1. Home page
  2. Privacy and data protection policy

Privacy and Data Protection Policy


1. General provisions

The German Medical Association takes data protection very seriously. In the absence of your specific consent, and subject to our best interests as a matter of law, the collection, processing and use of personal data obtained through this website will be limited to what is necessary to provide personalized services and offers. If access to individual offers or services on the website requires input of personal data (for example, to process written requests from a feedback form), we will consider and use this data for the purpose for which it was provided. 

2. Data controller

The data protection policy is enforced by the controller of personal data, the German Medical Association, Tel. + 49 211 975-315-60. You can also contact the data controller at the address above or by email info@dmu-medical.com 

3. Collection and storage of personal data

Personal data will be immediately deleted as soon as its retention is no longer necessary for the stated purpose and if its destruction is not contrary to statutory and legal obligations. Your personal data will be processed in the following cases: 

3.1 When visiting the website

When you visit a website, our web server temporarily stores the data of the requesting computer's current default connection, namely the website you visit, the date and duration of your visit, the identification data of the browser used and the type of operating system used, including the website from which you accessed us (i.e. server log data). Additional personal information, such as name, address, phone number or email address, is not recorded in this case. In addition, the server log data and personal data are completely unrelated. 

We process the above data for the following purposes: 

• ensuring an uninterrupted connection to the website; 

• ensuring proper use of our website; 

• safety and stability assessment; 

• other administrative purposes. 

The legal basis for data processing is Art. 6 pt. 1 p. 1 of the General Data Protection Regulation. Our legitimate interests do not extend beyond the data collection purposes listed above. We will not use the data we collect to create your personality profile. The data is stored for 13 months and then deleted. 

3.2 Cookie files

Our pages use cookie files. 

Cookie files (cookies) are a small piece of data stored on your media along with certain settings and data to be exchanged with our system through your browser. They serve to make the website more user-friendly and efficient overall. 

You can delete cookies at any time in your browser's security settings, or you can configure your browser settings to suit your preferences, such as disallowing cookies altogether. As a rule, the help function on the menu bar of your web browser shows you how to reject new cookies and delete cookies you've already received. However, in this case, you may not have access to all of the features on our site. 

The cookies we use are partially session cookies. They are automatically deleted from your hard drive when your browser session ends. We also use persistent cookies that remain on your hard disk drive. On your next visit, the website will identify you from your previous visit, and it will "remember" what data you entered and what settings you used. 

Cookies are stored on your hard disk drive and are automatically deleted after a certain period of time. The cookies we use do not identify the data subject. Once cookies are enabled, an identification number is assigned. Linking the person ID to this identification number is completely impossible and is not done. Your name or similar data that allows cookies to be associated with you are not stored. 

The legal basis for data processing according to Art.6 pt. 1 p. f of the General Data Protection Regulation is your explicit consent, which is given when you authorize the tracking and use of cookies. 

3.3. Usage analysis

When working with the data listed in a) paragraph, we use a tool that replaces the last two octads of your IP address with zeros in order to analyze the use of our website, as well as to establish design requirements and further optimization of our website. On the other hand, tracking is used in order to compile statistics on visits to our website and to optimize our services and offers. 

In addition to the data listed in a) above, the tool also collects the following data. 

• Device type, device model, device brand; Screen resolution; 

• The plug-ins used (e.g. Flash, Java); 

• Jump URL (the previous page to which the user had direct access); 

• Country and region from which the request was received; 

• Downloads; 

• Clicks; 

• Number of forms sent (depending on the stated purposes). 

The legal basis for data processing according to Art. 1 pt. 1 p. f of the General Data Protection Regulation is your explicit consent, which is given by you when you authorize the tracking and use of cookies. The data is stored for 13 months and then deleted. 

If you prefer not to have your activities on the site logged and analyzed, you can enable the "Do Not Track" setting on your browser. This is usually done in the browser settings. 

In addition to internal usage analysis, we use tracking with third-party tools to better tailor our website to the needs of our users. In addition, statistical analysis is used to improve our websites. These processing procedures are carried out in a similar manner based on your explicit consent in accordance with Art. 6 part 1 para. a of the General Data Protection Regulation. 

It should be noted that our influence on the processing of data by these external tracking tools is rather limited, and they only provide us with information that complies with the privacy provisions. 

3.4 Google Analytics

On this site, we use Google Analytics, an analytics service provided by Google Ireland Limited (futher referred to as "Google"). In this way, user data, sessions and actions can be hardware-independent, alias-assigned and analyzed by device. 

