Welcome to https://drsamaras.com/ (hereinafter referred to as the “Website”), an informative website operated by Dr. Dimitrios Samaras (hereinafter referred to as the “Doctor” or “Data Controller”).
The Doctor values your privacy and respects the data protection legislation, thus he undertakes all reasonable measures to safeguard compliance with applicable legal framework. The following data protection terms apply to all users of the Website (hereinafter referred to as the “Users”) and form an integral part of the Website’s Terms and Conditions.
- Who is the Data Controller?
- What personal data does the Doctor collect?
- How does the Doctor collect your personal data?
- What is the purpose and the legal basis for the User’s personal data processing?
- For how long is your personal data retained?
- What are your rights and how can you exercise them?
- Recipients of your personal data and relation with third parties
- How is your data secured?
1. Who is the Data Controller?
1.1 Dr. Dimitrios Samaras, FMH Médecine Interne Générale, f.a. Gériatrie, GLN 7601000778901 Avenue Eugène-Pittard 34, 1206 Genève, Telephone: +41223468954, email: firstname.lastname@example.org, is the Data Controller for the processing of the User’s personal data.
1.2.1 By calling at +41223468954, from Monday to Friday from [9:00] to [17:00]
1.2.2 By sending an email at the following email address: email@example.com
1.2.3 By sending correspondence to the following address: Dr. Dimitrios Samaras, Avenue Eugène-Pittard 34, 1206 Genève
2. What personal data does the Doctor collect?
Personal data means any information relating to an identified or identifiable natural person (‘data subject’). Data collected through this Website and processed are adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed, as per article 4 below.
The Doctor collects indicatively but not exhaustively the following data:
– Information that you submit voluntarily, at your own initiative, in the section “Book an appointment” when you wish to contact the Doctor to schedule an appointment, such as name, email and message, as well as telephone number if included voluntarily by the User in the message, for the purposes of communicating to arrange the appointment.
The content of the message you send to the Doctor is free and is protected by medical confidentiality. However, the Doctor encourages you not to include in the message any medical data and any information about your health. In any case, where you provide the Doctor with information about your health, you do so voluntarily, at your own will and on the basis of your consent.
– Information that is automatically collected through cookies (e.g. IP address, type of browser, type of device etc.)
– It is also possible that the Doctor collects aggregated and statistical data, taking all necessary safeguards to exclude User’s identification.
3. How does the Doctor collect your personal data?
The Doctor collects and processes the personal data that the User provides voluntarily, indicatively, but not exclusively, in the following occasions:
– When the User fills in his/her personal data to contact the Doctor and schedule an appointment through the Website’s section “Book an appointment”.
– When the User signs up voluntarily to receive newsletters or other informational and/or promotional material.
– When the Doctor receives documents, requests, orders, court applications, warrants, etc. of third parties, such as supervisory, prosecutional, judicial, tax authorities, for investigating crimes and your protection against fraud or for combating all forms of crime and Infringements of rights.
4. What is the purpose and the legal basis for the User’s personal data processing?
|Processing purpose||Personal Data||Legal basis of processing|
|Processing of personal information to enable the User to communicate and schedule an appointment with the Doctor.
This processing only serves to facilitate the communication between the User and the Doctor and the booking of an appointment. Such communication is not a medical act and the Website is not a medical device.
– User message to the Doctor
– telephone number (if provided voluntarily by the User in the message, for the purposes of arranging the appointment)
|The User’s prior consent provided upon submission of the personal data at the “Book an Appointment” form.
In case the User decides voluntarily to include in the message information about his/her health as well as any medical data, such processing is based on the User’s prior explicit consent.
|Processing of Users’ personal data to send them Commercial communication (newsletters)||– Name
||The User’s prior consent to receive newsletters from the Doctor.
You may withdraw such consent for the future, by contacting the Doctor at firstname.lastname@example.org, or by clicking on the unsubscribe link on the e-mail.
|Processing of personal data for the purposes of conducting statistical analysis for the optimization of the Website and its informative services||– Cookie data (IP address, type of browser etc.)
