1. Personal data
We, Medalp Holding AG, will collect, process and use your personal data only upon your consent and/or instruction or appointment for the purposes agreed with you or where there is any other legal basis as per Regulation (EU) 2016/679 (General Data Protection Regulation/GDPR); this will be done in compliance with data protection and civil law provisions.
Only personal data that is required for rendering and handling our services as your legal counsel or which you provide to us on a voluntary basis will be collected.
Personal data means all data which includes details regarding personal or factual circumstances, such as, for example, name, address, email address, phone number, date of birth, age, gender, social security number, video recordings, photos, voice recordings of persons, and biometric data, such as fingerprints. Personal data may also include sensitive data, such as health data or data related to criminal proceedings.
2. Access and erasure
In compliance with our professional duty as a hospital to maintain secrecy, you as our client or as a data subject in general have a right of access to your stored personal data, its source and recipient and the purpose of data processing as well as a right to rectification, a right to data portability, a right to object, a right to restriction of processing and blocking or erasure of inaccurate or inadmissibly processed data at any time.
In the case of changes of your personal data please inform us accordingly.
You may withdraw your consent to use of your personal data at any time. Your request for access, erasure, rectification, objection and/or data portability (in the last case: unless this involves a disproportionate effort) may be sent to this law firm’s address stated in Clause 11 of this Statement.
If you are of the opinion that processing of your personal data by us infringes applicable data protection law or that your claims under data protection law have been infringed in any other way, you may lodge a complaint with the competent supervisory authority. In Austria the competent authority is the Austrian Data Protection Authority.
3. Data security
Your personal data is protected through appropriate technical and organisational measures. Those measures include but are not limited to protection against unauthorised, unlawful or accidental access, processing, loss, use and tampering.
Irrespective of our efforts to observe an appropriately high standard of due diligence at all times it cannot be excluded that information which you have provided to us via the internet will be inspected and used by other persons.
Please note that we, therefore, assume no liability whatsoever for disclosure of information due to errors in data transfers that were not caused by us and/or unauthorised access by third parties (e.g. hacker attack on email account or phone, interception of fax messages).
4. Use of data
We will not use any data provided to us for purposes other than the purposes covered by the mandate agreement or your consent or otherwise by any provision in conformity with the GDPR. This does not apply to use of data for statistical purposes, provided that the data provided has been anonymised.
5. Transfer of data to third parties
For us to fulfil your instruction it may be necessary to transfer your data to third parties (e.g. doctors, insurance companies, service providers whom we engage and to whom we provide data, etc.), courts or public authorities. Your data will be forwarded exclusively on the basis of the GDPR, in particular to fulfil your instruction or on the basis of your prior consent.
Some of the recipients of your personal data stated above are located or process your personal data outside your country. The data protection standard in other countries may not be the same as the one in Austria. However, we transfer your personal data only to countries for which the European Commission has decided that they offer an adequate level of data protection; if this is not the case, we take measures to ensure that all recipients offer an adequate level of data protection, for which purpose we conclude standard contractual clauses (2010/87/EU and/or 2004/915/EC).
6. Communication and notification of data breaches
We endeavour to ensure that data breaches will be noticed early and immediately communicated to you and notified to the competent supervisory authority, where applicable, including the relevant categories of data concerned.
7. Retention of data
We will not retain data longer than necessary to fulfil our contractual and/or legal obligations or to defend us against any liability claims that may arise.
8. Cookies
This website uses “cookies” to make our offer more user-friendly, more effective and safer.
A “cookie” is a small text file which we transmit to the cookie file of a browser on the hard disk of your computer via our web server. This enables our website to recognise you as a user when a connection is established between our web server and your
browser. Cookies help us to establish the frequency of use and the number of users of our website. The content of the cookies used by us is limited to an identification number which no longer allows any direct reference to the user. The main objective of a cookie is to identify visitors to the website.
Two types of cookies are used on this website:
- Session cookies: are temporary cookies which are stored in the cookie file of your browser until you leave our website and are automatically deleted at the end of your visit.
- Persistent cookies: are saved on your terminal equipment and allow us to recognise your browser on your next visit in order to achieve better user- friendliness.
You may adjust your browser settings so that you will be informed about the placement of cookies and only allow them on a case-by-case basis, accept them for specific cases or generally refuse or automatically delete cookies when you close your browser. The functionality of this website may be restricted as a result of deactivating cookies.
9. Server log files
In order to optimise this website in terms of system performance, user-friendliness and provision of useful information about our services, the website provider automatically collects and stores information in so-called server log files, which your browser automatically transfers to us. This includes your internet protocol address (IP address), browser and language settings, operating system, referrer URL, your internet service provider and the date/time.
This data will not be combined with personal data sources. We reserve the right to check this data at a later date if we learn of specific indications of unlawful use.
10. Google Analytics
Our website uses Google Analytics, a web analysis service from Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, hereinafter referred to as “Google“. Google Analytics employs so-called “cookies“, text files that are stored to your computer in order to facilitate an analysis of your use of the site.
The information generated by these cookies, such as time, place and frequency of your visits to our site, including your IP address, is transmitted to Google’s location in the US and stored there.
We use Google Analytics with an IP anonymization feature on our website. In doing so, Google abbreviates and thereby anonymizes your IP address before transferring it from member states of the European Union or signatory states to the Agreement on the European Economic Area.
Google will use this information to evaluate your usage of our site, to compile reports on website activity for us, and to provide other services related to website- and internet usage. Google may also transfer this information to third parties if this is required by law or to the extent this data is processed by third parties on Google´s behalf.
Google states that it will in never associate your IP address with other data held by Google. You can prevent cookies from being installed by adjusting the settings on your browser software accordingly. You should be aware, however, that by doing so you may not be able to make full use of all the functions of our website.
Google also offers a disabling option for the most common browsers, thus providing you with greater control over the data which is collected and processed by Google. If you enable this option, no information regarding your website visit is transmitted to Google Analytics. However, the activation does not prevent the transmission of information to us or to any other web analytics services we may use. For more information about the disabling option provided by Google, and how to enable this option, visit https://tools.google.com/dlpage/gaoptout?hl=en
11. Our contact details
Protection of your data is of particular importance to us. Please do not hesitate to contact us using the contact details stated below at any time if you have any questions or if you want to withdraw your consent.