Skip to content
Menu
Menu

Privacy policy

Privacy policy

1. name and contact details of the doctor responsible for data processing

 

This data protection information applies to data processing by:

Responsible: Milen Golchev, MD

Practice address: Berliner Allee 44, 40212 Düsseldorf

E-mail:

Phone: +49 211 38 789 934

(the company data protection officer can be contacted at the above address for the attention of Dr. Golchev, or at the e-mail address reachable.)

2. collection and storage of personal data and the nature and purpose of their use

a) When visiting the website

When you visit our website www.tiamana.eu, information is automatically sent to our website server by the browser used on your end device. This information is temporarily stored in a so-called log file. The following information is collected without your intervention and stored until automatic deletion:

IP address of the requested computer, date and time of access,

Name and URL of the file accessed, website from which the access is made,

Browser used and, if applicable, the operating system of your computer as well as the name of your access provider.

The above data will be processed by us for the following purposes:

  • Ensuring a smooth connection of the website,
  • Ensuring a comfortable use of our website,
  • Evaluation of system security and stability, and
  • For other administrative purposes.

The legal basis for data processing is Art. 6 para. 1 p. 1 lit. f DSGVO. Our legitimate interest follows from the purposes for data collection listed above. In no case do we use the collected data for the purpose of drawing conclusions about your person.

b) When registering for our newsletter

If you have expressly consented in accordance with Art. 6 (1) sentence 1 lit. a DSGVO, we will use your e-mail address to send you our newsletter on a regular basis. To receive the newsletter, it is sufficient to provide an e-mail address.

You can unsubscribe at any time, for example via a link at the end of each newsletter. Alternatively, you can also send your unsubscribe request at any time to send by e-mail.

c) When using our contact form

For questions of any kind, we offer you the possibility to contact us via a form provided on the website. In doing so, it is necessary to provide a valid e-mail address so that we know who the enquiry is from and so that we can answer it. Further information can be provided voluntarily.

Data processing for the purpose of contacting us is carried out in accordance with Art. 6 para. 1 p. 1 lit. a DSGVO on the basis of your voluntarily given consent.

The personal data collected by us for the use of the contact form will be automatically deleted after completion of your request.

d) Use of the Tiamana patient file

The use of the Tiamana patient record at https://my.tiamana.eu requires user registration. This is the only way to ensure secure and individual management of the patient file. The personal data is also required for the visualisation and management of examination appointments and for contacting the Tiamana examination centres.

The following information is processed:

  • Surname (birth name, if applicable) and first name
  • Password
  • E-mail address
  • Telephone number

This data is necessary for the performance of a contract to which the data subject is a party or for the implementation of pre-contractual measures taken at the request of the data subject.

The data will be stored until the user requests deletion.

The management and sharing of users' documents requires the processing of the following personal data:

  • Surname (birth name, if applicable) and first name 
  • Course of the appointments
  • Documents shared by the user
  • DICOM data
  • Written findings (epicrisis)
  • Reconnaissance and other investigation documents

This data will be stored until the user deletes the user account, or alternatively until the expiry of the statutory regulations for medical documentation (10 years for medical image recordings and findings, or 10 years from the 18th birthday of the person examined).

After expiry of these periods, the data can be permanently deleted by the user by means of an informal written request for deletion.

The operation of the videoconferences for the purpose of personal clarification and discussion of findings requires the processing of the following data:

  • Information on the duration of the video consultation,
  • on the procedure of the video consultation,
  • on sound and image quality for an improvement of the video consultation.
  • User feedback on the video consultation, if applicable

The data will be deleted after the statutory period of limitation has expired.
User feedback on the video consultation is automatically deleted after 90 days.

The provision of support to users requires the processing of the following personal data:

  • Name and first name
  • E-mail address
  • Content of the request
  • Proof of identity, if applicable
  • If applicable, course of the appointments

In rare cases, Tiamana may temporarily access personal health information with the patient's permission to resolve reported issues.

