Privacy policy of Medi Partner Sp. z o.o.

The confidentiality of data and the protection of the privacy of our Patients and Customers is a priority for us. Therefore, out of concern for the security of your data and respecting the applicable legislation, Medi Partner sp. z o.o. has established a policy setting out the rules on how we collect, process and use personal data.

This Medi Partner Ltd Privacy Policy is intended to explain how we handle information about you. Phrases and expressions used in this Policy have the following meanings:

personal data - within the meaning of Article 4(1) RODO means any information about an identified or identifiable natural person ("data subject"); an identifiable natural person is one who can be identified, directly or indirectly;
processing - within the meaning of Article 4(2) RODO means an operation or set of operations which is performed upon personal data or sets of personal data, whether or not by automated means, such as collection, recording, organisation, organisation, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;
RODO - Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation);
Administrator - within the meaning of Article 4(7) RODO means the controller, i.e. the entity which alone or jointly with others determines the purposes and means of the processing of personal data. Whenever this Policy refers to a Controller, it means a company within the Medicover Group that independently decides on the purposes and means of processing personal data.

If you would like to know the details of how we obtain and use your personal information, we encourage you to read this Privacy Policy document.

What data can we process?

The extent of the personal data we will process may vary depending on the service you use. We may obtain your personal data in the following ways:

when using the services provided electronically, through the website and when making contact using the contact details provided on the website:

You will need to be logged in or registered to use some of the features offered by our services.

Some functionalities and services do not require a login, but can nevertheless be accessed by submitting the relevant forms.

We may also obtain your data when you contact us, using the contact details provided on the website.

automatically when you use the website:

When you visit our websites and use our services, data is automatically collected about your visit and activity, in particular your IP address, domain name, browser type, operating system type. For more information, please see the section on cookies (see Medi Partner Cookies Policy)

As part of its activities outside the website, Medi Partner Ltd. may also process other personal data concerning you. Please find below links containing detailed information on the processing of your data by Medi Partner Ltd:

Processing of personal data by Medi Partner Ltd. on social networks:

Processing of personal data by Medi Partner Ltd. in connection with the provision of health services and medical care.

Processing of personal data by Medi Partner Ltd. in connection with recruitment activities.

Processing of personal data by Medi Partner Ltd. in connection with marketing activities and ongoing contact.

Privacy Policy Invimed Patient Portal

Processing of personal data

§ 1 Data Controller and Data Protection Officer

The administrator of your personal data is Medi Partner sp. z o.o. with its registered office in Warsaw 02-532, ul. Rakowiecka 36 (hereinafter: Medi Partner).

You can contact us:

by post to the following address: Medi Partner Sp. z o. o, 36 Rakowiecka Street, 02-532 Warsaw
via the contact form at www.invimed.pl
via email: invimed@invimed.pl
by telephone: 500 900 888

We have appointed a data protection officer. This is the person you can contact on all matters concerning the processing of your personal data and the exercise of your rights in relation to data processing. You can contact the DPO as follows:

by letter, to the following address:

Data Protection Inspector Medi Partner Sp. z o. o, 36 Rakowiecka Street, 02-532 Warsaw

by e-mail:

iod@medipartner.pl

§ 2 What data do we collect and how do we use it?

Whenever we ask you to provide any personal data, we will inform you in detail of the conditions for processing it.

We may collect personal information about you through forms or in connection with the operation of your account on the site. We may also obtain your personal data if you write to us or call us using the contact details provided on the site or in this Privacy Policy.

Your data may be used by Medi Partner for the following purposes, among others:

in connection with the provision of services to you by Medi Partner, i.e. in the case of your use of services provided for a fee or publicly funded reimbursement, in order to comply with Medi Partner's legal obligations, including those under accounting and tax laws, on the basis of Article 6(1)(c) RODO in connection with the wording of these laws, for the period resulting from the provisions contained therein;
to respond to an enquiry made by you to Medi Partner - based on the necessity to pursue our legitimate interest in responding to an enquiry made to us, and therefore on the basis of Article 6(1)(f) of the RODO, until we have responded to that enquiry or until you have successfully objected to the processing of your data;
communication with you, including by means of webpush technology - based on the need to pursue our legitimate interest in establishing and maintaining communication with you as our customer or as a user of our services, i.e. on the basis of Article 6(1)(f) RODO, however, due to the need to use Cookies technology for the correct functioning of this possibility of communication with you, in accordance with Article 399 of the Electronic Communications Act, we need additional consent for the use of Cookies technology. We may process your data for this purpose until you object to its processing or until you withdraw your consent to the use of cookie technology (check our Medi Partner Cookies Policy);
- to carry out marketing of our own products and services - on the basis of the pursuit of our legitimate interests in the form of carrying out direct marketing of our own products and services, i.e. Article 6(1)(f) RODO, whereby, in accordance with the provisions of Article 399 of the Electronic Communications Act, we require additional consent to use the communication channels provided for the purpose of carrying out marketing activities. We may process your data for this purpose until you object to its processing or until you withdraw your consent to receive marketing and information material by electronic means;
- to produce statistics and compilations to improve the effectiveness of our marketing activities and to build our business strategy - the vast majority of such statistics are produced on the basis of non-personal data or anonymised data. Where personal data is used for this purpose, the processing will be based on the necessity to fulfil our legitimate interest in carrying out analytical and statistical activities aimed at our development, and therefore on the basis of Article 6(1)(f) RODO, until you raise an effective objection to the processing of your data.

