Data protection at a glance

Privacy Policy

General notes

The following notes provide a simple overview of what happens to your personal data when you visit our website. Personal data is any data with which you can be personally identified. For detailed information on the subject of data protection, please refer to our privacy policy listed below this text.

General notes and mandatory information

Privacy

The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.
When you use this website, various personal data are collected. Personal data is data with which you can be personally identified. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this is done.
We point out that data transmission over the Internet (eg communication by e-mail) security gaps. A complete protection of the data against access by third parties is not possible.

Note on the responsible entity

The responsible party for data processing on this website is:
Boerner Vitalzentrum
Dr. Dirk Boerner
Phone: +49 (0)211-95776900
E-mail: boerner@hausaerzte-am-kaiserteich.de
Data protection officer of the practice: Dr. Dirk Boerner

The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, e-mail addresses, etc.).

Revocation of your consent to data processing
Many data processing operations are only possible with your express consent. You can revoke an already given consent at any time. For this purpose, an informal communication by e-mail to us is sufficient. The legality of the data processing carried out until the revocation remains unaffected by the revocation.

Right of appeal to the competent supervisory authority
In the event of violations of data protection law, the person concerned has the right to lodge a complaint with the competent supervisory authority. The competent supervisory authority for data protection issues is the State Data Protection Commissioner of the federal state in which our company is based. A list of data protection officers and their contact details can be found in the following link: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.

Right to data portability

You have the right to have data that we process automatically on the basis of your consent or in fulfillment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done insofar as it is technically feasible.

SSL or TLS encryption

This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or requests that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Information, blocking, deletion

Within the framework of the applicable legal provisions, you have the right at any time to free information about your stored personal data, its origin and recipient and the purpose of data processing and, if necessary, a right to correction, blocking or deletion of this data. For this purpose, as well as for further questions on the subject of personal data, you can contact us at any time at the address given in the imprint.

Objection to advertising e-mails

The use of contact data published within the framework of the imprint obligation to send advertising and information materials not expressly requested is hereby prohibited. The operators of the pages expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, such as spam e-mails.

Data collection on our website

Server log files

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • Browser type and version
  • Operating system used
  • Referrer URL
  • Host name of the accessing computer
  • Time of the server request
  • IP address

This data is not merged with other data sources.
The basis for the data processing is Art. 6 para. 1 lit. f DSGVO, which permits the processing of data for the fulfillment of a contract or pre-contractual measures.

Cookies

The Internet pages partly use so-called cookies. Cookies do not cause any damage to your computer and do not contain viruses. Cookies serve to make our offer more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and saved by your browser.
Most of the cookies we use are so-called “session cookies”. They are automatically deleted after the end of your visit. Other cookies remain stored on your terminal device until you delete them. These cookies allow us to recognize your browser on your next visit.
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser. If you deactivate cookies, the functionality of this website may be limited.
Cookies that are required to carry out the electronic communication process or to provide certain functions you have requested (e.g. shopping cart function) are stored on the basis of Art. 6 (1) lit. f DSGVO. The website operator has a legitimate interest in storing cookies for the technically error-free and optimized provision of its services. Insofar as other cookies (e.g. cookies for analyzing your surfing behavior) are stored, these are treated separately in this privacy policy.

 

The below list details the cookies used in our website:

Cookie Dauer Beschreibung
cookielawinfo-checkbox-analytics 1 Jahr Dieses Cookie wird vom GDPR Cookie Consent Plugin gesetzt und dient dazu, die Zustimmung des Nutzers zu den Cookies der Kategorie “Analytics” zu erfassen.
cookielawinfo-checkbox-analytics-en 1 Jahr Dieses Cookie wird vom GDPR Cookie Consent Plugin gesetzt, um die Zustimmung des Nutzers für Cookies der Kategorie “Analytics” zu speichern.
cookielawinfo-checkbox-functional 1 Jahr Das Cookie wird vom GDPR Cookie Consent Plugin gesetzt, um die Zustimmung des Nutzers für die Cookies in der Kategorie “Funktional” zu erfassen.
cookielawinfo-checkbox-functional-en 1 Jahr Dieses Cookie wird vom GDPR Cookie Consent Plugin gesetzt, um die Zustimmung des Nutzers für Cookies der Kategorie “Analytics” zu speichern.
cookielawinfo-checkbox-necessary 1 Jahr Dieses Cookie wird vom GDPR Cookie Consent Plugin gesetzt und dient dazu, die Zustimmung des Nutzers für die Cookies der Kategorie “Notwendig” zu erfassen.
cookielawinfo-checkbox-necessary-en 1 Jahr Dieses Cookie wird vom GDPR Cookie Consent Plugin gesetzt, um die Zustimmung des Nutzers für Cookies der Kategorie “Notwendig” zu speichern.
cookielawinfo-checkbox-others 1 Jahr Dieses Cookie wird vom GDPR Cookie Consent Plugin gesetzt und dient dazu, die Zustimmung des Nutzers für Cookies der Kategorie “Andere” zu speichern.
cookielawinfo-checkbox-performance 1 Jahr Dieses Cookie wird vom GDPR-Cookie-Consent-Plugin gesetzt und dient dazu, die Zustimmung des Nutzers für Cookies der Kategorie “Leistung” zu speichern.
CookieLawInfoConsent 1 Jahr Speichert den Standard-Schaltflächenstatus der entsprechenden Kategorie und den Status der CCPA. Es funktioniert nur in Koordination mit dem primären Cookie.
pll_language 1 Jahr Der Cookie pll _language wird von Polylang verwendet, um sich die vom Benutzer gewählte Sprache zu merken, wenn er auf die Website zurückkehrt, und auch um die Sprachinformationen zu erhalten, wenn sie nicht auf andere Weise verfügbar sind.

 

Product-specific privacy information of our website

This website was created using a system from 1&1.

Web hosting

Content Delivery Network CDN
Purpose of processing: When using the CDN, content data is stored in Cloudflare data centers.
Categories of personal data: Content data, usage data, traffic data
Legal basis: performance of contract, Art. 6 para. 1 lit. b DSGVO
Involved third-party providers: Cloudflare, San Francisco, USA

WebSite Creator

Purpose of processing: Website editing and publishing
Categories of personal data: Usage data, content data
Legal basis: Performance of contract, Art. 6 para. 1 lit. b DSGVO
Involved third party providers: cm4all AG, Cologne, Germany

Mobile Website Builder

Purpose of processing: Creation, editing and publishing of the website
Categories of personal data: Usage data, content data
Legal basis: performance of contract, Art. 6 para. 1 lit. b DSGVOB
Involved third party providers: Afilias plc, Dublin, Ireland
For the rest, the privacy policy of the company 1&1 applies: https://hosting.1und1.de/terms-gtc/terms-privacy/

Registration on this website

For online appointment scheduling and efficient management of patient data in the Within the framework of the appointment calendar we use the system of jameda GmbH.

For important changes, for example in the scope of the offer or in the case of technically necessary changes, we use the e-mail address provided during registration to inform you in this way.
The processing of the data entered during registration is based on your consent (Art. 6 para. 1 lit. a DSGVO). You can revoke your consent at any time. For this purpose, an informal communication by e-mail to us is sufficient. The legality of the data processing already carried out remains unaffected by the revocation.
The data collected during registration will be stored by us for as long as you are registered on our website and will then be deleted. Legal retention periods remain unaffected.

jameda seal and widget

Seals or widgets of jameda GmbH, Balanstr. 71a, 81541 Munich, Germany, are embedded on our website. A widget is a small window that displays changeable information. Our seal also works in a similar way, i.e. it does not always look the same, but the display changes regularly. Although the corresponding content is displayed on our website, it is retrieved from the jameda servers at that moment. This is the only way to always show the current content, especially the current rating. To do this, a data connection must be established from this website to jameda and jameda receives certain technical data (date and time of the visit; the page from which the query is made; Internet Protocol address (IP address) used, browser type and version, device type, operating system and similar technical information) that are necessary for the content to be delivered. This data is only used to provide the content and is not stored or used in any other way.

With the integration, we pursue the purpose and legitimate interest of presenting current and correct content on our homepage. The legal basis is Art 6 (1) f) DSGVO. We do not store the aforementioned data due to this integration. To make an appointment, you will be redirected to www.jameda.de. jameda processes the data you provide there on its own responsibility. For more information on data processing by jameda, please refer to the privacy policy of the page www.jameda.de/jameda/datenschutz.php.