The data will be deleted after the statutory period of limitation has expired.
Proofs of identity are kept for as long as necessary for the verification of identity.

The reception of complaints and the exercise of rights require the processing of the following data:

  • Name and first name
  • E-mail address
  • Content of the application
  • Proof of identity, if applicable

The data will be deleted after the statutory period of limitation has expired.
Proofs of identity are kept for as long as necessary for the verification of identity.

3. disclosure of data

Your personal data will not be transferred to third parties for purposes other than those listed below.

We will only share your personal information with third parties (including clearing houses and insurance companies) if:

  • you have given your express consent to this in accordance with Art. 6 para. 1 p. 1 lit. a DSGVO
  • the disclosure is necessary in accordance with Art. 6 (1) p. 1 lit. f DSGVO for the assertion, exercise or defence of legal claims and there is no reason to assume that you have an overriding interest worthy of protection in the non-disclosure of your data,
  • in the event that there is a legal obligation for the disclosure pursuant to Art. 6 para. 1 sentence 1 lit. c DSGVO, as well as
  • this is legally permissible and necessary according to Art. 6 para. 1 p. 1 lit. b DSGVO for the processing of contractual relationships with you.

4. social media plug-ins

We use social plug-ins of the social networks Facebook, Twitter and Instagram on our website on the basis of Art. 6 para. 1 p. 1 lit. f DSGVO in order to make our practice better known. The underlying promotional purpose is to be regarded as a legitimate interest within the meaning of the DSGVO. The responsibility for data protection-compliant operation is to be ensured by their respective providers. We integrate these plug-ins using the so-called two-click method in order to protect visitors to our website as best as possible.

a) Facebook

Social media plug-ins from Facebook are used on our website to make their use more personal. We use the "LIKE" or "SHARE" button for this purpose. This is an offer from Facebook.

When you call up a page of our website that contains such a plug-in, your browser establishes a direct connection with the Facebook servers. The content of the plug-in is transmitted by Facebook directly to your browser, which then integrates it into the website.

By integrating the plug-ins, Facebook receives the information that your browser has accessed the corresponding page of our website, even if you do not have a Facebook account or are not currently logged in to Facebook. This information (including your IP address) is transmitted by your browser directly to a Facebook server in the USA and stored there.

If you are logged in to Facebook, Facebook can directly assign your visit to our website to your Facebook account. If you interact with the plug-ins, for example by clicking the "LIKE" or "SHARE" button, the corresponding information is also transmitted directly to a Facebook server and stored there. The information is also published on Facebook and displayed to your Facebook friends.

Facebook may use this information for the purposes of advertising, market research and demand-oriented design of the Facebook page. For this purpose, Facebook creates usage, interest and relationship profiles, e.g. to evaluate your use of our website with regard to the advertisements displayed to you on Facebook, to inform other Facebook users about your activities on our website and to provide other services associated with the use of Facebook.

If you do not want Facebook to assign the data collected via our website to your Facebook account, you must log out of Facebook before visiting our website.

For the purpose and scope of the data collection and the further processing and use of the data by Facebook, as well as your rights in this regard and setting options for protecting your privacy, please refer to Facebook's privacy policy(https://www.facebook.com/about/privacv/).

b) Twitter

Plug-ins of the Twitter Inc. short message network (Twitter) are integrated on our website. You can recognise the Twitter plug-ins (tweet button) by the Twitter logo on our site. You can find an overview of tweet buttons here (https://about.twitter.com/resources/buttons).

If you visit a page of our website that contains such a plug-in, a direct connection is established between your browser and the Twitter server. Twitter thereby receives the information that you have visited our site with your IP address. If you click on the Twitter "tweet" button while you are logged in with your Twitter account, you can link the content of our site to your Twitter profile. This enables Twitter to associate your visit to our site with your user account. We would like to point out that we, as the provider of the pages, have no knowledge of the content of the transmitted data or its use by Twitter.