– Personal data collected for any of the above purposes, only in the form of aggregated and statistical data, implementing all appropriate safeguards to ensure that the data subjects are no longer identifiable.
|The Doctor’s legitimate interest for the website optimization and improvement of services, which overrides the data subjects’ interests, rights and freedoms.
You have the right to object to the above processing by contacting us at email@example.com, as per article 6 below.
5. For how long is your personal data retained?
As a general principle, without prejudice to User’s erasure right mentioned below, the personal data provided to the Doctor are retained for no longer than necessary for each of the above purposes for which they are processed, unless their retention is imposed on the basis of a statutory obligation.
If not retained pursuant to a statutory obligation as per the above, the data is deleted after each of the processing purposes are fulfilled, or when the User withdraws his/her consent (where the legal basis of processing is consent) and exercises his/her right to erasure.
The Doctor may retain some data anonymized or pseudonymized for statistical analysis purposes.
6. What are your rights and how can you exercise them?
The Doctor fully respects your rights with regard to the processing of your personal data.
You may exercise your rights to one of the Doctor’s contact details referred herein, in article 1.
Your rights, as data subject, are the following (as each time applicable):
|Right of Access||You can request to:
• Confirm that the Doctor processes your personal data.
• Provide you with access to any personal data that you do not already have at your disposal
|Right to Rectification||You can request to rectify inaccurate personal data.
The Doctor may seek to verify the accuracy of the data before he rectifies it.
|Right to Erasure||You can request the Doctor to erase your personal data:
• at any time when they are no longer needed for the purposes for which they were collected or
• if they have been illegally processed
|Restriction of processing||The User can ask the Doctor to restrict the processing (i.e. store but not process) User’s personal data when:
|Right to Data Portability||When processing is based on your consent or the performance of a contract and done by automated means, you may request to provide your personal data in a structured, commonly used and machine-readable format, or you may request to be transferred directly to another controller. However, this right concerns only the data provided by the subject and not that data obtained by the controller based on the data provided to the controller by the subject.|
|Right to Object||You may at any time object to any processing of your personal data, which has as its legal basis the legitimate interest of the Doctor or performance of a task carried out for reasons of public interest.
If you exercise your right to object, the Doctor has the right to demonstrate compelling legitimate grounds for the processing which override the rights and freedoms of the User-data subject.
|Right not to be subject to automated individual decision-making, including profiling||You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning him or her or similarly significantly affects him or her|
|Opt-out||You have the right to withdraw your consent, where consent is the basis of processing. The withdrawal is valid for the future and any processing conducted by the Doctor up until the point of withdrawal of consent is lawful.|
Procedure to exercise your rights:
|Identity||The Doctor fully respects the confidentiality of all files that include personal data, thus he is entitled to ask the User proof of his/her identity if the User submits a request in relation to those files.|
|Cost||The User will not have to pay for the exercise of his rights in relation to personal data unless otherwise provided by law, the request to acquire access to information is unfounded or excessive. In that case the Doctor can charge the User with a reasonable fee under the specific circumstances. The Doctor will inform the User for any possible charge before he completes the request.|
|Timetable||Doctor aims at answering at User’s valid requests the latest within one (1) month from their receipt, unless the request is extremely complicated or the User has submitted multiple requests, in which case the Doctor aims at answering to them within three (3) months. In case the Doctor needs more than one month for the reasons mentioned above, the Doctor will inform the User accordingly. The Doctor may ask the User if he/she wants to explain what exactly he wishes to receive or what is his concern. This will help Doctor to act more quickly in relation to User’s request. In any case the User should mention specific, accurate and true data and/or facts so that the Doctor can answer and/or satisfy accurately to User’s request. Otherwise, the Doctor reserves his right for any faults that are outside of his control. Additionally, the Doctor can reject requests that are unfounded, excessive, abusive, made in bad faith or are illegitimate in the framework of the legal provisions.|
Complaint before the competent Supervisory Authority: The User has the right to lodge a complaint with the local competent Supervisory Authority in relation to data protection processing, after communicating with the Doctor in order to find a solution.