For example, the following are processed: 

• browser type / version, 

• operating system used, 

• URL of the jump (previous page to which the user had direct access), 

• name of the host from which the computer makes the request (IP address), 

• time of the server request. 

Google Analytics also uses cookies (see definition in para. c)). The information generated by the cookie about your use of this website is generally transmitted to a Google server in the United States and stored there. If IP depersonalization is activated for this website, your IP address in Member States of the European Union or other parties to the Agreement on the European Economic Area will be reduced. For this website, Google Analytics has been extended by the addition of IP depersonalization, whereby IP addresses are collected anonymously (using IP address masking). For more information about terms of use and privacy: https://www.google.com/analytics/terms/de.html, and: https://policies.google.com/? hl=de 

Google will use this information at our request to evaluate your use of the website in order to report on website activity and to provide associated services based on website and internet usage statistics. 

The data we receive from Google is stored for 12 months and then deleted. You may stop the collection of data generated by cookies and associated with your use of the website (including your IP address), including the transmission and processing of this data by Google by downloading and installing the following browser add-on: https://tools.google.com/dlpage/gaoptout?hl=ru

You can also set a set of cookies that will disable the collection of your data when you visit this website in the future. To prevent data collection through Google analytics on all devices, you must opt out of all systems you use. Click here to activate cookie blocking: Disable Google Analytics. Cookie blocking only applies to the relevant device and browser and to that website. They are stored locally on your device; if you delete cookies, you will need to reactivate the cookie lock. 

3.5 Yandex.Metrika

This website uses Yandex.Metrika web analytics, provided by OOO “Yandex”, registered at 16 Lva Tolstogo St., Moscow, 119021, Russia (further referred to as "Yandex"). Yandex.Metrika also uses cookies (see the definition in para. c)). 

In particular, cookies contain the following data: 

• Device type, device model, device brand; 

• Screen resolution; 

• The plug-ins used (e.g. Flash, Java); 

• Jumping URL (the previous page to which the user had direct access); 

• The country and region from which the request was received; 

• Clicks; 

• Number of forms sent (depending on stated purposes). 

Cookie information can help us improve the performance of our website. Website usage information collected by cookies is sent to Yandex and stored on servers in the EU and Russia. 

It should be noted that Russia is a third country with a level of data protection that is not recognized as acceptable by the European Union. 

Yandex will process this data to analyze website usage, report for us and provide other services. Yandex processes data according to its own corporate terms of use. 

Yandex may also transfer this data to third parties, if required by law, or to process this data at Yandex's request. For more information about Yandex's data processing policies: https://yandex.com/legal/privacy/ 

Data is stored for 12 months and then deleted. 

You can delete cookies at any time in your browser's security settings or you can configure your browser settings to suit your preferences, for example, to prevent the use of cookies altogether. Generally, the Help section on the menu bar of your web browser shows you how to reject new cookies and delete cookies that you have already received. However, we should note that in this case you may not be able to use all of the features of our website. You can download and install an alternative browser tool: https://yandex.com/support/metrika/general/opt-out.html 

3.6 Web beacons

We use web beacons, pixel tags, transparent GIF animations, or similar tools (collectively, "web beacons") on our site. A web beacon is a single pixel image file embedded on our site. Web beacons are usually invisible to the user. They allow us to count the number of website page users who access individual pages of our website when requesting "branded services", and to compile statistics about how our website is used. The data is stored for 13 months and then deleted. 

3.7 Signing up for newsletters

In order to send our newsletter, we need your email address and proof that you are the owner of the email address and want to receive the newsletter. This is done through a two-step subscription procedure. After registering, you receive an email to the email address you provided. This email invites you to click on the link contained therein to confirm your consent to receive the newsletter. You then receive the newsletter to which you have subscribed. 

Only your email address is used for the newsletter. It is not shared with any third parties. The legal basis for use is Art. 6 pt. 1 para. 1 pg. 1 pt. a of the General Data Protection Regulation. 

You can cancel both your subscription and your consent to receive it at any time. At the end of each newsletter there is a corresponding link for the opportunity to unsubscribe. 

4. Our contact forms

If you have any questions, you can contact us using the form on the website. You must include the actual email address of the sender of the request in order for us to respond. Additional information may be provided on a voluntary basis. The processing of data for the purpose of contacting us is in accordance with art. 6 pt. 1 pg. 1 para. a of the General Data Protection Regulation on the basis of your voluntary consent. 

The personal data that we have collected by filling in the request form is automatically deleted after the request has been fulfilled. 

