In order to object to a data collection and saving of your visitor data for the future you can obtain an Opt-Out-Cookie of etracker under the following link, this will lead to the fact that no visitor data of your browser will be collected and saved at etracker in future: https://www.etracker.com/en/data-privacy/
An Opt-Out-Cookie with the name "cntcookie" is used by etracker hereby. Please do not delete this cookie as long as you would like to uphold your objection. You can find further information in the data protection provisions of etracker: https://www.etracker.com/en/data-privacy/
13 Social Media Plugins
Within the Internet presence of Eurospital it may occur that contents of third parties are used (so-called “plugins”). These can appear in the form of YouTube videos, RSS-Feeds or graphics of other websites or also by social media pushbuttons, such as for example the share button of Facebook.
If you are on a website of Eurospital, on which contents of third parties are integrated, under certain circumstances a connection will be set up with the respective social network. The content of the pushbuttons may be transmitted to your browser hereby and be integrated into the website hereby. This means that the respective provider always receives the information that you have called the Eurospital website. It is not relevant in this case whether you are a member of a social network or are not logged into such a network. Furthermore, irrespective whether you actually act with the integrated content, information will be automatically collected by the social network. The following data can be transmitted hereby: IP address, browser information and operating systems, screen resolution, installed browser plugins (e.g. Adobe Flash Player), origin of the visitor (if you have followed a link) and the URL of the current website.
If you are logged into one of the social networks during the use of the website of Eurospital, under certain circumstances the information about the call of the website will be linked with your member data and saved. If you are a member of a social network and do not want this data to be transmitted you must logout of the social network before visiting the Eurospital website.
You additionally have the possibility to block social media plugins by add-ons in your browser and therefore to prevent a data transmission.
Plugins of the social network Facebook are integrated on our websites, provider Facebook Inc., 1 Hacker Way, Menlo Park, California 94025, USA. You can recognize the Facebook plugins by the Facebook logo on our website. You will find an overview of the Facebook plugins here: http://developers.facebook.com/docs/plugins/.
If you do not want Facebook to be able to allocate the visit to our websites to your Facebook user account please logout of your Facebook user account.
You can change your data protection settings at Twitter in the account settings under: http://twitter.com/account/settings
Our website uses functions of the LinkedIn network. The provider is the LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. A connection to servers of LinkedIn will be set up with each call of one of our websites, which contains functions of LinkedIn. LinkedIn is informed that you have visited our websites with your IP address. If you click the "recommend button" of LinkedIn and are logged into your account at LinkedIn, it is possible for LinkedIn to allocate your visit to our website to you and your user account. We would like to point out that we as the provider of the sites neither have any knowledge of the content of the transmitted data, nor their use by LinkedIn.
Our website uses functions of the XING network. The provider is XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany. A connection to servers of XING will be established with each call of one of our websites, which contains functions of XING. According to our knowledge no personal data are saved hereby. In particular no IP addresses are saved, nor the usage behavior evaluated.
Our website uses plugins of the YouTube website operated by Google. The operator of the websites is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. If you visit one of our websites fitted with a YouTube plugin a connection will be established to the servers of YouTube. It will be communicated to the Youtube server hereby, which of our websites you visited.
If you are logged into your YouTube account, you enable YouTube to directly allocate your surf behavior to your personal profile. You can prevent this by logging out of your YouTube account.
14 Your rights as an data subject
You always have the right of access (Art. 15 GDPR) to your personal data, their origin and recipients and the purpose of data processing, free of charge, as well as a right to rectification (Art. 16 GDPR), erasure (Art. 17 GDPR) or to restriction of processing of these data (Art. 18 GDPR). Furthermore, you have the right to obtain the personal data relating to you that you have provided to a responsible party, in a structured, common and machine-readable format (right to data portability Art. 20 GDPR).
You may also revoke a consent (right to object Art. 21 GDPR) granted by you for the processing and use of your data, which is not necessary owing to a superordinate legal regulation or directly for the processing of an existing contractual relationship, at all times. In this respect and with regard to further questions relating to the topic of personal data you can contact us at the address stated in the imprint. Upon request, we will inform you in writing if and which personal data we have stored about you, in accordance with applicable law.
15 Retrieval of the data protection provisions
16 Your contacts for data protection matters
If you have questions regarding the processing of your personal data, you may directly contact our data protection officer and his team, who are also available for information requests, applications or complaints:
Mr. Joop Vossen
c/o Secretary Mr. Petro Dielissen
Viecuri Medical Centre
NL - 5801 CE Venray
15.1 Your right to information
In accordance with the General Data Protection Regulation, our customers have a right to information about their saved data, free of charge. Upon request, we will inform you in writing if and which personal data we have stored about you, in accordance with applicable law. You can find more information here.
15.2 Your right to lodge a complaint at a regulatory authority
In the event of a complaint, you can contact the designated regulatory authority:
The data protection officer in Hesse
Status February 2018