Privacy Policy

We, the operators of www.orthopaedie-duesseldorf-sued.de, take the protection of your personal data very seriously and strictly adhere to the rules of data protection laws. Personal data is collected on this website only to the extent that is technically necessary. Under no circumstances will the collected data be sold or otherwise passed on to third parties.

The person responsible for collecting and storing the data is the practice owner. You can find their contact details in the imprint of this website.

The following statement provides you with an overview of how we ensure this protection and what type of data is collected for what purpose.

Definitions

The privacy policy of the specialist practice for orthopedics & trauma surgery Dr. Amir R. Ghasemi is based on the terms used by the European legislator when issuing the General Data Protection Regulation (GDPR). Our privacy policy is intended to be easily readable and understandable for both the public and our customers and business partners. To ensure this, we would like to explain the terms used in advance.

In this privacy policy, we use, among other things, the following terms:

  • Personal data: Personal data is any information relating to an identified or identifiable natural person (hereinafter referred to as the "data subject"). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
  • Data Subject: A data subject is any identified or identifiable natural person whose personal data is processed by the controller responsible for the processing.
  • Processing: Processing is any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
  • Restriction of Processing: Restriction of processing is the marking of stored personal data with the aim of limiting their processing in the future.
  • Pseudonymization: Pseudonymization is the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data are not attributed to an identified or identifiable natural person.
  • Controller or Controller Responsible for the Processing: The controller or controller responsible for the processing is the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data. Where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.
  • Processor: A processor is a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
  • Recipient: A recipient is a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients.
  • Third Party: A third party is a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorized to process personal data.
  • Consent: Consent is any freely given, specific, informed and unambiguous indication of the data subject's wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.

Data Processing on This Website

Our website is solely for providing information about our practice, our range of treatments, and therapeutic options for various conditions. When you visit our website, only the data that your browser transmits to our server is collected. This data is necessary for you to view and navigate our website. The legal basis for data collection is Art. 6 para. 1 f) EU General Data Protection Regulation. Specifically, the following data is collected when you visit our website:

  • Types and versions of browsers used,
  • The operating system used by the accessing system,
  • The website from which an accessing system arrives at our website (so-called referrer),
  • The sub-websites that are accessed via an accessing system on our website,
  • The date and time of access to the website,
  • An Internet Protocol address (IP address),
  • The Internet service provider of the accessing system, and
  • Other similar data and information that serve to avert danger in the event of attacks on our information technology systems.

When using this general data and information, we do not draw any conclusions about the affected person. Rather, this information is needed to

  • deliver the content of our website correctly,
  • ensure the long-term functionality of our information technology systems and the technology of our website, and
  • provide law enforcement authorities with the information necessary for prosecution in the event of a cyber attack.

These anonymously collected data and information are evaluated by us with the aim of increasing data protection and data security in our company, ultimately to ensure an optimal level of protection for the personal data we process. The anonymous data of the server log files are stored separately from all personal data provided by an affected person and are deleted after a maximum of six months.

Legal or contractual regulations for the provision of personal data; necessity for contract conclusion; obligation of the affected person to provide personal data; possible consequences of non-provision

We inform you that the provision of personal data is partly required by law (e.g., tax regulations) or can also result from contractual provisions (e.g., information about the contracting party). Sometimes it may be necessary for the conclusion of a contract that an affected person provides us with personal data, which must subsequently be processed by us. For example, the affected person is obliged to provide us with personal data if our company concludes a contract with them. Failure to provide the personal data would result in the contract with the affected person not being concluded.

Rights of the affected persons

Every affected person has the right granted by the European Directive and Regulation to obtain confirmation from the controller as to whether personal data concerning them are being processed. If an affected person wishes to exercise this right of confirmation, they can contact our data protection officer or another employee of the controller at any time.

Every person affected by the processing of personal data has the right granted by the European Directive and Regulation to obtain, at any time and free of charge, information about the personal data stored about them and a copy of this information from the controller. Furthermore, the European Directive and Regulation have granted the affected person access to the following information:

  • The purposes of the processing
  • The categories of personal data being processed
  • The recipients or categories of recipients to whom the personal data have been or will be disclosed, particularly in the case of recipients in third countries or international organizations
  • If possible, the planned duration for which the personal data will be stored, or, if this is not possible, the criteria used to determine this duration
  • The existence of a right to request rectification or erasure of personal data concerning them, or to restrict processing by the controller, or to object to such processing
  • The existence of a right to lodge a complaint with a supervisory authority
  • If the personal data are not collected from the data subject: Any available information about the source of the data

Furthermore, the data subject has the right to be informed whether personal data have been transferred to a third country or to an international organization. If this is the case, the data subject also has the right to be informed about the appropriate safeguards relating to the transfer.

