Personal Data Protection
What is personal data and who is the data subject?
The law defines personal data as any information about an identified or identifiable natural person; an identifiable natural person is a natural person who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, a network identifier or to one or more specific elements of the physical, physiological, genetic, psychological, economic, cultural or social identity of that natural person (hereinafter also referred to as “data”). Personal and identification data means in particular: name, surname, address, date of birth, birth number/national identifier, age, address (gender), business name, registered office/place of business, registered office of the organisational unit, name, surname and residence of persons authorised to act for the legal entity, identification number, tax identification number, contact telephone number, billing data (e.g. type, method and volume of services used), e-mail address, bank account and other data legitimately obtained about the customer.
If you become a customer using our services, we will ask you to provide us with your personal data. We normally only handle billing information and your contact details. If you are our patient, we also possess data according to 98/2012 Coll. Decree on medical documentation.
The company Urosanté s.r.o. Business ID: 24801381, declares that all personal data of users, customers and visitors are considered confidential and are treated in accordance with Act No. 101/2000 Coll. and with effect from 25. 5. 2018 with Regulation (EU) 2016/679. We do not provide any personal data of users to third parties.
Where do we store personal data?
Medical records are stored at the Urosanté Clinic’s headquarters at Želetavská 1447/5, Michle, 140 00 Prague 4 on protected servers or in documentary form. In the case of paper form, your data is protected by security locks, CCTV and an electronic alarm system.
E-mail communication – users’ personal data is stored on servers located in the Czech Republic, which is a member of the European Union.
What personal data do we collect?
We reserve the right, but are not obliged, to collect the following information. All the information below is considered confidential and is subject to these data protection terms.
Personal data of customers:
These are customers who have ordered our services from Urosanté s.r.o. If you wish to change this information, please contact us at email@example.com. We do not store or have access to credit card numbers or other sensitive payment information.
Visitors’ personal data:
These are visitors to the website and other information sites we use. At these locations, we may automatically collect information such as IP address, browser type, operating system type and approximate location.
We also store the following information:
- Information obtained from questionnaires or similar forms that we ask you to complete.
The period of processing of personal data is 5 years from the end of the last service.
The data controller is entitled to provide this data to the competent state authorities upon request and you understand this.
Medical record data:
We also store all mandatory data according to 98/2012 Coll. Decree on medical documentation.
How is personal data secured?
We protect users’ personal data using modern standards. Communication between our web tools and the user is secured using SSL/TLS encryption.
How do we handle cookies?
In order to improve the quality of our services, we store cookies on the user’s device.
We use different types of cookies for the following purposes:
- to identify the user’s device,
- to optimise our website,
- to provide or offer personalised services,
- for third party services such as Google Facebook, Seznam and others that we use.
By using our services, the user acknowledges that we may use some or all types of cookies and agrees that we may place cookies on the device from which they access our site.
If the user does not agree with this, they should stop using our website or adjust the settings of their internet browser. The user can block cookies in the settings of their browser, which allows them to refuse to accept all or some cookies.
If the user sets their internet browser to block all cookies, it is possible that some of our services may be partially inoperable.
How can I have my personal data edited or deleted?
The user/customer can edit or delete any data. If the user wants to completely change or delete all the personal information and data we store, they need to contact customer support by e-mail firstname.lastname@example.org.
The process of deleting a customer account is irreversible and is only carried out at the active request of the user. After termination of the hosting service or server, we will delete the complete data within 30 days. The data will also be removed from our backups. Invoice data will be retained for the shortest possible time in accordance with applicable laws.
- By continuing to use our services, you are expressing your free, specific, informed and unambiguous will that you understand the processing of your personal data under this policy.
- We are entitled to change these rules in accordance with applicable legislation.
- If we change the rules, we will let you know by email.
- These rules shall enter into force on 1. 1. 2022.
Contacts for exercising rights and other questions related to personal data protection
We will be happy to answer your questions about data protection at email@example.com or at our headquarters at Želetavská 1447/5, Michle, 140 00 Prague 4 during normal working hours and by prior arrangement. We do our best to accommodate you, but if you are not satisfied, you can contact the Office for Personal Data Protection, more information on the website: https://www.uoou.cz/.