4.1 Using Chat

On our website, you can contact our coordinators through our online advisor and Chatra messenger. Chatra is provided by Roger Wilco LLC, 2200 Clarendon Blvd., Suite 1400A, Arlington, VA 22201, USA, tel. 1-703-243-6333. By using Chatra, you consent to Chatra's privacy policy. Chatra privacy policy: https://chatra.io/privacy-policy/ 

Read this policy carefully before using the service. All information and data is processed by Chatra and (also) stored on servers in the United States. In order to protect your data in the U.S., Chatra is voluntarily certified under the EU-U.S. Privacy Sharing Agreement and complies with EU privacy regulations. For more information about the EU-U.S. Privacy Sharing Rules agreement: https://www.privacyshield.gov

Chatra collects the following data: 

• Duration of your visit; 

• Pages visited; 

• Your location (determined by your IP address); 

• Jump URL; 

• Operating system type; 

• Browser version. 

The following data (if entered) may also be collected when you contact us through Chatra: 

• Contact information; 

• First and last name; 

• Email address; 

• Phone number; 

• History of conversations with our support team and forwarded files. 

Information about Chatra's data processing policy: https://chatra.io/privacy-policy/ 

The processing of data for the purpose of contacting us via chat is in accordance with Art. 6 pt. 1 pg. 1 para. a of the General Data Protection Regulation on the basis of your voluntary consent given at the time of use of the chat room. If you do not agree with these rules, please contact us by e-mail or telephone without using the chat room. 

4.2 Using the callback function

You have the opportunity to leave your phone number on the site by using the form provided and (optionally) your name and the desired time of call, so that our employees can contact you at the specified time. The processing of data for the purpose of contacting us is in accordance with Art. 6 pt. 1 pg. 1 para. a of the General Data Protection Regulation, on the basis of your voluntary consent. 

The personal data collected by us when filling out the callback order form will automatically be deleted when the request is fulfilled. 

5. Collection and storage of personal data

Responsible for compliance with the Data Protection Policy: Personal Data Operator: Deutsche Medizinische Union, Tel: + 49 211 975-315-60. The Chief Data Protection Officer at the company can be contacted at the above address or by e-mail at info@dmu-medical.com

6. Social networking plugins

On our website, on the basis of Art. 6 pt. 1 pg. 1 para. f of the General Data Protection Regulation, we use social networking plugins from Facebook, Twitter, Instagram and YouTube (Google). We have implemented the Sharriff solution for this purpose. For more information about this technology, see here. Only when the appropriate button is activated will personal data be transferred to the provider for further processing. Data processing is based on our interests within the limits of the law. Associated business purposes are considered a legitimate interest according to the General Data Protection Regulation. Compliance with data protection requirements is the responsibility of the providers of this commercial information. The Helios Clinic Group is not responsible for the processing of data by such providers. 

6.1 Facebook 

Our website uses Facebook plug-ins to enhance personalization. Such plugins include "Like" or "Share" buttons. The buttons are associated with Facebook. 

When the plugin is activated, the browser establishes a direct connection to Facebook's servers. As a result of this integration, the Facebook plugin receives information that your browser has requested access to the corresponding page on our website, even if you do not have a Facebook account or are not currently logged into Facebook. This information (including your IP address) is transmitted by your browser directly to a Facebook server in the U.S. and stored there. 

If you are logged in to Facebook, the social network can retrieve information about your visit to our website through your Facebook account. If you interact with the plugin, e.g. by clicking the "Like" or "Share" button, the corresponding information is transmitted directly to the Facebook server and stored there. The information is also published to Facebook and becomes available to your Facebook friends. 

Facebook can use this information for advertising, market research and to personalize Facebook pages. For this purpose, Facebook sorts profiles based on usage criteria, interests and interactions to evaluate the use of our site in relation to the advertising displayed to you on Facebook, to inform other Facebook users about your activities on our site and to provide relevant services based on Facebook usage criteria. If you do not want Facebook to associate the data collected through our website with your account, you must log out of Facebook before visiting our website. For information about the purpose and scope of data collection and its further processing and use by Facebook, including information about your rights and settings to protect your privacy, see Facebook's privacy policy: (https://www.facebook.com/about/privacy/). 

6.2 Twitter

Our websites integrate plugins for the short news network Twitter Inc. (Twitter). The Twitter plugins (tweet button) can be identified by the Twitter logo on our website. Description of the tweet button: (https://about.twitter.com/resources/buttons). 

When the plugins are activated, a direct link is established between the browser and the Twitter server. Twitter receives information that you have visited our website using your IP address. By clicking the tweet button when you are logged in to Twitter, you can link the content of our website pages to your Twitter profile. This allows Twitter to link visits to pages on our website to your user account. Please note that we, as the website provider, do not receive any information regarding the content of the data transmitted or its use by Twitter. If you do not want Twitter to match your visit to our websites, you need to log out of your Twitter user account beforehand. For more information about Twitter's privacy policy: (https://twitter.com/privacy). 