Plugins and tools

Google Maps
This site uses the map service Google Maps via an API. The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
To use the functions of Google Maps, it is necessary to store your IP address. This information is usually transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transmission.
The use of Google Maps is in the interest of an appealing presentation of our online offers and an easy location of the places indicated by us on the website. This represents a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO.
You can find more information on the handling of user data in Google’s privacy policy: https://www.google.de/intl/de/policies/privacy/.

Data processing

The data of our patients are processed according to Art. 6 para. 1 lit. b) DSGVO in order to provide them with our contractual or pre-contractual services. The type and scope of the processed data depend on the purpose and the necessity of their processing. The processed data basically include inventory and master data of the patients (e.g., name, address, etc.), as well as contact data (e.g., e-mail address, telephone, etc.), but also services used, names and addresses as well as telephone numbers of contact persons (with their consent) and payment data.
Within the scope of our services, we may also process special categories of data pursuant to Art. 9 (1) DSGVO, in particular information on the health of patients. For this purpose, we obtain, if necessary, according to Art. 6 para. 1 lit. a., Art. 7, Art. 9 para. 2 lit. a. DSGVO an explicit consent of the patients and otherwise process the special categories of data for health care purposes on the basis of Art. 9 para. 2 lit. h. DSGVO, § 22 para. 1 no. 1 b. BDSG.

Insofar as it is necessary for the fulfillment of the contract or required by law, we transmit patient data to medical colleagues or other third parties typically involved in the fulfillment of the contract, such as laboratories, billing offices or comparable service providers, insofar as this serves the provision of our services in accordance with Art. 6 Para. 1 lit b. DSGVO, is required by law according to Art. 6 para. 1 lit c. DSGVO, serves our interests or those of the patients in efficient and cost-effective healthcare as a legitimate interest pursuant to Art. 6 para. 1 lit f. DSGVO or is necessary according to Art. 6 para. 1 lit. d. DSGVO. to protect vital interests of the patients or another natural person or in the context of consent according to Art. 6 para. 1 lit. a., Art. 7 DSGVO.

The deletion of the data takes place when the data is no longer necessary for the fulfillment of contractual or legal duties of care, whereby the legal retention obligations apply here first and foremost.

 

 

Privacy policy for the BVZ presence on Facebook

Boerner Vitalzentrum uses the technical platform and services of Facebook Ireland Ltd, 4 Grand Canal Square Grand Canal Harbour, Dublin 2, Ireland for the information service offered.

We would like to point out that you use the Facebook page and its functions on your own responsibility. This applies in particular to the interactive functions (for example, commenting, sharing, rating). Facebook processes personal data about your account, your IP address as well as about the end devices you use; cookies are used for data collection. These are small files that are stored on your end devices. Facebook describes in general terms what information it receives and how it is used in its data usage guidelines. There you will also find information on how to contact Facebook, how to object, and how to adjust the settings for advertisements. The data usage guidelines are available at the following link: http://de-de.facebook.com/about/privacy Facebook’s complete data guidelines can be found here: https://de-de.facebook.com/full_data_use_policy.

The information may be used by Facebook to provide us, as operators of the Facebook pages, with statistical information such as gender and age distribution about the use of the Facebook page. In addition, Facebook may display further information or advertisements to you according to your preferences. Facebook provides more detailed information on this at the following link: http://de-de.facebook.com/help/pages/insights.

The data collected about you in this context is processed by Facebook Ltd. and may be transferred to countries outside the European Union.

If you visit one of our presences in the social media (e.g. Facebook), you trigger a processing of your personal data during such a visit. In this case, we are jointly responsible with the operator of the respective social network for the data processing operations within the meaning of Art. 26 DSGVO, provided that we actually make a joint decision with the operator of the social network about the data processing and we also have an influence on the data processing. As far as possible, we have concluded joint responsibility agreements with the operators of the social networks pursuant to Art. Art. 26 DSGVO, so in particular the Page Controller Addendums of Facebook Ireland Ltd. Your rights (right to information pursuant to Art. 15 DSGVO, right to rectification pursuant to Art. 16 DSGVO, right to erasure pursuant to Art. 17 DSGVO, right to restriction of processing pursuant to Art. 18 DSGVO, right to data portability pursuant to Art. 20 DSGVO and right to lodge a complaint pursuant to Art. 77 DSGVO ) can in principle be asserted both against us and against the operator of the respective social network (e.g. Facebook).