If a data subject wishes to exercise this right of access, they may contact our data protection officer or another employee of the controller at any time.

Every data subject affected by the processing of personal data has the right, granted by the European legislator, to request the immediate rectification of inaccurate personal data concerning them. Furthermore, the data subject has the right to request the completion of incomplete personal data, taking into account the purposes of the processing, including by means of a supplementary statement.

If a data subject wishes to exercise this right of rectification, they may contact our data protection officer or another employee of the controller at any time.

Every data subject affected by the processing of personal data has the right, granted by the European legislator, to request the controller to delete personal data concerning them without undue delay, provided that one of the following reasons applies and the processing is not necessary:

  • The personal data are no longer necessary for the purposes for which they were collected or otherwise processed.
  • The data subject withdraws their consent on which the processing is based according to Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR, and there is no other legal ground for the processing.
  • The data subject objects to the processing pursuant to Art. 21(1) GDPR, and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing pursuant to Art. 21(2) GDPR.
  • The personal data have been unlawfully processed.
  • The deletion of the personal data is necessary to comply with a legal obligation under Union or Member State law to which the controller is subject.
  • The personal data have been collected in relation to the offer of information society services referred to in Art. 8(1) GDPR.

If any of the aforementioned reasons apply and an affected person wishes to request the deletion of personal data stored by the Specialist Practice for Orthopedics & Trauma Surgery Dr. Amir R. Ghasemi, they can contact our data protection officer or another employee of the data controller at any time. The data protection officer of the Specialist Practice for Orthopedics & Trauma Surgery Dr. Amir R. Ghasemi or another employee will ensure that the deletion request is complied with immediately.

If the personal data has been made public by the Specialist Practice for Orthopedics & Trauma Surgery Dr. Amir R. Ghasemi and our company, as the controller, is obliged to delete the personal data in accordance with Art. 17(1) GDPR, the Specialist Practice for Orthopedics & Trauma Surgery Dr. Amir R. Ghasemi will take appropriate measures, considering the available technology and implementation costs, including technical measures, to inform other data controllers processing the published personal data that the affected person has requested the deletion of all links to this personal data or copies or replications of this personal data, insofar as the processing is not necessary. The data protection officer of the Specialist Practice for Orthopedics & Trauma Surgery Dr. Amir R. Ghasemi or another employee will take the necessary steps in individual cases.

Any person affected by the processing of personal data has the right granted by the European legislator to request the restriction of processing from the controller if one of the following conditions is met:

  • The accuracy of the personal data is contested by the affected person, for a period enabling the controller to verify the accuracy of the personal data.
  • The processing is unlawful, the affected person opposes the deletion of the personal data and requests instead the restriction of its use.
  • The controller no longer needs the personal data for the purposes of processing, but the affected person requires it for the establishment, exercise, or defense of legal claims.
  • The affected person has objected to processing pursuant to Art. 21(1) GDPR and it has not yet been determined whether the legitimate grounds of the controller override those of the affected person.

If any of the aforementioned conditions are met and an affected person wishes to request the restriction of personal data stored at the Specialist Practice for Orthopedics & Trauma Surgery Dr. Amir R. Ghasemi, they can contact our data protection officer or another employee of the data controller at any time. The data protection officer of the Specialist Practice for Orthopedics & Trauma Surgery Dr. Amir R. Ghasemi or another employee will arrange for the restriction of processing. Every person affected by the processing of personal data has the right granted by the European Directive and Regulation to receive the personal data concerning them, which was provided by the affected person to a controller, in a structured, commonly used, and machine-readable format. They also have the right to transmit this data to another controller without hindrance from the controller to whom the personal data was provided, provided that the processing is based on consent pursuant to Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR or on a contract pursuant to Art. 6(1)(b) GDPR and the processing is carried out by automated means, provided that the processing is not necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

Furthermore, in exercising their right to data portability pursuant to Art. 20(1) GDPR, the affected person has the right to have the personal data transmitted directly from one controller to another, where technically feasible and provided that the rights and freedoms of others are not adversely affected.

To assert the right to data portability, the affected person can contact the data protection officer appointed by the Specialist Practice for Orthopedics & Trauma Surgery Dr. Amir R. Ghasemi or another employee at any time. Every person affected by the processing of personal data has the right granted by the European Directive and Regulation to object at any time, on grounds relating to their particular situation, to the processing of personal data concerning them, which is based on Art. 6(1)(e) or (f) GDPR.

The Specialist Practice for Orthopedics & Trauma Surgery Dr. Amir R. Ghasemi will no longer process the personal data in the event of an objection, unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights, and freedoms of the affected person or for the establishment, exercise, or defense of legal claims.

