BAMINEX SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ SPÓŁKA KOMANDYTOWA (BAMINEX), running DR SOBCZAK medical facilities, hereinafter referred to as Clinics, makes every effort to protect the confidentiality and security of personal data.
The term "GDPR" means Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46 / EC.
1. Who is the controller of your data?
The administrator of your personal data is the company BAMINEX SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ SPÓŁKA KOMANDYTOWA, running the DR SOBCZAK medical facilities.
Medical entity - BAMINEX SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ SPÓŁKA KOMANDYTOWA registered in the register of the Mazowieckie Voivode under the number W - 14 - 000000202707
Address - ul. Wielicka 43/22, 02 - 657 Warsaw
Treatment facility - DR SOBCZAK CLINIC
Address - ul. Patriotów 181, 04 - 881 Warsaw
Address - ul. L. Okulickiego 5, 05 - 082 Stare Babice
2. Where can you call or write to get help on issues related to the Policy?
If you have questions related to the Policy or our rules for collecting, sharing or using personal data, or if these rules do not meet your expectations, you can contact our Data Protection Officer, Doctor Andrzej Peńsko, using the following contact details:
• Phone: +48668906046,
• E-mail address: firstname.lastname@example.org
• Address - ul. Patriotów 181, 04 - 881 Warsaw
3. How do we obtain your data? What data do we process?
We obtain information containing your personal data directly during the first stages of the implementation of medical services: personal or electronic registration and on an ongoing basis, during the provision of medical services. BAMINEX processes your personal data of two types:
BAMINEX pays special attention to the reliability of your data, therefore when collecting them, we check their correctness with the document containing the photo, presented by you. Periodically, we will ask you to update your data. You can also update your information at any time. In order to update the data, please contact the clinics receptions.
Your personal data is collected in electronic and paper form.
4. How do we contact you?
Depending on the scope of the contact details provided by you, we can contact you by letter, e-mail, telephone, SMS, via the website.
BAMINEX's contact details are available in this document, advertising materials and on the BAMINEX website.
When you contact us, we will ask you to provide information that allows you to be identified.
5. For what purpose do we obtain your personal data?
We collect your personal data in order for:
We also process your personal data for the legally justified purpose of the data controller who is an entrepreneur, such as:
6. What are the legal grounds for processing your personal data by us?
Our activities related to the processing of personal data are regulated by specific legal provisions, mainly with:
7. How long do we keep your data?
We must store your data in accordance with the Act of November 6, 2008 on the rights of the Patient and the Patient's Rights Ombudsman, for a period not shorter than 20 years and not longer than 30 years from the end of the year in which the provision of medical services for you was completed.
Your data cannot be deleted before the set period, therefore you do not have the right provided for in the GDPR - the right to request deletion of data or to "be forgotten". This is a data protection feature specific to the medical industry, in which legal provisions applicable to the storage of medical records are equivalent to the GDPR.
8. Is the provision of data your obligation?
At the stage of on-line registration (online registration), we may collect your data in limited scope - name, surname, email address, telephone number.
The area of DR SOBCZAK Clinics is subject to video surveillance. You have the right not to consent to monitoring in an office where medical services are provided to you. Any objections to monitoring in the office should be reported to the reception staff, who will turn off the image recording system in the office for the duration of the visit.
9. Who do we share your personal data with?
We provide your data only to entities authorized to receive them or entities cooperating with BAMINEX during the implementation of the tasks of a medical facility.
The data is also transferred on the basis of an obligation resulting from legal provisions or at a justified request of an authorized body, e.g. ZUS or to the Court, if the Court requests us to do so as a result of the proceedings.
Entities cooperating with BAMINEX during the implementation of health services are related to BAMINEX with appropriate agreements, ensuring the confidentiality of your personal data. At your request, the Data Protection Officer will present a list of entities to which your data is transferred.
10. How do we protect your data?
The protection and confidentiality of personal data is very important to us.