7. Recipients of your personal data and relation with third parties
7.1. Within the course of the Website’s operation, the Doctor cooperates with third companies that obtain access only to the data which are absolutely necessary for your communication with the Doctor through the Website, the operational and technical organization of our Website and the optimization of any services offered therein. Upon transferring your data to such third-party companies, the Doctor ensures at all times the highest level of safety. As such, your personal data are transferred only to service providers and cooperating companies which have been diligently selected by the Doctor and which are contractually bound.
7.2. Such third parties include information system providers, website and application hosting providers, companies that provide technical infrastructure, to which the Doctor transfers only the data necessary for the purposes described herein. Where necessary as per applicable laws, the Doctor will sign agreements with such companies, which refer to the implementation and regular monitoring of security measures.
8. How is your data secured?
8.1. The Doctor implements all necessary security measures for the protection and safeguard of your personal data, including CSF firewall, Restricted Shell access 5 Remote backup locations SSL certification Updates server Wordfence. Furthermore, the Doctor’s medical office uses a system of electronic medical files called “Achilles” and operated by the company Axonlab AG, En Budron A5, CH-1052 Le Mont-sur-Lausanne. Achilles offers protection against unauthorized access through login that is protected by a password. Limited access by firm employees can be defined. Achilles stores all its data only on the Achilles server of our medical office. The medical office’s secretaries as well as all Achilles employees are contractually obliged to treat all data with the utmost care and confidentiality.
8.2. The information you provide to the Doctor is processed exclusively by specifically authorized personnel under the Doctor’s control and instructions, as well as the recipients of the personal data when necessary. For the processing, the Doctor appoints persons with the respective professional skills to provide appropriate safeguards in terms of technical knowledge and personal integrity to ensure privacy and protection of personal data. The Doctor, through the respective contractual commitments and its associates, implements all necessary security measures for protecting and ensuring privacy and confidentiality, as well as the integrity of personal data. In any case, the security of personal data in the Website environment is subject to factors beyond the Doctor’s sphere of control, as well as factors relating to technical, functional or other problems of the network or reasons of force majeure or events of chance.
9.2. Cookies are small text files stored on your computer when you visit a digital platform, which are used as a means of identifying your computer. The cookies placed by the owner of the digital platform are called « first party cookies ». Cookies placed by others are called « third party cookies ». Third-party cookies allow third-party features (such as analytics, ads, and videos) to be provided on or through the digital platform. Parties installing third party cookies can recognize your device both when visiting this Website and when visiting some other digital platforms.
9.3. Cookies are only installed if you accept their installation when you visit this Website. By accepting cookies when entering this Website, you expressly state that you have read and understood the specific terms and conditions regarding the installation, function and purpose of the cookies and you provide your consent for their use.
9.4. Alternatively, you may not accept cookies. In this case, only cookies that are technically and functionally necessary for the operation of the Website will be installed.
9.5. You can manage the use and installation of cookies at any time through a panel, where you can choose which category of cookies you want to accept and which ones not (or request to install only the technically necessary cookies).
9.6. In particular, the cookies used by the website are the following:
|Absolutely necessary Cookies||The absolutely necessary cookies are essential for the proper operation of the website. These cookies allow you to browse and use website features such as access to secure areas. These cookies do not recognize your individual identity and without them, the smooth operation of the website is not possible.||PHPSESSID (drsamaras.com)
|Functionality Cookies / Preference Cookies||The functionality cookies allow the website to remember your choices such as language, so as to provide improved and personalized features. They can also be used to provide services that have been requested by the user, such as the use of social media. These cookies cannot track the browsing activity on other sites. If you reject these cookies, the website’s performance and functionality may be affected and your access to its content restricted.||wordfence_verifiedHuman
|Statistics Cookies||These are cookies that evaluate the way visitors use the website (for example, which pages are visited more often and whether they receive error messages from webpages). These cookies are used for statistical purposes and to improve the performance of a website.||1P_JAR (google.com)