Every person affected by the processing of personal data has the right granted by the European Directive and Regulation to withdraw consent to the processing of personal data at any time.

If the affected person wishes to exercise their right to withdraw consent, they can contact our data protection officer or another employee of the data controller at any time.

Use of Cookies

To make your visit to our website attractive and to enable the use of certain functions, we use so-called cookies on various pages. These are small text programs that are stored on your computer (in your browser) after visiting our website. If you visit our website again, the browser you use will send the information stored in the cookie to our website, which can, for example, make navigation easier by adopting presettings. Cookies are not viruses and cannot install malware on the computer. They are just short texts exchanged between the web server and the browser. The following types of cookies are used on our website:

  • Transient Cookies (temporary cookies)
    These cookies are only stored for the duration of your browser session. They store a so-called session ID, which allows various requests from your browser to be assigned to the same session. This allows your computer to be recognized when you return to the website. Once you close the browser, these cookies are automatically deleted.
  • Persistent Cookies (time-limited cookies)
    These cookies differ from transient cookies only in that they are not automatically deleted when you close the browser but only after a preset time. However, you can delete these cookies at any time via your browser settings.

In principle, you can configure your browser settings so that cookies are either not accepted at all or only accepted to a limited extent. However, if you make use of this option, it may result in limitations in the usability of our website.

Notification of Changes

Changes in the law or changes in our internal processes may make it necessary to adjust this privacy policy. In the event of such a change, we will notify you at least six weeks before it takes effect. You generally have the right to withdraw your consent.

Please note that (unless you exercise your right of withdrawal) the current version of the privacy policy is the valid one.

Legal Basis for Processing

Article 6(1)(a) GDPR serves as the legal basis for processing operations for which we obtain consent for a specific processing purpose. If the processing of personal data is necessary for the performance of a contract to which the data subject is a party, as is the case, for example, with processing operations necessary for the delivery of goods or the provision of any other service or consideration, the processing is based on Article 6(1)(b) GDPR. The same applies to such processing operations that are necessary for carrying out pre-contractual measures, for example in cases of inquiries about our products or services. If our company is subject to a legal obligation that requires the processing of personal data, such as for the fulfillment of tax obligations, the processing is based on Article 6(1)(c) GDPR. In rare cases, the processing of personal data may be necessary to protect the vital interests of the data subject or another natural person. This would be the case, for example, if a visitor were injured on our premises and their name, age, health insurance data, or other vital information had to be passed on to a doctor, hospital, or other third parties. Then the processing would be based on Article 6(1)(d) GDPR. Ultimately, processing operations could be based on Article 6(1)(f) GDPR. This legal basis is used for processing operations that are not covered by any of the aforementioned legal bases if the processing is necessary to protect a legitimate interest of our company or a third party, provided that the interests, fundamental rights, and freedoms of the data subject do not override. Such processing operations are particularly permitted because they have been specifically mentioned by the European legislator. The legislator considered that a legitimate interest could be assumed if the data subject is a customer of the controller (Recital 47 Sentence 2 GDPR).

Legitimate Interests in Processing Pursued by the Controller or a Third Party

If the processing of personal data is based on Art. 6(1)(f) GDPR, our legitimate interest is the conduct of our business activities for the benefit of the well-being of all our employees and our shareholders.

Duration for Which Personal Data is Stored

The criterion for the duration of the storage of personal data is the respective statutory retention period. After the period expires, the corresponding data is routinely deleted, provided it is no longer required for contract fulfillment or contract initiation.

The Controller or Your Contact Person

If you have any questions about the collection, processing, or use of your personal data, or if you need information, correction, blocking, or deletion of data, as well as the revocation of consents given or objection to a specific data use, please contact the website operator directly. You can find their contact details in the imprint of this website.

Data Protection in Applications and the Application Process

The controller responsible for processing collects and processes the personal data of applicants for the purpose of handling the application process. Processing can also be carried out electronically. This is particularly the case if an applicant submits the relevant application documents electronically, for example, by email or via a web form on the website, to the controller responsible for processing. If the controller responsible for processing concludes an employment contract with an applicant, the transmitted data will be stored for the purpose of handling the employment relationship in compliance with legal requirements. If the controller responsible for processing does not conclude an employment contract with the applicant, the application documents will be deleted two months after the rejection decision, provided that no other legitimate interests of the controller responsible for processing oppose the deletion. Another legitimate interest in this sense is, for example, the burden of proof in a procedure under the General Equal Treatment Act (AGG).

Use of Google Maps

Our website uses Google Maps to display maps and create directions.