6.3 Instagram 

Our site integrates Instagram social plugins operated by Instagram LLC, 1601 Willow Road, Menlo Park, CA 94025, USA (Instagram). The plugins are identified by an Instagram logo, such as "Instagram camera". When the plugins are activated, the browser establishes a direct connection to Instagram's servers. The content of the plugin is transmitted by Instagram directly to your browser and integrated into the web page. As a result of this integration, Instagram receives information that your browser has requested access to the corresponding page of our web site, even if you do not have an Instagram account or are not currently logged into Instagram. 

This information (including your IP address) is transmitted by your browser directly to the Instagram server in the United States and stored there. If you are logged in to Instagram, the social network may receive information about your visit to our website through your Instagram account. If you interact with the plugin, for example by clicking an Instagram button, this information will be transmitted directly to the Instagram server and stored there. In addition, the information will be published to your Instagram account and made available to your Instagram contacts. If you do not want Instagram to match data collected through our website directly to your account, you must log out of Instagram before visiting our website. For more information about Instagram's privacy policy: (https://help.instagram.com/ 155833707900388). 

6.4 YouTube

We use the YouTube page plugins operated by Google (YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA). Activating the plugin establishes a connection to the YouTube servers. The YouTube server will receive data about your visits to our web pages. If you have logged into your YouTube account, the video host may map your navigation history information directly to your account. To avoid this, you must first sign out of your YouTube account. For more information about handling user data, see YouTube's privacy policy: https:// www.google.de/intl/de/policies/privacy

7. Rights of the subject of personal data

You have the right to: 

• Request information on your personal data processed by us, in accordance with Art. 15 of the General Data Protection Regulation. In particular, you have the right to obtain information about the purposes for which the data is processed, the type of personal data, the type of recipients to whom the data has been or will be communicated, the intended retention period, the right to obtain the correction of inaccurate data, to delete data, to restrict the processing or to withdraw your consent to the processing, to complain, to discover the source of your data, if it was not supplied by you, including information on automated decision-making, the criteria applied to the collection of statistical data, the source of the data which was collected. 

• Ask for the immediate correction of the data you have stored and for the completion of the same, as per Art. 16 of the General Data Protection Regulation; 

• Demand the cancellation of your personal data that we have conserved, if the processing of the data is not necessary for the exercise of the right to freedom of expression, if the information is not necessary to fulfil a legal obligation or for reasons of public interest, or to establish, exercise or defend a legal claim pursuant to art. 17 of the General Data Protection Regulation; 

• Demand a limitation of the processing of your personal data if you contest its accuracy, if it is processed unlawfully, if you have refused to have it deleted, if we no longer need the data but it is necessary for the establishment, exercise or defense of a legal claim pursuant to art. 18 of the General Data Protection Regulation, or if you have protested the processing of personal data pursuant to Art. 21 of the General Data Protection Regulation; 

• Demand the receipt of the personal data you have already provided in a structured universal electronic format or request their transfer to another operator pursuant to Art. 20 of the General Data Protection Regulation; 

• Withdraw your explicit consent to the processing of the data you have already given to us pursuant to Art. 7 pt. 3 of the General Data Protection Regulation. Consequently, we shall not be able to carry out any data processing for which your explicit consent is required in the future and to lodge a complaint with the supervisory authority in accordance with Art. 77 of the General Data Protection Regulation. 

8. The Right to object

Because the processing of your personal data is based on legitimate interests according to Art. 6 pt. 1 pg. 1 para. f of the General Data Protection Regulation, you are entitled to object to the processing of your personal data if grounds arising from your personal circumstances are provided or to object to the use of direct advertising in accordance with Article 21 of the General Data Protection Regulation. In the latter case, you have a general right of objection, which we exercise without having to state your personal reasons. If you wish to exercise your right of cancellation or right of revocation, simply send an email to: info@dmu-medical.com 

9. Data security

We take all necessary technical and organizational security measures to protect your personal data from loss and misuse. This ensures that your data is stored in a secure working environment and is not accessible to the public.

In some cases your personal data is encrypted during transmission via TLS. This means that if your browser supports the TLS protocol the communication between your computer and our servers will be established using strong encryption tools. 

10. Updating our privacy policy and making changes

The Privacy Policy is currently considered to be valid and has been in effect since July 2019.

Changes to this policy may be required due to further development of our web site and related offers or based on statutory or administrative requirements.