Please note that despite the joint responsibility pursuant to Art. 26 DSGVO with the operators of social networks, we have no full influence on the data processing of the individual social networks. The corporate policy of the respective provider has a significant influence on our options. In the event of the assertion of data subject rights, we could only forward these requests to the operator of the social network.

In what way Facebook uses data from visits to Facebook pages for its own purposes, to what extent activities on the Facebook page are assigned to individual users, how long Facebook stores this data and whether data from a visit to the Facebook page is passed on to third parties, is not conclusively and clearly stated by Facebook and is not known to us.

When you access a Facebook page, the IP address assigned to your terminal device is transmitted to Facebook. According to Facebook, this IP address is anonymized (for “German” IP addresses) and deleted after 90 days. Facebook also stores information about the end devices of its users (for example, as part of the “login notification” function); this may allow Facebook to assign IP addresses to individual users.

If you are currently logged in to Facebook as a user, a cookie with your Facebook ID is located on your end device. This enables Facebook to track that you have visited this page and how you have used it. This also applies to all other Facebook pages. Via Facebook buttons embedded in websites, it is possible for Facebook to record your visits to these website pages and assign them to your Facebook profile. Based on this data, content or advertising can be offered tailored to you.

If you want to avoid this, you should log out of Facebook or deactivate the “stay logged in” function, delete the cookies present on your device and exit and restart your browser. In this way, Facebook information through which you can be directly identified will be deleted. This will allow you to use our Facebook page without revealing your Facebook identifier. When you access interactive features of the page (Like, Comment, Share, Message, etc.), a Facebook login screen will appear. After any login, you will again be recognizable to Facebook as a specific user. Alternatively, you can use a different browser than usual to visit our Facebook page.

Information on how to manage or delete information about you can be found on the following Facebook support pages: https://de-de.facebook.com/about/privacy#.

We, as the provider of the information service, do not collect or process any data from your use of our service beyond this. You can find this privacy policy in its current version under the item “Data Policy” on our Facebook page.

Privacy policy for the BVZ presence on Instagram

Boerner Vitalzentrum uses the technical platform and services of Instagram Inc, 1601 Willow Road, Menlo Park, CA, 94025, USA for the information service offered.
We would like to point out that you use this Instagram page and its functions on your own responsibility. This applies in particular to the use of the interactive functions (for example, commenting or rating).
When you visit our Instagram page, Instagram collects, among other things, your IP address and other information that is present on your PC in the form of cookies. This information is used to provide us, as operators of the Instagram pages, with statistical information about the use of the Instagram page.
The data collected about you in this context is processed by Instagram Inc. and may be transferred to countries outside the European Union in the process. What information Instagram receives and how it is used is described in general terms by Instagram in its privacy policy. There you will also find information on how to contact Instagram and on the settings options for advertisements. The privacy policy is available at the following link: https://help.instagram.com/519522125107875.
In what way Instagram uses the data from the visit of Instagram pages for its own purposes, to what extent activities on the Instagram page are assigned to individual users, how long Instagram stores this data and whether data from a visit to the Instagram page is passed on to third parties, is not conclusively and clearly stated by Instagram and is not known to us.
When accessing an Instagram page, the IP address assigned to your end device is transmitted to Instagram. According to Instagram, this IP address is anonymized (for “German” IP addresses) and deleted after 90 days. Instagram also stores information about the end devices of its users (for example, as part of the “login notification” function); if necessary, Instagram is thus able to assign IP addresses to individual users.
If you are currently logged in to Instagram as a user, a cookie with your Instagram ID is located on your end device. This enables Instagram to track that you have visited this page and how you have used it. This also applies to all other Instagram pages. Via Instagram buttons embedded in websites, it is possible for Instagram to record your visits to these website pages and assign them to your Instagram profile. Based on this data, content or advertising can be offered tailored to you.
If you want to avoid this, you should log out of Instagram or deactivate the “stay logged in” function, delete the cookies present on your device and exit and restart your browser. In this way, Instagram information through which you can be directly identified will be deleted. This allows you to use our Instagram page without revealing your Instagram identifier. When you access interactive features of the site (like, comment, message, and more), an Instagram login screen will appear. After any login, you will again be recognizable to Instagram as a specific user.
Information on how to manage or delete information about you can be found on the following Instagram help section.
We, as the provider of the information service, collect and process beyond that
no data from your use of our service.
You can find this privacy policy in the respective applicable version under the item “Data Policy” on and the respective Instagram page.