NEUROPORT
Privacy Policy
This Privacy Policy informs you about the ways in which personal data is processed and protected within the service located at the electronic address www.neuroport.pl
The content of the pages of the website is the property of the Data Controller and is protected by law.
DEFINITIONS
Administrator - Ejmedical Sp. z o. o based in Poznań (60-111), 23a Rakoniewicka Street, NIP: 7792496203, REGON: 381342082
Personal information - information about a natural person identified or identifiable by one or more specific factors that determine physical, physiological, genetic, mental, economic, cultural or social identity, including device IP, location data, Internet identifier and information collected through cookies and other similar technology.
Policy - this Privacy Policy.
Regulation - Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC.
Service - Internet service run by the Administrator at the following address www.neuroport.pl
User - any natural person visiting the Site or using one or more of the services or features of the Site described in the Policy.
TERMS OF USE
- The Administrator collects data to the extent necessary to provide the individual services offered, as well as information about the User's activity on the Website.
- The Administrator indicates that in order to use the Website, the User should have a device with installed software that allows web browsing and access to the Internet. The Website can be accessed using the most popular web browsers.
- The administrator notes that the website may contain links to third-party websites. Third party websites have their own privacy policies. By visiting these sites, the User is subject to these policies.
- The Administrator reserves the right to collect the User's IP address, which may prove helpful in diagnosing technical problems with the server, creating statistical analysis (e.g. determining from which regions we record the most visits). In addition, they may be useful in administering and improving the Service itself.
PROTECTION OF YOUR PERSONAL DATA
- Ejmedical Ltd. pays special attention to the issues of ensuring security and ensuring that personal data is duly protected taking into account the manner corresponding to the provisions of the applicable law.
- The administrator of the personal data of the Service Users is Ejmedical Ltd.
- Users have the right to get answers to any question they ask about data protection. Questions should be addressed to: rodo@ejmedical.pl
- Personal data of all persons using the Service (including IP address or other identifiers and information collected through cookies or other similar technologies), and who are not registered Users (i.e. persons who do not have a profile on the Service), are processed by the Administrator:
a. for the purpose of providing services electronically in terms of providing Users with access to content collected on the Site - in which case the legal basis for processing is the necessity of processing for the performance of the contract (Article 6(1)(b) of the Regulation);
b. for analytical and statistical purposes, in which case the legal basis for processing is the legitimate interest of the Administrator (Article 6(1)(f) of the Regulation), consisting of conducting analyses of Users' activities, as well as their preferences in order to improve the functionalities used and services provided;
c. in order to use the functionalities of the Service, including contact forms, reservations, opinions or complaints - the legal basis for processing personal data is the legitimate interest of the Administrator (Article 6 (1) (f) of the Regulation);
d. for the purpose of possible establishment and investigation of claims or defense against claims - the legal basis for processing is the legitimate interest of the Administrator (Article 6(1)(f) of the Regulation), consisting in the protection of its rights;
e. for marketing purposes of the Administrator and other entities, in particular related to the presentation of behavioral advertising. - The User's activity on the Service, including his/her personal data, is recorded in system logs (a special computer program used to store a chronological record containing information about events and activities that relate to the computer system used to provide services by the Administrator). The information collected in the logs is processed primarily for purposes related to the provision of services. The Administrator also processes them for technical, administrative purposes, to ensure the security of the IT system and the management of this system, as well as for analytical and statistical purposes - in this regard, the legal basis for processing is the Administrator's legitimate interest (Article 6(1)(f) of the Regulation).