Your data may also be processed for the purpose of establishing, investigating or defending against possible claims that may arise in connection with the use of the services provided by Medi Partner. In this case, your data will be used on the basis of the need to pursue Medi Partner's legitimate interest in securing claims, and therefore on the basis of Article 6(1)(f) RODO, for the period of time provided for by the law on the limitation of claims. After this period, your data will be irretrievably deleted from the Medi Partner database.

§ 3 Who can access your data?

Your data may be transferred to external entities to the extent necessary to fulfil the above-mentioned purposes of their processing. These are entities cooperating with Medi Partner, i.e. law firms, tax offices, entities providing debt collection services and entities providing services to Medi Partner on the basis of separately concluded entrustment agreements (e.g. host provider, entities providing IT services, accounting services),

Your data may also be passed on to entities entitled to access them in accordance with common law (e.g. the police).

In addition, if you have consented or requested it, Medi Partner may also share your personal data with other entities authorised by you.

Recipients of the data may be based in a country outside the European Economic Area (EEA), however, in this case Medi Partner will ensure that an appropriate level of safeguards are in place to protect the data subject. The transfer of data to countries outside the EEA may be related to e.g.

with activities undertaken on social media sites and the use of plug-ins and other tools from these sites (e.g. Facebook, Twitter),
using analytical and anonymised user behaviour tracking tools, in particular such as Google Analytics, Hotjar, SALESmanago, RedLink.

§ 4 Other information

The provision of personal data is voluntary, is a condition of entering into a contract with Medi Partner or may be required by law - all depending on the service and the scope of the service Medi Partner provides to you. We will inform you each time in the relevant information clause about the voluntariness or necessity of disclosing personal data to Medi Partner. Your personal data will be subject to automated decision-making processes, including possibly profiling. This means that based on the personal data we hold about you and information about the products you purchase or services you use or the cookies that are stored on your device, we will make inferences about your preferences and interests, which we may use to build your marketing profile, our marketing strategy and further development. Based on the profiles we build, we will be able to better tailor our message to your expectations, which means you will receive less unhelpful information from us and offers of products you are not interested in buying.

Your rights

You have the following rights in relation to the processing of your personal data:

The right to object to the processing of your data for marketing purposes - as we process your data for marketing purposes on the basis of a legitimate interest,
The right to object to the processing on grounds of your particular situation - where we process your data on the basis of our legitimate interest,
the right to withdraw consent,
The right of access to your personal data,
The right to request the rectification of your personal data,
The right to request the deletion of your personal data, only if we are not obliged by law to process it,
The right to request the restriction of the processing of your personal data,
The right to portability of your personal data, i.e. the right to receive your personal data from us, in a structured, commonly used, machine-readable computer format. You can send this data to another controller or request that we send your data to another controller. However, we will only do this if such a transfer is technically possible.

To exercise the above rights, please contact us or our Data Protection Officer.

Detailed information on the exercise of rights can be found here ->>

You also have the right to lodge a complaint with the supervisory authority in charge of personal data protection, i.e. the President of the Data Protection Authority.

Data security

We are committed to protecting your personal data in accordance with applicable legislation, in particular not to disclose them to third parties and to process them only for the purposes set out in this Privacy Policy. Your personal data shall be protected against unauthorised disclosure to unauthorised persons, against taking by unauthorised persons, against destruction, loss, damage or alteration, and against processing in violation of generally applicable laws. We use appropriate security measures to protect your data. These include internal controls over the data collected, storage and processing procedures, and physical and IT security measures to protect against unauthorised access to the systems in which we store personal data. The transmission of personal data and communication with our servers is encrypted and uses SSL (Secure Socket Layer). Access to personal data processed by Medi Partner is secured against unauthorised access.

Medi Partner sp. z o.o. reserves the right to amend the content of the Privacy Policy in the event of changes in Polish law or the implementation of new technological and IT solutions.

Contact us today

Enter your name

Enter your e-mail

Enter your phone number

Choose a clinic

Select topic

Write to us

Your message can have a maximum of 350 characters

Data administrator: Medi Partner Sp. z o.o., Rakowiecka 36, 02-532 Warsaw. Purposes of processing: to contact you back or to answer your question. Legal basis for processing: Legally legitimate interest of the Administrator (Article 6(1)(f) RODO), in the situation of processing of special category data provided by you in the contact form (e.g. information about your health condition) we will act on the basis of Article 9(2)(f) RODO. Rights in relation to data processing: right to withdraw consent to the processing of personal data; right of access to personal data; other rights referred to in the detailed information on data processing. Recipients of data: Entities processing personal data on behalf of Medi Partner Sp. z o. o. Details of data processing.