If you do not want Twitter to be able to associate your visit to our pages, please log out of your Twitter user account.

For more information, please see Twitter 's privacy policy(https://twitter.com/privacv).

c) Instagram

Our website also uses so-called social plug-ins ("plugins") from Instagram, which is operated by Instagram LLC., 1601 Willow Road, Menlo Park, CA 94025, USA ("Instagram").

The plug-ins are marked with an Instagram logo, for example in the form of an "Instagram camera".

When you call up a page of our website that contains such a plug-in, your browser establishes a direct connection to the Instagram servers. The content of the plug-in is transmitted by Instagram directly to your browser and integrated into the page. Through this integration, Instagram receives the information that your browser has called up the corresponding page of our website, even if you do not have an Instagram profile or are not currently logged in to Instagram.

This information (including your IP address) is transmitted by your browser directly to an Instagram server in the USA and stored there. If you are logged in to Instagram, Instagram can directly assign your visit to our website to your Instagram account. If you interact with the plug-ins, for example by clicking the "Instagram" button, this information is also transmitted directly to an Instagram server and stored there.

The information will also be published on your Instagram account and shown to your contacts there.

If you do not want Instagram to directly assign the data collected via our website to your Instagram account, you must log out of Instagram before visiting our website.

For more information, please see Instagram's privacy policy (https://help.instaqram.com/15583370790Q388).

5. data subject rights

You have the right

  • information about your personal data processed by us in accordance with Art. 15 DSGVO.

personal data. In particular, you can request information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of complaint, the origin of your data if it has not been collected by us, as well as the existence of automated decision-making including profiling and, if applicable, meaningful information about its details;

  • demand the correction of incorrect or incomplete personal data stored by us without delay in accordance with Art. 16 DSGVO;
  • pursuant to Art. 17 DSGVO to request the erasure of your personal data stored by us, unless the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the assertion, exercise or defence of legal claims;
  • to request the restriction of the processing of your personal data in accordance with Art. 18 DSGVO, insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you object to its erasure and we no longer require the data, but you need it for the assertion, exercise or defence of legal claims, or you have objected to the processing in accordance with Art. 21 DSGVO
  • pursuant to Art. 20 DSGVO to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request the transfer to another controller,
  • revoke your consent at any time in accordance with Art. 7 (3) DSGVO. This has the consequence that we may no longer continue the data processing based on this consent for the future and
  • complain to a supervisory authority in accordance with Art. 77 DSGVO. As a rule, you can contact the supervisory authority of your usual place of residence or place of work or our place of practice.

6. right of objection

If your personal data is processed on the basis of legitimate interests pursuant to Art. 6 (1) sentence 1 lit. f DSGVO, you have the right to object to the processing of your personal data pursuant to Art. 21 DSGVO, insofar as there are grounds for doing so that arise from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right of objection, which is implemented by us without specifying a particular situation.

If you wish to make use of your right of revocation or objection, it is sufficient to send an e-mail to

7. data security

We use the widespread SSL procedure (Secure Socket Layer) in connection with the highest encryption level supported by your browser when visiting the website. As a rule, this is 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether an individual page of our website is encrypted by the closed display of the key or lock symbol in the lower status bar of your browser.

We also use appropriate technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorised access by third parties. Our security measures are continuously improved in line with technological developments.

8. up-to-dateness and amendment of this privacy policy

This privacy policy is currently valid and has the status June 2021.

Due to the further development of our website and offers on it or due to changed legal or official requirements, it may become necessary to change this data protection declaration. You can access and print out the current data protection declaration at any time on the website at https://www.tiamana.eu/datenschutz.

Data protection authorities require the conclusion of a data processing agreement for the permissible use of Google Analytics. A corresponding template is offered by Google at http://www.google.com/analytics/terms/de.pdf.