- The Administrator also provides the possibility to contact him using electronic contact forms. Using the form requires providing personal data necessary to contact the User and respond to the inquiry. The User may also provide other data in order to facilitate contact or service the inquiry. Provision of data marked as mandatory is required in order to accept and service the inquiry, and failure to provide such data will result in the impossibility of service. Personal data are processed:
a. for the purpose of identifying the sender and handling his/her inquiry sent through the form provided - the legal basis for processing is the necessity of processing for the performance of the service contract (Article 6(1)(b) of the Ordinance); with regard to data provided optionally, the legal basis for processing is consent (Article 6(1)(a) of the Ordinance);
b. for analytical and statistical purposes - the legal basis of the processing is the Administrator's legitimate interest (Article 6 (1) (f) of the Regulation), consisting of keeping statistics on queries submitted by Users via the Service in order to improve its functionality. - The Administrator informs that as part of the processing of personal data and the rights under the Regulation, the User may request access to his/her personal data, rectification (if incorrect) or completion, as well as restriction of its processing. The data subject also has the right to request the erasure of personal data if it is no longer necessary for the purposes for which it was collected. The user may also exercise the right to object to the Administrator to the processing of his or her personal data and the right to data portability to another administrator. If you wish to exercise your rights, please contact the Administrator - via the website or at: biuro@ejmedical.pl
- We would also like to inform you that you have the right to lodge a complaint with the authority overseeing compliance with data protection laws.
- In connection with the implementation of the services sewn in the establishments of the Service, the User's personal data may be transferred to external entities, including, in particular, suppliers responsible for the operation of IT systems, entities such as banks and payment operators, entities providing accounting services or couriers (e.g. in connection with the implementation of the request for the issuance of copies of medical records), marketing agencies (in the field of marketing services) and entities affiliated with the Administrator.
- If the User's consent is obtained, his data may also be shared with other entities for their own purposes, including marketing purposes.
- The Administrator reserves the right to disclose selected information concerning the User to competent authorities or third parties who make a request for such information, relying on the relevant legal basis and in accordance with the provisions of the applicable law.
- The administrator does not transfer data outside the European Economic Area (EEA).
- Full information about the Administrator's processing of your personal data is available at: neuroport.pl/policykaprywatnosci under the various clauses of the information obligation for patients and contractors, among others.
PERIOD OF PROCESSING OF PERSONAL DATA
- The period of data processing by the Administrator depends on the type of service provided and the purpose of processing. As a rule, data are processed for the duration of providing the service or fulfilling the order, until the withdrawal of the consent given, or until an effective objection is made to data processing in cases where the legal basis for data processing is the legitimate interest of the Administrator.
- The processing period may be extended if the processing is necessary for the establishment and assertion of possible claims or defense against claims, and thereafter only if and to the extent required by law. After the expiration of the processing period, the data shall be irreversibly deleted or anonymized.
MARKETING
- The Administrator processes Users' personal data in order to carry out marketing activities, which may consist of:
a. displaying marketing content to the User that is not tailored to the User's preferences (contextual advertising);
b. displaying to the User marketing content corresponding to the User's interests (behavioral advertising);
c. targeting e-mail notifications of interesting offers or content, which in some cases contain commercial information (e.g. newsletter service);
d. conducting other types of activities related to direct marketing of goods and services (sending commercial information by electronic means and telemarketing activities - with the User's prior consent). - In order to carry out marketing activities, the Administrator uses profiling in some cases. This means that through automatic data processing, the Administrator evaluates selected factors about Users in order to analyze their behavior or create a forecast for the future. This allows the content displayed to be better tailored to the individual preferences and interests of the User.
SOCIAL MEDIA PLUGINS
- The Website uses social media plug-ins from Facebook, Linkedin, Youtube within the framework of Article 6(1)(f) of the Ordinance (as a primary advertising and promotional purpose of the Administrator) to allow users to share content and access channels operated by the Administrator.
- The plug-ins are marked with the logo of each of the aforementioned social networking accounts. There are also additions in terms of the ability to leave a , "Like" or "Share" button. Each of the Services has a separate privacy policy, the content of which can be consulted by accessing a particular page using the plugin. The content of the plug-in is sent directly to the social network from the browser and integrated into the site. This information (including IP address) is sent directly from the user's browser to the server of the respective Social Network, where it is in turn stored.
- The purpose and scope of data collection and information about further processing and use of data by social networks, as well as related rights and setting options to protect your privacy can be found on each listed social network. If you do not want the social network to attribute the collected information about your visit to our Site directly to your profile, you should first log out of your account on the respective social network before visiting the Site.
- For more detailed information, please follow the links below:
a. Facebook: https://www.facebook.com/policy.php
b. Google: https://privacy.google.com/take-control.html?categories_activeEl=sign-in
c. LinkedIn: https://www.linkedin.com/legal/privacy-policy?_l=pl_PL
COOKIE SETTINGS MANAGEMENT
- A cookie is a small file stored on the device being used, then used for statistical purposes, improving website functionality and other functions. The Administrator does not use cookies to collect information that constitutes personal data about Users. However, some of the information processed may be considered personal data as mentioned below.