We have implemented technical, organizational and physical security measures to:
The BAMINEX company has implemented a personal data security system compliant with the GDPR, which is constantly being improved.
When it is necessary, we use adequate technical measures for data security, mechanisms that encrypt data collected in electronic form or other measures to protect your data. We periodically review our security procedures in order to analyze the solutions used and assess the need to modify them.
However, we would like to point out that there is no perfect protection of personal data that would be impossible to break.
11. Are we going to transfer your personal data to countries outside the European Economic Area?
We do not intend to transfer your personal data to countries outside the European Economic Area, but if such transfer is necessary, you will be asked for your consent in writing to such transfer.
12. Information on automated decision making, including profiling
We will not make decisions about you in an automated manner, i.e. without human influence. When processing your personal data, we do not use profiling understood as forecasting your preferences, interests, economic situation, etc.
In order to ensure the full safety of people staying on the premises of the medical facility, visual monitoring and recording of telephone conversations conducted by the staff are used.
Video surveillance includes public rooms and offices. Video surveillance recordings are stored for a period not longer than 3 months from the moment of recording. Only the BAMINEX Management has access to the recordings.
You have the right not to consent to monitoring in an office where medical services are provided to you. Any objections to monitoring in the office should be reported to the reception staff, who will turn off the image recording system in the office for the duration of the visit.
To contact you and for the purposes of online patient registration, BAMINEX uses a company website. The website does not automatically collect any information, except for the information contained in the so-called cookies.
Cookie files (so-called "cookies") are IT data, in particular text files, which are stored in the end device of the person browsing the website and are intended to improve the use of the website. Cookies usually contain the name of the website they come from, the storage time on the end device and a unique number.
Cookies are used for the following purposes:
When using the website, two basic types of cookies are used:
Session cookies are temporary files that are stored on the end device of the person browsing the website until logging out, leaving the website or turning off the software (web browser).
Persistent "cookies" are stored in the end device of the person browsing the website for the time specified in the parameters of cookies or until they are deleted by the User.
Cookies placed on the end device of the person using the website may also be used in the future by entities cooperating with BAMINEX, performing tasks in the field of selling medical services or marketing activities.
A person using the website may at any time delete "cookies" using IT tools prepared for this purpose by providers of web browsers.
This policy may be updated at any time. In the event of changes, information about this will be posted on the website.
16. Governing Law
The rules set out in this policy are subject to Polish law and the law of the European Union.
17. What are your privacy rights?
The rights set out below are related to privacy and pertain to the processing of your personal data.
We will exercise the following rights:
The right to access personal data, including receiving information about personal data being processed
You have the right to receive information about your Personal Data processed by us.
Your request for information may include a request:
However, if your request for information on personal data is unfounded or repeated, we may refuse to provide the information.
We will respond to your request as soon as possible, but no later than within 2 weeks of receiving the request. If it would take longer than 2 weeks to provide the information, we will inform you about it. In this case, we will respond no later than within three months.
You can request copies of paper and electronic data that we hold, share or use, including data collected in medical records.
In order to process your aplication you may be required to give information in order to confirm your identity. We can only provide you with information about you. In the event that a submitted request could violate the privacy of another person, we may not provide you with such information.
The right to correct and supplement your data
If you inform us that the data we have about you is incorrect, we will verify it and, if the request is justified, we will correct the data.
We are obliged to inform the entities to which we have shared your data about the update you submitted (based on your consent).
The right to lodge a complaint with the supervisory authority for compliance with personal data protection regulations.
In the event that you find that BAMINEX violates the provisions on the protection of personal data, you can lodge a complaint with the supervisory body, which is the President of the Office for Personal Data Protection.
Contact details of the President of the Personal Data Protection Office:
All matters, applications and complaints should be submitted to the BAMINEX Personal Data Protection Inspector, Mr. Andrzej Peńsko – Tel. +48668906046, email:email@example.com