We place great importance on protecting your data. Data protection is an integral part of our practice. The following information provides an overview of what happens to your personal data when you visit our website.
Confidential handling of your data
1. Responsible person
The controller responsible for the processing of personal data on this website is:
General practitioner's office Rustler
Practice owner: Thomas Rustler
Bahnhofstraße 9
08056 Zwickau
Germany
Telephone: +49 (0) 375 4600 8989
Email: info@hausarztpraxis-rustler.de
2. General information on data processing
The protection of your personal data is important to us. We only process personal data to the extent necessary for providing a functional website and our content and services, or where permitted by law. Personal data is any data that can be used to personally identify you.
You have the right to access, modify, and update your personal information and data. We take your concerns regarding data usage seriously and are available to answer any questions you may have.
3. Purposes and legal bases of processing
We process personal data on this website, in particular for the following purposes:
to provide the website and ensure technical security,
for processing inquiries via email or contact form,
to comply with legal obligations,
possibly for scheduling appointments or providing other online functions.
Depending on the circumstances, processing is based in particular on:
Article 6 paragraph 1 letter b GDPR, insofar as the processing is necessary for the performance of pre-contractual measures or for processing your request,
Article 6 paragraph 1 letter c GDPR, insofar as there is a legal obligation,
Article 6 paragraph 1 letter f GDPR, insofar as there is a legitimate interest in the secure and stable operation of the website,
Article 6 paragraph 1 letter a GDPR, insofar as you have given your consent.
4. Hosting and server log files
When you access this website, the hosting provider automatically collects information in so-called server log files. This includes, in particular:
IP address
Date and time of access
accessed page or file
Browser type and browser version
Operating system used
Referrer URL
Hostname of the accessing computer
This data is processed to ensure the technical operation, system security, and stability of the website. The legal basis for this processing is Article 6(1)(f) GDPR.
The log file data is stored only as long as necessary to ensure functionality and security.
5. Contact via email
When you contact us by email, we process the data you provide to handle your request. This includes, in particular, your full name, your contact details, and the content of your message.
The legal basis is Art. 6 para. 1 lit. b GDPR if your request is aimed at initiating or carrying out a treatment or other contact, otherwise Art. 6 para. 1 lit. f GDPR.
Please note that unencrypted email communication can have security vulnerabilities. Therefore, please avoid sending sensitive health data via unencrypted email whenever possible.
6. Contact form
When you send us inquiries via a contact form, we process your information from the form, including the contact details you provide there, to process the inquiry and in case of follow-up questions.
The legal basis is Art. 6 para. 1 lit. b GDPR or Art. 6 para. 1 lit. f GDPR.
Required fields are marked as such. The data will only be stored for as long as necessary to process your request, unless legal retention obligations apply.
7. Cookies and similar technologies
Our website uses technically necessary cookies or similar technologies, insofar as this is necessary for the operation and provision of the website.
Insofar as cookies or similar technologies are used beyond this, particularly for analysis, convenience, or marketing purposes, this will only occur with your consent. Access to or storage of information on end devices generally requires consent, unless a legal exception applies.
8. Online appointment booking
When you book an appointment online via our website, we process the data you provide for appointment organization. If the appointment booking is made through an external service provider, the data will be transmitted to them.
In this case, the privacy policy must describe the specific provider, the data processed, the legal basis, the storage period, and the provider's role under data protection law.
9. Storage duration
We only store personal data for as long as is necessary for the respective purposes or as required by law. Afterwards, the data is deleted or its processing is restricted.
10. Your rights
Under the GDPR, you have the following rights in particular:
Right to information about the personal data stored by us,
Right to rectification of inaccurate data,
Right to erasure,
Right to restriction of processing,
Right to data portability,
Right to object to processing,
Right to revoke consent given with effect for the future.
The GDPR expressly provides for these data subject rights; the right to lodge a complaint with a supervisory authority arises from Article 77 GDPR.
Right to lodge a complaint with a supervisory authority
You have the right to lodge a complaint with a data protection supervisory authority if you believe that the processing of your personal data violates data protection regulations.
10. Your rights
We take technical and organizational measures to protect your data against loss, manipulation, and unauthorized access. Our security measures are continuously adapted to reflect technological developments.
11. Changes to this Privacy Policy
We reserve the right to amend this privacy policy to ensure it always complies with current legal requirements or to reflect changes to our website services in the privacy policy.