- The use of cookies for the purpose of collecting data through them, including gaining access to data stored on the User's device, requires the User's consent. This consent may be withdrawn at any time.
- Permission is not required only for cookies, the use of which is necessary for the provision of a telecommunications service (data transmission to display content).
- Withdrawal of consent for the use of cookies is possible via browser settings. You can find detailed information on this subject at the following links:
a. Internet Explorer: https://support.microsoft.com/pl-pl/windows/usuwanie-plik%C3%B3w-cookie-i-zarz%C4%85dzanie-nimi-168dab11-0753-043d-7c16-ede5947fc64d
b. Mozilla Firefox: http://support.mozilla.org/pl/kb/ciasteczka
c. Google Chrome: http://support.google.com/chrome/bin/answer.py?hl=pl&answer=95647
d. Opera: http://help.opera.com/Windows/12.10/pl/cookies.html
e. Safari: https://support.apple.com/kb/PH5042?locale=en-GB - You can verify the status of your current privacy settings for the browser you are using at any time using the tools available at the links below:
a. http://www.youronlinechoices.com/pl/twojewybory
b. http://optout.aboutads.info/?c=2&lang=EN - The Data Controller reserves the right to use third parties to compile statistics on the use of the Website. In such a case, no data identifying Users will be provided to such entities. Third-party cookies may be used in advertisements posted on the Website to enable analysis of the effectiveness of an advertising campaign.
- The Administrator uses so-called service cookies primarily to provide the User with services provided electronically and to improve the quality of such services. In this regard, the Administrator and other entities providing analytical and statistical services to the Administrator use cookies to store information or access information already stored in the User's telecommunications end device (computer, phone, tablet, etc.). Cookies used for this purpose include:
a. cookies with user input (session ID) for the duration of the session (user input cookies);
b. authentication cookies used for services that require authentication for the duration of the session (authentication cookies);
c. security cookies, such as those used to detect authentication abuse (user centric security cookies);
d. multimedia player session cookies (e.g. flash player cookies), for the duration of the session (multimedia player session cookies);
e. persistent cookies used to personalize the user interface for the duration of the session or slightly longer (user interface customization cookies). - As part of the Site, the Administrator may also use Google Analytics, a popular analytics service provided by Google. Google Analytics uses cookies to analyze the number of users visiting the Site. For more information on the use of cookies, see Google's privacy policy -. http://www.google.com/analytics/learn/privacy.html.
SECURITY OF PERSONAL DATA
- The Administrator conducts a risk analysis on an ongoing basis to ensure that personal data is processed by him in a secure manner - ensuring, first and foremost, that only authorized persons have access to the data and only to the extent necessary for the tasks they perform. The Administrator ensures that all operations on personal data are recorded and performed only by authorized employees and associates.
- The Administrator shall take all necessary measures to ensure that its subcontractors and other cooperating entities also provide guarantees to apply appropriate security measures whenever they process personal data on behalf of the Administrator.
DISCLAIMER
- The Privacy Policy does not cover information relating to services of entities other than the Data Controller, which are posted on the Website commercially, as a guest, on a reciprocal basis or not for commercial effect.
- The Data Controller shall not be liable for the actions or omissions of users, as a result of which the Data Controller processes the personal data provided by them in a manner not specified in the Privacy Policy document.
- The Data Controller reserves the right to make changes, withdraw or modify the functions or features of the Service, as well as to discontinue operations, transfer rights to the Service and perform any legal actions permitted by applicable laws. However, any actions performed by the Data Controller must not violate the User's rights.
CONTACT DETAILS
- The administrator is available at: biuro@ejmedical.pl
- The Data Protection Officer can be reached by e-mail: rodo@ejmedical.pl
PRIVACY POLICY CHANGES
The Data Controller reserves the right to make changes to the Privacy Policy if required by law or changes made to the functionality of the Website. The Data Controller will notify all its users of the relevant changes and their effective date, in particular by posting an announcement on the Website.