Google Maps is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

By visiting the website, Google receives information that you have accessed the corresponding page of our website. This happens regardless of whether you have a user account with Google or are logged in through it. If you are logged in with a Google user account while using the website, the data will be directly associated with your user account. If you do not wish this, you must log out before using the service.

By using Google Maps, you agree to the collection, processing, and use of the automatically collected data as well as the data you enter by Google and possibly by third-party providers. The terms of use for Google Maps can be found under Terms of Use for Google Maps. Detailed information can be found at google.de: Transparency and Choice as well as Privacy Policy. You must exercise your right to object directly with Google. You can disable the Google Maps service through your browser settings (disabling JavaScript in the browser). Usage will then no longer be possible.

Use of Google (Universal) Analytics for Web Analysis

This website uses Google Analytics, a web analysis service of Google Inc. ("Google"). Google Analytics uses "cookies", text files that are stored on your computer and that allow an analysis of your use of the website. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. IP anonymization is activated on this website. Therefore, your IP address will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. Google will use this information to evaluate your use of the website, to compile reports on website activity, and to provide other services related to website and internet usage to the website operator. More information: https://support.google.com/analytics/answer/2763052?hl=en.

The IP address transmitted by your browser as part of Google Analytics will not be merged with other data from Google. You can prevent the storage of cookies by adjusting your browser software accordingly. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) by Google, as well as the processing of this data by Google, by downloading and installing the browser plugin available at the following link: http://tools.google.com/dlpage/gaoptout?hl=de.

Contact Form

If you send us inquiries via the contact form, your details from the inquiry form, including the contact details you provided there, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We do not share this data without your consent.

The processing of the data entered into the contact form is therefore based solely on your consent (Art. 6 para. 1 lit. a GDPR). You can revoke this consent at any time. An informal notification by email to us is sufficient for this purpose. The legality of the data processing operations carried out until the revocation remains unaffected by the revocation.

The data you enter in the contact form will remain with us until you request us to delete it, revoke your consent to store it, or the purpose for storing the data no longer applies (e.g., after your inquiry has been processed). Mandatory legal provisions – especially retention periods – remain unaffected.

Jameda

Our website uses plug-ins from jameda GmbH, St.-Cajetan-Straße 41, 81669 Munich. When you visit one of our pages equipped with a Jameda plug-in, a connection to the Jameda servers is established. The Jameda server is informed which of our pages you have visited.

Jameda collects information about the use of www.jameda.de from individual computers. By collecting such information, Jameda intends to personalize its online offering. If you interact with the plug-in, for example by pressing the "Recommend" button or leaving a comment, the corresponding information is transmitted directly from your browser to Jameda and stored there.

You can find out the purpose and scope of the respective data collection and information on the further processing and use of the data by the providers, as well as your rights and settings options for protecting your privacy, on the Jameda pages in the privacy policy at https://www.jameda.de/jameda/datenschutz.php

Forwarding and Data Transmission to Doctolib GmbH

We have integrated the option to schedule appointments online via the website of Doctolib GmbH, Mehringdamm 51, 10961 Berlin (Doctolib) into our website.

When you click the "Schedule an appointment online" button, you will be redirected to the Doctolib website, where you can schedule an appointment online. Although we do not forward any personal data to Doctolib ourselves, Doctolib may be able to infer that you came from our website. No data is transmitted to Doctolib before you click the button.

By being redirected, you leave our website. Doctolib operates the Doctolib website and processes your data under its own responsibility and not on our behalf. We have no influence on the design or content of the Doctolib website and do not adopt them as our own. Likewise, we have no influence on the type and scope of the data processed by Doctolib or the transfer of this data to third parties. We also have no effective control options in this regard.

Please refer to Doctolib's privacy policy to find out what data is collected by Doctolib and how it is used: https://info.doctolib.de/datenschutzerklaerung/

Google ReCaptcha

We integrate the function for recognizing bots, e.g., in entries in online forms ("ReCaptcha") from the provider Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

reCAPTCHA is used to check whether the data input on our websites (e.g., in a contact form) is done by a human or by an automated program. To do this, reCAPTCHA analyzes the behavior of the website visitor based on various characteristics. This analysis begins automatically as soon as the website visitor enters the website. For the analysis, reCAPTCHA evaluates various information (e.g., IP address, the duration of the website visit, or mouse movements made by the user). The data collected during the analysis is forwarded to Google.

For more information about Google reCAPTCHA and Google's privacy policy, please visit: https://www.google.com/policies/privacy/

Further Information

Your trust is important to us. Therefore, we want to be available to answer any questions you may have regarding the processing of your personal data at any time. If you have any questions that this privacy policy could not answer, or if you need more detailed information on a specific point, please feel free to contact the website operator at any time. You can find their contact details in the imprint of this website.

WhatsApp WhatsApp